What is the situation of my country’s Internet network security in 2017?

Recently, Yun Xiaochun, deputy director and chief engineer of the National Internet Emergency Center, conducted a detailed analysis of "my country's Internet Network Security Situation in 2017". He said that my country's Internet network industry has developed very rapidly. According to the report of China Internet Information Center, the number of Internet users in my country reached 772 million in 2017, and the scale of the Internet ranked first in the world. In 2017, my country's network security industry also developed very well, and the overall scale of domestic enterprises reached 40 billion, a year-on-year increase of 33%. However, while the network security industry is developing rapidly, various network security issues are becoming increasingly complex.

[[229421]]

There are many threats to Internet network security

According to the monitoring data of my country's Internet security in 2017 by the National Internet Emergency Center, there are six main aspects. First, in terms of malicious programs, it was found that there were about 32,000 overseas control servers in 2017. At the same time, the number of computers infected with malicious programs in China reached 12.56 million, a decrease of 26.1% from 2016. Among the malicious programs that infected computers, remote control Trojans accounted for the largest number, reaching 71.65%, and botnet Trojans accounted for 20.3%.

According to Yun Xiaochun, they regularly clean up zombie Trojan programs on the Internet every month to ensure a safe Internet environment. Last year, a total of 664 zombie networks with large control scales were eliminated.

In terms of security vulnerabilities, the National Internet Emergency Center has established a national information security vulnerability sharing platform. Yun Xiaochun introduced: "We are the largest national vulnerability database in China, which contains 15,955 common software and hardware vulnerabilities, an increase of 47.4% year-on-year. Among the vulnerabilities collected, the most are related to Google products, reaching 1,133, accounting for 7.1% of the total vulnerabilities collected. At the same time, we have established 4 sub-vulnerability libraries in the vulnerability library, including the mobile Internet sub-vulnerability library, the telecommunications industry sub-vulnerability library, and the e-government sub-vulnerability library. In 2017, the number of security vulnerabilities of networked smart devices we collected reached 2,440, an increase of 118.4% year-on-year. The products involved include home routers, network cameras, and conference systems. These vulnerability types include command execution, file upload, etc."

In addition, denial of service attacks are also very important. The main traffic in reflection amplification attacks comes from abroad. Through the analysis of the attacks, we found that there is a very big feature that the number of attacks launched is densely distributed, which is actually a small number of attack resources launching attacks.

In terms of website security, a total of 49,000 counterfeit pages were monitored and discovered last year, a decrease of 72.5%. A total of 25,000 pages were coordinated and handled throughout the year, involving more than 7,000 pages on the mobile Internet. The number of websites with backdoors implanted was 29,000, a year-on-year decrease of 64.6%. About 24,000 IP addresses were involved, 90.6% of which were located overseas. In terms of web page tampering, 20,000 tampered websites were found in China, an increase of 20% year-on-year. There were 618 tampered government websites, an increase of 32.3% year-on-year.

As a strategy to build a strong cyber power, the industrial Internet also faces very large potential threats. Through testing, it was found that about 200 public networked devices or platforms have serious vulnerabilities. In addition, for Internet finance, the National Internet Emergency Center has also established a corresponding Internet finance analysis platform to conduct macro-monitoring of national Internet security. In 2017, 1,000 Internet finance websites were selected for security assessment and monitoring, and serious user data leakage risks were found.

Five areas of cybersecurity to focus on in 2018

First of all, in 2018, the protection of personal information and important data will become very important. This year, the EU launched the GDPR, which has posed a huge challenge to companies around the world. The GDPR clearly states that as long as a citizen is an EU citizen, even if he is in China, his data cannot be obtained at will. From the overall situation, countries around the world have raised the protection of citizen privacy to an unprecedented level.

Second, Yun Xiaochun believes that in 2018, the protection of security vulnerability information will become a very important issue. Because vulnerabilities themselves are currently considered a strategic resource for a country, and a large number of new vulnerabilities are discovered every year. In this case, how to disclose vulnerabilities will become a very important issue.

Article 26 of the Cybersecurity Law stipulates that the disclosure of system vulnerabilities to the public must comply with relevant national regulations. Disclosure without principles may eventually cause great harm to manufacturers, enterprises, and individuals, and may even endanger national security. Therefore, how to protect and disclose vulnerability information will become a very important issue this year.

Third, IoT devices are facing increasing cybersecurity threats. Now everything is connected, and more and more IoT is appearing in our homes and lives. With the promotion of IPV6 and 5G, we believe that the development of IoT will be greatly accelerated. As more and more IoT devices are added, security issues will become more and more obvious.

Fourth, digital currency will trigger more and more complex network attacks. At present, there are many special mining Trojans launched on various platforms. The security of digital currency will become a hot issue this year.

Fifth, Yun Xiaochun said that what we should pay attention to in 2018 is that the popularity of artificial intelligence in the field of network security will continue to rise. The popularity of artificial intelligence in network security is not only used for prevention, but also for offense and defense.