130 likes | 249 Vues
PandaLab Quarterly Report ( January-March 2011 ). 報告 者:劉旭哲. Q1 of 2011 a number of attacks on cell phones Facebook remains the king of all social networking sites some international events have been largely reflected in the cyber-activism and security worlds .
E N D
Q1 of 2011 • a number of attacks on cell phones • Facebook remains the king of all social networking sites • some international events have been largely reflected in the cyber-activism and security worlds. • cyber war and cyber-espionage, China as the usual suspect in most cases
Cell Phone • Q1 of 2011 has been dominated by headlines with news about malware for cell phones. • Smartphones exceeded PC sales in Q4 of 2010 for the first time ever. • Android is becoming the dominant platform of mobile computing. • An emerging market tocyber-crooks • EgAndroid新惡意軟體:用盜版就懲罰你!0401
Uploaded method different between iPhone and Android • You will be recommended • Avoid downloading applications from unofficial and questionable places. • But new type to spread Trojan is Repackaged • Official Android Market • 4 days downloaded more than 50000times • Zitmo -> steal account information
Facebook • Post enticing messagesto trick victims to install malware applications • Too mush personal information • Mark Zuckerberg’sfacebook account be hacked and posted some msg.
Cyber-activism • Could not imagine that it would do so quickly • The Egyptian government was shut down the country’s Internet connection and mobile phone network. • Post some msg on the FB • Anonymous use LOIC tool to DDoS • U.S. security firm HBGary Federal and the Anonymous group. • Sony vs Anonymous (PS3 JB)
Cyber war • The investigations seemed to indicate that the attack originated from China • But no direct evidence • DroidDream • the affected companies included the likes of Exxon Mobil, Royal Dutch Shell, BP, Marathon Oil, ConocoPhillips, and Baker Hughes.
Type of Malware 55,000 →63,000 →73,190 16 percent growth 37.4% of new threats
Conclusion It is all about MONEY
Others • IEEE 開始制定雲端的標準 • P2301為雲端可攜與互通描繪準則(Guide for Cloud Portability and Interoperability Profiles,CPIP) • 雲端供應商、服務供應商與使用者在介面上的標準化 • P2302則是互動性雲端與聯盟標準(Standard for Intercloud Interoperability and Federation,SIIF)。 • 拓樸(Topological)、功能、互動性管理等各面向的標準
Reference • http://www.ithome.com.tw/itadm/article.php?c=66825 • http://press.pandasecurity.com/wp-content/uploads/2011/04/PandaLabs-Report-Q1-2011.pdf • http://news.cnet.com/8301-13506_3-20050310-17.html?part=rss&tag=feed&subj=News-Security • http://www.ithome.com.tw/itadm/article.php?c=66867 • http://standards.ieee.org/develop/project/2301.html • http://standards.ieee.org/develop/project/2302.html