- Jun 9, 2013
- 6,720
Private information stored in document files is the most popular target for attacks coming from professional hackers, according to TopSpin Security. File traps, including Office files, recent docs and deleted docs, were touched the most times during the research.
The next most attractive attack targets were application traps, consisting of session apps and browsers, followed by email traps. Notably, 100 percent of the attackers were detected during the initial stages of the attack.
As far as trap types triggered by the hacker participants and malware, 90 percent of the application traps set were touched at least once, followed by 70 percent of the email traps touched and 64 percent of the document traps touched. However, it is interesting to note that the research revealed that human attackers and malware have very different targets they seek. While human attackers seek document files, malware and machine attacks target applications.
“This research is unique in gathering information about attack patterns of hacking experts and advanced malware, and the effectiveness of deception traps set in an enterprise,” said Omer Zohar, Head of Research at TopSpin Security. “Attackers go after files not only to steal them – but also in order to use information stored in files to get credentials and other types of data that helps them traverse through the network.”
Human attackers
For the most popular traps triggered by human attackers, 77 percent of participants triggered document traps set in the enterprise environment.
Next 45 percent of the hackers triggered credential traps, consisting of usernames and passwords in files, directories and emails, followed by 36 percent who triggered email traps. In addition, human attackers also reached network, application and IoT-based traps.
Full Article. https://www.helpnetsecurity.com/2016/10/12/deception-mechanisms-detecting-attacks/
The next most attractive attack targets were application traps, consisting of session apps and browsers, followed by email traps. Notably, 100 percent of the attackers were detected during the initial stages of the attack.
As far as trap types triggered by the hacker participants and malware, 90 percent of the application traps set were touched at least once, followed by 70 percent of the email traps touched and 64 percent of the document traps touched. However, it is interesting to note that the research revealed that human attackers and malware have very different targets they seek. While human attackers seek document files, malware and machine attacks target applications.
“This research is unique in gathering information about attack patterns of hacking experts and advanced malware, and the effectiveness of deception traps set in an enterprise,” said Omer Zohar, Head of Research at TopSpin Security. “Attackers go after files not only to steal them – but also in order to use information stored in files to get credentials and other types of data that helps them traverse through the network.”
Human attackers
For the most popular traps triggered by human attackers, 77 percent of participants triggered document traps set in the enterprise environment.
Next 45 percent of the hackers triggered credential traps, consisting of usernames and passwords in files, directories and emails, followed by 36 percent who triggered email traps. In addition, human attackers also reached network, application and IoT-based traps.
Full Article. https://www.helpnetsecurity.com/2016/10/12/deception-mechanisms-detecting-attacks/
