Presentation is loading. Please wait.

Presentation is loading. Please wait.

Regional Cyber Crime Unit

Published byCory McKinney Modified over 8 years ago

Similar presentations

Presentation on theme: "Regional Cyber Crime Unit"— Presentation transcript:

1 Regional Cyber Crime Unit
DCI Steve Thomas

2 The Situation Tier 1 threat to UK infrastructure
Cost to UK economy over £400bn per annum (Lloyds Ins) 150,000 jobs lost across Europe Greater global cost than heroin, cocaine and cannabis 83% of UK population have internet access No deaths?

3 Daniel Perry 17yrs

4 It won’t happen to us !!

5 YaTH Business Impact In 2014 estimated 65% of all SME’s attacked.
Average impact between £65k -£115k for SME, £600k - £1.5m Large Commercial sensitivity/Reputational costs Information Commissioners Office = £000,000’s in fines European Network & Info Sec (NIS) Directive = £millions in fines Average time to detect intrusion/infection190 days. 9 out 10 Preventable !!

6 Threats/Attacks DDOS (Distributed Denial of Service)
Phishing, Spear, Whale, Smish, Vish = Social Eng Data loss/corruption (worms, virus, malware, Trojan) Data loss – Conventional Hacking – Network, Servers, Wifi, Foodchain Rogue Insider – PICNIC/BYOD

7 Disaster Examples + = Disaster + your WiFi = Disaster

8 Social media : Business Asset or Threat
Social Media used to target an organisation? Usually well considered weak points - Perimeter measures, firewall, IDS, IPS, scanning. Security architecture and policies, staff training. Access Control,and data encryption. But What about your staff? Activities seen as private and not in the course of the business Individuals use of social media – Can these be leveraged against the organisation as a part of targeted social Engineering attack targeting company assets/security.

9 Example ! Staff member 18-29 = Facebook 500+ Contacts
Tweets at work with location enabled Works in data centre, gym member, h/a locus, pictures Meta Data (photos), partners home, car reg, D.O.B Are the employers happy with this?

10

11 The Attraction Traditional Physical presence at the crime scene
One offence at a time High risk/low reward Local enquiries Victim reports to police Cyber Remote from the crime scene Multiple offences at once Low risk/high reward International enquiries Victim reputation

12 10 Steps to Protection Training/User Awareness (PICNIC)
Network Security Malware Protection – Scanning Monitoring – Log analysis Incident Management Manage User Privileges (admin) Removable Media – BYOD Secure Configuration – Patching/Passwords Home/Mobile Working – VPN’s (encrypt) Test it all works !! 10 Steps to Protection

13 Responsibility Q, Where should responsibility sit?
A, Data owner/pays the fines !! CEO

14 Support https://www.cert.gov.uk/cisp

15 Funding for SME’s

16 LE Structure National Crime Agency Regional Cyber Crime Unit
Force Cyber Crime Units District Policing

17 Our Capabilities

18 Pursue Proactive investigation Reactive investigation
Cyber advice and strategy for SIOs Cyber CSI Digital forensics UK and International partners Proactive investigation Intelligence gathering and analysis Covert Digital Operations

19 Prevent Protect Profiling of potential Cyber criminals
University liaison Industrial liaison Intelligence requirement to Forces and partners Identification of targets Infrastructure protection Cyber Threat Reduction Group Cyber Information Sharing Partnership

20 Prepare Penetration testing and security advice
Cyber Attack Response Plans - Exercising Virtual Task Force - Cyber Specials Student placements

21 How prepared are you ?

22 All your servers are going under DDoS attack unless you pay 25 Bitcoin
All your servers are going under DDoS attack unless you pay 25 Bitcoin. You have 24hrs.

23

24 regional.cyber@westyorkshire.pnn.police.uk 0113 397 0702 07595 009 790

Download ppt "Regional Cyber Crime Unit"

Similar presentations

Being Proactive and Less Reactive in Security Operations and Cyber Attack Response Christina Raftery, MCSE, CISSP FBI Los Angeles Field Office.

Being Proactive and Less Reactive in Security Operations and Cyber Attack Response Christina Raftery, MCSE, CISSP FBI Los Angeles Field Office.
IT Security “Knowing the potential threat to YOU and your business” Ian McLachlan IT Manager.

IT Security “Knowing the potential threat to YOU and your business” Ian McLachlan IT Manager.
Travelers CyberRisk for Insurance Companies

Travelers CyberRisk for Insurance Companies
Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.

Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.
UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.

UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.
David A. Brown Chief Information Security Officer State of Ohio

David A. Brown Chief Information Security Officer State of Ohio
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Cyber Crime The current threat to the UK Security Marking.

Cyber Crime The current threat to the UK Security Marking.
Staffordshire Police Corporate PowerPoint Template by Carl Uttley 9545 1 Staffordshire Police Cyber Crime ACC Nick Baker.

Staffordshire Police Corporate PowerPoint Template by Carl Uttley Staffordshire Police Cyber Crime ACC Nick Baker.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.

Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.
1. 2 A High Tech Crime Investigation Lessons learned by the National High Tech Crime Center Hans Oude Alink, project leader NHTCC November 2005.

1. 2 A High Tech Crime Investigation Lessons learned by the National High Tech Crime Center Hans Oude Alink, project leader NHTCC November 2005.
Australian High Tech Crime Centre Resourcing Cybercrime Tuesday, 6 November 2007.

Australian High Tech Crime Centre Resourcing Cybercrime Tuesday, 6 November 2007.
LittleOrange Internet Security an Endpoint Security Appliance.

LittleOrange Internet Security an Endpoint Security Appliance.
Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.

Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.
Bank Crime Investigation Techniques by means of Forensic IT

Bank Crime Investigation Techniques by means of Forensic IT
Cyber Cops The Challenges Detective Sergeant Cath Elvey NW Regional Cyber Crime Unit.

Cyber Cops The Challenges Detective Sergeant Cath Elvey NW Regional Cyber Crime Unit.
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
1Cisco Security NOW © 2003, Cisco Systems, Inc. All rights reserved. THIS IS THE POWER OF CISCO SECURITY. now.

1Cisco Security NOW © 2003, Cisco Systems, Inc. All rights reserved. THIS IS THE POWER OF CISCO SECURITY. now.
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Similar presentations

Ads by Google