Computer-Crime related statistics

Here I collect some statistics related to computer crime and the like.

Web Defacements

I have aggregated data from Attrition.org and Zone-H to chart developments in web defacements in the '.de' TLD. The upper graph shows defacements per month with the red line beeing the six month average. Results show a steep incrase in Quantity while Quality (defacement of high-profile Sites) is decreasing. The blue line indicates the total number od .de - domains.
The lower graph shows the actual risk of beeing tefaced in this particular month.

The most spectacular defacements where early on. In 1998 The Chaos Computer Club (in fact it wasn't tecnically defaced: their DNS server was 0wned and www.ccc.de was redirected) and two major TV stations where defaced. In 2000 thre was the last spectacular defacement hitting germanys biggest hosting Provider and its "high security computing center".

This graph as EPS, PS, SVG, PNG and the raw data.

This graph as EPS, PS, SVG, PNG and the raw data.

Success / Detection / Reporting of Computer Penetrations

DISA did a series of penetration tests on DoD systems in the 90ies. On 38.000 attempts, 24,700 penetrations were successfull, of these 988 were detected and of these 268 where reported. This means roughly they had a relation of 1:100 on penetrations of military systems.
I have created a drawing keeping the correct scale between the different arrows.

This graph as EPS, PNG , PDF and OmniGraffle File.

Penetration Attempts on http://md.hudora.de/

I track obvious penetration attempts to a machine running a httpd daemon with a single domain and not nuch else. Th upper graph shows some detail while the lower graph is more aggregated and serves as a clear display of activity by automated network attack agents (e.g. Code red).

The green line are buffer overflows, yellow is Unicode traversal, root are attempts to reexploit previous penetration artifacts (root.exe), magenta are attempts to exploit misconfigurations or previous penetration artifacts (/c/ /d/) and blue are mail relaying attempts (formmail).

This graph as EPS, PS, SVG, PNG and the raw data.

This graph as EPS, PS, SVG, PNG and the raw data.

Size of the "German" Internet

I try to keep track of Internet Size - whatever that means - with special regard for germany. Here are some resultes:

This graph as EPS, PS, SVG, PNG, PDF and the raw data.

Main-sources: @facts, DENIC

ZaRD

The Zentrale anlassunabhängige Recherche in Datennetzen (ZaRD) is a Project by the german federal police agency - Bundeskriminalamt (BKA) searching the Internet for crimes. The BKA was so kind to give me some statistical data on the work of ZaRD.
See it here. (in german)

PKS

The Federal Polica Agency - Bundeskriminalamt (BKA) publishes every year official crime statistics known as "Polizeiliche Kriminalstatistik (PKS)". I have refined the data on Computer Crime and the like.
See it here. (in german)

All of the drawings/graphs can be used freely as long as you doo proper attribution citing the URL where you got them from. Noticing me if you use them yould be nice. Feel free to ask for translations.