Presentation is loading. Please wait.

Presentation is loading. Please wait.

Tackling Cyber threats together

Published byTobias French Modified over 6 years ago

Similar presentations

Presentation on theme: "Tackling Cyber threats together"— Presentation transcript:

1 Tackling Cyber threats together
Sean O’Neil

2 Areas of discussion (in brief)
What is Cyber Crime? Local viewpoint, possible threats Recent intelligence and events Advice on how to protect yourselves.

3 The adopted definition of Cyber Crime is:
What is Cyber Crime? The adopted definition of Cyber Crime is: Cyber Dependent Crimes, where a digital system is the target as well as the means of attack.  These include attacks on computer systems to disrupt IT infrastructure, and stealing data over a network using malware (the purpose of the data theft is usually to commit further crime). Cyber Enabled Crimes. ‘Existing’ crimes that have been transformed in scale or form by their use of the Internet.  The growth of the Internet has allowed these crimes to be carried out on an industrial scale. The use of the Internet to facilitate drug dealing, people smuggling and many other 'traditional' crime types. Recent survey of reported crime had 96% as cyber element – either computers used to facilitate or used in commission. Consdier the number of times, telephones/computers are used to research, facilitate crimes or used as a means of communication.

4 What is Cyber Crime?

5 Crimes 42615 crimes recorded 2986 Burglary offences 688 Robbery offences 3515 Cyber/fraud reports in 6 months (10% of reality). Statistics therefore may suggest Cyber crime/frauds are largest number of crime in society Highest reported incidents Online fraud Mandate Ransomware Romance frauds. Simply not being reported: Phishing s / data loss/ DDOS / internal loss by theft/fraud

6 Theft triangle

7 POTENTIALLY ALL OF THEM!
Which of these is a cyber threat? Smart fridge anecdote… Own staff/insider Chip in hand Social engineering. Frying pan USB stick in car park POTENTIALLY ALL OF THEM!

8 But what are some of the biggest threats?
•Insider Threat (theft/fraud/data breach) •Malware by phishing attacks •Data Breach DDoS •Social Engineering leading to scams Theft/fraud by Customers or vendors. Ultimately it depends on the business, how it is set up, the infrastructure and the policies and procedures, and protect mechanisms in place. Does your BCP include no use of IT or loss of data!

9 And now for some good news!!
GCHQ reported in 2014 that in terms of Cyber Crime… 80% is easily preventable 23 in a Million phishing s are successful 5.5 Billion in 2011 attacks world wide 42% increase in a year to £7.8 Billion in 2012 People don’t rob banks with shotguns, they now hire a hacker – lower risk and jail time if caught Peelian Principle – First duty of any Constable is to Prevent Crime

10 Current Scams Invoice s – i.e. new vendors, changes to current vendors, Apple [little mix] Vouchers - Supermarkets, on line stores Account updates – amazon, Sky, Virgin, Utilities. Advice – any unsolicited s. Do not press that link; simply delete. Go via normal website. Send to phishing address for company Microsoft/BT router/system faults – Dunstable case £4500 Advice – Do not engage, go via normal website. Mandate fraud – Bedford company lost £100K put 27 staff at risk. £1M in Luton in September. Bedford company had windows 365 compromised with poor PW. L/Buzzard company 17 fake invoices by post in Jan17. Advice - Slow down, check via second source. Get copy of our advice. Ransomware – Luton Hotel attacked over New year – pay and enter suckers list Advice - Plan with 2x back ups, have details of local IT repair company

11 Insider threat Theft/fraud by employee
Data breach (increased threat when leaving – take to new employment, sell). Click the link on phishing s Tactical advice NDA (visitors & employees) ICT group permissions Encrypt data at rest. account closure process. Training and advice to staff of Cyber security.

12 Mandate fraud / CEO fraud Fraudsters targeting senior Executives.
Nat West – Bogus boss video Mandate advice paper

13

14 Back up your data – at least twice - ensure it is not constantly connected to your server.
Encrypt all data at rest on your server. I.e. spreadsheet with customer data, personal data. Details that you do not wish to loose. Most data loss reported is because data has not been encrypted.

15 Thank you! CBR - Free service to all local businesses, organisations, charities, vulnerable people Offering a review of current practices Suggesting improvements to ICT/physical security Leading to greater ability to reach ‘cyber essentials’ accreditation - Minimum standard suggested for government contracts in the future. CiSP POC Sean O’Neil Cyber Security Advisor (2219) Bedfordshire Police Headquarters, Woburn Road, Kempston, Bedfordshire, MK43 9AX (+44) (free electronic book giving basic advice)

Download ppt "Tackling Cyber threats together"

Similar presentations

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.
7 Effective Habits when using the Internet Philip O’Kane 1.

7 Effective Habits when using the Internet Philip O’Kane 1.
English Arabic Cyber Security: Implications of recent breaches MENOG April 2015.

English Arabic Cyber Security: Implications of recent breaches MENOG April 2015.
Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.

Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
NCS welcome all participants on behalf of Quick Heal Anti Virus and Fortinet Firewall solution.

NCS welcome all participants on behalf of Quick Heal Anti Virus and Fortinet Firewall solution.
Functional areas Retail Business.

Functional areas Retail Business.
Internet Security PA Turnpike Commission. Internet Security Practices, rule #1: Be distrustful when using the Internet!

Internet Security PA Turnpike Commission. Internet Security Practices, rule #1: Be distrustful when using the Internet!
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
External Threats to Healthcare Data Joshua Spencer, CPHIMS, C | EH.

External Threats to Healthcare Data Joshua Spencer, CPHIMS, C | EH.
PHISHING AND SPAM EMAIL INTRODUCTION There’s a good chance that in the past week you have received at least one email that pretends to be from your bank,

PHISHING AND SPAM INTRODUCTION There’s a good chance that in the past week you have received at least one that pretends to be from your bank,
Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.

Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.
UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.

UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.
GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Liam Bradford.

GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Liam Bradford.
 INADEQUATE SECURITY POLICIES ›Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA.

 INADEQUATE SECURITY POLICIES ›Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA.
Security Awareness Challenges of Securing Information No single simple solution to protecting computers and securing information Different types of attacks.

Security Awareness Challenges of Securing Information No single simple solution to protecting computers and securing information Different types of attacks.
Cyber Security Nevada Businesses Overview June, 2014.

Cyber Security Nevada Businesses Overview June, 2014.
PRIVACY, SECURITY & ID THEFT PREVENTION - TIPS FOR THE VIGILANT BUSINESS - SMALL BUSINESS & ECONOMIC DEVELOPMENT FORUM October 21, 2014 -WITH THANKS TO.

PRIVACY, SECURITY & ID THEFT PREVENTION - TIPS FOR THE VIGILANT BUSINESS - SMALL BUSINESS & ECONOMIC DEVELOPMENT FORUM October 21, WITH THANKS TO.

Similar presentations

Ads by Google