1
play

1 February 4, 2020 Ransomware works Who: Ransomware is a threat - PowerPoint PPT Presentation

Jul 14, 2023 •288 likes •358 views

Geoff Hale 1 February 4, 2020 Ransomware works Who: Ransomware is a threat vector that is rife for bad actors, both criminal enterprises and nation-states have made use of ransomware. What: Ransomware is a type of malware that encrypts

  1. Geoff Hale 1 February 4, 2020

  2. Ransomware works ▪ Who: Ransomware is a threat vector that is rife for bad actors, both criminal enterprises and nation-states have made use of ransomware. ▪ What: Ransomware is a type of malware that encrypts the files on a user’s device or a network’s storage devices. ▪ Where: Top three targeted groups: (1) Municipalities, (2) schools, (3) hospitals. Clearly hitting the underrepresented/more vulnerable. ▪ When: Timing has seemed opportunistic, not strategic ▪ Why: Ransomware is a business model that works, victims are paying higher and higher ransoms. The willingness for victims and their insurers to pay out incentivize further use of ransomware. ▪ How: Ransomware-as-a-service kits mean nearly anyone can try their hand at a running a scam. Decades of lack of investment in IT, and a focus on systems operating more than system security, has left organizations across the country vulnerable to attack by ransomware actors. Geoff Hale 2 February 4, 2020

  3. Very Familiar Guidance ▪ Start with good cyber hygiene Prevent It Contain It Plan to Recover • Ask for help! Contact CISA, the FBI, or • Segment your networks; make it hard Vulnerabilities: the Secret Service The Technical and The People for the bad guy to move around and • Work with an experienced advisor to infect multiple systems help recover from a cyber attack • Always be patching. • Limit access- Apply the principle of • Know your system’s baseline for • Educate on phishing. least privilege to all systems and recovery • Don’t rely on people, authenticate services. • Review disaster recovery procedures • Enforce access controls- Multi-factor inbound email to prevent receipt of and validate goals with executives • Restricting user and third-party spoofed emails. • Filter executable files from reaching permissions to install and run software end users applications can help prevent malware from executing and spreading. Geoff Hale 3 February 4, 2020

  4. CISA’s support Know your vulnerabilities Proactive Vulnerability Scanning Remote Penetration Testing No cost, just ask… Educate to protect your people CIOCC@CISA.dhs.gov (888)282-0870 Phishing Campaign Assessments CISA Trainings If it happens… Incident Response Technical Expertise Geoff Hale 4 February 4, 2020

  5. Before Their Problem Becomes Yours ▪ Attackers looking to increase their likelihood of receiving payment want to spread to as many victims as possible ▪ Managed Service Providers have been targeted to both exploit and propagate ransomware ▪ Know who has access to your systems, and what actions they’re authorized to take. ▪ We’ve seen State and local governments enable MSPs to have persistent access and sweeping administrative privileges. If the MSP is hit with ransomware, there’s a high risk of their compromise. Geoff Hale 5 February 4, 2020

  6. Geoff Hale Director, Election Security Initiative Department of Homeland Security Geoffrey.Hale@hq.dhs.gov Geoff Hale 6 6 February 4, 2020

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Infusing Risk Management into Cybersecurity Education Barbara.Fox@gatech.edu Georgia Tech

Infusing Risk Management into Cybersecurity Education Barbara.Fox@gatech.edu Georgia Tech

Infusing Risk Management into Cybersecurity Education Barbara.Fox@gatech.edu Georgia Tech Research Institute 1 Fear Uncertainty Doubt 2 Mid-career Leaders, Decision Makers Cybersecurity is an overwhelming sea. The more I learn,

307 views • 19 slides
Brett Kilbourne PCCA Annual Convention March, 19, 2019 Frigate Bay, St. Kitts utc.org About

Brett Kilbourne PCCA Annual Convention March, 19, 2019 Frigate Bay, St. Kitts utc.org About

Brett Kilbourne PCCA Annual Convention March, 19, 2019 Frigate Bay, St. Kitts utc.org About UTC Established in 1948 to assist electric utilities in acquiring radio spectrum for communications networks Utility communications networks

387 views • 16 slides
SFR Network Pierre-Alain Allemand Senior Executive VP Networks Socit Gnrale 9 th Annual

SFR Network Pierre-Alain Allemand Senior Executive VP Networks Socit Gnrale 9 th Annual

SFR Network Pierre-Alain Allemand Senior Executive VP Networks Socit Gnrale 9 th Annual Telecom Conference March 25 th , 2010 Evolution of customer usage due to fast adoption of mobile Internet and growth in video consumption New

249 views • 5 slides
Q3 18 Earnings Results (NYSE: SAFE) October 25, 2018 Forward-Looking Statements and Other

Q3 18 Earnings Results (NYSE: SAFE) October 25, 2018 Forward-Looking Statements and Other

Q3 18 Earnings Results (NYSE: SAFE) October 25, 2018 Forward-Looking Statements and Other Matters This release may contain forward-looking statements. All statements other than statements of historical fact are forward-looking statements.

610 views • 28 slides
Common Security Requirement Language for Procurements & Maintenance Contracts Julio

Common Security Requirement Language for Procurements & Maintenance Contracts Julio

Common Security Requirement Language for Procurements & Maintenance Contracts Julio Rodriguez Idaho National Laboratory National Cyber Security Division (NCSD) Control Systems Security Program (CSSP) December 8, 2006 1 Background

682 views • 13 slides
Using Efficient Access Control To Protect Multi-Task Execution LI Yan Background Background

Using Efficient Access Control To Protect Multi-Task Execution LI Yan Background Background

Using Efficient Access Control To Protect Multi-Task Execution LI Yan Background Background Task an activity that needs to be accomplished by individual users or a team of users within a defined period of time Multi-task

743 views • 10 slides
Building a Culture of Security Agenda What is a Culture of Security? Regulatory

Building a Culture of Security Agenda What is a Culture of Security? Regulatory

Building a Culture of Security Agenda What is a Culture of Security? Regulatory Requirements Cyber Hygiene How to Develop a Culture of Security What is a Culture of Security A set of values, shared by everyone in an

350 views • 11 slides
Protecting the Nations Critical Assets in the 21st Century Dr. Ron Ross Computer Security

Protecting the Nations Critical Assets in the 21st Century Dr. Ron Ross Computer Security

Protecting the Nations Critical Assets in the 21st Century Dr. Ron Ross Computer Security Division Information Technology Laboratory NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY OPM. Anthem BCBS. Ashley Madison. NATIONAL INSTITUTE OF

506 views • 23 slides
Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos National Laboratory LA-UR-17-27644 Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA A Cyber-Physical Model

837 views • 7 slides
Healthcare: Is the Cyber Threat Real? President Obama has identified cybersecurity as one of the

Healthcare: Is the Cyber Threat Real? President Obama has identified cybersecurity as one of the

Healthcare: Is the Cyber Threat Real? President Obama has identified cybersecurity as one of the most serious economic and national security challenges we face as a nation..!Whitehouse.gov Dr. Emma Garrison-Alexander Vice Dean, Cybersecurity

355 views • 8 slides
Corporation $405,180,000* Subordinated Excise Tax Revenue & Revenue Refunding Bonds, Series

Corporation $405,180,000* Subordinated Excise Tax Revenue & Revenue Refunding Bonds, Series

City of Phoenix Civic Improvement Corporation $405,180,000* Subordinated Excise Tax Revenue & Revenue Refunding Bonds, Series 2020 Subordinated Excise Tax Subordinated Excise Tax Subordinated Excise Tax Revenue Bonds Revenue Bonds

447 views • 26 slides
Legal Privilege, Client Communication and Discovery Cayman Islands Legal Practitioners

Legal Privilege, Client Communication and Discovery Cayman Islands Legal Practitioners

Legal Privilege, Client Communication and Discovery Cayman Islands Legal Practitioners Association Adam Huckle 27 March 2019 Overview What is Privilege? Types: Legal Advice Privilege Litigation Privilege Recent cases

226 views • 18 slides
Xen Hypervisor security in VM isolation Yanick de Jong 4 February 2009 Research Question?

Xen Hypervisor security in VM isolation Yanick de Jong 4 February 2009 Research Question?

Xen Hypervisor security in VM isolation Yanick de Jong 4 February 2009 Research Question? What are the risks involved with merging Xen servers in different segments of the network and put all virtual machines together on one machine?

457 views • 14 slides
Powering Flexible Payments in the Cloud with Kubernetes whoami Ana Calin Systems Engineer

Powering Flexible Payments in the Cloud with Kubernetes whoami Ana Calin Systems Engineer

Powering Flexible Payments in the Cloud with Kubernetes whoami Ana Calin Systems Engineer @Paybase Twitter: @AnaMariaCalin 3 01 whoami 02 About Paybase 03 Things weve achieved so far 04 Our tech stack Table of Contents 05

970 views • 37 slides
Da ta Bre a c h! No w Wha t? Jo hn E . L a nde , CIPP/ US Sha re ho lde r Dic kinso n, Ma c

Da ta Bre a c h! No w Wha t? Jo hn E . L a nde , CIPP/ US Sha re ho lde r Dic kinso n, Ma c

11/11/2019 Da ta Bre a c h! No w Wha t? Jo hn E . L a nde , CIPP/ US Sha re ho lde r Dic kinso n, Ma c ka ma n, T yle r & Ha g e n, P.C. E thic s Compe te nc e A la wye r sha ll pr ovide c ompe te nt r e pr e se ntation to a c

153 views • 11 slides
ATTORNEYS & PRIVILEGED COMMUNICATIONS Wes Bearden, CEO Attorney & Licensed Investigator

ATTORNEYS & PRIVILEGED COMMUNICATIONS Wes Bearden, CEO Attorney & Licensed Investigator

INVESTIGATIONS, ATTORNEYS & PRIVILEGED COMMUNICATIONS Wes Bearden, CEO Attorney & Licensed Investigator Bearden Investigative Agency, Inc. www.beardeninvestigations.com PRIVILEGE KEY POINTS WE ALL KNOWRIGHT? Purpose is to

540 views • 19 slides
Raising Self-Awareness & Self-Examination to Deepen Cultural Humility Enedelia Sauceda, PhD,

Raising Self-Awareness & Self-Examination to Deepen Cultural Humility Enedelia Sauceda, PhD,

Raising Self-Awareness & Self-Examination to Deepen Cultural Humility Enedelia Sauceda, PhD, Licensed Psychologist Pronouns: she/her(s) Arlene Rivero-Carr, PhD, Licensed Psychologist Pronouns: she/her(s) Assumptions We all benefit from

473 views • 13 slides
YOUR CYBER SECURITY Ben Goodall PSC Griffiths Goodall, Managing Principal Nathaniel Barrs

YOUR CYBER SECURITY Ben Goodall PSC Griffiths Goodall, Managing Principal Nathaniel Barrs

YOUR CYBER SECURITY Ben Goodall PSC Griffiths Goodall, Managing Principal Nathaniel Barrs PSC Insurance Group, Director of Operations 19 May 2020 1 Agenda for Today Todays Environment Covid-19 Influences Types of Cyber

666 views • 21 slides
Making Users Feel Accountable: Deterring Abuses of Private Information within Information Systems

Making Users Feel Accountable: Deterring Abuses of Private Information within Information Systems

Making Users Feel Accountable: Deterring Abuses of Private Information within Information Systems Anthony Vance Braden Molyneux A long-standing tenet of information security is the Principle of Least Privilege: the concept that every

76 views • 5 slides
October 23, 2018 Partner Schools: Mott Community College Baker College of Flint College Defined

October 23, 2018 Partner Schools: Mott Community College Baker College of Flint College Defined

October 23, 2018 Partner Schools: Mott Community College Baker College of Flint College Defined : What comes to mind when you think of college? COLLEGE is MORE than that Post-secondary education includes: Associate Degrees 2

615 views • 27 slides
Consumer Outcomes: Evidence from a National Demonstration Program Stephen Roll Stephanie

Consumer Outcomes: Evidence from a National Demonstration Program Stephen Roll Stephanie

JOHN GLENN COLLEGE OF PUBLIC AFFAIRS The Impact of Credit Counseling on Consumer Outcomes: Evidence from a National Demonstration Program Stephen Roll Stephanie Moulton, PhD JOHN GLENN COLLEGE OF PUBLIC AFFAIRS Credit Counseling Overview

542 views • 29 slides
LINUX EMBEDDED CHALLENGE 2017 SUMMARY PRESENTATION EXTERNAL USE Competition summary Linux

LINUX EMBEDDED CHALLENGE 2017 SUMMARY PRESENTATION EXTERNAL USE Competition summary Linux

LINUX EMBEDDED CHALLENGE 2017 SUMMARY PRESENTATION EXTERNAL USE Competition summary Linux Embedded Challenge is a student competition organized by NXP Romania Students are organized in teams of 1 3 members Each team has to

397 views • 7 slides
Monitoring & Control Challenges Justin Hogue, PE Vice President Director of Business

Monitoring & Control Challenges Justin Hogue, PE Vice President Director of Business

Addressing Water/Wastewater Monitoring & Control Challenges Justin Hogue, PE Vice President Director of Business Development ABOUT LEC 30 years in industrial automation, controls and engineering Staffed with Experienced Automation

540 views • 28 slides
Water in South Florida Agriculture Julie Harrington, Yuki Takatsuka, Martijin Niekus Center for

Water in South Florida Agriculture Julie Harrington, Yuki Takatsuka, Martijin Niekus Center for

The Value of Using Irrigation Water in South Florida Agriculture Julie Harrington, Yuki Takatsuka, Martijin Niekus Center for Economic Forecasting and Analysis Florida State University SFWSC Annual Meeting in Naples, FL Jan 18-19, 2015 Basic

386 views • 26 slides

More recommend