Cisco 2009 Annual Security Report

View the Cisco Annual Security Report video

The Cisco 2009 Annual Security Report provides an overview of the combined security intelligence of the entire Cisco organization, with research, analysis and recommendations provided by Cisco security experts. The report encompasses threat information and trends collected throughout 2009, examines the state of security for that period, and predicts security trends for 2010.

This year, the report looks closely at how social media is creating a new “playground” for cybercriminals. The unwarranted amount of “transitive trust” that people place in online social networking communities, in particular, provides criminals with ample opportunity to launch exploits and steal personal information.

The Cisco 2009 Annual Security Report also discusses how the blending of business and personal communications, the widespread use of handheld wireless devices, and increasing reliance on cloud computing and hosted services are blurring the traditional network perimeter and helping to create the “borderless enterprise.”

In 2010, spam volume is expected to rise 30 to 40 percent worldwide over 2009 levels

Report Highlights

  • Money is not always the motive for today’s cybercrime: Politically motivated online attacks – big and small – have been on the rise worldwide and can be expected to increase.
  • Spam remains cybercriminals’ favorite tool for luring users into buying fake pharmaceuticals or downloading malware. In 2010, according to Cisco research, spam volume is expected to rise 30 to 40 percent over 2009 levels
  • Banking Trojans like Zeus and Clampi, which steal online account credentials, grew in size and strength during 2009 and are likely to remain a significant security issue during 2010.
  • In 2009, many criminals found success with text message scams targeting users of handheld devices such as smartphones. Expect to see even more “smishing” scams (phishing attacks using SMS), as well as Voice over Internet Protocol (VoIP) scams, happening worldwide during 2010.
  • The “winners” of the first-ever Cisco Cybercrime Showcase are revealed. Some are recognized for their positive contributions in the fight against cybercrime, while others are noted for their role in undermining Internet security in 2009.
  • Cisco introduces the Global ARMS Race Index, a method for tracking the effect of global cybercrime – and how it changes over time. The index measures Adversary Resource Market Share (ARMS), the overall level of compromised networks and machines worldwide.
Cisco Security Intelligence Operations provides the highest level of threat correlation—enabling users to collaborate with confidence.

If the past year’s cybercrime activity is any indication of criminals’ industriousness and earnestness, the cybersecurity landscape for 2010 should prove to be rough terrain for many users. Emphasizing innovation is proving to be one of the keys to enhancing cybersecurity and countries worldwide taking important steps toward protecting their interests and their citizens from cybercrime. It is clear that collaboration among government, private industry, and the security industry will be expected, and essential, in the effort to improve global cybersecurity in 2010 and beyond.