Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cybersecurity BGP hijacking DDoS Botnets What’s next?

Published byJean Beasley Modified over 6 years ago

Similar presentations

Presentation on theme: "Cybersecurity BGP hijacking DDoS Botnets What’s next?"— Presentation transcript:

1 Cybersecurity BGP hijacking DDoS Botnets What’s next?

2 BGP hijacking The illegitimate takeover of IP addresses by corrupting BGP April 1997: The "AS 7007 incident” December 24, 2004: TTNet in Turkey hijacks the Internet May 7, 2005: Google's May 2005 Outage January 22, 2006: Con-Edison hijacks big chunk of the Internet February 24, 2008: Pakistan's attempt to block YouTube takes down YouTube entirely November 11, 2008: Brazilian ISP leaked their internal table into the global BGP table April 8, 2010: China Telecom originated 37,000 prefixes not belonging to them in 15 min February, 2014: a hacker redirected traffic targeting crypto-currency mining operations January 2017: Iranian pornography censorship

3 The illegitimate takeover of IP addresses by corrupting BGP
BGP hijacking The illegitimate takeover of IP addresses by corrupting BGP Kind of complicated More “state’s” than hacker’s attacks Mitigation measures – but hard to get rid of Old story – no big news here

4 Volume of attacks increased by 10x
DDoS a cyber-attack where the perpetrator seeks to make a resource unavailable by disrupting services of a host connected to the Internet. Volume of attacks increased by 10x

5 DDoS a cyber-attack where the perpetrator seeks to make a resource unavailable by disrupting services of a host connected to the Internet. Volume of attacks increased by 10x Often connected with botnet

6 DDoS a cyber-attack where the perpetrator seeks to make a resource unavailable by disrupting services of a host connected to the Internet. Volume of attacks increased by 10x Often connected with botnet Buy-as-you-go style

7 DDoS a cyber-attack where the perpetrator seeks to make a resource unavailable by disrupting services of a host connected to the Internet. Volume of attacks increased by 10x Often connected with botnet Buy-as-you-go style Sometimes unwanted errors (Apple DNS bug)

8 BOTNET a cyber-attack where the perpetrator seeks to make a resource unavailable by disrupting services of a host connected to the Internet. Volume of attacks increased by 10x Often connected with botnet Buy-as-you-go style Sometimes unwanted errors (Apple DNS bug)

9 Where we are FTTx: From 20Mbps/1Mbps to 1Gbps/100Mbps
IOT: From 1PC to tens of home Smartphones: CPU more powerful than your laptop Mobility: 5G anyone?

10 SAFER Where we are FTTx: From 20Mbps/1Mbps to 1Gbps/100Mbps
IOT: From 1PC to tens of home Smartphones: CPU more powerful than your laptop Mobility: 5G anyone? Encryption: more than 50% of web traffic is over HTTPS SAFER

11 Safer: It makes in-network protection (totally) useless
Where we are The future FTTx: From 20Mbps/1Mbps to 1Gbps/100Mbps IOT: From 1PC to tens of devices Smartphone: CPU more powerful than your laptop Mobility: 5G anyone? Encryption: more than 50% of web traffic is over HTTPS Safer: It makes in-network protection (totally) useless

12 Your (company) privacy
Next Challenge Your (company) privacy

13 and reports on Internet trends and behavior.
Google Third-party service Welcome ScorecardResearch, […] a leading global market research effort that studies and reports on Internet trends and behavior. ScorecardResearch conducts research by collecting Internet web browsing data and then uses that data to help show how people use the Internet, what they like about it, and what they don’t. ScorecardResearch collects data through […] web tagging.

14 If you’re not paying for the product,then you are the product…”
– Phil Zimmerman, Creator, PGP

15 We’ve lost control over our data

16 @ work Device vulnerabilities Secrets and interests of each employee
Company’s activities and plans

17 ATTACK WORKFLOW 2. The contains a link to a malware; Leveraging social engineering techniques, the employee is induced to click the link; 1. Attackers use employee’s data to prepare based on her interests (e.g., recent purchases or trips); 3. The malware is built based on employee’s device vulnerabilities, and automatically infects the device and corporate network.

18

19 New story – How to deal with this?
Can the network help?

Download ppt "Cybersecurity BGP hijacking DDoS Botnets What’s next?"

Similar presentations

AmadeusCybersecurity: the essentials12 th November 2014 Alex van Someren Family Office Forum 12 th November 2014, Zurich Cybersecurity: the essentials.

AmadeusCybersecurity: the essentials12 th November 2014 Alex van Someren Family Office Forum 12 th November 2014, Zurich Cybersecurity: the essentials.
The development of Internet A cow was lost in Jan 14th 2003. If you know where it is, please contact with me. My QQ number is 87881405. QQ is one of the.

The development of Internet A cow was lost in Jan 14th If you know where it is, please contact with me. My QQ number is QQ is one of the.
Threats To A Computer Network

Threats To A Computer Network
Tracking, Privacy, You & The 21 st Century When you talk online the internet listens.

Tracking, Privacy, You & The 21 st Century When you talk online the internet listens.
Norman SecureSurf Protect your users when surfing the Internet.

Norman SecureSurf Protect your users when surfing the Internet.
UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.

UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.
BCNET Conference April 29, 2009 Andree Toonk BGPmon.net Prefix hijacking! Do you know who's routing your network? Andree Toonk

BCNET Conference April 29, 2009 Andree Toonk BGPmon.net Prefix hijacking! Do you know who's routing your network? Andree Toonk
CSC 104 December 13,2012. Internet Regulation: States that it is about restricting or controlling certain pieces of information. This consisting of censorship.

CSC 104 December 13,2012. Internet Regulation: States that it is about restricting or controlling certain pieces of information. This consisting of censorship.
Detecting Attacks on Internet Infrastructure and Monitoring of Service Restoration in Real Time Andy Ogielski FCC Workshop on Cyber Security 30 September.

Detecting Attacks on Internet Infrastructure and Monitoring of Service Restoration in Real Time Andy Ogielski FCC Workshop on Cyber Security 30 September.
The Internet of Things, WTF? Rik Ferguson Vice President, Security Research Trend #CLOUDSEC.

The Internet of Things, WTF? Rik Ferguson Vice President, Security Research Trend #CLOUDSEC.
Privacy and Data Mining What Do “They” Know About You?

Privacy and Data Mining What Do “They” Know About You?
CSE 592 INTERNET CENSORSHIP (FALL 2015) LECTURE 16 PHILLIPA GILL - STONY BROOK U.

CSE 592 INTERNET CENSORSHIP (FALL 2015) LECTURE 16 PHILLIPA GILL - STONY BROOK U.
1 workshop Barcelona, April 22, 2015.

1 workshop Barcelona, April 22, 2015.
Securing BGP Bruce Maggs. BGP Primer AT&T 7018 12/8 Sprint 1239 144.223/16 CMU 9 128.2/16 bmm.pc.cs.cmu.edu 128.2.205.42 Autonomous System Number Prefix.

Securing BGP Bruce Maggs. BGP Primer AT&T /8 Sprint /16 CMU /16 bmm.pc.cs.cmu.edu Autonomous System Number Prefix.
The Internet of Things(IoT) BY CODEY DISNEY. Objectives  What Is the IOT?  How are corporations at risk? What are the security risks and what can happen.

The Internet of Things(IoT) BY CODEY DISNEY. Objectives  What Is the IOT?  How are corporations at risk? What are the security risks and what can happen.
Virus Assignment JESS D. How viruses affect people and businesses  What is a virus? A computer virus is a code or a program that is loaded onto your.

Virus Assignment JESS D. How viruses affect people and businesses  What is a virus? A computer virus is a code or a program that is loaded onto your.
Securing BGP Bruce Maggs. BGP Primer AT&T 7018 12/8 Sprint 1239 144.223/16 CMU 9 128.2/16 bmm.pc.cs.cmu.edu 128.2.205.42 Autonomous System Number Prefix.

Securing BGP Bruce Maggs. BGP Primer AT&T /8 Sprint /16 CMU /16 bmm.pc.cs.cmu.edu Autonomous System Number Prefix.
1 #UPAugusta2016. 2 3 Today’s Topics What are Deadly IT Sins? Know them. Fear them. Fix them. #UPAugusta201 6.

1 #UPAugusta Today’s Topics What are Deadly IT Sins? Know them. Fear them. Fix them. #UPAugusta201 6.
©2012 Check Point Software Technologies Ltd. [PROTECTED] — All rights reserved. Securing Your Data in Endpoint and Mobile Environments Frank Suijten Security.

©2012 Check Point Software Technologies Ltd. [PROTECTED] — All rights reserved. Securing Your Data in Endpoint and Mobile Environments Frank Suijten Security.
BGP security some slides borrowed from Jen Rexford (Princeton U)

BGP security some slides borrowed from Jen Rexford (Princeton U)

Similar presentations

Ads by Google