| It used to be that computers at work or at home | | | | says. "A successful attack is one that doesn't get |
| were used solely by the family or business that | | | | noticed." He cites the Windows Metafile graphics file |
| bought or owned it. No so any more! Today, it's | | | | format exploit, which surfaced late last year and |
| commonplace to find a neighbor or co-worker whose | | | | went undetected in the security industry for about |
| computer was attacked by a hacker. In fact, U.S. | | | | three weeks. |
| businesses are attacked daily by hackers whose | | | | Refined threats call for a new security strategy, says |
| thousands of attacks threaten to corrupt their key | | | | Johannes Ullrich, chief research officer at the SANS |
| systems, steal customer data, and otherwise abuse | | | | Institute. "With a sophisticated attacker, you have to |
| information-technology assets. | | | | assume they may have ... a way around any |
| The SANS Institute, which provides computer | | | | particular safeguard you have in place," he says, |
| security education and training, estimates that the | | | | making it all the more important to have multiple |
| average Internet network address experiences an | | | | layers of defense, so the hacker must work harder |
| attack every 24 minutes. In most cases, it's an | | | | to get around a series of roadblocks. |
| unscrupulous hacker trying to infect corporate | | | | But software isn't Superman, guarding your systems |
| computers with viruses, worms and | | | | and laughing as the bullets bounce harmlessly to the |
| Trojans-commonly known as malware. | | | | floor; in the real world, absent a defined organizational |
| But Matthew Speare, Group Vice President and | | | | security policy and experienced personnel to carry it |
| Corporate Information Security Officer at M&T Bank, | | | | out and make intelligent decisions, your company has |
| says that in the trenches it's really not any single | | | | a big bull's-eye on it, and as the intruders keep firing |
| type of attack that poses the greatest challenge, but | | | | away, one day they may just hit the mark. |
| rather "keeping up with the sheer volume" of | | | | To protect yourself, you need an Internet security |
| attempted attacks, which "continue to grow at about | | | | team of experts making sure that you, your family, |
| 25% to 30% a year." | | | | and your business computer are always safe and |
| Full-blown incidents reported to the CERT | | | | secure. The best protection you can have in today's |
| Coordination Center soared to 137,529 in 2003 from | | | | rapidly changing world of cyber-attacks is to have |
| just six in 1988. Since 2003, the center, part of | | | | expert support for all your Internet security needs |
| Carnegie Mellon University's Software Engineering | | | | that will provide technical support without any hassles |
| Institute, has simply stopped counting, reasoning that | | | | and without charging you extra fees. It will become |
| attacks have become so common that tallying them | | | | even more critical than it is today as time goes on. |
| no longer tells us anything significant about their | | | | You need to find your own personal team of experts |
| scope and impact. | | | | to rely on. If you ever have a security problem, you |
| Security breaches exact a huge financial toll. Losses | | | | will want to have a trusted expert you can call for |
| of $130.1 million were reported by the 639 | | | | professional help, without any hassles and extra |
| respondents to the 2005 Computer Crime and | | | | costs! |
| Security Survey, conducted by the Computer | | | | Because hackers and other cybercriminals are |
| Security Institute (CSI), in conjunction with the FBI's | | | | becoming smarter and more sophisticated in their |
| Computer Intrusion Squad in San Francisco. Although | | | | operations, they are real threats to your personal |
| that figure was down from 2004, losses per | | | | security and privacy. Your money, your computer, |
| respondent increased in two key categories: | | | | your family, and your business are all at risk. |
| Unauthorized access to information reached $303,234 | | | | These cybercriminals leave you with three choices: |
| in 2005 from $51,545 in 2004, and theft of | | | | 1. Do nothing and hope their attacks, risks, and |
| proprietary information climbed to $355,552 in 2005 | | | | threats don't occur on your computer. |
| from $168,529 in 2004. | | | | 2. Do research and get training to protect yourself, |
| As hackers get more sophisticated, they're also highly | | | | your family, and your business. |
| motivated and more frequently in it for the money | | | | 3. Get professional help to lockdown your system |
| than any underground programmers' glory, says Joe | | | | from all their attacks, risks, and threats. |
| Payne, president and chief operating officer at | | | | Remember: When you say "No!" to hackers and |
| iDefense Security Intelligence Services, a VeriSign | | | | spyware, everyone wins! When you don't, we all lose! |
| company. Today's perpetrators "don't want to be | | | | © MMVII, Etienne A. |
| known for attacks and do them under the radar," he | | | | |