INFORMATIONWEEK article on Unix Security
December 12, 1994
The vast majority of Internet break-ins go
CERT receives about 150-250 incident reports per month (~10/day)
85% of attacks CERT investigates use familiar techniques
Incidents reported to CERT have increased 75% this year
A couple good quotes from Dain Gary, operations manager at CERT:
(Regarding commercial users of the Internet)
"They don't appreciate the magnitude of the risk."
(Regarding security on the Internet in general)
"The bad guys know more than the good guys."
Security incidents mentioned in article
Break-in through GE firewall - access shut down for 72 hours; no reported damage
Pipeline Network, Inc. (Internet provider in New York) - break-in and message posted from the "Internet Liberation Front"
Florida State University - someone illegally downloaded IBM and Microsoft software from a university computer