Presentation is loading. Please wait.

Presentation is loading. Please wait.

Pharming > 50% of all PCs compromised Application Attacks BotArmies/DDOS 2 Organized Cyber-crime Ecosystem Hacktivism Cyber Terrorism Phishing Identity.

Published byJack Hopkins Modified over 9 years ago

Similar presentations

Presentation on theme: "Pharming > 50% of all PCs compromised Application Attacks BotArmies/DDOS 2 Organized Cyber-crime Ecosystem Hacktivism Cyber Terrorism Phishing Identity."— Presentation transcript:

1

2 Pharming > 50% of all PCs compromised Application Attacks BotArmies/DDOS 2 Organized Cyber-crime Ecosystem Hacktivism Cyber Terrorism Phishing Identity Theft OS Hacking BotNets/DDOS Cyber Criminals Script Kiddies Nothing short of game-change innovation can stem this rising tide Seems everything changes, everyday

3

4 Needs a good home

5 “Estonia Sending Cyber Defense Experts to Georgia” Network World

6 MOST SECURITY TECHNOLOGY PROVIDERS HAVE A NARROW PERSPECTIVE OF THE CYBER - SECURITY LANDSCAPE

7 U NFORTUNATELY THE R EALITY OF THE CYBER SECURITY LANDSCAPE IS SOMEWHAT LARGER

8  T HREATS ARE ESCALATING AT AN ALARMING RATE  P UBLIC POLICY HAS GENERALLY FAILED US  G OVERNMENT ACTION HAS BEEN INADEQUATE  M EDIA / PUBLIC IS AT BEST CONFUSED ABOUT CYBER THREATS  T ECHNOLOGY HAS PROVIDED LITTLE MORE THAN A BAND - AID  M ANY BELIEVE CYBER - CRIMINALS HAVE ALMOST MYSTICAL POWERS

9 M OST C YBER - SECURITY CONVENTIONAL WISDOM ATTEMPTS TO MODEL OUR CYBER DEFENSES BASED ON TRADITIONAL DEFENSE IN DEPTH IMPLEMENTATIONS Calsten Fortress c. 1600’s, Marstrand, Sweden

10 The digital warrior

11 Where:  80%+ of all successful cyber-attacks exploit vulnerabilities in four categories; none require rocket science to fix  Input validation, poor coding technique – business logic, authentication and access control, device hardening – patching, secure baselines  Building in security is 60 times less expensive that bolting-on later  Up-level security in SDLC We must develop:  Strong vulnerability management program  Assessment and remediation of legacy code used in operating systems and applications  Assessment and remediation of web site vulnerabilities  This will continue to be the most sought-after attack vectors by criminals to host links to phishing and identity theft code.  Assessment and remediation third party code and widgets  An attractive attack vector  Demonstrated by the “Secret Crush” malware that posed as a Facebook widget to install itself on about 1 million PCs in late 2007 and early 2008

12 Where:  Complex systems fail complexly, it is not possible to anticipate all the failure modes  Complexity provides both opportunity and hiding places for attackers  Damping out complexity is impossible when coupled with change, growth and innovation  Security failures are inevitable We Must Develop:  Robust incident management integrating all aspects of business (e.g. communications, development, legal)  Security SME throughout the SDLC  Deploy analytical tools to continually assess the security of development and the infrastructure  Provide security training to development and infrastructure teams

13 If:  A successful attack is inevitable Then we must develop:  A thorough understanding of the business, key business assets and critical functionality  Define defensible perimeters  Expanded firewall and IPS footprint  Develop/understanding network choke-points  Bandwidth allocation  Dynamic re-configuration

14 Where:  You can’t live without it!  “Run from monoculture in the name of survivability” – Dan Geer We must develop:  Multiple tools for detection and analysis  Multiple mitigation methods  Segmentation for everything  New thinking – situational awareness – attack simulation…

15 Where:  Every cyber criminal is our next door neighbor  We can never retreat to a safe neighborhood We must develop:  The ability to defend knowing the current threat profile, generally and specifically to us.  Encryption for everything moving in our networks  Defensive applications coding  More important than ever with 3 rd party software

16 Where :  Cyber criminals are attacking transaction streams  Transaction attacks are extremely difficult to detect We must develop:  Protect data  Protect the transactions  Employee exfiltration blocking

17  May be averting a crises, but not getting in front of the problem

18  Innovating for impact  Incremental  Sustaining core and context  Radical

19 Where:  Attacks are becoming much more subtle  Attacks are using multiple channels

20 If you are not moving forward you are falling behind…status quo is unacceptable Nothing is stable Surprise is constant We work at a permanent, structural disadvantage compared to our attackers

21

22 Yogi Berra

Download ppt "Pharming > 50% of all PCs compromised Application Attacks BotArmies/DDOS 2 Organized Cyber-crime Ecosystem Hacktivism Cyber Terrorism Phishing Identity."

Similar presentations

1© Copyright 2011 EMC Corporation. All rights reserved. Anatomy of an Attack.

1© Copyright 2011 EMC Corporation. All rights reserved. Anatomy of an Attack.
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
© 2013 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2013 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.

1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Stephen S. Yau CSE 465-591, Fall 2006 1 Security Strategies.

Stephen S. Yau CSE , Fall Security Strategies.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
CYBER CRIME AND SECURITY TRENDS

CYBER CRIME AND SECURITY TRENDS
Security Awareness Challenges of Security No single simple solution to protecting computers and securing information Different types of attacks Difficulties.

Security Awareness Challenges of Security No single simple solution to protecting computers and securing information Different types of attacks Difficulties.
SiteLock Internet Security: Big Threats for Small Business.

SiteLock Internet Security: Big Threats for Small Business.
Securing Information Systems

Securing Information Systems
SEC835 Database and Web application security Information Security Architecture.

SEC835 Database and Web application security Information Security Architecture.
© 2009 IDBI Intech, Inc. All rights reserved.IDBI Intech Confidential 1 Information (Data) Security & Risk Mitigation.

© 2009 IDBI Intech, Inc. All rights reserved.IDBI Intech Confidential 1 Information (Data) Security & Risk Mitigation.
Storage Security and Management: Security Framework

Storage Security and Management: Security Framework
Speaker : YUN–KUAN,CHANG Date : 2009/10/13 Working the botnet: how dynamic DNS is revitalising the zombie army.

Speaker : YUN–KUAN,CHANG Date : 2009/10/13 Working the botnet: how dynamic DNS is revitalising the zombie army.
Lessons Learned in Smart Grid Cyber Security

Lessons Learned in Smart Grid Cyber Security

Similar presentations

Ads by Google