Internet Infrastructure Review (IIR) Vol.35
June 20, 2017

Download All[6.45MB]

• Executive Summary[238KB]
• Infrastructure Security "The Struts 2 Vulnerability CVE-2017-5638"[5.2MB]

  This volume covers the period of time from January 1 through March 31, 2017. In this period, a number of hacktivism-based attacks were once again carried out by Anonymous and other groups, and there were frequent incidents that included many DDoS attacks, information leaks caused by unauthorized access, and website defacements. And in our focused research for this period, we will present information from the surveys we have conducted during this period regarding the Struts 2 vulnerability CVE-2017-5638,as well as dynamic analysis of macOS ransomware (Patcher) using monitor.app.

• Messaging Technology "Latest Trends in Spam"[538KB]

  In this article, we report on trends in the ratio of spam over the course of a year, as well as topics related to spam that occurred during this period. We will also discuss the trends and penetration in Japan for DMARC and related technologies, which are effective anti-spam solutions.