All statistics were obtained from Kaspersky Security Network – a complex distributed infrastructure that provides intelligently processing of cybersecurity-related data streams. Data is received from ICS computers protected by Kaspersky Lab solutions, from users who have voluntarily agreed to share this data with KSN by accepting the corresponding agreement. Data sent to Kaspersky Lab by users is not attributed to a specific individual and is anonymized wherever possible.
We define attacked computers are those on which Kaspersky Lab security solutions were triggered during the reporting period. When calculating percentages of machines attacked, we use the ratio of unique computers attacked to all ICS computers from which Kaspersky Lab ICS CERT received anonymized information during the reporting period.