Our site uses cookies to make it work and to help us give you the best possible user experience. By using our site, you agree to our use of cookies. To find out more about cookies and how you can disable them, please read our cookies statement. 

Cookie Settings

You can manage your cookie settings by turning cookies on and off.

Click on the different cookie  headings to find out more about the types of cookies we use on this site and to change your settings. Please be aware that if you choose to turn off  cookies, certain areas of our site may not work and your browsing experience may be impacted.

For further information on how we use cookies, please see our cookies statement. 

Strictly Necessary Cookies

(Req)

These cookies are essential for the technical operation of and proper functioning of our site  and enable you to register and login, to easily move around our site, and to access secure areas. Without these cookies our site won't function properly.  

These cookies are required

Performance Cookies

Performance cookies allow us to collect aggregated and anonymous data on how our site is used, such as the number of visitors to our site, how you navigate around and the time spent on our site and also to identify any errors in functionality. These cookies also help us to improve the way our site works by ensuring that you can find what you’re looking for easily, to better understand what you are interested in and to measure the effectiveness of the content of our site. 

Marketing Cookies

These cookies allow us to advertise our products to you and allow us to pass this information on to our trusted third parties so that they can advertise our products to you on our behalf. All information these cookies collect is aggregated and therefore anonymous. No personal information is shared to third parties. Any personal information collected while using our website could be used for direct marketing from Dimension Data only.

18 April 2016

NTT Group announces availability of annual Global Threat Intelligence Report

Dimension Data, the USD 7.5 billion global ICT solutions and services provider, and an NTT Group company, is pleased to announce the release of the annual NTT 2016 Global Threat Intelligence Report (GTIR). NTT Group has expanded its view of the threat landscape to include findings from key partners – Lockheed Martin, Wapack Labs, Recorded Future and the Center for Internet Security – to analyse the attacks, threats and trends from the previous year. The 2016 GTIR is the most comprehensive report to date, drawing information from 24 security operations centres, seven R&D centres, 3.5 trillion logs, 6.2 billion attacks and nearly 8,000 security clients across six continents.

The 2016 GTIR gives security personnel and decision makers the information they need to enable their organisations to disrupt attacks. Practical application of a comprehensive, integrated solution and strategy will not only enable efficiency and effectiveness, but also support the security life cycle of the entire organisation.

To achieve this goal, this year’s GTIR identifies controls (based on the Center for Internet Security’s Critical Security Controls) that can be effective at each stage of the Lockheed Martin Cyber Kill Chain®. Organisations that have implemented controls at each stage of the Kill Chain have an increased ability to disrupt attacks. The report also includes a breakdown of a case study in a “Practical Application of Security Controls to the Cyber Kill Chain.”

Key findings from the report include:

Incident Response and Case Studies

  • Trend data from incident response activities illustrates on average only 23% of organisations are capable of responding effectively to a cyber incident. 77% have no capability to respond to critical incidents, and often purchase support services after an incident has occurred.
  • Activity related to the Reconnaissance phase of the Lockheed Martin Cyber Kill Chain (CKC) accounted for nearly 89% of all log volume. These logs accounted for approximately 35% of escalated attack activity, making Reconnaissance the largest single element in the CKC.
  • Spear phishing attacks accounted for approximately 17% of incident response activities supported in 2015. In many cases, the attacks targeted executives and finance personnel with the intent of tricking them into paying fraudulent invoices.

Geographic and Vertical Market Trends

  • The retail sector experienced the most attacks per client. Retail was followed by the hospitality, leisure and entertainment sector, then insurance, government and manufacturing. While the finance sector showed the highest volume of attacks overall, on a per-client basis, retail clients experienced 2.7 times the number of attacks as finance.
  • NTT Group observed an 18% rise in malware detected for every industry other than education. NTT clients from the education sector tended to focus less on the more volatile student and guest networks, but malware for almost every other sector increased.

Vulnerabilities, Attacks and Exploitation

  • Nearly 21% of vulnerabilities detected in client networks were more than three years old. Results included vulnerabilities from as far back as 1999, making them more than 16 years old. This is for vulnerabilities with a Common Vulnerability Scoring System (CVSS) score of 4.0 or higher.
  • DoS/DDoS attack volume fell 39% from levels observed in 2014. Implementation of better mitigation tools, along with fewer attacks, combined for a drop in detections of denial of service (DoS) and distributed denial of service (DDoS) activities. But, extortion based on the victim’s paying to avoid or stop DDoS attacks became more prevalent.
  • All of the top 10 vulnerabilities targeted by exploit kits during 2015 are related to Adobe Flash. In 2013, the top 10 vulnerabilities targeted by exploit kits included one Flash and eight Java vulnerabilities. That has changed as new Java vulnerabilities have dropped steadily since 2013. The number of publicized Flash vulnerabilities jumped by almost 312% over 2014 levels.

This year’s GTIR provides actionable intelligence, guidance about what attackers are doing, and comprehensive security controls designed to disrupt attacks. Controls recommended in this report will contribute to an organization’s survivability and resiliency in the face of an attack.

To download the full report, please visit: annual NTT 2016 Global Threat Intelligence Report


About Dimension Data
Dimension Data uses the power of technology to help organisations achieve great things in the digital era. As a member of the NTT Group, we accelerate our clients’ ambitions through digital infrastructure, hybrid cloud, workspaces for tomorrow, and cybersecurity. With a turnover of USD 7.5 billion, offices in 52 countries, and 30,000 employees, we deliver wherever our clients are, at every stage of their technology journey. We’re proud to be the Official Technology Partner of Amaury Sport Organisation, which owns the Tour de France, and the title partner of the cycling team, Team Dimension Data for Qhubeka. Visit us at http://www.dimensiondata.com


Download press release

Follow us