cfa cyberconf
play

CFA CyberConf A.C.Slashopt ltd Nikos Tsarouchas Constantinos - PowerPoint PPT Presentation

Jan 22, 2024 •233 likes •822 views

CFA CyberConf A.C.Slashopt ltd Nikos Tsarouchas Constantinos Gakopoulos Constantinos Gakopoulos Greece Kastoria 1974 Landed in Cyprus 1995 20 years in the scene of IT 10 Years messing up with security Love PlayStation

  1. CFA CyberConf A.C.Slashopt ltd Nikos Tsarouchas – Constantinos Gakopoulos

  2. Constantinos Gakopoulos  Greece Kastoria 1974  Landed in Cyprus 1995  20 years in the scene of IT  10 Years messing up with security  Love PlayStation  In Love with Zelda

  3. Nikos Tsarouchas  Thessaloniki1973  In Cyprus since 2011  HP since 2008  More than 20 years in the scene of IT  Love Rum

  5. Do You Feel Secure? • What Is Security? • What is IT Security • What is Cyber Threat?

  17. Do You Feel Secure? • What Is Security? • What is IT Security • What is Cyber Threat?

  19. Do You Feel Secure? • What Is Security? • What is IT Security • What is Cyber Threat?

  26. I m under Attack

  27. I m under Attack A technical a non technical attack • What is a virus? • What is a Phishing attack? • What is Ransomware? •

  28. Non Technical Attacks Social Engineering Dumpster Diving Phishing

  30. Technical Attacks DDOS – DOS Attack Virus, Trojan, Worms

  31. Ransomware/ Locky/Cerber  Ransomware is a computer malware that installs covertly on a victim's device (e.g., computer, smartphone, wearable device) and that either mounts the cryptoviral extortion attack from cryptovirology that holds the victim's data hostage, or mounts a cryptovirology leakware attack that threatens to publish the victim's data, until a ransom is paid.  From Wikipedia, the free encyclopedia

  33. Virus / Mallware  Malware , short for malicious software , is any software used to disrupt computer or mobile operations, gather sensitive information, gain access to private computer systems, or display unwanted advertising  Malware may be stealthy, intended to steal information or spy on computer users for an extended period without their knowledge.  From Wikipedia, the free encyclopedia

  34. Phishing  Phishing is the attempt to obtain sensitive information such as usernames, passwords, and credit card details (and, indirectly, money), often for malicious reasons, by disguising as a trustworthy entity in an electronic communication.  Phishing is typically carried out by email spoofing or instant messaging, and it often directs users to enter personal information at a fake website, the look and feel of which are almost identical to the legitimate one. Communications purporting to be from social web sites, auction sites, banks, online payment processors or IT administrators are often used to lure victims. Phishing emails may contain links to websites that are infected with malware.

  36. Major breaches in 2016

  37. “ As a kid, I had this great idea to be secure. I could build a big titanium room that would not be accessible from the outside. Then again, I thought…this will only give the intruder infinite time to find a myriad ways to find a way in. ” Andreas Papamichael. Co-Founder A.C.Slashopt ltd

  38. Statistics BlackHat Conf 2016 BlackHat Conf 2016

  44. Microsoft phishing scam

  45. …The evil Link

  47. Vulnerabilities On our IT Environment Internet itself • If we communicate with other people, there’s a hole • BYOD • The a-virus myth • BOX, Drobox, OneDrive, Google Drive, iCloud • Whatever the IT policies, users are not aware of the danger • Doing it from the inside •

  48. Why Do Businesses Fail To Protect Themselves And Their Customer’s Data They don’t believe there is an actual danger They think they are already secure I have a friend…I know someone….My best man told me… THIS WILL NEVER HAPPEN TO ME

  49. Investment. Choose Wisely

  50. IT Department Vs Management Dep IT Department Management  New Technologies  Cost of the investment  Upgrades. OS – H/W  But it works  Data integrity – Security  Come on. We are too small  IT Budged for this year  IT…. What? LoooL  Training for IT  Google IT  New Software cost  Find it on Pirate bay  How Much???  DRS  Cloud  I Don’t trust them

  52. 28 Days Later… ( Not the Movie) Disaster Issues Measures To take  Data loss, Files Encrypted  Evaluation. Know how, what, when and how many  Servers, Client Pc’s, Phone  Isolation Compromised?  Who? Why?  Human Factor (Happiness, Salary, Education, )  Cannot restore files. Backup failed and is corrupted  Backups Backups Backups  Weak firewall. No logging  Carefully pick your sec consultant

  54. Who do I trust for the job Everybody knows (or at least say they do) how to protect you • Have they done this before? • Can they explain the steps to you? • Is it cheap? Can you afford this? •

  55. They attacked. What now? • Is it all gone? • What is a backup? • Can the Police help me?

  56. If none of the above worked…  There is always a final and more radical solution and way to fix the issues caused by the security compromise

  57. God Is Always The Answer

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

European Multi-Stakeholder Platform (MSP) on ICT Standardisation AGENDA I European

European Multi-Stakeholder Platform (MSP) on ICT Standardisation AGENDA I European

Bienvenue European Multi-Stakeholder Platform (MSP) on ICT Standardisation AGENDA I European Multi-Stakeholder Platfom (MSP) on ICT Standardisation II Rolling Plan for ICT Standardisation A Key enablers and security B Societal

796 views • 56 slides
KMSchain Zero-knowle ledge, , dec decentraliz ized solu solutions for or inclusive pr

KMSchain Zero-knowle ledge, , dec decentraliz ized solu solutions for or inclusive pr

KMSchain Zero-knowle ledge, , dec decentraliz ized solu solutions for or inclusive pr protection of of da data pr priv ivacy on cl on cloud, , bl blockchain in an and be beyond. . We e ar are experts of of zer ero-knowle

661 views • 55 slides
Assuring S tatistical Confidentiality and S ecurity: RBI experience Dr. Anil Kumar S harma

Assuring S tatistical Confidentiality and S ecurity: RBI experience Dr. Anil Kumar S harma

Assuring S tatistical Confidentiality and S ecurity: RBI experience Dr. Anil Kumar S harma (anilksharma@ rbi.org.in) Adviser Department of S tatistics & Information Management Reserve Bank of India Information Confidentiality &

519 views • 18 slides
Program Integrity Unit north carolina north carolina medicaid medicaid Program Integrity Unit

Program Integrity Unit north carolina north carolina medicaid medicaid Program Integrity Unit

Division of Medical Assistance Program Integrity Unit north carolina north carolina medicaid medicaid Program Integrity Unit Federally mandated Prevent, identify, and investigate potential fraud, waste, and abuse within Medicaid

446 views • 29 slides
www.thinkit.uk.com The DR question: How likely is it to happen, and how bad will it be?

www.thinkit.uk.com The DR question: How likely is it to happen, and how bad will it be?

www.thinkit.uk.com www.thinkit.uk.com The DR question: How likely is it to happen, and how bad will it be? www.thinkit.uk.com Situation where robust DR is NOT in place. Fire & Theft V.Unlikely, Really Bad! Hard Drive Failure

413 views • 12 slides
Cancer Navigation: Opportunities and Challenges for Facilitating the Breast Cancer Journey 1 M

Cancer Navigation: Opportunities and Challenges for Facilitating the Breast Cancer Journey 1 M

Cancer Navigation: Opportunities and Challenges for Facilitating the Breast Cancer Journey 1 M A I A J A C O B S , J A M E S C L A W S O N , B E T H M Y N A T T C O L L E G E O F C O M P U T I N G G E O R G I A I N S T I T U T E O F

600 views • 25 slides
Use a Reputation System? DERRICK COETZEE, ARMANDO FOX, MARTI A. HEARST, BJRN HARTMANN

Use a Reputation System? DERRICK COETZEE, ARMANDO FOX, MARTI A. HEARST, BJRN HARTMANN

Should Your MOOC Forum Use a Reputation System? DERRICK COETZEE, ARMANDO FOX, MARTI A. HEARST, BJRN HARTMANN UNIVERSITY OF CALIFORNIA, BERKELEY Outline Motivation and Background MOOC Forums, Reputation Systems Outline Motivation

465 views • 21 slides
Participatory design and feminist interventions. Emancipatory potentials of public engagement.

Participatory design and feminist interventions. Emancipatory potentials of public engagement.

Science in Public 2012 University College London, 20th & 21st July 2012 Participatory design and feminist interventions. Emancipatory potentials of public engagement. Some insights into participatory design and research in computer

262 views • 14 slides
Examining Gaps and Opportunities for Engaging with Contextual Integrity in Human- computer

Examining Gaps and Opportunities for Engaging with Contextual Integrity in Human- computer

Examining Gaps and Opportunities for Engaging with Contextual Integrity in Human- computer Interaction Karla Badillo-Urquiola 1 , Xinru Page 2 , & Pamela Wisniewski 1 University of Central Florida 1 Bentley University 2 kbadillo@ist.ucf.edu,

582 views • 14 slides
INVENTING TECHNOLOGY FOR HOMES AND FAMILIES Speaker: A.J. Bernheim Brush Host: Lori Pollock

INVENTING TECHNOLOGY FOR HOMES AND FAMILIES Speaker: A.J. Bernheim Brush Host: Lori Pollock

INVENTING TECHNOLOGY FOR HOMES AND FAMILIES Speaker: A.J. Bernheim Brush Host: Lori Pollock Speaker & Moderator Lori Pollock A.J. Bernheim Brush Dr. Lori Pollock is a Professor in Computer and Dr.

618 views • 39 slides
Stretching IoT toward (understanding) Human Relations and Interactions Youngki Lee, Inseok Hwang,

Stretching IoT toward (understanding) Human Relations and Interactions Youngki Lee, Inseok Hwang,

Stretching IoT toward (understanding) Human Relations and Interactions Youngki Lee, Inseok Hwang, Younghyun Ju, Chungkuk Yoo, Chulhong Min, Junehwa Song , and MANY OTHERS SMU (Singapore Management Univ.) IBM Research Austin, USA Naver Labs.

786 views • 47 slides
1/9 Jrgen Schfer In Search of Sustainability Institutional and Curricular Limitations of

1/9 Jrgen Schfer In Search of Sustainability Institutional and Curricular Limitations of

1/9 Jrgen Schfer In Search of Sustainability Institutional and Curricular Limitations of Teaching Electronic Literature Presentation at the Electronic Literature Pedagogy Workshop, hosted by Blekinge Institute of Technology, Karlskrona

571 views • 9 slides
My Background curiosities and interests getting a career Usability A recent

My Background curiosities and interests getting a career Usability A recent

Agenda My Background curiosities and interests getting a career Usability A recent gradate perspective Usability in the industry Some good usability resources. 2 Auckland University CS 345 My background Psychology

511 views • 5 slides
Doing IT Security Organizational challenges Laura Kocksch Fraunhofer Institute for Secure

Doing IT Security Organizational challenges Laura Kocksch Fraunhofer Institute for Secure

Doing IT Security Organizational challenges Laura Kocksch Fraunhofer Institute for Secure Information Technologies/Ruhr University Bochum RISCS Developer-Centred Security Workshop: 24th November 2016 1 Study I: Can security become an

449 views • 20 slides
HomeSense Team Nigel Gilbert is Professor and Director of the Centre for Research in Social

HomeSense Team Nigel Gilbert is Professor and Director of the Centre for Research in Social

HomeSense Team Nigel Gilbert is Professor and Director of the Centre for Research in Social Simulatjon at University of Surrey and the HomeSense PI. He read for a fjrst degree in Engineering, and obtained his doctorate on the sociology of

434 views • 7 slides
Building Adaptable and Scalable Natural Language Generation Systems Yannis Konstas Natural

Building Adaptable and Scalable Natural Language Generation Systems Yannis Konstas Natural

Building Adaptable and Scalable Natural Language Generation Systems Yannis Konstas Natural Language Generation is everywhere (Machine Translation)

1.78k views • 174 slides
Stuttgart General Assembly Stuttgart General Assembly Scientific / Science Policy Board

Stuttgart General Assembly Stuttgart General Assembly Scientific / Science Policy Board

Stuttgart General Assembly Stuttgart General Assembly Scientific / Science Policy Board Scientific / Science Policy Board 2013, February 18th 2013, February 18th VISIONAIR VISIONAIR Agenda Welcome Presentation of members Goals of the

345 views • 34 slides
Usability Aspects of Collaborative planning: current problem areas Our Tangible User

Usability Aspects of Collaborative planning: current problem areas Our Tangible User

Overview What is Tangible Interaction? Usability Aspects of Collaborative planning: current problem areas Our Tangible User Interface (TUI) Tangible Interaction Advantages of tangible interaction to collaborative planning My

214 views • 5 slides
Accuracy in Rating and Recommending Item Features Lloyd Rutledge 1 , Natalia Stash 2 , Yiwen

Accuracy in Rating and Recommending Item Features Lloyd Rutledge 1 , Natalia Stash 2 , Yiwen

Accuracy in Rating and Recommending Item Features Lloyd Rutledge 1 , Natalia Stash 2 , Yiwen Wang 2 , and Lora Aroyo 3 1 Telematica Instituut, Enschede, The Netherlands 2 Technische Universiteit Eindhoven, Eindhoven, The Netherlands 3 Vrije

434 views • 10 slides
Information engineering and services for the urban environment Kostas Karatzas Informatics A

Information engineering and services for the urban environment Kostas Karatzas Informatics A

Information engineering and services for the urban environment Kostas Karatzas Informatics A pplications and Systems Group Dept. of Mechanical E ngineering A ristotle University of Thessalonik i k k ara@ eng.auth.gr , http:/ /

430 views • 17 slides
Da Data analysis, interpretation, and pr present ntation 2 1 2/21/16 Quantitative and

Da Data analysis, interpretation, and pr present ntation 2 1 2/21/16 Quantitative and

2/21/16 15/ 15/16 16 CSY2041 2041 Qu Quality and User-Ce CentredSy Systems INTERACTION DESIGN 1 Da Data analysis, interpretation, and pr present ntation 2 1 2/21/16 Quantitative and qualitative Quantitative data expressed

387 views • 9 slides
Lets Read! Junsoo Park Youngbo Shim Sang-Gyun An 20164320 20164350

Lets Read! Junsoo Park Youngbo Shim Sang-Gyun An 20164320 20164350

Lets Read! Junsoo Park Youngbo Shim Sang-Gyun An 20164320 20164350 20164352 The trigger point of our project is... 32 reading responses out of 66 paper We are novice researchers Unfamiliar with the discipline

764 views • 55 slides
Extending/Optimizing the USRP/RFNOC Framework for Implementing Latency-Sensitive Radio Systems

Extending/Optimizing the USRP/RFNOC Framework for Implementing Latency-Sensitive Radio Systems

Extending/Optimizing the USRP/RFNOC Framework for Implementing Latency-Sensitive Radio Systems Joshua Monson* , Zhongren Cao^, Pei Liu~, Travis Haroldsen*, Matthew French* 11/14/2018 *USC Information Sciences Institute Arlington, VA ^C3-COMM

475 views • 32 slides
WiFi-Direct Simulation for INET in OMNeT++ Syphax Iskounen , Thi Mai Trang NGUYEN and Sbastien

WiFi-Direct Simulation for INET in OMNeT++ Syphax Iskounen , Thi Mai Trang NGUYEN and Sbastien

WiFi-Direct Simulation for INET in OMNeT++ Syphax Iskounen , Thi Mai Trang NGUYEN and Sbastien Monnet University Pierre and Marie Curie (UPMC), France Laboratoire dInformatique de Paris 6 (LIP6) 1 2 Outline Introduction to WiFi-Direct

716 views • 17 slides

More recommend