Internet Attacks from 2m-or-more IPs within Romania Reported during 2013
According to CERT-RO, the Computer Security Incident Response Team of Romania, during 2013, it got more than 43m computer security warnings associated with more than 2.2m distinct Internet Protocol addresses registered in Romania, which had connection with different computer security cases, reported nineoclock.ro dated March 11, 2014.
It maybe noted that working as an independent specialist, development as well as research entity, CERT-RO seeks to safeguard PC networks while it bears every essential resource for identifying, examining, stopping, and addressing security problems taking place on PC infrastructures which handle public services/utilities related to any kind of information.
From data gathered, more than 16% (13.5m) of the entire Internet Protocol addresses fixed for Romania had association with one, if not more, security warning on PCs, recoded at CERT-RO during 2013. Over twenty nine percent of the entire single warnings relate to Romanian entities which support spoofed online sites, popularly called phishing websites noted as dangerous for any financial institution whether at home or abroad.
The total percent of all warnings that aim at information systems within the country is about 78%, victims whose technical flaws are exploited while seeking to contaminate PCs using different malware programs so botnets can be amassed, says CERT-RO.
Also, more than five percent of the security warnings have association with Romanian entities, which dispatch junk e-mails widely online.
CERT-RO's report further reveals that 40% of the entire warnings aimed at computers in Romania had contracted Conficker worm's infection despite the bug fixed. Data shows that the worm contaminated about 12.5% of all distinct Internet Protocols in Romania that remained active during 2013. During 2008, the Trojan, when detected, reportedly attacked computers having Microsoft Windows which hadn't been upgraded with the most recent patches for security flaws.
CERT-RO reports that more than 50% of all affected IPs are involved with systems running Windows OSs such as 2000, 98, 2003 or XP.
Moreover, more than 10,000 .ro domain-names got hijacked during 2013, of which 60% contracted different malware capable of contaminating additional visitors.
Finally, according to CERT-RO, 61 IPs reportedly became contaminated with different kinds of advanced persistent threats or APTs.
» SPAMfighter News - 3/22/2014