Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 What will be the Coming Super Worms and Viruses By Alan S H Lam.

Published byRoberta Miller Modified over 8 years ago

Similar presentations

Presentation on theme: "1 What will be the Coming Super Worms and Viruses By Alan S H Lam."— Presentation transcript:

1 1 What will be the Coming Super Worms and Viruses By Alan S H Lam

2 2 Outlines Review Prediction Threat Worst case scenario What can we do

3 Alan S H Lam3 The Coming Super Worms and Viruses What will be the coming super computer worms and viruses? What can we do?

4 Alan S H Lam4 Review Worms and Viruses Malicious code Exploit weaknesses Replicate themselves and/or attach themselves to other programs Spread from system to system

5 Alan S H Lam5 Review (2) Worms Spread with no human intervention once started Viruses Require action from user before spreading

6 Alan S H Lam6 Review (3) Some have both worm and viruse properties, e.g. Nimda Some may even work with spammers hand in hand, e.g. SoBig

7 Alan S H Lam7 Review (4) Spread faster and faster Outbreak dateNameHosts infected in the first 24 hours Aug 2001Code Red 265,000 Jan 2003Slammer 55,000 Aug 2003Blaster 336,000 Source: CERT

8 Alan S H Lam8 Review(5) Source: CERT

9 Alan S H Lam9 Review (6) Source: CERT

10 Alan S H Lam10 Review(7) Long lasting capacity Far-reaching Steady-state after initial surge

11 Alan S H Lam11 Review (8) Source: CERT

12 Alan S H Lam12 Review (9) Tendency to Zero-Day Exploit Code NameWorm/virus released Vulnerability discovered and patch released Code RedJuly 2001June 2001 SlammerJan 2003July 2002 BlasterAug 2003July 2003 aim.exeNov 2003No information from anti-virus vendor when discovered.  WinTcpIp.exeNov 2003No information from anti-virus vendor when discovered 

13 Alan S H Lam13 Review (10): Impact DateCode NameWorldwide Economic Impact (USD) 8-9/2003Blaster$500 million 2003Slammer$1.00 billion 2001Nimda$635 million 2001Code Red$2.62 billion 2001SirCam$1.15 billion 2000Love Bug$8.75 billion 1999Melissa$1.10 billion 1999ExploreZip$1.02 billion 20019/11 attack to WTC$15.8 billion (to restore IT and communication capabilities Source: Computer Economics

14 Alan S H Lam14 Review (11): Sobig.F Source: CERT

15 Alan S H Lam15 Prediction Characteristic of the super worms and viruses High efficiency spreading High penetration Far reaching Across different platforms Infect via numerous vectors and vulnerabilities Highly stealth and anti-forensics Stay silently for long time Cover up activities Difficult to decrypt or reverse engineering

16 Alan S H Lam16 Prediction (2) Highly distributed and coordinated Exchange information with master and peers periodically Coordinate attack, propagation or mutation Ability to launch attacks and cause serious impact to Internet Infrastructure Deny of Service (DoS) attack to top level DNS servers and major IX core routers Sending spam or forged mails Release confidential information to the public Spoof web page to release Trojan horse program

17 Alan S H Lam17 Prediction (3) Highly intelligent, automatic, and self-decisive Self-adjust or mutate according to current condition Decide how to carry out its mission when loses contact with its master or peers Elect new district leader

18 Alan S H Lam18 Threat Over 171 million computers connected Grow at rapid pace Users with different knowledge and background Computer system become more and more sophisticated and complicated Bandwidth and machine capability keep rising Vendor turn off security features in default setting Put product to market without fully tested End-users disable/bypass security functions deliberately

19 Alan S H Lam19 Worst case scenario Zero-day exploit Attack preparation Complete blackout Recurrence Chaos

20 Alan S H Lam20 What can we do What How We need co-operation from all sectors

21 Alan S H Lam21 What can we do (2) High management level Security is no longer “ add-on feature ” or “ option ” Resource for security should be in high priority System Administrators Follow the best practice: risk assessment; security policy and security audit Keep up with current security knowledge and skill Educate users to raise their security awareness

22 Alan S H Lam22 What can we do (3) Vendors Products should be fully tested Do not assume user has certain security knowledge or awareness Do not lower the security level in default setting Government Encourage high quality security product Allocate resource to support security researches in Universities Cooperate with non-profit organization to offer security training to the public

23 Alan S H Lam23 What can we do (4) Institutes house Internet Infrastructure Have contingency and backup plan in case under serve attack Keep monitoring of any unusual activities End users Protect their systems well no matter how trivial and unimportant they are Use consumer power to choose product with high quality security feature Raise security awareness from time to time

24 Alan S H Lam24 Will they come? When will the super worms and viruses come? I don ’ t know but we better prepare for that. Thank You

Download ppt "1 What will be the Coming Super Worms and Viruses By Alan S H Lam."

Similar presentations

© Ravi Sandhu www.list.gmu.edu Introduction to Information Security Ravi Sandhu.

© Ravi Sandhu Introduction to Information Security Ravi Sandhu.
(Distributed) Denial of Service Nick Feamster CS 4251 Spring 2008.

(Distributed) Denial of Service Nick Feamster CS 4251 Spring 2008.
Let’s Talk About Cyber Security

Let’s Talk About Cyber Security
Code-Red : a case study on the spread and victims of an Internet worm David Moore, Colleen Shannon, Jeffery Brown Jonghyun Kim.

Code-Red : a case study on the spread and victims of an Internet worm David Moore, Colleen Shannon, Jeffery Brown Jonghyun Kim.
Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.

Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.
By Hiranmayi Pai Neeraj Jain

By Hiranmayi Pai Neeraj Jain
(n)Code Solutions Presentation on the importance of a Secure Technology Infrastructure.

(n)Code Solutions Presentation on the importance of a Secure Technology Infrastructure.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.

Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.
1 Pertemuan 6 Points of Exposure Matakuliah:A0334/Pengendalian Lingkungan Online Tahun: 2005 Versi: 1/1.

1 Pertemuan 6 Points of Exposure Matakuliah:A0334/Pengendalian Lingkungan Online Tahun: 2005 Versi: 1/1.
University of WashingtonComputing & Communications Recent Computer Security Incidents Terry Gray Director, Networks & Distributed Computing 03 October.

University of WashingtonComputing & Communications Recent Computer Security Incidents Terry Gray Director, Networks & Distributed Computing 03 October.
Welcome to EECS 354 Network Penetration and Security.

Welcome to EECS 354 Network Penetration and Security.
Protecting Yourself Online. VIRUSES, TROJANS, & WORMS Computer viruses are the common cold of modern technology. One e-mail in every 200 containing.

Protecting Yourself Online. VIRUSES, TROJANS, & WORMS Computer viruses are the "common cold" of modern technology. One in every 200 containing.
Threats and Attacks Principles of Information Security, 2nd Edition

Threats and Attacks Principles of Information Security, 2nd Edition
100% Security “ The only system which is truly secure is one which is switched off and unplugged, locked in a titanium lined safe, buried in a concrete.

100% Security “ The only system which is truly secure is one which is switched off and unplugged, locked in a titanium lined safe, buried in a concrete.
Internet Quarantine: Requirements for Containing Self-Propagating Code David Moore et. al. University of California, San Diego.

Internet Quarantine: Requirements for Containing Self-Propagating Code David Moore et. al. University of California, San Diego.
CYBER CRIME AND SECURITY TRENDS

CYBER CRIME AND SECURITY TRENDS
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.

R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Similar presentations

Ads by Google