Annual cyber attacks survey: SSH port most vulnerable to cyber attacks, HTTPS followed!
https://zhuanlan.kanxue.com/article-9431.htm
In general, most people will be to prevent the threat of cyber attacks through a variety of measures to check the port, update equipment.
However, there is usually a certain law in the event of cyber attacks.
The survey report relative authority, its users more than 4,000 samples, analyzed more than 5,000 attacks.
Top high port attack
The report notes that the implementation of hacker attacks for the top three port is SSH, HTTP and HTTPS, and these are precisely the people trusted by the top port.
The emergence of these high frequency of attacks, more than 65%. Because they need to open communication, whether the communication is secure or plain text will attack.
In fourth place is the Microsoft Remote Desktop Protocol (RDP) port. This year more than RDP remote execution vulnerabilities caused by striking attack, for example Cve-2019-1181, cve-2019-1182 and cve-2019-0708.
Which were pointed out port is also a serious risk that the file transfer protocol (FTP - 20,21). On printers, cameras, and uninterruptible power supply found loopholes in the event an attacker using a server, and these servers accounted for one-third of surveyed FTP server.
Outdated systems and weak encryption software
In addition, other breach of security vulnerabilities still exist in some of the weak and outdated encryption software, which account for 66% and 75% respectively of the survey.
The survey found that there are still more than 66% of the host is running Windows 7, and to stop supporting this operating system after 2020, January 14.
更有甚者,调查人员还发现了1993年发布的Windows NT系统。
而这些不再受到支持的系统风险更大,攻击者的横向攻击易如反掌。
此外,在调查中,几乎有一半的Linux系统运行的内核已经过时,也就是他们的版本在过去三年中一直没有得到支持,并且存在超过65个已知的漏洞。
攻击事件层出不穷,但是经过调查依然可以发现一些规律,有效了解这些攻击手段,身为用户的我们也能够及时防御。