Intelligent CIO Europe Issue 32 | Page 28

TRENDING Global highlights: 2020 Global Threat Intelligence Report: • Most common attack types accounted for 88% of attacks: Applicationspecific (33%), web application (22%), reconnaissance (14%), DoS/DDoS (14%) and network manipulation (5%) attacks. • Weaponisation of IoT: Botnets like Mirai, IoTroop and Echobot have advanced in automation, improving propagation capabilities. Mirai and IoTroop are also known for spreading through IoT attacks, then propagating through scanning and subsequent infection from identified hosts. • Old vulnerabilities remain an active target: Attackers leveraged those that are several years old but have not been patched by organisations, such as HeartBleed, which helped make OpenSSL the second most targeted software with 19% of attacks globally. A total of 258 new vulnerabilities were identified in Apache frameworks and software over the past two years, making Apache the third most targeted in 2019, accounting for over 15% of all attacks observed. • Attacks on Content Management Systems (CMS) accounted for about 20% of all attacks: Targeting popular CMS platforms like WordPress, Joomla!, Drupal, and NoneCms, cybercriminals used them as a route into businesses to steal valuable data and launch additional attacks. Additionally, more than 28% of targeted technologies (like ColdFusion and Apache Struts) support websites. • “ ORGANISATIONS MUST BE READY TO RESPOND TO THESE AND OTHER THREATS IN A CONSTANTLY EVOLVING LANDSCAPE. 28 INTELLIGENTCIO www.intelligentcio.com