Skip navigation
Skip navigation
You are using an outdated browser. Please upgrade your browser.

NB The complete Q3 Internet Risk Impact Summary Report is available for free download on Internet Security Systems' Web site at

Internet Security Systems' X-Force Releases Q3 2002

Internet Risk Impact Summary Report

~ Report Reveals 65 Percent Increase in Vulnerabilities Compared to Q3 2001, Persistent Worms Compound Security Issues, Breakouts of Security Events and More ~

ATLANTA, Ga. - October 2, 2002 - Internet Security Systems (ISS) (Nasdaq: ISSX), today released the Internet Risk Impact Summary Report (IRIS) for the third quarter of 2002, which reveals a 65 percent increase the vulnerabilities reported in computer systems and programs compared to third quarter of 2001. The report breaks down the number of security events by day and shows on average, 21 percent of security events occurred during the weekend throughout the quarter typically when network administration centers generally operate with a reduced staff. The report also reveals that new vulnerabilities have grown at a rate of 8.57 percent from Q1 to Q3, while the growth of new hybrid threats has increased 29.46 percent.

Internet Security Systems' IRIS is the only quarterly report to provide cyber attack trends based on the industry's largest number of monitored security devices, actual attacks detected and researched vulnerabilities.

"The specific mix of threats seen in this reporting period continues to evolve, although the risk has remained consistent, we are looking at a trend that focuses on the compound risk factors that have culminated from a lack of vigilance for hybrid threats," said Chris Rouland, director of Internet Security Systems' X-Force™ security research and knowledge services organization. "One area we are watching closely is the aggressive nature of recent worms, which are both persistent and increasingly sophisticated in their ability to evade traditional network perimeter and antivirus defenses."

Highlights of Report Findings

· Internet Threat Outlook - Aggressive and Persistent Worms: Klez, Spida, Nimda and Slapper, continue to hit systems with intensity and have longer than expected life spans as observed in the following examples:

- Linux worm known as Slapper spread rapidly throughout the Internet and affected 20,000 servers within 72 hours

- Nimda worm continued to spread across the Internet and has taken approximately nine months to reduce its frequency by only 44.5 percent - Q1 2002: 3,500 hits per hour; Q2: 2,223 hits per hour; Q3 2002: 1,076 hits per hour

· Daily Security Events: An average 21 percent of security events occurred over the weekends, and Tuesdays showed the highest rate of security events throughout the quarter, registering an average 297,379 on that day. See page four in the IRIS report for additional days.

· Vulnerabilities and Hybrid Threats: In Q3 2002, 583 new vulnerabilities were uncovered and documented by the X-Force, a 65 percent increase compared to Q3 2001, which reported 383 vulnerabilities.

- From Q1 to Q3, new vulnerabilities have grown at a rate of 8.57 percent, while the growth of new hybrid threats has increased 29.46 percent

- Vulnerabilities out number hybrid threats 1,730 to 393 for Q1 through Q3

- The ratio of new hybrid threats to new vulnerabilities for each quarter increased: Q1: 21 percent, Q2: 22 percent, and Q3: 25 percent

· AlertCon™ Risk Levels: Comparing Q2 to Q3 2002, the daily risk levels have remained virtually the same. ISS observed 53 days at AlertCon 1, 28 days at AlertCon 2, and three days at AlertCon 3 due to the exploit of vulnerabilities in OpenSSL by the Linux Slapper Worm. ISS experienced no days at AlertCon 4.

The complete Q3 Internet Risk Impact Summary Report is available for free download on Internet Security Systems' Web site at For a white paper on hybrid threats, please go to

X-Force Internet Risk Impact Summary Report Methodology

Developed by the X-Force, Internet Security Systems' world-leading security research organization and core protection knowledge base, each IRIS report includes statistical data and trend analysis derived from examining more than 16 million security events from 400 network and server-based intrusion detection sensors. This data was gathered on a 24/7 basis from June 25 to September 27, 2002. The sample is international from four continents and represents all major industries including banking/insurance, telecommunications, manufacturing/retail/food, entertainment, healthcare, government, utilities, transportation/aviation, and information technology. In operation since 2001, Internet Security Systems' X-Force Global Threat Operations Center (GTOC) based in Atlanta analyzes the security data for this report gathered from ISS' five security operations centers (SOCs) located around the world. The IRIS report also includes X-Force laboratory research, and industry information gathered from interaction with top government, industry, and academic sources to detail the most accurate and holistic Internet threat assessment in the industry.

About Internet Security Systems' X-Force Protection Services

Internet Security Systems' X-Force is a world-leading organization of security experts dedicated to researching, alerting and educating customers, partners and the public on the state of global Internet threats and attacks. The X-Force identifies, assesses, and measures the severity of Internet threats and vulnerabilities and monitors security incidents through its leading managed security services. X-Force Protection Services also includes Internet Security Systems' consulting and professional services offerings - security assessments, penetration testing and emergency response services. X-Force findings accompanied by technical recommendations and protection strategies as well as other industry alerts and advisories are available through Internet Security Systems' online security center

Located at Internet Security Systems' headquarters in Atlanta, the Internet Security Systems X-Force Global Threat Operations Center (GTOC) globally coordinates security threat data, and disseminates critical countermeasure intelligence worldwide. The GTOC hosts the Internet Security Systems Atlanta Security Operations Center, providing 24/7 security monitoring and management. The X-Force Daily AlertCon, a measure of the current and forecasted Internet threats, is available on the ISS web site Determined by the X-Force, the AlertCon level (1-4) provides a real-time indication of the Internet threat environment. The daily AlertCon level allows a customer to quickly determine the prevailing Internet threat condition and review critical security details.

About Internet Security Systems, Inc.

Founded in 1994, Internet Security Systems (ISS) (Nasdaq: ISSX) is a pioneer and world leader in software and services that protect corporate and personal information from an ever-changing spectrum
of threats and misuse. As organizations increasingly move business operations online, the number and sophistication of threats to the networks, servers and desktops that empower these initiatives also
continue to escalate. Internet Security Systems' solutions dynamically detect, prevent and respond to these threats, making Internet Security Systems the trusted security provider for more
than 10,000 corporate customers. These include all of the Fortune 50, the top 10 largest U.S. securities firms, 10 of the world's largest telecommunications companies and major agencies and
departments within U.S. local, state and federal governments. Headquartered in Atlanta, GA, Internet Security Systems has additional operations throughout the Americas, Asia, Australia,
Europe and the Middle East. For more information, visit the Internet Security Systems site at or call 0800 085 2976.

For more information on Internet Security Systems, please contact:

Richard Millar

UK/Ireland Director of Sales and Marketing

Internet Security Systems Ltd.

Tel: +44 (0)20 7653 9191

UK/Ireland press contacts for Internet Security Systems are:


Jane Lee


Tel: +44 (0)1273 470199


Andrew Smith

Object Marketing Ltd.

Tel: +44 (0)20 8762 9292

Internet Security Systems, X-Force and AlertCon are trademarks of Internet Security Systems, Inc. All other companies and products mentioned are trademarks and property of their respective owners.

This press release was distributed by ResponseSource Press Release Wire on behalf of Object Marketing in the following categories: Consumer Technology, Personal Finance, Business & Finance, Computing & Telecoms, for more information visit