I first noticed and began planning for seasonal effects in cyber activities back in the early nineties. In those days I was defending the networks of Sun Microsystems, worldwide; but the major source of seasonal surges was close to home.
We could depend on a bump in the rate of both attacks and vulnerability disclosures as soon as high schools in the U.S. let out for summer vacation. The increase started at the end of June, peaked in late July, tailed off in August, and dropped like a stone in early September. Later in the year we would see another intense peak around Christmas, lasting through the New Year’s Day holiday. There was often a perceptible rise over Easter week as well. [Read more…]