In March, we wrote about changes that we were making to the McAfee Labs Threats Reports. Those changes included both format and content improvements. We wanted to make the Threats Reports more engaging, easier to understand, and simpler to navigate.
It’s now August, we’ve published three threats reports in the new format, and we’re interested in your feedback. If you’ve read any of our recent reports and would like to let us know what you think, please take a short, five-minute survey here.
In the August report, we discuss three Key Topics:
Heartbleed’s aftermath: another cybercrime opportunity
By far the most important security event in the second quarter was the public disclosure of the “Heartbleed” vulnerability, which affected every IT organization. In this report, McAfee Labs explores how attackers are using lists of unpatched websites as target lists and then stealing sensitive information. As of this writing, more than 300,000 websites remain unpatched and vulnerable to this type of criminal activity, according to one source.
Phishing lures the unsuspecting: business users easily hooked
We also examine the exceedingly effective tactic of phishing, which exploits what is often the weakest link in a business’ cyber defense—human behavior. We tested business users’ ability to detect phishing though our McAfee Phishing Quiz and found that 80% of all test takers have fallen for at least one in seven phishing emails.
Operation Tovar: a big hit with a short life
Finally, we report on Operation Tovar, a takedown campaign conducted jointly among international law enforcement agencies and key IT security industry participants including McAfee. Although very successful, copycats have already begun to spring up, so the relief is only temporary.
Again, we thank you for your readership. We look forward to your feedback.