It’s now January 2018, and I hope to publish a “Security Centre” bulletin once a month throughout 2018.
In these bulletins, I am listing just the top security threats this domain has seen over the last month.
It will include roughly the following metrics:
- Top Country source of known threats and the number of events.
- The Top known threats and the number of occurrences.
The top threats for December 2017 seem to still be OpenSSL heartbleed (stealing private keys), Apache struts vulnerability (think Equifax) and WordPress plugin compromises.
Top country threats for December 2017 seems to be the United Kingdom, followed some ways back by China. Further back still is Korea, India and the United States. With most web traffic originating from either the United States or Canada (~99%), on a per hit basis, these statistics can be alarming.
If, for example, only one hundred hits came from the locations highest on the
most frequency shown on the country source list of dodgy these are disproportionately high numbers of attacks coming from the UK and China.