Presentation is loading. Please wait.

Presentation is loading. Please wait.

 Malicious or unsolicited mail sent to a mailbox without the option to unsubscribe  Often used as a catch-all of any undesired or questionable mail.

Published byArleen Cole Modified over 8 years ago

Similar presentations

Presentation on theme: " Malicious or unsolicited mail sent to a mailbox without the option to unsubscribe  Often used as a catch-all of any undesired or questionable mail."— Presentation transcript:

1

2

3

4  Malicious or unsolicited mail sent to a mailbox without the option to unsubscribe  Often used as a catch-all of any undesired or questionable mail

5  Malicious or unsolicited mail sent to a mailbox without the option to unsubscribe  Often used as a catch-all of any undesired or questionable mail  Best defense is to disrupt economics of spam Millions of emails received. Almost all of them blocked.

6 BEFORE  Content Filters

7 BEFORE  Content Filters TODAY  Content Filters  Connection Filters  Fingerprint Based Filters

8 An email sent to a large list of recipients for promotional purposes. Typically the Sender has Reputation with us.

9 We hope you found the information in this email useful. However, if you'd rather not receive future emails of this nature from bespoke offers, it's easy to unsubscribe.unsubscribe

10  A targeted attack on a group of mailboxes with the intention of garnering personal information or credentials Evolution of Phish  Target: Individual Motive: Financial  Target: Organization Motive: Network compromise

11  Malicious code often distributed in email to a recipient  E.g. Spyware / Keyloggers, RAM scrapers, …  Payload can be delivered via attachment, or URL  Unique requirements for protection

12

13

14

15

16 “All your credentials belong to us” Known malware (e.g. Trojan Downloaders) gets flagged by AV running in EOP (& also Windows)

17

18 Spear-phishing Focused phishing attacks Tailored, low volume tactics Social Engineering Whaling High value targets

19

20

21 ********.gov DataCenter EOP Denial of Service

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38 IPv4 vs. IPv6

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59 Short-span attacks can be just minutes to hours T=0T=5T=10T=15T=100 Phisher creates malicious domain First phishing message sent Phishing message lands in user inbox User clicks on link in message Serial variant attacks generally repeat pattern every few hours Attacker can easily change the links in the message after mail is delivered

60 Protection against unknow n malware/virus Behavioral analysis with machine learning Admin alerts Time of click protection Real time protection against Malicious URLs Growing URL coverage Rich reporting and tracing Built-in URL and message trace Reports for advanced threats

61 Safe Multiple filters + 3 antivirus engines with Exchange Online protection Links Recipient Unsafe Attachment Supported file type Clean by AV/AS filters Not in Reputation list Detonation chamber (sandbox) Executable? Registry call? Elevation? ……? Sender

62 EOP user without ATP EOP user with ATP

63 EOP user without ATP Rewriting URLs to redirect to a web server EOP user with ATP

64

65

66

67

Download ppt " Malicious or unsolicited mail sent to a mailbox without the option to unsubscribe  Often used as a catch-all of any undesired or questionable mail."

Similar presentations

Challenges In The Morphing Threat Landscape Apr 2011, Arnhem Tamas Rudnai, Websense Security Labs.

Challenges In The Morphing Threat Landscape Apr 2011, Arnhem Tamas Rudnai, Websense Security Labs.
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via

What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via
Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.

Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.
Next Generation Endpoint Security Jason Brown Enterprise Solution Architect McAfee May 23, 2013.

Next Generation Endpoint Security Jason Brown Enterprise Solution Architect McAfee May 23, 2013.
What is Spam  Any unwanted messages that are sent to many users at once.  Spam can be sent via email, text message, online chat, blogs or various other.

What is Spam  Any unwanted messages that are sent to many users at once.  Spam can be sent via , text message, online chat, blogs or various other.
NCS welcome all participants on behalf of Quick Heal Anti Virus and Fortinet Firewall solution.

NCS welcome all participants on behalf of Quick Heal Anti Virus and Fortinet Firewall solution.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Threats To A Computer Network

Threats To A Computer Network
Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.

Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.
S EC (4.5): S ECURITY 1. F ORMS OF ATTACK There are numerous way that a computer system and its contents can be attacked via network connections. Many.

S EC (4.5): S ECURITY 1. F ORMS OF ATTACK There are numerous way that a computer system and its contents can be attacked via network connections. Many.
Version 2.0 for Office 365. Day 1 Administering Office 365 Day 2 Administering Exchange Online Office 365 Overview & InfrastructureLync Online Administration.

Version 2.0 for Office 365. Day 1 Administering Office 365 Day 2 Administering Exchange Online Office 365 Overview & InfrastructureLync Online Administration.
Security challenges Used by many 100,000s of customers Used by many 10,000,000s of users Processing Billions of emails a day Using Thousands of.

Security challenges Used by many 100,000s of customers Used by many 10,000,000s of users Processing Billions of s a day Using Thousands of.
What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.

What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.
Norman SecureTide Powerful cloud solution to stop spam and threats before it reaches your network.

Norman SecureTide Powerful cloud solution to stop spam and threats before it reaches your network.
SHASHANK MASHETTY Email security. Introduction Electronic mail most commonly referred to as email or e- mail. Electronic mail is one of the most commonly.

SHASHANK MASHETTY security. Introduction Electronic mail most commonly referred to as or e- mail. Electronic mail is one of the most commonly.
Internet Safety Basics Being responsible -- and safer -- online Visit age-appropriate sites Minimize chatting with strangers. Think critically about.

Internet Safety Basics Being responsible -- and safer -- online Visit age-appropriate sites Minimize chatting with strangers. Think critically about.
CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.

CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.
Outline  Infections  1) r57 shell  2) rogue software  What Can We Do?  1) Seccheck  2) Virus total  3) Sandbox  Prevention  1) Personal Software.

Outline  Infections  1) r57 shell  2) rogue software  What Can We Do?  1) Seccheck  2) Virus total  3) Sandbox  Prevention  1) Personal Software.

Similar presentations

Ads by Google