Presentation is loading. Please wait.

Presentation is loading. Please wait.

APT in Corporate America and the Exposure to Foothold Scenarios Nathaniel Puffer Technical Lead, Neohapsis Labs.

Published byPaxton Hillock Modified over 9 years ago

Similar presentations

Presentation on theme: "APT in Corporate America and the Exposure to Foothold Scenarios Nathaniel Puffer Technical Lead, Neohapsis Labs."— Presentation transcript:

1 APT in Corporate America and the Exposure to Foothold Scenarios Nathaniel Puffer Technical Lead, Neohapsis Labs

2 2 Background Shaping My Views Public Sector consulting across verticals Penetration Testing Forensics Publically available information Peer groups within the penetration testing community

3 3 Cyber-warfare will be most effective as a way to force Nation-States to look inward, or weaken resolve It is better to rely on footholds than rely on previously unknown exploit code at the critical moment It is preferable to leverage exploit code as close to the time of discovery as possible

4 4 An Outsiders View of Cyber-War Estonia Online banking was unavailable Disruption of Government Services Cyber Shockwave Table Top Exercise Scenarios involved loss of use for cellular networks, power grid CIA / DoD friendly fire? Forcible removal of a known intelligence asset

5 5 Compared to Corporate Breaches Heartland Payment Systems Organized group of individuals Largest payment card breach Aurora Focus on Silicon Valley technology firms Loss of Intellectual property

6 6 Classification Cyberwar Denial of Service (DoS) Estonia 0-Day Exploitation Cyber Shockwave Leverage Known Insecurity CIA/DoD Asset Corporate Breaches Blended use of 0-Day and known Attacks Significant time between initial breach and detection/leverage

7 7 0-Day Exploits Require investment in time, skill Have a window of effectiveness Changes to the target systems Discovery and exposure by third parties Why Stockpile 0-Day? Metaphorical Arsenal An effective way to win laptops

8 8 0-Day, Disclosure, and COTS DiscoverWeaponizeStoreExploit

9 9 But Your Systems Are My Systems Reliance on Commercial Off the Shelf Components (COTS) What if you’re using the same systems? What if the companies that people rely on are using the same systems? Cyber-warfare will be most effective as a way to force Nation-States to look inward, or weaken resolve

10 10 Competing Motivations Offensive Keep knowledge and weaponized code a secret You maintain short-term capability but leave organizations you depend on exposed Defensive Disclose knowledge to vendors and assist with fixing problems You place an expiration on your capability; requires timing and discretion to not have exposure and public exploit code Attempted Hybrid Disclose issues to vendors, keep weaponized code a secret Core Impact, Immunity Canvas Attempt to keep NDA; manipulate timing Goal to is reach a fixed state

11 11 Logical Offensive Capability - Foothold Research security issues in systems to find weaknesses Maintain a well organized vendor disclosure program Provide assistance to vendors; Pressure vendors Promote public disclosure Provide hooks into corporate vulnerability management Exploit target systems Maintain presence Ensure survivability after the fix is released

12 12 Plausible? Heartland Payment Systems Systems were compromised for over a year Initial off the shelf malware was detected ‘Anti-virus’ did its job, Whew! Custom malware was introduced Pop, Pivot, Repeat Detection was due to fraud, by a system specifically designed to catch fraud Additional signs were there

13 13 Plausible? Aurora Google blows the whistle in January 20 companies targeted, interrelated malware “The major pattern of attacks previously identified as occurring in mid-December 2009 targeting Google appear to originate in July 2009 from mainland China” http://www.damballa.com/research/aurora/ Detected on egress to command and control, internal behavior Of all the companies impacted, timelines on AV response indicate Google was the first that discovered / disclosed

14 14 Anecdotal Accounts Verizon Business Presentation at the PCI group meeting in Las Vegas An attacker had built a network diagram more detailed than any owned by the corporation Mandiant Corporate systems in Florida Initial breach of a limited number of systems leads to a realization that thousands of nodes are compromised

15 15 Defensive Solutions The purpose of corporations, groups we rely on for our way of live, is to make money; not to run the most secure networks Shore up loopholes for Financial Disclosure “Misrouted Funds” Promote additional legal requirements for disclosure Look for macro-correlation and trends Provide financial incentives for Vendors to create secure code Provide regulatory and incentive based “carrot and stick” to maintain secure systems

16 16 Thank you Questions and Feedback Welcome! npuffer@neohapsis.com

Download ppt "APT in Corporate America and the Exposure to Foothold Scenarios Nathaniel Puffer Technical Lead, Neohapsis Labs."

Similar presentations

1 Michael Siegel James Houghton Advancing Cybersecurity Using System Dynamics Simulation Modeling For System Resilience, Patching, and Software Development.

1 Michael Siegel James Houghton Advancing Cybersecurity Using System Dynamics Simulation Modeling For System Resilience, Patching, and Software Development.
© 2013 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2013 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.
PAGE 1 | Gradient colors 14 149 115 0 121 91 13 137 105 RGBRGB Diagrams 142 230 0 127 205 0 137 222 0 RGBRGB 242 174 107 255 131 0 240 161 82 RGBRGB 166.

PAGE 1 | Gradient colors RGBRGB Diagrams RGBRGB RGBRGB 166.
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is.

Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is.
Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL 60646-6085.

Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL
Financial Institutions – Cyber Risk Managing Cyber Risks In An Interconnected World State Compensation Insurance Fund Audit Committee Meeting – February.

Financial Institutions – Cyber Risk Managing Cyber Risks In An Interconnected World State Compensation Insurance Fund Audit Committee Meeting – February.
Emerging Trends: Cyber Threats Bryan Sheppard Cyber Security Defense Center.

Emerging Trends: Cyber Threats Bryan Sheppard Cyber Security Defense Center.
Risk Management a Case Study DATALAWS Information Technology Law Consultants Presented by F. F Akinsuyi (MSc, LLM)MBCS.

Risk Management a Case Study DATALAWS Information Technology Law Consultants Presented by F. F Akinsuyi (MSc, LLM)MBCS.
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
Cyber Resilience Simon Onyons Financial Stability – Resilience Team.

Cyber Resilience Simon Onyons Financial Stability – Resilience Team.
Www.encase.com Mel Pless, Sr. Director, Solutions Consulting Guidance Software, Inc. Let’s Get Right To The Endpoint Leveraging Endpoint Data to Expose,

Mel Pless, Sr. Director, Solutions Consulting Guidance Software, Inc. Let’s Get Right To The Endpoint Leveraging Endpoint Data to Expose,
Gift Card Landscape & Competitive Report July 2012.

Gift Card Landscape & Competitive Report July 2012.
Get Complete IT Compliance: Reduce Risk and Cost Jonathan CISO, Qualys Seth Automation Specialist, BMC.

Get Complete IT Compliance: Reduce Risk and Cost Jonathan CISO, Qualys Seth Automation Specialist, BMC.
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
Company LOGO Copyright Carrie Kerskie Data Breach & Identity Theft By Carrie Kerskie Kerskie Group, Inc.

Company LOGO Copyright Carrie Kerskie Data Breach & Identity Theft By Carrie Kerskie Kerskie Group, Inc.
1 Internet Security Threat Report X Internet Security Threat Report VI Figure 1.Distribution Of Attacks Targeting Web Browsers.

1 Internet Security Threat Report X Internet Security Threat Report VI Figure 1.Distribution Of Attacks Targeting Web Browsers.
What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.

What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.
Conostix S.A. Sensible defence.

Conostix S.A. Sensible defence.
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Cyber Security: Now and.

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Cyber Security: Now and.
Introduction to Computer Ethics

Introduction to Computer Ethics

Similar presentations

Ads by Google