Presentation is loading. Please wait.

Presentation is loading. Please wait.

C YBER T HREATS AND R ESPONSE Unclassified Continuity Insights Conference Chicago June 18-19, 2013.

Published byTaniya Shadrick Modified over 9 years ago

Similar presentations

Presentation on theme: "C YBER T HREATS AND R ESPONSE Unclassified Continuity Insights Conference Chicago June 18-19, 2013."— Presentation transcript:

1 C YBER T HREATS AND R ESPONSE Unclassified Continuity Insights Conference Chicago June 18-19, 2013

2 Why it is important Why it is important Threats, players, and response Threats, players, and response FBI’s Next Generation Cyber FBI’s Next Generation Cyber Government and Private Sector Partnerships Government and Private Sector Partnerships Examples Examples O BJECTIVES

3 (End) Why important?

4 “China’s economic cyber espionage has not diminished… in fact, it has grown exponentially both in terms of its volume and damage it is doing to our nation’s economic future” “The technological and national security of the United States is at risk because some of our most innovative ideas and sensitive information are being brazenly stolen by these cyber attacks.” – Open hearing to the House Permanent Select Committee on Intelligence, February 2013 Growing problem…

5 Times have changed... Mayhem circa 1984… and today.

6 "Technology is moving so rapidly that… in the future, we anticipate that the cyber threat will pose the number one threat to our country.“ - FBI Director, March 2012 The Cyber Threat “There has been a nearly twenty (20) fold increase in cyber-attacks against American infrastructure targets between 2009 and 2011.“ - US military assessment, 2012

7 1. Protect the U.S. from terrorist attack 2. Protect the U.S. against foreign intelligence operations & espionage 3. Protect the U.S. against cyber-based attacks & high-tech crimes 4. Combat public corruption at all levels 5. Protect civil rights 6. Combat transnational/national criminal organizations and enterprises 6. Combat transnational/national criminal organizations and enterprises 7. Combat major white-collar crime 8. Combat significant violent crime 9. Support federal, state, local and international partners 10. Upgrade technology to successfully perform the FBI's mission FBI Priorities

8 State Sponsored Actors Organized Criminal Syndicates Terrorists Hacktivists Major Players:

9 Examples of threats & attacks DDoS DDoS Account take-overs Account take-overs PII loss PII loss Credit card informationCredit card information Trade secrets lossTrade secrets loss DefacementDefacement -hackmageddon.com

10 Target examples

11 What are we talking about? A Denial of Service attack (DoS) or Distributed Denial of Service attack (DDoS) is a type of Cyber attack that attempts to make a computer or computer network unavailable to users.A Denial of Service attack (DoS) or Distributed Denial of Service attack (DDoS) is a type of Cyber attack that attempts to make a computer or computer network unavailable to users. Simply put, the attack overwhelms a computer or computer network.Simply put, the attack overwhelms a computer or computer network. DDoS:

12 Victim Website Command & Control Servers Compromised computers called Bots or Zombies Cyber Actor Cyber Actor Anatomy of a DDoS

13 “For the first time… computer-launched foreign assaults on U.S. infrastructure… was ranked higher in the U.S. intelligence community’s annual review of worldwide threats than worries about terrorism…” -Los Angeles Times, March 12, 2013 - 140 attacks on Wall Street over last six months - August 2012 computer intrusion at Saudi Aramco - Local example(s) The new #1 threat?

14 Mission: Coordinate, supervise and facilitate the FBI's investigation of those federal violations in which the Internet, computer systems, or networks are exploited. FBI Cyber Division *The FBI is the lead domestic agency for National Security Cyber investigations.

15 FBI DHS USSS DOD NSA Lanes in the road “The FBI will often be the first responder because of our nationwide coverage. But the investigative team, at a minimum, should include the expertise of both DHS and NSA. In other words, notification of an intrusion to one agency should be – and will be – notification to all.” -Robert S. Mueller, III

16 Partnerships Play a Critical Role Cyber Task Forces Private sector is essential Possess the information, expertise and knowledge as well as building the components of cyber security Examples: - Domestic Security Alliance Council - InfraGuard

17 Provides authority to the government to provide classified cyber threat information to the private sector Knocks down barriers impeding cyber threat information sharing –Among private sector companies –Between private sector and the government Cyber Intelligence Sharing and Protection Act of 2013

18 Dedicating more resources and building new tools to combat the nation’s most serious cyber threat… criminals, spies, and terrorists breaking into government and private computer networks. Next Generation Cyber Initiative

19 FBI NextGen Cyber A coordinated nationwide effort Establish Cyber Task Forces Dedicating more resources –Labs / Personnel / Scientists 24hr Cyber Watch Command –Review all cyber incidents reported –Quickly assess threats –Assess for National Security threats –Quick dissemination of leads –Review malicious code

20 Uninterrupted intake and analysis to: –Contextualize leads –Identify trends –Coordinate investigative response –Deconflict –Link incident information provided by the field and other government agencies –Produce real time intelligence reporting to investigators and analysts CyWatch Command 24/7 Ops Floor

21 Guardian Federal IC-3 Cyber Incident & Intrusion Reporting E-Guardian* Local Law Enforcement I-Guardian* Internet Crime Complaint Center Private Sector Cyber Task Force National Security Cyber Watch FBI Headquarters / 24 hours General Internet Fraud *To be implemented in 2013 Other Criminal Squad State/Local Police Criminal Intrusion RCFL FBI Chicago Field Office

22 e-Guardian –A secure, user friendly system implemented in 2008 for to share terrorist threats, events, and suspicious activity among state, local, and federal law enforcement –The system was enhanced in 2013 to allow events and suspicious activities involving computer intrusion events to be reported to FBI CTFs. i-Guardian –A system being developed for trusted industry partners to report incidents and submit malware. Reporting…

23 CTF Task Force Officers –Paid Overtime –Paid vehicle, fuel, phone and equipment –Paid training –Three days/week; Two year commitment RCFL Cyber Task Force Task Force Members –Three year commitment - full time –Same paid overtime, vehicle, fuel, phone, equipment –Full training toward CART Examiner certification

24 -Robert S. Mueller, III “We must abandon the belief that better defenses alone will be sufficient. We must build better relationships. And we must overcome the obstacles that prevent us from sharing information and, most importantly, collaborating.” Closing thought

25 Our Ad Choice Sponsor: QUESTIONS?

26 FBI Chicago’s Cyber Task Force (CTF) Telephone: (312)421-6700 *Email: chicago_cyberwatch@ic.fbi.gov Points of Contact: SA Tim Hearl Desk: (312)829-7580 Cell: (630)270-5433 Blackberry/e-mail: timothy.hearl@ic.fbi.gov

Download ppt "C YBER T HREATS AND R ESPONSE Unclassified Continuity Insights Conference Chicago June 18-19, 2013."

Similar presentations

Homeland Security and Law Enforcement Created By: Ashley Spivey For _Local_Actions_for_Homeland_Security.pdf.

Homeland Security and Law Enforcement Created By: Ashley Spivey For _Local_Actions_for_Homeland_Security.pdf.
The Integritas System to enforce Integrity in Academic Environments Prof Basie von Solms Mr Jaco du Toit Prof Basie Von Solms Academy for IT University.

The Integritas System to enforce Integrity in Academic Environments Prof Basie von Solms Mr Jaco du Toit Prof Basie Von Solms Academy for IT University.
FBI Intelligence Houston Field Intelligence Group Overview Carlos J. Barrón FIG Coordinator Field Intelligence Group H O U S T O N UNCLASSIFIED.

FBI Intelligence Houston Field Intelligence Group Overview Carlos J. Barrón FIG Coordinator Field Intelligence Group H O U S T O N UNCLASSIFIED.
FBI Malware Overview - EDUs

FBI Malware Overview - EDUs
1 NGA Regional Bio-Terrorism Conference Boston, Massachusetts January 12-13, 2004.

1 NGA Regional Bio-Terrorism Conference Boston, Massachusetts January 12-13, 2004.
Civilian Intelligence Organizations

Civilian Intelligence Organizations
DHS, National Cyber Security Division Overview

DHS, National Cyber Security Division Overview
South Carolina Cyber.

South Carolina Cyber.
InfraGard Update SSA John V. Gillies SA Matthew E. Morin.

InfraGard Update SSA John V. Gillies SA Matthew E. Morin.
CIAO.0209 - July 99 - 1 Critical Infrastructure Assurance Office Protecting America’s Cyberspace: Version 1.0 of the National Plan Jeffrey Hunker National.

CIAO July Critical Infrastructure Assurance Office Protecting America’s Cyberspace: Version 1.0 of the National Plan Jeffrey Hunker National.
© 2011 Delmar, Cengage Learning Part I The Nature and Setting of Police Administration Chapter 3 Police Administration and Homeland Security.

© 2011 Delmar, Cengage Learning Part I The Nature and Setting of Police Administration Chapter 3 Police Administration and Homeland Security.
Are Large Scale Data Breaches Inevitable? Douglas E. Salane Center for Cybercrime Studies John Jay College of Criminal Justice Cyber Infrastructure Protection.

Are Large Scale Data Breaches Inevitable? Douglas E. Salane Center for Cybercrime Studies John Jay College of Criminal Justice Cyber Infrastructure Protection.
CRIMINAL JUSTICE A Brief Introduction, 5/E by Frank Schmalleger ©2004 Pearson Education, Inc. Pearson Prentice Hall Upper Saddle River, NJ 07458 Police.

CRIMINAL JUSTICE A Brief Introduction, 5/E by Frank Schmalleger ©2004 Pearson Education, Inc. Pearson Prentice Hall Upper Saddle River, NJ Police.
Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.

Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.
(Geneva, Switzerland, September 2014)

(Geneva, Switzerland, September 2014)
COUNTERINTELLIGENCE TRENDS

COUNTERINTELLIGENCE TRENDS
FSIS’ Innovative Food Security Initiatives Carol Maczka, Ph.D. Assistant Administrator USDA Food Safety and Inspection Service Office of Food Security.

FSIS’ Innovative Food Security Initiatives Carol Maczka, Ph.D. Assistant Administrator USDA Food Safety and Inspection Service Office of Food Security.
Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer

Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer
END THE SILENCE. THE TEAM APPROACH COLLABORATION WITH LANDLORDS, VICTIM ADVOCACY, AND OTHER MEMBERS OF THE SEX OFFENDER MANAGEMENT PROGRAM.

END THE SILENCE. THE TEAM APPROACH COLLABORATION WITH LANDLORDS, VICTIM ADVOCACY, AND OTHER MEMBERS OF THE SEX OFFENDER MANAGEMENT PROGRAM.
National Governor’s Association September 29-30, 2003 Salt Lake City, Utah.

National Governor’s Association September 29-30, 2003 Salt Lake City, Utah.

Similar presentations

Ads by Google