DOCSLIB.ORG

Internet Security Threat Report Volume 24 | February 2019

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Internet Security Threat Report Volume 24 | February 2019 ISTRInternet Security Threat Report Volume 24 | February 2019 THE DOCUMENT IS PROVIDED “AS IS” AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENT. THE INFORMATION CONTAINED IN THIS DOCUMENT IS SUBJECT TO CHANGE WITHOUT NOTICE. INFORMATION OBTAINED FROM THIRD PARTY SOURCES IS BELIEVED TO BE RELIABLE, BUT IS IN NO WAY GUARANTEED. SECURITY PRODUCTS, TECHNICAL SERVICES, AND ANY OTHER TECHNICAL DATA REFERENCED IN THIS DOCUMENT (“CONTROLLED ITEMS”) ARE SUBJECT TO U.S. EXPORT CONTROL AND SANCTIONS LAWS, REGULATIONS AND REQUIREMENTS, AND MAY BE SUBJECT TO EXPORT OR IMPORT REGULATIONS IN OTHER COUNTRIES. YOU AGREE TO COMPLY STRICTLY WITH THESE LAWS, REGULATIONS AND REQUIREMENTS, AND ACKNOWLEDGE THAT YOU HAVE THE RESPONSIBILITY TO OBTAIN ANY LICENSES, PERMITS OR OTHER APPROVALS THAT MAY BE REQUIRED IN ORDER FOR YOU TO EXPORT, RE-EXPORT, TRANSFER IN COUNTRY OR IMPORT SUCH CONTROLLED ITEMS. TABLE OF CONTENTS 1 2 3 BIG NUMBERS YEAR-IN-REVIEW FACTS AND FIGURES METHODOLOGY Formjacking Messaging Cryptojacking Malware Ransomware Mobile Living off the land Web attacks and supply chain attacks Targeted attacks Targeted attacks IoT Cloud Underground economy IoT Election interference MALICIOUS URLS ONE IN TENURLS ARE MALICIOUS WEB ATTACKS 56 % FORMJACKING ATTACKS BLOCKED FORMJACKING ATTACKS ON ENDPOINTS AVERAGE NUMBER OF WEBSITES COMPROMISED WITH FORMJACKING CODE EACH MONTH 4,800 3.7M CRYPTOJACKING 8M $362 4XMORE CRYPTOJACKING EVENTS BLOCKED IN 2018 VS 2017, BUT TRENDING DOWN 4M % 52DROP IN CRYPTOJACKING EVENTS BETWEEN JAN AND DEC 2018 % $48 9DROP IN0 CRYPTOCURRENCY JAN VALUE (MONERO) DEC ENTERPRISE MOBILE RANSOMWARE RANSOMWARE UP 12% % 20% DOWN OVERALL 33 RANSOMWARE SUPPLY CHAIN ATTACKS % MALICIOUS EMAIL POWERSHELL % % 48OF MALICIOUS EMAIL ATTACHMENTS ARE OFFICE FILES, UP FROM 5% IN 2017 1000 INCREASE IN MALICIOUS POWERSHELL SCRIPTS NUMBER OF AVERAGE NUMBER ATTACK GROUPS OF ORGANIZATIONS USING DESTRUCTIVE TARGETED BY EACH MALWARE ATTACK GROUP % 55 2 with one another. Magecart is believed to be behind several high-profile attacks, including those on British Airways and CYBER CRIMINALS TARGET Ticketmaster, as well as attacks against British electronics retailer Kitronik and contact lens seller VisionDirect. PAYMENT CARD DATA. This increase in formjacking reflects the general growth in supply chain attacks that we discussed in ISTR 23, with Magecart in many cases targeting third-party services in order to get its code onto targeted websites. In the high-profile Incidents of formjacking—the use of malicious JavaScript breach of Ticketmaster, for example, Magecart compromised a code to steal credit card details and other information third-party chatbot, which loaded malicious code into the web from payment forms on the checkout web pages of browsers of visitors to Ticketmaster’s website, with the aim of eCommerce sites—trended upwards in 2018. harvesting customers’ payment data. Symantec data shows that 4,818 unique websites were While attacks on household names make headlines, compromised with formjacking code every month in 2018. Symantec’s telemetry shows that it is often small and With data from a single credit card being sold for up to medium sized retailers, selling goods ranging from clothing $45 on underground markets, just 10 credit cards stolen to gardening equipment to medical supplies, that have had from compromised websites could result in a yield of up to formjacking code injected onto their websites. This is a global $2.2 million for cyber criminals each month. The appeal of problem with the potential to affect any business that accepts formjacking for cyber criminals is clear. payments from customers online. Symantec blocked more than 3.7 million formjacking The growth in formjacking in 2018 may be partially explained attempts in 2018, with more than 1 million of those by the drop in the value of cryptocurrencies during the year: blocks occurring in the last two months of the year alone. cyber criminals who may have used websites for cryptojacking Formjacking activity occurred throughout 2018, with an may now be opting for formjacking. The value of stolen credit anomalous spike in activity in May (556,000 attempts in card details on the cyber underground is probably more that month alone), followed by a general upward trend in assured than the value of cryptocurrencies in the current activity in the latter half of the year. climate. Much of this formjacking activity has been blamed on actors dubbed Magecart, which is believed to be several groups, with some, at least, operating in competition Back to ToC ISTR 24 | February 2019 Year-in-Review 14 still think cryptojacking is worth their time. We also saw some cryptojacking criminals targeting enterprises in 2018, with TRENDING DOWN, BUT the WannaMine (MSH.Bluwimps) cryptojacking script, which uses the Eternal Blue exploit made famous by WannaCry to CERTAINLY NOT OUT. spread through enterprise networks, rendering some devices unusable due to high CPU usage. The majority of cryptojacking activity continued to originate from browser-based coinminers in 2018. Browser-based coin Cryptojacking—where cyber criminals surreptitiously run mining takes place inside a web browser and is implemented coinminers on victims’ devices without their knowledge using scripting languages. If a web page contains a coin- and use their central processing unit (CPU) power to mine mining script, the web page visitors’ computing power will be cryptocurrencies—was the story of the final quarter of 2017 used to mine for cryptocurrency for as long as the web page and continued to be one of the dominant features in the is open. Browser-based miners allow cyber criminals to target cyber security landscape in 2018. even fully patched devices and can also allow them to operate Cryptojacking activity peaked between December 2017 and stealthily without the activity being noticed by victims. February 2018, with Symantec blocking around 8 million We predicted that cryptojacking activity by cyber criminals cryptojacking events per month in that period. During 2018, would be largely dependent on cryptocurrency values we blocked more than four times as many cryptojacking remaining high. As cryptocurrency values have fallen, we events as in 2017—almost 69 million cryptojacking events have also observed a decline in the volume of cryptojacking in the 12-month period, compared to just over 16 million in events. However, they haven’t fallen at the same rate as 2017. However, cryptojacking activity did fall during the year, cryptocurrency values—in 2018, the value of Monero dropping by 52 percent between January and December dropped by almost 90 percent while cryptojacking dropped 2018. Despite this downward trend, we still blocked more by around 52 percent. This means some cyber criminals must than 3.5 million cryptojacking events in December 2018. still find it profitable or are biding their time until another This is still significant activity, despite the fact that surge in cryptocurrency values. It also shows that there are cryptocurrency values—which were at record-breaking other elements of cryptojacking that make it attractive to highs at the end of 2017 and played a major role in driving cyber criminals, such as the anonymity it offers and the low the initial growth of cryptojacking—dropped significantly in barriers to entry. It looks like cryptojacking is an area that will 2018. While this may have led some of the initial adopters of continue to have a role in the cyber crime landscape. cryptojacking to turn to other ways to make money, such as formjacking, it’s clear a significant cohort of cyber criminals Back to ToC ISTR 24 | February 2019 Year-in-Review 15 For the first time since 2013, we observed a decrease in ransomware activity during 2018, with the overall number of ransomware infections on endpoints dropping by 20 percent. ACTIVITY BEGINS TO DROP, WannaCry, copycat versions, and Petya, continued to inflate infection figures. When these worms are stripped out from BUT REMAINS A CHALLENGE the statistics, the drop in infection numbers is steeper: a 52 percent fall. FOR ORGANIZATIONS. However, within these overall figures there was one dramatic change. Up until 2017, consumers were the hardest hit by ransomware, accounting for the majority of infections. In 2017, the balance tipped towards enterprises, with the majority Another factor behind the drop in overall ransomware Additional targeted threats have also emerged. Activity of infections occurring in businesses. In 2018, that shift activity is Symantec’s increased efficiency at blocking involving Ryuk (Ransom.Hermes) increased significantly in accelerated and enterprises accounted for 81 percent of all ransomware earlier in the infection process, either via email late 2018. This ransomware was responsible for an attack in ransomware infections. While overall ransomware infections protection or using technologies such as behavioral analysis December where the printing and distribution of several well- were down, enterprise infections were up by 12 percent in or machine learning. Also contributing to the decline is known U.S. newspapers was disrupted. 2018. the fact that some cyber crime gangs are
Load more

Recommended publications
  • The 5 Things You Need to Do to Protect Yourself from Ransomware
    THE 5 THINGS YOU NEED TO DO TO PROTECT YOURSELF FROM RANSOMWARE ARE YOU RANSOMWARE-AWARE? In our recent survey* of more than RANSOMWARE is malware sent The 5 things you need to do to protect 3,000 people in the U.S. and Canada by criminals that encrypts your we learned that many are unaware of files and threatens to delete yourself from ransomware ransomware or how to defend against it. them if you don’t pay a ransom. By Stephen Cobb, ESET Senior Security Researcher ...said85% they would not pay the ransom fee and just risk losing their files, and Family photos and videos. Tax returns and other financial records. Business 15% said they would pay and take the chance that they may not even get documents. Think about everything that you keep on your computer. What their files back. would happen if it all was stolen from you? ...of42% people did not know if the internet That’s what a ransomware attack does. Criminals use this nasty breed security/antivirus they were using helped protect them from ransomware. of software to reach out over your internet connection and kidnap the contents of your computer, literally holding them for ransom. Ransomware silently encrypts all of your personal files, making them unreadable, and then demands that you send money to the criminal in order to restore them. ...of31% respondents NEVER backup their files. Those in the youngest age bracket (18-24) were the most likely age group to never back up files (35%). We surveyed over 3,000 people across the U.S.
    [Show full text]
  • 2020 Sonicwall Cyber Threat Report
    2020 SONICWALL CYBER THREAT REPORT sonicwall.com I @sonicwall TABLE OF CONTENTS 3 A NOTE FROM BILL 4 CYBERCRIMINAL INC. 11 2019 GLOBAL CYBERATTACK TRENDS 12 INSIDE THE SONICWALL CAPTURE LABS THREAT NETWORK 13 KEY FINDINGS FROM 2019 13 SECURITY ADVANCES 14 CRIMINAL ADVANCES 15 FASTER IDENTIFICATION OF ‘NEVER-BEFORE-SEEN’ MALWARE 16 TOP 10 CVES EXPLOITED IN 2019 19 ADVANCEMENTS IN DEEP MEMORY INSPECTION 23 MOMENTUM OF PERIMETER-LESS SECURITY 24 PHISHING DOWN FOR THIRD STRAIGHT YEAR 25 CRYPTOJACKING CRUMBLES 27 RANSOMWARE TARGETS STATE, PROVINCIAL & LOCAL GOVERNMENTS 31 FILELESS MALWARE SPIKES IN Q3 32 ENCRYPTED THREATS GROWING CONSISTENTLY 34 IOT ATTACK VOLUME RISING 35 WEB APP ATTACKS DOUBLE IN 2019 37 PREPARING FOR WHAT’S NEXT 38 ABOUT SONICWALL 2 A NOTE FROM BILL The boundaries of your digital empire are In response, SonicWall and our Capture Labs limitless. What was once a finite and threat research team work tirelessly to arm defendable space is now a boundless organizations, enterprises, governments and territory — a vast, sprawling footprint of businesses with actionable threat devices, apps, appliances, servers, intelligence to stay ahead in the global cyber networks, clouds and users. arms race. For the cybercriminals, it’s more lawless And part of that dedication starts now with than ever. Despite the best intentions of the 2020 SonicWall Cyber Threat Report, government agencies, law enforcement and which provides critical threat intelligence to oversight groups, the current cyber threat help you better understand how landscape is more agile than ever before. cybercriminals think — and be fully prepared for what they’ll do next.
    [Show full text]
  • Internet Security
    Internet Security Thompson Davis & Co. (TD & Co.) is committed to protecting the security and confidentiality of customer information. We use a combination of state-of-the-art technology and methods to help to protect the security of your online information. • Internet Communication Security Measures - Any sensitive personal information that you send through TD & Co. is held in a secured environment, protected by tools such as firewalls and/or database field encryption. Please do not send any sensitive or personal information over email. TD & Co. will not electronically send any personal financial information to you unless you request us to do so. • Protect Yourself from Fraudulent Web Sites - Personal information shared over the Internet can be used to commit fraud. One common method is for thieves to create a web site using a name that is similar to that of a reputable business, for instance by using a common misspelling of the company's name. The intent is to lure you into clicking onto the copycat web site and giving your personal information, including your account number and password. We caution you to make sure of whom you are dealing with over the Internet and to understand what will be done with your information. Always check that you have typed the correct web site address before entering personal information onto a site. • Personal Computer Security – Regardless of the security measures TD & Co. takes to protect your online financial information, if the computer or network you are using to access this data is not secure, you run the risk of your financial information being compromised.
    [Show full text]
  • Security Now! #664 - 05-22-18 Spectreng Revealed
    Security Now! #664 - 05-22-18 SpectreNG Revealed This week on Security Now! This week we examine the recent flaws discovered in the secure Signal messaging app for desktops, the rise in DNS router hijacking, another seriously flawed consumer router family, Microsoft Spectre patches for Win10's April 2018 feature update, the threat of voice assistant spoofing attacks, the evolving security of HTTP, still more new trouble with GPON routers, Facebook's Android app mistake, BMW's 14 security flaws and some fun miscellany. Then we examine the news of the next-generation of Spectre processor speculation flaws and what they mean for us. Our Picture of the Week Security News Update your Signal Desktop Apps for Windows & Linux A few weeks ago, Argentinian security researchers discovered a severe vulnerability in the Signal messaging app for Windows and Linux desktops that allows remote attackers to execute malicious code on recipient systems simply by sending a message—without requiring any user interaction. The vulnerability was accidentally discovered while researchers–amond them Juliano Rizzo–were chatting on Signal messenger and one of them shared a link of a vulnerable site with an XSS payload in its URL. However, the XSS payload unexpectedly got executed on the Signal desktop app!! (Juliano Rizzo was on the beach when the BEAST and CRIME attacks occurred to him.) After analyzing the scope of this issue by testing multiple XSS payloads, they found that the vulnerability resides in the function responsible for handling shared links, allowing attackers to inject user-defined HTML/JavaScript code via iFrame, image, video and audio tags.
    [Show full text]
  • Systematization of Vulnerability Discovery Knowledge: Review
    Systematization of Vulnerability Discovery Knowledge Review Protocol Nuthan Munaiah and Andrew Meneely Department of Software Engineering Rochester Institute of Technology Rochester, NY 14623 {nm6061,axmvse}@rit.edu February 12, 2019 1 Introduction As more aspects of our daily lives depend on technology, the software that supports this technology must be secure. We, as users, almost subconsciously assume the software we use to always be available to serve our requests while preserving the confidentiality and integrity of our information. Unfortunately, incidents involving catastrophic software vulnerabilities such as Heartbleed (in OpenSSL), Stagefright (in Android), and EternalBlue (in Windows) have made abundantly clear that software, like other engineered creations, is prone to mistakes. Over the years, Software Engineering, as a discipline, has recognized the potential for engineers to make mistakes and has incorporated processes to prevent such mistakes from becoming exploitable vulnerabilities. Developers leverage a plethora of processes, techniques, and tools such as threat modeling, static and dynamic analyses, unit/integration/fuzz/penetration testing, and code reviews to engineer secure software. These practices, while effective at identifying vulnerabilities in software, are limited in their ability to describe the engineering failures that may have led to the introduction of vulnerabilities. Fortunately, as researchers propose empirically-validated metrics to characterize historical vulnerabilities, the factors that may have led to the introduction of vulnerabilities emerge. Developers must be made aware of these factors to help them proactively consider security implications of the code that they contribute. In other words, we want developers to think like an attacker (i.e. inculcate an attacker mindset) to proactively discover vulnerabilities.
    [Show full text]
  • 1.Computer Virus Reported (1) Summary for This Quarter
    Attachment 1 1.Computer Virus Reported (1) Summary for this Quarter The number of the cases reported for viruses*1 in the first quarter of 2013 decreased from that of the fourth quarter of 2012 (See Figure 1-1). As for the number of the viruses detected*2 in the first quarter of 2013, W32/Mydoom accounted for three-fourths of the total (See Figure 1-2). Compared to the fourth quarter of 2012, however, both W32/Mydoom and W32/Netsky showed a decreasing trend. When we looked into the cases reported for W32/Netsky, we found that in most of those cases, the virus code had been corrupted, for which the virus was unable to carry out its infection activity. So, it is unlikely that the number of cases involving this virus will increase significantly in the future As for W32/IRCbot, it has greatly decreased from the level of the fourth quarter of 2012. W32/IRCbot carries out infection activities by exploiting vulnerabilities within Windows or programs, and is often used as a foothold for carrying out "Targeted Attack". It is likely that that there has been a shift to attacks not using this virus. XM/Mailcab is a mass-mailing type virus that exploits mailer's address book and distributes copies of itself. By carelessly opening this type of email attachment, the user's computer is infected and if the number of such users increases, so will the number of the cases reported. As for the number of the malicious programs detected in the first quarter of 2013, Bancos, which steals IDs/Passwords for Internet banking, Backdoor, which sets up a back door on the target PC, and Webkit, which guides Internet users to a maliciously-crafted Website to infect with another virus, were detected in large numbers.
    [Show full text]
  • Cyber Risks to Public Safety: Ransomware, September 2020
    CYBER RISK TO PUBLIC SAFETY: RANSOMWARE RANSOMWARE IMPACTS ON PUBLIC SAFETY If you are experiencing a ransomware attack, please go directly to page 3 for incident reporting resources Ransomware is a type of malicious software that encrypts information stored on hard drives or network drives and disrupts access to compromised devices or networks. Ransomware applications threaten to erase, lock, or otherwise damage compromised drives and data unless payment is provided. Ransomware programs often elicit a sense of urgency (e.g., a short deadline for payment) to encourage affected organizations to pay. Ransomware applications may threaten to escalate demands (e.g., increase payment) if payment is not provided quickly. Even when payments are provided, malicious actors may steal sensitive information, default on agreements to restore access, or conduct follow-up cyberattacks. While ransomware typically aims to extort money from organizations, malicious actors may also target public safety agencies or critical infrastructure with the goal of disrupting emergency response capabilities.1, 2 Figure 1. Recent Ransomware Attack Statistics Ransomware can have a significant impact on public safety operations, including services provided by fire, emergency medical services, law enforcement, emergency communication centers/public safety answering points, and other public safety partners. Disruptions to public safety operations directly and negatively impact the health and safety of the communities they serve. For example, delays dispatching fire and emergency medical services may lead to increased loss of life and property damage. Malicious actors may target public safety agencies specifically to exploit these negative outcomes, creating a strong sense of urgency to accommodate perpetrator demands. Public safety agencies are highly encouraged to plan and prepare for a ransomware event to mitigate service disruptions, conduct effective response operations, and ensure rapid recovery.
    [Show full text]
  • Internet Security
    Internet Security Personal It’s second nature for us to access the internet throughout the day. Our smartphones, laptops and desktops have essentially become an extension of ourselves. Just like a seatbelt in a car or a helmet on a bike, we all need some type of internet security to protect ourselves from potential hazards. Here are a few internet security tips to ensure you’re safety online. Shop Safely: Check for the padlock: It’s important when shopping online to make sure the site you’re on uses an SSL (secure sockets layer) certificate encryption. You can easily identify a site that uses this certificate by finding an image of a padlock in one of two places: either the status bar or the bottom of your web browser. This encryption ensures your credit card information, email or other personal information is protected from hackers. Phishing Protection: Periodically, you may receive fraudulent email messages appearing to come from a valid source. These emails are generally referred to as SPAM or 'Phishing' messages. To protect yourself and your family from phishing scams: • Be suspicious of any unsolicited emails asking for personal information. You should always be very suspicious when asked for personal information, especially when asked by companies or organizations that should already have such information. If you need to update your information call 1.800.746.4726 to speak to a Customer Service Representative. • Always report fraudulent or suspicious email. Reporting such instances will help get these "bad guys" tracked down. You can report any suspicious emails like these via the Spam button within webmail.
    [Show full text]
  • Internet of Things Botnet Detection Approaches: Analysis and Recommendations for Future Research
    applied sciences Systematic Review Internet of Things Botnet Detection Approaches: Analysis and Recommendations for Future Research Majda Wazzan 1,*, Daniyal Algazzawi 2 , Omaima Bamasaq 1, Aiiad Albeshri 1 and Li Cheng 3 1 Computer Science Department, Faculty of Computing and Information Technology, King Abdulaziz University, Jeddah 21589, Saudi Arabia; [email protected] (O.B.); [email protected] (A.A.) 2 Information Systems Department, Faculty of Computing and Information Technology, King Abdulaziz University, Jeddah 21589, Saudi Arabia; [email protected] 3 Xinjiang Technical Institute of Physics & Chemistry Chinese Academy of Sciences, Urumqi 830011, China; [email protected] * Correspondence: [email protected] Abstract: Internet of Things (IoT) is promising technology that brings tremendous benefits if used optimally. At the same time, it has resulted in an increase in cybersecurity risks due to the lack of security for IoT devices. IoT botnets, for instance, have become a critical threat; however, systematic and comprehensive studies analyzing the importance of botnet detection methods are limited in the IoT environment. Thus, this study aimed to identify, assess and provide a thoroughly review of experimental works on the research relevant to the detection of IoT botnets. To accomplish this goal, a systematic literature review (SLR), an effective method, was applied for gathering and critically reviewing research papers. This work employed three research questions on the detection methods used to detect IoT botnets, the botnet phases and the different malicious activity scenarios. The authors analyzed the nominated research and the key methods related to them. The detection Citation: Wazzan, M.; Algazzawi, D.; methods have been classified based on the techniques used, and the authors investigated the botnet Bamasaq, O.; Albeshri, A.; Cheng, L.
    [Show full text]
  • Technical Brief P2P Iot Botnets Clean AC Font
    Uncleanable and Unkillable: The Evolution of IoT Botnets Through P2P Networking Technical Brief By Stephen Hilt, Robert McArdle, Fernando Merces, Mayra Rosario, and David Sancho Introduction Peer-to-peer (P2P) networking is a way for computers to connect to one another without the need for a central server. It was originally invented for file sharing, with BitTorrent being the most famous P2P implementation. Decentralized file-sharing systems built on P2P networking have stood the test of time. Even though they have been used to share illegal pirated content for over 20 years, authorities have not been able to put a stop to these systems. Of course, malicious actors have used it for malware for quite a long time as well. Being able to create and manage botnets without the need for a central server is a powerful capability, mostly because law enforcement and security companies typically take down criminal servers. And since a P2P botnet does not need a central command-and-control (C&C) server, it is much more difficult to take down. From the point of view of defenders, this is the scariest problem presented by P2P botnets: If they cannot be taken down centrally, the only option available would be to disinfect each of the bot clients separately. Since computers communicate only with their own peers, the good guys would need to clean all the members one by one for a botnet to disappear. Originally, P2P botnets were implemented in Windows, but developers of internet-of-things (IoT) botnets do have a tendency to start incorporating this feature into their creations.
    [Show full text]
  • Annexe 2 – Le Marché De L'animation En 2018
    les études du CNC Le marché juin 2019 de l’animation en 2018 Cette étude a été réalisée conjointement par la Direction de l’audiovisuel et de la création numérique et la Direction des études, des statistiques et de la prospective. Les données sur l’emploi sont reprises de l’étude publiée par Audiens sur la production de films d’animation et d’effets visuels. Centre national du cinéma et de l’image animée 12, rue de Lübeck 75784 Paris cedex 16 Tél : 01.44.34.38.26 Fax : 01.44.34.34.55 www.cnc.fr Nicolas Besson, Sophie Cheynet, Benoît Danard, Sylvain Dandine, Sophie Jardillier, Laurence Peyré, Ivan Piccon, Cindy Pierron, Danielle Sartori, Jérôme Tyl, Linda Zidane. 2 Le marché de l’animation en 2018 Sommaire Synthèse .............................................................................................................................. 5 1. Cinéma ............................................................................................................................. 8 1.1. La production française de longs métrages d’animation ............................................. 9 1.2. La distribution............................................................................................................17 1.3. Les résultats des films d’animation en salles .............................................................25 1.4. Le public des films d’animation en salles ...................................................................30 2. Audiovisuel ....................................................................................................................34
    [Show full text]
  • Viewed Through the Prism of Clausewitzian Strategy
    CYBERWAR – VIEWED THROUGH THE PRISM OF CLAUSEWITZIAN STRATEGY Commodore Vishwanathan K Ganapathi, VSM Introduction In a globalised world where speed and reliability of information exchange is thesine qua non of technological advancement, the importance of cyberspace to a country is immeasurable. Knowledge and awareness, which derive from the degree to which cyberspace can be exploited for rapidly storing, manipulating and disseminating data, have become important measures of a nation’s power.1 As a consequence, the destruction or disruption of any of the constituent elements of cyberspace from a cyber attack would not just blunt a country’s ability to gain strategic advantage from its technological superiority but would gravely threaten its security as well. Depending on their intensity and complexity, cyber attacks can inflict a wide spectrum of damage ranging from less dangerous depredations like the theft of personal information and digital heists to highly destructive actions like the disruption of critical infrastructure- ‘the facilities, systems, sites and networks necessary for the delivery of essential services and functions’2 - industrial sabotage, subversion, data destruction or theft of sensitive information. It is the latter category, most often believed to be orchestrated for political reasons by a potential adversary, which has transformed cyber attacks from being perceived as a trivial problem befitting address by an IT professional to one that merits the focus of policy planners and strategists alike.3 The concerns of governments about the gravity of the threat from cyber attacks stem from the certitude that easily accessible destructive technologies are being exploited by state and non-state actors alike to launch attacks even against powerful adversaries several thousand miles away.
    [Show full text]