Increase in Virus and Worm Attacks

The observed increase in reported virus and worm attacks on computer networks is a result of a combination of factors, not just one.

• Actual Increase: There has been a genuine rise in the number of virus and worm attacks due to several reasons. The widespread growth of the internet, as noted by surveys like the one reaching 109 million hosts (Rutkowski T Internet survey reaches 109 million host level), provides a larger attack surface. Furthermore, the increasing sophistication of malware, such as the 'Code Red' worm exploiting buffer overflows (CERT® Advisory CA-2001–19), allows for more rapid and widespread infections. The motives for creating and distributing such malware also contribute to this increase, ranging from financial gain to disruption, as seen with viruses like 'I LOVE YOU' (Hopper I Destructive ‘I LOVE YOU’ Computer virus strikes worldwide).

• More Reporting: Improved infrastructure for reporting security incidents has led to a higher volume of recorded attacks. Organizations like CERT (Computer Emergency Response Team) and enhanced corporate security protocols make it easier to log and share information about breaches. As computer network security gained prominence, the mechanisms for tracking and documenting threats became more robust. This improved data collection contributes to the perception of an increase, even if the actual rate of attacks only slightly rises.

• More Security Awareness: Increased awareness among individuals and organizations plays a role in the higher reported numbers. When users are more knowledgeable about phishing attempts, suspicious attachments, and safe browsing practices, they are more likely to identify and report potential infections or suspicious activities. This heightened vigilance means that fewer incidents go undetected and unreported. Resources like the 'Guide to Computer Network Security' by Joseph Migga Kizza (https://books.google.com.gh/books?id=sbA_AAAAQBAJ) emphasize the importance of user education in a comprehensive security strategy.