FedCIRC Incident Totals

 

From May 1998 through September 1998, the number of incidents handled by FedCIRC, CERT/CC, Department of Energy's Computer Incident Advisory Capability (CIAC) and NASA's Automated Systems Incident Response Capability (NASIRC) in which government sites were involved was 1110: 174 were attempted intrusions, 11 were denial of service attacks, 66 were intrusions, 20 were malicious code incidents, 14 were misuse incidents, 741 were probes/scans, and 84 were unauthorized access. The ripple effect of these incidents, however impacted over 145,000 .gov sites/hosts.

In Fiscal Year 1997 (October 1996 - September 1997), 244 incidents were handled by FedCIRC, CERT/CC, and CIAC. In Fiscal Year 1998 (October 1997 - September 1998), 1,683 incidents were handled by the same three organizations and NASIRC. A break down of incident types for all of Fiscal year 1998 were not available. The chart below depicts the percentage of incident types in all of FY97 and the last five months of FY98.

Summary of .gov Incidents

 

The following table provides detail about the incidents handled by FedCIRC, CERT/CC, CIAC and NASIRC. The incidents occurred between May 1998 through September 1998. The table is just one view of information provided by the incident teams. The teams were asked to provide the following sanitized data:

The data provided by the teams was entered into a Microsoft 97 Access database. The database is available for public use. It can be obtained at the URL:

http://csrc.nist.gov/topics/incidentNIST/statsdatabase.mdb

Note: Due to a lack of resources, NIST is unable to assist users with querying the database or converting the databse into another format.

 

Incident Totals

May - September 1998

 Incident Type Month Number of Incidents Number of Sites Number of Hosts Number of .Gov Hosts
Attempted Intrusion May 1998 1 1 19 19
Denial of Service May 1998 2 2 101 2
Malicious Code May 1998 4 4 4 2
Misuse May 1998 1 1 150 1
Probes/Scans* May 1998 116 116 18,975 144
Unauthorized Access May 1998 18 120 10,039 41
   May 1998 Totals 142 243 19,249 209
 Attempted Intrusion June 1998 38 40 645 140
Denial of Service June 1998 1 2 2 1
Intrusion June 1998 22 134 290 38
Malicious Code June 1998 3 3 3 1
Misuse June 1998 2 2 2 2
Probes/Scans* June 1998 151 323 136,565 4,360
Unauthorized Access June 1998 18 403 650 304
   June 1998 Totals 235 907 138,157 4,846
Attempted Intrusion July 1998 37 37 51,170 38
Denial of Service July 1998 5 63 68 17
Intrusion July 1998 21 32 115 32
Malicious Code July 1998 5 5 5 5
Misuse July 1998 3 3 3 3
Probes/Scans* July 1998 179 218 86,612 2,663
Unauthorized Access July 1998 17 431 1,096 83
   July 1998 Totals 267 789 139,066 2,808
Attempted Intrusion August 1998 37 37 46,722 36
Intrusion August 1998 11 17 26 15
Malicious Code August 1998 5 5 5 4
Misuse August 1998 4 4 103 4
Probes/Scans* August 1998 155 120,905 364,067 324
Unauthorized Access August 1998 16 1,681 2,440 78
   August 1998 Totals 228** 122,649 413,363 461
Attempted Intrusion September 1998 61 59 44,444 59
Denial of Service September 1998 3 4 4 3
Intrusion September 1998 12 15 15 14
Malicious Code September 1998 3 5 5 1
Misuse September 1998 4 4 104 5
Probes/Scans* September 1998 140 172 122,583 446
Unauthorized Access September 1998 15 114 780 40
   September 1998 Totals 238** 373 167,935 568
*The probes/scans listed for each month is a low-end approximation. Not all probes/scans were reported to NIST by the four contributing organizations.

**In the month of August there was one incident not listed in the database. In the month of September there were seven incidents not listed in the database.

 
Previous Page  Back to Incident Handling Homepage
CSRC Homepage
Please send comments or suggestions to webmaster-csrc@nist.gov
Last Modified: June 24, 2014.