Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cyberbad Where Spam is leading to Phillip Hallam-Baker

Published byJohnathan Fields Modified over 9 years ago

Similar presentations

Presentation on theme: "Cyberbad Where Spam is leading to Phillip Hallam-Baker"— Presentation transcript:

1 Cyberbad Where Spam is leading to Phillip Hallam-Baker hallam@dotcrimemanifesto.com

2 Spam is Criminal Infrastructure SpamBotnets

3 Botnets beget Spam – Adverts for criminal / defective products – Phishing – Advance Fee Frauds Denial of Service Extortion All Things ‘Cyber-bad’

4 What is Cyber-Terror? Cyber-Bad

5 Lowering the barriers

6 Cyber-Bad for Hire Hacking tools (commodity  ø day exploits) Stolen credentials Crime as Service – Spam – Botnets Unwitting Accomplices (mules) – Receiving stolen goods – Money laundering

7 Cyber-bad Purposes Vandalism Vigilantism Fraud Terrorism Warfare

8 Criminals extend reach Compromise systems during manufacture – Pin Entry Devices compromised during manufacture Phone home with PIN data to Pakistan Criminal insiders – Blackmailed or bought prior to hire – US Cert: 41% incidents involve insiders Soc Generalé demonstrates €bn potential

9 Internet Crime Isn’t The banks are still where the money is

10 Russian Business Network

11 Cyber Crime to Cyber Terror? RBN ‘customer’ 1488.ru

12 It’s not a new game…

13 Internet Terrorism Today

14 Internet = Outreach

15 Internet = Praxis

16 Realistic Future Scenarios

17 Internet = Research Open Sources – AQ manual claims 80% of information is available Criminal Expert Sources – Who can tell me X for $100? Espionage – Find an honest expert, penetrate their machine

18 Internet Crime = Funding

19 Internet Crime = Money Laundry

20 Internet Sabotage = Force Multiplier

21 Is a Hollywood Scenario likely?

22 Past Performance is no guarantee…

23 Security through obscurity works… … until it fails

24 Fixing the Problem

25 What is the problem? Banks – Cost of Internet crime Direct Losses Customer Service Opportunity Losses National Security – Potential criminal profits – Potential sabotage damage

26 Are there solutions? Chip and PIN – Eliminated Card Present Fraud in Europe Remaining attacks exploit legacy channels Why not in the US? – Different market structure – Anti-trust used to block changes

27 Anti-Crime Solutions Email Authentication – SPF, DKIM, Secure Internet Letterhead Web Authentication – Extended Validation, Secure Internet Letterhead Secure Identity – SAML, WS-*, OpenID, OATH, Identity 3.0 Data Level Security – CRM Infrastructure, Open CRM Network Security – Reverse Firewalls, DNSSEC, BGP Security – Domain Centric Administration, Default Deny Infrastructure

28 Conclusions The threats are real – They are not necessarily Internet threats – But the Internet changes the game The threats are serious – They may not be “terrorism” as we know it – But they are worth caring about Criminal infrastructure is an ongoing threat – Some states are playing the privateer game – We cannot rely on international cooperation

Download ppt "Cyberbad Where Spam is leading to Phillip Hallam-Baker"

Similar presentations

Cyber Crime and Technology

Cyber Crime and Technology
Jennifer Perry. We help victims of e-crime and other online incidents – Web based service – Providing practical, plain language advice – No-nonsense advice.

Jennifer Perry. We help victims of e-crime and other online incidents – Web based service – Providing practical, plain language advice – No-nonsense advice.
S CENARIOS FOR THE F UTURE OF THE C ANADIAN P AYMENTS S YSTEM A UTHENTICATION AND I DENTITY W ORKSHOP N OVEMBER 3, 2010 Greg Wolfond.

S CENARIOS FOR THE F UTURE OF THE C ANADIAN P AYMENTS S YSTEM A UTHENTICATION AND I DENTITY W ORKSHOP N OVEMBER 3, 2010 Greg Wolfond.
© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.

© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.
Economic and Social Impact of Digital Security Eng. Qusai AlShatti Deputy Director for Information Technology.

Economic and Social Impact of Digital Security Eng. Qusai AlShatti Deputy Director for Information Technology.
© 2004 VeriSign, Inc. Web Services and the Old World Phillip Hallam-Baker Principal Scientist VeriSign Inc.

© 2004 VeriSign, Inc. Web Services and the Old World Phillip Hallam-Baker Principal Scientist VeriSign Inc.
The development of Internet A cow was lost in Jan 14th 2003. If you know where it is, please contact with me. My QQ number is 87881405. QQ is one of the.

The development of Internet A cow was lost in Jan 14th If you know where it is, please contact with me. My QQ number is QQ is one of the.
1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.

1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.
Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL.

Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL.
Cyber Crime Game Players By Marharyta Abreu & Iwona Sornat.

Cyber Crime Game Players By Marharyta Abreu & Iwona Sornat.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Australian High Tech Crime Centre What is cybercrime & trends Monday 5 November 2007.

Australian High Tech Crime Centre What is cybercrime & trends Monday 5 November 2007.
INFORMATION WARFARE Written by: Larry Druffel Presented by: Frank Dang TCOM 614 Introduction to Telecommunication University of Redlands.

INFORMATION WARFARE Written by: Larry Druffel Presented by: Frank Dang TCOM 614 Introduction to Telecommunication University of Redlands.
E-Commerce Security and Fraud Issues and Protections

E-Commerce Security and Fraud Issues and Protections
Wonga example Register Question- What risks do you think businesses face due to IT developments?

Wonga example Register Question- What risks do you think businesses face due to IT developments?
© 2004 VeriSign, Inc. Secure Letterhead Phillip Hallam-Baker Principal Scientist VeriSign Inc.

© 2004 VeriSign, Inc. Secure Letterhead Phillip Hallam-Baker Principal Scientist VeriSign Inc.
Matteo Cavallini – ULS MEF/Consip Digital Agenda Assembly – Cybersecurity: barriers and incentives Matteo Cavallini Cybersecurity: State of the Art and.

Matteo Cavallini – ULS MEF/Consip Digital Agenda Assembly – Cybersecurity: barriers and incentives Matteo Cavallini Cybersecurity: State of the Art and.
INFORMATION SECURITY UPDATE Al Arboleda Chief Information Security Officer.

INFORMATION SECURITY UPDATE Al Arboleda Chief Information Security Officer.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
Preparedness for cybersecurity threats domestic aspects of cyber security Jaan Priisalu.

Preparedness for cybersecurity threats domestic aspects of cyber security Jaan Priisalu.

Similar presentations

Ads by Google