Presentation is loading. Please wait.

Presentation is loading. Please wait.

Paul A. Strassmann New Canaan Mens Club – January 9, 2015.

Published byBenjamin Ross Modified over 8 years ago

Similar presentations

Presentation on theme: "Paul A. Strassmann New Canaan Mens Club – January 9, 2015."— Presentation transcript:

1 Paul A. Strassmann New Canaan Mens Club – January 9, 2015

2 From individuals to organized groups. Drug cartels, mafias, terrorist cells and nation-states. RAND Corporation. http://www.rand.org/pubs/research_reports/RR610.html

3 Defenders protect 100.0%, all times. Espionage succeeds in 0.01% of time.

4

5

6

7

8

9 http://www.fireeye.com/blog/corporate/2014/04/annual-m-trends-report-looks-beyond-the-breach.html

10

11

12

13

14 Typical large firm receives 50,000 intrusion/day Pentagon reports 10 million attempts/day Nuclear Security Admin: 10 million hacks/day SOURCE (March 8, 2013): http://www.nextgov.com/cybersecurity/2013/03/how-many-cyberattacks-hit-united-states-last-year/61775/

15 New Malicious Web Domains/day 74,000 Web Attacks Blocked/day247,350 Bot Infections/day 3.4 millions Avg. number of stolen identities 604,826 15 * http://www.symantec.com/- 69 million sensors, 2013http://www.symantec.com/-

16 U.S. Critical Infrastructure Chemicals Communications Critical Manufacturing Dams Defense Industrial Base Emergency Services Energy Financial Services Food and Agriculture Government Services Pharmaceuticals Public Safety Public Health Information Technology Nuclear Reactors Transportation

17 Source of Losses Cyber espionage Cybertheft Cybercrime Loss of sensitive business information Service and employment disruption Insurance, and recovery costs Competitive damage Reputational damage Loss of intellectual property Loss of intangible assets

18 Sources of Cyber Attacks Hactivists Theft by Criminals Organized Crime Insider Compromises Economic Espionage Information Warfare Government Government proxies

19 U.S. Costs of Cyber Crime Estimated Cost: $100 billion to $500 billion Loss of 500,000 jobs Loss to national security SOURCE: https://csis.org/event/estimating-cost-cyber-crime-and-cyber-espionage

20 Pixel Tracker Bug Advertised (November 15, 2014) Available for private database of 140,000. Delivers e-mails, passwords, usernames and private messages of all the members. Price: $90 via BitCoin. Countermeasures: Disable Browser Feature

21 I NFORMATION W ARFARE

22

23

24 Major Information Warfare Programs

25

26 Example of a Simple Attack

27 Commercial Attack Tools Available for $10 to $50,000 Zeus: Cybercrime Suppliers in Russia SpyEye: From Malaysia Bugat v2: Origin unknown Gozi Prinimalka Blitzkrieg: Russian Carberp: Priced up to $40,000 for kit

28 C YBER D EFENSES

29 Costs of Security Exceed the Costs of Risks

30 Distribution of Malware

31 Malware Certified Definitions* 23,847,280 Additions During August 2013 136,051 31 * http://www.symantec.com/security_response/definitions/certified/ * http://www.symantec.com/security_response/definitions/certified/ - 8/17/2013 ** IDC #242346

32 U.S. Computer Emergency Readiness Team

33 National Vulnerability Database 62,829 Vulnerabilities, June 2014

34

35 How to Defend a Point-of-Sale System

36 P ERSONAL P ROTECTION

37 E-mail: Strassmann to Hollstein and Messert

38 Sent to Hollstein and Messert

39

40

41 What to Do for Partial Protection

42 What to Do Never click on unknown e-mail attachment Never download application from uncertified source Never accept offers from unverified senders Always back up your systems Optional: – Switch to G-mail for two factor authentication – Switch to Apple

43 Gmail Two Factor Authentication

44 Advice INTERNET is vulnerable You may be “hacked” Self-protection: set up backup computer Security services available

Download ppt "Paul A. Strassmann New Canaan Mens Club – January 9, 2015."

Similar presentations

User Authentication on Mobile Devices Google Two Factor Authentication OTP (One Time Password)

User Authentication on Mobile Devices Google Two Factor Authentication OTP (One Time Password)
UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.

UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.
7 Effective Habits when using the Internet Philip O’Kane 1.

7 Effective Habits when using the Internet Philip O’Kane 1.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.

© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.
Possible Threats To Data. Objectives To understand: Types of threats Importance of security Preventative and remedial actions Personal safety This will.

Possible Threats To Data. Objectives To understand: Types of threats Importance of security Preventative and remedial actions Personal safety This will.
E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.

E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.
Cyber Crime Game Players By Marharyta Abreu & Iwona Sornat.

Cyber Crime Game Players By Marharyta Abreu & Iwona Sornat.
OWASP Principles for GIS Data Security Keeping your GIS data secure.

OWASP Principles for GIS Data Security Keeping your GIS data secure.
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
Acorn.gov.au The ACORN REPORT. PROTECT. PREVENT. acorn.gov.au What is cybercrime? REPORT. PROTECT. PREVENT In Australia, the term 'cybercrime' is used.

Acorn.gov.au The ACORN REPORT. PROTECT. PREVENT. acorn.gov.au What is cybercrime? REPORT. PROTECT. PREVENT In Australia, the term 'cybercrime' is used.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:

What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:
IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.

IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.
CYBER CRIME AND SECURITY TRENDS

CYBER CRIME AND SECURITY TRENDS
Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer

Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
Copyright © 2014 Pearson Education, Inc. 1 IS Security is a critical aspect of managing in the digital world Chapter 10 - Securing Information Systems.

Copyright © 2014 Pearson Education, Inc. 1 IS Security is a critical aspect of managing in the digital world Chapter 10 - Securing Information Systems.

Similar presentations

Ads by Google