Who do you blame after a cyber attack?

Monday - 9/13/2010, 5:35pm EDT

Cybersecurity Update - Tune in weekdays at 30 minutes past the hour for the latest cybersecurity news on the Federal Drive with Tom Temin and Amy Morris (6-10 a.m.) and the DorobekINSIDER with Chris Dorobek (3-7 p.m.). Listen live at FederalNewsRadio.com or on the radio at 1500 and 820 AM in the Washington, D.C. metro area. The Cybersecurity Update is brought to you by Tripwire.

  • When you get hacked or phished or cyber-attacked, who do you blame? The majority of cybercrime victims blame themselves; that's the results from a new report from cybersecurity company Symantec. The study of more than 7,000 people from 14 different countries say they blame themselves for the web attack, and they feel helpless to prevent future attacks. The study was part of the research for the Norton Cybercrime Report: The Human Impact. Nearly 65 percent of those polled said they have been a victim of some kind of cyber crime: viruses, malware attacks, online scams, phishing attacks, hacking of social-networking profiles, credit-card fraud, and sexual predation. And the really troubling news, when a cyber crime does occur less than half of the all victims call their financial institution or the police. It is this helplessness that Adam Plamer, Norton's lead cybersecurity adviser, says needs to be fixed. You can find the full report here.

  • It's back! The gang behind the Aurora Trojan has struck again. Since January, a PDF malware sample exploiting a critical Adobe zero-day vulnerability has been making the rounds. And its features closely resemble the Aurora attacks from years past. The malware shows a socially engineered email from a David Leadbetter's whose attached PDF gives tips on your golf game. The file once successfully exploited will download additional malware. Symantec reports that in addition, the use of a zero-day within a PDF, and how the executable is dropped on the system, all match the Aurora method of operation. Symantec is cautioning users to keep their anti-virus software up to date, and to exercise caution when opening PFD files.
Check out all of Federal News Radio's coverage of cybersecurity issues here.