2011年2月网络安全监测数据分析

Network Security Monitoring Data Analysis Report of 2011 February

根据CNCERT监测结果,2011年2月,我国境内僵尸网络受控主机数量有所下降,境内木马受控主机和网页篡改数量略有增长。①恶意代码活动情况方面,我国大陆地区约有66万个IP地址对应的主机被木马程序控制,较2010年1月增长25;我国大陆地区约有5.8万个IP地址对应的主机被僵尸程序控制,较1月下降60;②网站安全方面,我国大陆地区被篡改网站数量为4796个,较1月下降14,其中被篡改政府网站数量为288个,较1月的337个下降15。

According to CNCERT,the number of IP address including dynamic IP of computers embedded with Bot code has decreased a lot during February 2011 in Chinese mainland discovered via sample monitoring,however,the number of IP address embedded with Trojan and the number of defaced website have increased to some extent.The main indicators of the nationwide internet security situation show as below：In terms of malicious codes,we discovered about 660,000 IPs in Chinese mainland been controlled by Trojan,increased by 25 %,compared with last month;and about 58,000 IPs in Chinese mainland been controlled by Botnet,decreased by 60%;In terms of website security,the number of defaced websites has decreased by 14 % with the number 4,796,compared with last month.Among the 4,796 defaced websites,about 288 websites ended with gov.cn,decreased by 15%（note：the number of last month is 554）,that is to say above 6.02% of the China government websites have been defaced with the ratio of last month 9.23%.