Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Security: Current Threats Marc Scarborough Information Security Officer

Published byEdwina Strickland Modified over 8 years ago

Similar presentations

Presentation on theme: "Information Security: Current Threats Marc Scarborough Information Security Officer"— Presentation transcript:

1 Information Security: Current Threats Marc Scarborough Information Security Officer marcs@rice.edu

2 Changing Nature of Attacks Before: Prank/Defacement – Word Macro viruses that inject words into documents when printed – Web site defacements Recently: Resource “Theft” – Coordinated DDOS (Distributed Denial of Service) Attacks by remote controlling hacked computers – Hacking systems for their disk space and network speed, creating distributed repositories of stolen content 2

3 Changing Nature of Attacks Now: Targeted Attacks - Political and Financial Gain – Credit Card / Personal Information / ID Theft – Worldwide crime organizations coordinating specific attacks for specific purposes – Government Entities defining ‘Cyberwar’ 3

4 Recent Headlines 4

5 IRS: Phishing - Number One Scam 5 IRS currently defines phishing (an information gathering scam through email or phone) as their primary threat. Higher Education, including Rice University, has also seen a sharp increase in the number and complexity of phishing attacks on campus. The attacks are looking for Rice NetID’s and passwords which are used to log into our Webmail servers to send other types of scams to Internet users around the world. The scams sent from hacked Rice NetID’s include Nigerian 419 scams and Death Threat emails. Information Technology has worked diligently to slow these messages and inform the community as they arrive IRS currently defines phishing (an information gathering scam through email or phone) as their primary threat. Higher Education, including Rice University, has also seen a sharp increase in the number and complexity of phishing attacks on campus. The attacks are looking for Rice NetID’s and passwords which are used to log into our Webmail servers to send other types of scams to Internet users around the world. The scams sent from hacked Rice NetID’s include Nigerian 419 scams and Death Threat emails. Information Technology has worked diligently to slow these messages and inform the community as they arrive

6 Hannaford Credit Card Breach 6 Hannaford reported a significant credit card breach As many as 4.2 million credit card numbers were exposed. At least 1,800 were subject to fraud (so far). The breach began December 7, 2007 and was not contained until March 10, 2008. Rice University is and has been taking steps to secure our credit card transactions. More information on these steps is coming. Hannaford reported a significant credit card breach As many as 4.2 million credit card numbers were exposed. At least 1,800 were subject to fraud (so far). The breach began December 7, 2007 and was not contained until March 10, 2008. Rice University is and has been taking steps to secure our credit card transactions. More information on these steps is coming.

7 Ohio University: The Response 7 Highlights from the (Ohio) blueprint include: Implementing a perimeter firewall that will filter Internet traffic to protect computers outside of the central cluster from hacker attacks. Classifying data by the level of security required. Rice is also working towards similar goals Enhanced firewall protection for our Students and Staff Enhanced auditing of critical systems and services Highlights from the (Ohio) blueprint include: Implementing a perimeter firewall that will filter Internet traffic to protect computers outside of the central cluster from hacker attacks. Classifying data by the level of security required. Rice is also working towards similar goals Enhanced firewall protection for our Students and Staff Enhanced auditing of critical systems and services

8 More Information http://www.rice.edu/it/security/index.shtml http://www.rice.edu/it/security/index.shtml 8 Yes! We are available for IT security presentations to departments and other Rice community groups. Marc Scarborough IT Security Officer marcs@rice.edu 713.348.5735

Download ppt "Information Security: Current Threats Marc Scarborough Information Security Officer"

Similar presentations

UNIT 20 The ex-hacker.

UNIT 20 The ex-hacker.
K-State IT Security Training Ken Stafford CIO and Vice Provost for IT Services Harvard Townsend Chief Information Security Officer

K-State IT Security Training Ken Stafford CIO and Vice Provost for IT Services Harvard Townsend Chief Information Security Officer
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
Crime and Security in the Networked Economy Part 4.

Crime and Security in the Networked Economy Part 4.
Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.

Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.

Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.
E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.

E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.
McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.

McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Prepared by: Nahed Al-Salah

Prepared by: Nahed Al-Salah
Hacking Presented By :KUMAR ANAND SINGH 04-243,ETC/2008.

Hacking Presented By :KUMAR ANAND SINGH ,ETC/2008.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
October is National Cyber Security Month OIT and IT providers are launching an awareness campaign to provide tips and resources to help you stay safe online.

October is National Cyber Security Month OIT and IT providers are launching an awareness campaign to provide tips and resources to help you stay safe online.
DATA SECURITY Social Security Numbers, Credit Card Numbers, Bank Account Numbers, Personal Health Information, Student and/or Staff Personal Information,

DATA SECURITY Social Security Numbers, Credit Card Numbers, Bank Account Numbers, Personal Health Information, Student and/or Staff Personal Information,
Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.

Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Phishing, Pharming, and Spam Margaret StewartTuesday, Oct. 21, 2006.

Phishing, Pharming, and Spam Margaret StewartTuesday, Oct. 21, 2006.
Web server security Dr Jim Briggs WEBP security1.

Web server security Dr Jim Briggs WEBP security1.

Similar presentations

Ads by Google