WOBURN, MA – October 30, 2013 — /BackupReview.info/ — According to the Kaspersky Lab study Java under attack – the evolution of exploits in 2012-2013, the number of attacks using Java exploits from September 2012 to August 2013 amounted to 14.1 million – one third more than in the same period in 2011-2012.

Exploits are malicious programs designed to take advantage of vulnerabilities in legitimate software and penetrate users’ computers. The fact that they function surreptitiously makes them all the more dangerous. If a computer is running vulnerable versions of any software, simply visiting an infected web page or opening a file containing malicious code is enough to trigger an exploit. Traditionally, the most frequent targets for attacks have been Oracle Java, Adobe Flash Player, and Adobe Reader. However, the Kaspersky Lab study revealed that in the past year Java is increasingly becoming the prime target for cybercriminals.

The study was based on data gathered from users of Kaspersky products around the world who consented to provide information to Kaspersky Security Network.

Of the 14.1 million attacks detected using Java exploits, most happened in the second half of the study period – over 8.54 million attacks were registered from March to August 2013, up 52.7% on the previous six months.

Main Facts

  • Over a 12-month period, Kaspersky Lab’s products protected more than 3.75 million users across the globe from Java exploit attacks.
  • Approximately 80% of attacked users live in 10 countries; the top 3 countries include the USA, Russia and Germany.
  • Canada, the USA, Germany and Brazil experienced the fastest growth in the number of attacks.
  • Approximately 50% of all attacks were launched using just six families of Java exploits.
  • For home users, installing newly released updates is rarely a high priority – which plays into the cybercriminals’ hands. According to the research, most users keep working with a vulnerable version of Java for six weeks after an update is released.
  • Over a one-year period, each user faced an average of 3.72 attacks. Over the period from September 2012 – February 2013, the average exposure was 3.29 attacks per individual user; in March – August 2013, it was 4.15 attacks per user. In the span of six months exposure rates rose by 26.1%.
  • 1,210,000 unique attack sources were identified in 95 countries.

The large number of attacks launched using Java exploits is of little surprise: over the 12 months of Kaspersky Lab’s research, 161 vulnerabilities were identified in Java. In comparison, over the period of September 2011 to August 2012, 51 vulnerabilities were identified. Six of the newly detected vulnerabilities were rated as critical, or very dangerous; these six were most actively used in attacks by cybercriminals.

Vyacheslav Zakorzhevsky, Head of the Vulnerability Research Group Kaspersky Lab:
“Java is a victim of its own popularity. Cyber criminals know they are better off focusing their efforts on finding a vulnerability in Java and then attacking millions of computers at one stroke, rather than creating multiple exploits for several less popular products and still finding that they are affecting fewer computers.”

To protect themselves against the potential costs of a malicious attack launched using Java exploits, Kaspersky Lab’s experts advise both home and corporate users to install Java updates promptly as well as choosing security solutions that can reliably block exploit-based cyber-attacks.

A full report of the study is available at:

About Kaspersky Lab
Kaspersky Lab is the world’s largest privately held vendor of endpoint protection solutions. The company is ranked among the world’s top four vendors of security solutions for endpoint users*. Throughout its more than 15-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 300 million users worldwide. Learn more at www.kaspersky.com.

* The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2011. The rating was published in the IDC report “Worldwide Endpoint Security 2012–2016 Forecast and 2011 Vendor Shares (IDC #235930, July 2012). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2011.

Securelist | Information about Viruses, Hackers and Spam
Follow @Securelist on Twitter

Threatpost | The First Stop for Security News
Follow @Threatpost on Twitter

Media Contacts
Susan Rivera

Source: Kaspersky


General Tags: online backup companies, SaaS, online backup services, CEO interviews, online file backup, software as a service, online data backup, top rated online backups, data storage, online backup providers directory, backing up online, online backup reviews, compare online backups, cloud computing, online backup, data security, online backup news, online file storage

Like us on Facebook

Do you like this post? Subscribe to our RSS feed ===========================


Related posts:

  1. Kaspersky Lab Report Finds Exploit Leaks Led to Over Five Million Attacks in Q2 2017
  2. Kaspersky Lab Study: About One Third of All Phishing Attacks Aimed at Online Financial Institutions
  3. Kaspersky Research Finds DDOS Attacks Tripled year-on-year in Q2 2020
  4. Kaspersky Lab Reports: Finance-Related Malware Attacks Rose to 28 Million in 2013
  5. Kaspersky Reports More Than 100 Million Attacks Hit Smart Devices in H1 2019
  6. Kaspersky Lab Report: The Number of Phishing Attacks in Q3 Reach Over 137 Million
  7. Kaspersky Lab Finds Phishing Attacks Hit Almost 500 Million Users in 2018
  8. Kaspersky Lab Story of the Year 2017: More Than One Quarter of Ransomware Attacks Target Businesses
  9. Kaspersky Lab IT Threat Evolution Report: Attacks Leveraging Microsoft Office Exploits Grew Fourfold in Q1 2018
  10. Increasing Digital Clutter Leaves Consumers Exposed, Kaspersky Lab Study Reveals

Tags: ,