From May 1998 through September 1998, the number of incidents handled by FedCIRC, CERT/CC, Department of Energy's Computer Incident Advisory Capability (CIAC) and NASA's Automated Systems Incident Response Capability (NASIRC) in which government sites were involved was 1110: 174 were attempted intrusions, 11 were denial of service attacks, 66 were intrusions, 20 were malicious code incidents, 14 were misuse incidents, 741 were probes/scans, and 84 were unauthorized access. The ripple effect of these incidents, however impacted over 145,000 .gov sites/hosts.
In Fiscal Year 1997 (October 1996 - September 1997), 244 incidents were handled by FedCIRC, CERT/CC, and CIAC. In Fiscal Year 1998 (October 1997 - September 1998), 1,683 incidents were handled by the same three organizations and NASIRC. A break down of incident types for all of Fiscal year 1998 were not available. The chart below depicts the percentage of incident types in all of FY97 and the last five months of FY98.
The following table provides detail about the incidents handled by FedCIRC, CERT/CC, CIAC and NASIRC. The incidents occurred between May 1998 through September 1998. The table is just one view of information provided by the incident teams. The teams were asked to provide the following sanitized data:
http://csrc.nist.rip/topics/incidentNIST/statsdatabase.mdb
Note: Due to a lack of resources, NIST is unable to assist users with querying the database or converting the databse into another format.
| Incident Type | Month | Number of Incidents | Number of Sites | Number of Hosts | Number of .Gov Hosts |
| Attempted Intrusion | May 1998 | 1 | 1 | 19 | 19 |
| Denial of Service | May 1998 | 2 | 2 | 101 | 2 |
| Malicious Code | May 1998 | 4 | 4 | 4 | 2 |
| Misuse | May 1998 | 1 | 1 | 150 | 1 |
| Probes/Scans* | May 1998 | 116 | 116 | 18,975 | 144 |
| Unauthorized Access | May 1998 | 18 | 120 | 10,039 | 41 |
| May 1998 Totals | 142 | 243 | 19,249 | 209 | |
| Attempted Intrusion | June 1998 | 38 | 40 | 645 | 140 |
| Denial of Service | June 1998 | 1 | 2 | 2 | 1 |
| Intrusion | June 1998 | 22 | 134 | 290 | 38 |
| Malicious Code | June 1998 | 3 | 3 | 3 | 1 |
| Misuse | June 1998 | 2 | 2 | 2 | 2 |
| Probes/Scans* | June 1998 | 151 | 323 | 136,565 | 4,360 |
| Unauthorized Access | June 1998 | 18 | 403 | 650 | 304 |
| June 1998 Totals | 235 | 907 | 138,157 | 4,846 | |
| Attempted Intrusion | July 1998 | 37 | 37 | 51,170 | 38 |
| Denial of Service | July 1998 | 5 | 63 | 68 | 17 |
| Intrusion | July 1998 | 21 | 32 | 115 | 32 |
| Malicious Code | July 1998 | 5 | 5 | 5 | 5 |
| Misuse | July 1998 | 3 | 3 | 3 | 3 |
| Probes/Scans* | July 1998 | 179 | 218 | 86,612 | 2,663 |
| Unauthorized Access | July 1998 | 17 | 431 | 1,096 | 83 |
| July 1998 Totals | 267 | 789 | 139,066 | 2,808 | |
| Attempted Intrusion | August 1998 | 37 | 37 | 46,722 | 36 |
| Intrusion | August 1998 | 11 | 17 | 26 | 15 |
| Malicious Code | August 1998 | 5 | 5 | 5 | 4 |
| Misuse | August 1998 | 4 | 4 | 103 | 4 |
| Probes/Scans* | August 1998 | 155 | 120,905 | 364,067 | 324 |
| Unauthorized Access | August 1998 | 16 | 1,681 | 2,440 | 78 |
| August 1998 Totals | 228** | 122,649 | 413,363 | 461 | |
| Attempted Intrusion | September 1998 | 61 | 59 | 44,444 | 59 |
| Denial of Service | September 1998 | 3 | 4 | 4 | 3 |
| Intrusion | September 1998 | 12 | 15 | 15 | 14 |
| Malicious Code | September 1998 | 3 | 5 | 5 | 1 |
| Misuse | September 1998 | 4 | 4 | 104 | 5 |
| Probes/Scans* | September 1998 | 140 | 172 | 122,583 | 446 |
| Unauthorized Access | September 1998 | 15 | 114 | 780 | 40 |
| September 1998 Totals | 238** | 373 | 167,935 | 568 |
**In the month of August there was one incident not listed in the database. In the month of September there were seven incidents not listed in the database.
Return to Previous Page
Return to Incident Handling Homepage
Return to CSRC Homepage