Well known security vendor FSecure has published their “AttackLandscape H1 2019” report. This report is compiled of data for the first half of 2019. The company reports that their global network of honeypots measured,more than triple the amount of attacks from the previous period. The company uses honeypots, which are disguised as everyday hardware to attract attacks.The total of the events listed as 2.9 billion previously these events were in the millions.   They also reported that this is the first time since publishing their data that the traffic has ever exceeded the billion mark. Researchers believe that due to the increase in IoT devices on networks all around the word, this may have played a part in the increase of attacks. Also, of interest is that two years after WannaCry, EternalBlue and related exploits these still maintain a high popularity of attacks due to large numbers of still-unpatched servers around the world. Top TCP ports targeted were  23 – Telnet – 760M445 – SMB – 556M22 – SSH – 456M1433 – MSSQL 260M Top UDP Ports Targeted were 1900 – SSDP, UPnP – 611M5355 – LLMNR – 42M137 – NetBIOS – 26M17500 – Dropbox LanSync – 15M32414 – Plex Media Server – 12M China, USA, Russia and Germany were the highest host IPspace sources.USA, Austria, Ukraine, UK, the Netherlands and Italy were the countries where the most attacks were directed against. In their report Fsecure concludes the following: •       Map your attack surface. Know what devices and servers you have and why they’re needed.•       Retire old assets that aren’t necessary.•       Know what you need to protect most, and guard it. Keep your most critical assets protected•       with a higher level of security.•       Keep your systems and applications updated with current software and security patches.•       Be skeptical of unsolicited, unexpected emails and especially of links or attachments in them.•       Enforce a password policy of changing default passwords to unique, long and strong•       passwords,and of never reusing passwords. Encourage employees to use password managers.•       Monitor your network with detection and response technology to catch malicious actors•      already in the network. Fsecure’s full report can be found on their website:https://s3-eu-central-1.amazonaws.com/evermade-fsecure-assets/wp-content/uploads/2019/09/12093807/2019_attack_landscape_report.pdf Sources:ForbesFSecure 

For more information about Redport’s information assurance and cyber security services, visit www.redport-ia.com, email us at info@redport-ia.com, like us on Facebook, and follow us on Twitter@redport_ia.

Gaithersburg, MD, USA