 |
 |
 |
 |
 |
 |
|
| |
|
|
| |
| Abstract |
| |
|
Paper
Title
|
10
Major Threats – The Threat that We Can’t See Threats
|
|
Author(s)
|
Shigeru
Ishii (Japan), Information-technology Promotion Agency,
Japan.
|
|
Time
|
12 December, Friday, 14:45 - 15:15.
|
|
|
|
|
IPA reports
“10 Major Threats– The Threat that we can’t see threats”
in “Information Security White Paper 2008” published by
IPA. These threats are selected based on influence and
impact to society:
1st Increasing threat of “Inducing Attacks”
2nd Widespread attacks to websites
3rd Continual incidents of information leakage
4th Further cunning Targeted Attacks
5th Untrustworthy official web sites
6th Hardly detectable Bots, latent Viruses
7th Inducing to malware trapped websites from search
engines
8th Repeating vulnerabilities on domestic software
products
9th Expanding Spam mails
10th Increasing vulnerabilities on Embedded Systems
We have conducted researches and developed tools to cope
with these complex threats. A lot of Targeted Attacks
are done by “sequential malware” which downloads
additional harmful programs from prepared servers.
Closing unnecessary outbound TCP ports is one of
effective countermeasures against such sequential
malware. IPA has developed a malicious website finding
system called TIPS (Trap-website Information Providing
System). It collects site information, HTML files, EXE
files and Scripts, detects malware and analyzes it. |
| |
|
| |
|
