China is the world's biggest victim of cybercrime according to the nation's Computer Emergency Response Team (CNCERT).
According to its 2011 Internet Security Perception Report (pdf), 8.9 million computers in China were attacked by 47,000 foreign IP addresses .
Most attacks originated from computers in the United States, Japan and South Korea, however those computers may form part of botnets with perpetrators located elsewhere.
Foreign hackers compromised 1116 Chinese websites, according to the report, while 95.8 per cent of phishing websites that targeted Chinese domestic banks came from overseas attackers.
The number of phishing sites targeting Chinese organisations nearly tripled compared to 2010.
More than 100 vulnerabilities were reported in China's National Vulnerability Database affecting industrial systems, a tenfold increase since 2010.
The CERT also reported 6249 malicious mobile programs had been discovered in 2011, more than double the year earlier.
But CNCERT said there were no major network security incidents, and attacks against government websites had declined.
Sophos senior security advisor Chester Wisniewski criticised the claim that China was the largest victim of cybercrime.
"At SophosLabs we detect more than 20,000 new infected URLs, not to mention receiving more than 100,000 new malicious code samples every single day," Wisniewski said. "Compare this to 1116 Chinese websites 'tampered with by overseas-based hackers' last year."
He pointed to a CNCERT weekly report that indicates 90 per cent of infected Chinese computers contained the Conficker worm.
Copyright © SC Magazine, Australia
Issue: 329 | July 2014
Access CRN's extensive online resources including; email bulletins, community discussions and unique online news.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can log on to the CRN website or start posting comments on articles.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain '@crn.com.au' to your white-listed senders.