|
 |
|
|
|
|
|
|
|
|
|
|
|
|
|
Finnish Communications Regulatory Authority (FICORA) Switchboard +358 9 69 661 Television fees Customer service of Fi-domain names +358 9 6966 700 |
18.01.2011 FICORA's CERT-FI annual review 2010: Stuxnet malware top information security phenomenon in 2010Rising as the most striking information security phenomenon in 2010 was the Stuxnet malware specially created to sabotage industrial automation systems. Several sources have characterized Stuxnet as the most technologically-advanced malware yet. It has a striking ability to exploit several previously-unknown software vulnerabilities. Stuxnet was found in the summer, but it had already spread to several countries by then. Some of the vulnerabilities it has exploited still remain unpatched. Speculations about the ultimate target of the malware continue. Internet as tool of activismAttempts have been made to use the internet illegally as a medium for political purposes. In 2010, the website content of several politicians and celebrities were edited without permission. The sensation around the WikiLeaks website has activated people to take advantage of denial-of-service attacks as a tool for expressing opinions and civil obedience. Attacks have been launched for WikiLeaks and against it. International cooperation prerequisite for safer internetDuring the year, good results were made with the prevention of content endangering the information security of the internet as a result of the smooth cooperation among authorities, information security community and telecom operators. Also, it would not be possible to manage the device and software without the cooperation between information security researchers and manufacturers. The cooperation between authorities and information security players must function across borders as well. Network-based collaboration has brought encouraging results. CERT-FI publishes a quarterly overview of information security, which deals with the most significant threats to information security. The objective of the reviews is to support companies and organisations in their attempts to improve the management of information security risks. The CERT-FI information security annual review 2010 is available in Finnish on the CERT-FI website at www.cert.fi. The English version will be published later. Further information:
|
