cyber security xperience group sophos https player vimeo
play

Cyber Security Xperience Group & Sophos - PowerPoint PPT Presentation

Jun 10, 2023 •100 likes •469 views

Cyber Security Xperience Group & Sophos https://player.vimeo.com/video /135044595?width=800&heigh t=450&iframe=true&portrait=0 Cybercrime Prevention Seminar Law Society - Belfast Dermot Hayden 12 th Oct 2018 Sophos Snapshot

  1. Cyber Security Xperience Group & Sophos

  5. https://player.vimeo.com/video /135044595?width=800&heigh t=450&iframe=true&portrait=0

  6. Cybercrime Prevention Seminar Law Society - Belfast Dermot Hayden 12 th Oct 2018

  7. Sophos Snapshot • Founded 1985 in Oxford, UK • $768.6 million in FY18 billings • 3,300 employees • 300,000+ customers at end of FY18 • Mid Market Focus • 100+ million users • 39,000+ channel partners at H1 FY18 • SophosLabs threat research facility Sophos Headquarters, Abingdon, UK • 100% channel-based go to market model • Endpoint & Network Security split 50/50

  8. Free Tools Sophos gives out free tools that check for security risk, remove viruses, and protect home networks Sophos Home Free, including a free XG Firewall Mobile Security Antivirus for Linux Home Edition 30-day trial of Sophos Home Premium for iOS 275,000+ average monthly visitors! Free 30-day trial of Mobile Security UTM Home HitmanPro and HitmanPro.Alert for Android Edition

  9. The IT Security Challenge

  10. IT Security Challenge GROWING RISK AWARENESS EXPANDING ATTACK SURFACE • High profile corporate hacks (Sony, Target, Home Depot) • Multiple platforms (Windows, OS X, Linux) • High profile personal hacks (UK News International phone hacking scandal, • Mobile devices (iOS, Android, phones, tablets, wearables) • Internet of Things (IoT) iCloud celebrity nude photos) • Government surveillance allegations (Snowden leaks) • Regional compliance regulations (e.g. PCI compliance, data privacy) Layers of Complexity & Cost INCREASED ATTACK VANISHED PERIMETER SOPHISTICATION • Cloud-based storage (Dropbox, Box, OneDrive) • Crimeware-as-a-service (Vawtrak, Lizard • Social media (Facebook, Twitter, LinkedIn) Squad) • Remote offices • Cross-pollination • Roaming workers (APTs <--> crimeware) • Public cloud (AWS, Rackspace) • Crypto ransomware (CryptoLocker, • BYOD CryptoWall) • Free Wifi

  11. SMBs Don’t Have Adequate Resources to Respond An Enterprise Approach Is Not Realistic Key Security Challenges Faced by Mid-Market Average Number of People Dedicated to  Growing number and sophistication of security IT Security threats  Increasing cost and exposure of "getting it Large Enterprises Mid-Market Enterprises wrong"  Traditional, complex point solutions increase 5,000 - 19,999 100 - 499 Employees Employees cost and erode usability and manageability  Fragmented and constantly changing vendor landscape is difficult to navigate and understand 500 - 999 Employees  Limited in-house IT security personnel and 20,000+ Employees expertise  Pressure on resources, budgets and time 1,000 - 4,999 Employees  Enterprise security issues without enterprise class budgets “While bigger businesses can often dedicate greater resources towards cybersecurity, small and medium-sized businesses and entrepreneurs face the same cybersecurity challenges and threats with limited resources, capacity, and personnel.” (1) Note: 1. Source: U.S. Department of Homeland Security, 2014

  12. Operation ‘ Honeybadger ’ • Sophos ‘Black Ops’ Project to determine threat to Irish businesses with online presence • Two websites – C1 (Best Practice) & C2 (Typical SMB) each with firewall, web server and file server. • Immediate sustained attacks on both sites – US, Germany, China with website and RDP services the primary focus of sustained brute force attacks • WAF and IPS on C1 responsible for reduction in bandwidth usage • Reduced password complexity on C2 led to hacker gaining access after 3 hours 8 minutes – more followed before systems were shut down!

  13. Threat Landscape

  14. Cybercrime Dynamics TODAY INTEGRATED BUSINESS MODEL (WannaCry, Locky, CryptoLocker) INDUSTRIALIZATION (RIG Exploit Kit, Neutrino Exploit Kit) AUTOMATION (Asprox botnet, Blackhole, Zeus) EFFICIENT ECOSYSTEMS (Mpack, Conficker) EARLY COMMERCIALIZATION (Loveletter, Pump & Dump email) DIGITAL GRAFFITI (Melissa, CodeRed worm) EVOLUTION OF CYBERCRIME OVER TIME > COMPOUNDING FACTORS LEVEL / SOURCES OF FUNDING NUMBER OF THREATS THREAT SOPHISTICATION RANSOMWARE NON-WINDOWS/ MOBILE NUMBER & RANGE OF ACTORS PROLIFERATION / NATION STATE

  15. The Challenge Of Addressing New Threats Software Vulnerabilities Reported By Year 14647 7937 Up to 1 May 2018 6487 6446 5990 5286 5186 4639 4150 2010 2011 2012 2013 2014 2015 2016 2017 2018 Source information NIST National Vulnerability Database as of 1 May 2018 https://beta.nvd.nist.gov/vuln-metrics/visualizations/cvss-severity-distribution-over-time

  16. Top Threats Worldwide • Active Adversary Generic Cryptojacking o Privilege escalation, cred theft, lateral Malware 3% movement, exploits, process injection 5% Active • Advanced Malware Ransomware Adversary o Zero-day attacks w/multiple stages 21% 38% o Worms, Trojans, VB script, PDF, File-less attacks (cryptominers, powershell, etc … ), bots, rats • Cryptomining/Cryptojacking 33% o Legitimate and malicious use of CPU cycles to generate digital currency Advanced Malware

  17. The Threat Landscape Has Shifted Generic Cryptojacking Malware 3% 5% Active Ransomware Adversary RANSOMWARE 21% 38% 54% OF ORGS HIT BY RANSOMWARE *Source: State of Endpoint Protection Study 2018 33% Advanced Malware

  18. Data Protection How far do you want to go to manage the risk to your data and IT assets? Risk mitigation BASIC IT SECURITY SCALE LOWEST RISK Top causes for Hacking, malware, or Portable devices and Unintended disclosure Other (4%) malicious code (57%) physical loss (17%) (22%) data loss* Lost or stolen Human error, Unauthorized Lost or stolen Common ways mobile devices, loss via email, Advanced Ransomware and Malicious insider access and laptops and malware exploits to lose data tablets, and or loss via credential theft storage devices IoT devices cloud storage Remediation SafeGuard Encryption Endpoint Protection Server Security Device Encryption Intercept X Sophos Mobile Effort LOWER HIGHER * Percentages based on number of incidents according to data from Privacy Rights Clearinghouse

  19. 93% of breaches include phishing Verizon 2018 Data Breach Investigations Report 19

  20. Education

  21. Spotting the Phish Any attempt to bait a user into: • Opening a malicious email attachment • Clicking a link • Transferring funds or confidential information 21

  22. Global spam and phishing volumes 2015 2016 2017 22

  23. Users five times more susceptible to Phishing Emails Phishing Attacks 13% B2B Email CTR B2C Email CTR 3.5% 2.4% Consumer marketing emails 5.4x / Business emails 3.7x 23 Sources: Sophos Phish Threat simulation data , Experian Email Benchmark Report Q4 2016

  24. The threat landscape for phishing 41% OF IT P ROS REPORT AT LEAST DAILY 62% OF O RGANIZATIONS FAIL TO TEST PHISHING ATTACKS USER AWARENESS HOURLY 9% DAILY 32% WEEKLY 26% FORTNIGHTLY 5% 62% MONTHLY 6% INFREQUENTLY 15% NEVER 5% I DON’T KNOW 3% Phishing Temperature Check, Freeform Dynamics 2017 (for Sophos) 24 Data from 330 global IT professionals

  25. The threat landscape for phishing 41% OF IT P ROS REPORT AT LEAST DAILY 62% OF O RGANIZATIONS FAIL TO TEST PHISHING ATTACKS USER AWARENESS HOURLY 9% DAILY 32% WEEKLY 26% FORTNIGHTLY 5% 62% MONTHLY 6% INFREQUENTLY 15% NEVER 5% I DON’T KNOW 3% Phishing Temperature Check, Freeform Dynamics 2017 (for Sophos) 25 Data from 330 global IT professionals

  26. Solution: Phish like a bad guy Educate and test your users to spot attacks USER BASELINE TESTING REAL-WORLD ATTACK SIMULATION EFFECTIVE TRAINING MODULES COMPREHENSIVE REPORTING 26

  27. Sophos Phish Threat • Simulated phishing campaigns in 3 easy steps 1 2 3 Monitor activity Choose an Choose and measure attack training awareness • 100’s of customizable • Over 30 interactive • Campaign reporting • Security posture by attack templates fed training courses by latest threat covering security and organization, group, or intelligence compliance topics individual

  28. 100’s of customizable attack simulation templates Multiple scenarios and difficulties • Realistic simulations powered by global threat intelligence • Library of international templates from beginner to expert Growing library of international content • • Australian Federal New Zealand Inland Police Revenue Department • Amazon.co.uk • Parcelforce • DVLA • Royal Bank of • Canada Post Canada • London Underground 28

  29. Over 30 end user training modules Security Topics • • Phishing Malicious attachments • • Credential harvesting Passwords & passphrases • • Vishing (phone phishing) Two-factor • Social engineering authentication • • Ransomware Principle of least privilege • • Secure social media use Physical security and data • Public Wi-Fi protection Compliance Topics • EU General Data Protection Regulation (GDPR) • Gramm-Leach-Bliley Act (GLBA) • Health Insurance Portability and Accountability Act (HIPAA) • Payment Card Industry Data Security Standard (PCI DSS) 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Stand and deliver! Your money or your data. James Burchell Sophos Security Specialist Endpo

Stand and deliver! Your money or your data. James Burchell Sophos Security Specialist Endpo

Stand and deliver! Your money or your data. James Burchell Sophos Security Specialist Endpo Endpoin int sec secur urit ity has r has reac eached a hed a ti tipping po poin int Trumpings on Cyber Now the cyber is so big and you

509 views • 29 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
Agenda Why we need a new approach to endpoint security Introducing Sophos Intercept X

Agenda Why we need a new approach to endpoint security Introducing Sophos Intercept X

Agenda Why we need a new approach to endpoint security Introducing Sophos Intercept X Demonstration / Feature Walk Through Deployment Options Q &amp; A 2 Endpoint Security has reached a Tipping Point Attacks are from within the

937 views • 29 slides
Review Process A. DAVID MCKINNON, PH.D. Cyber Security Group, National Security Directorate

Review Process A. DAVID MCKINNON, PH.D. Cyber Security Group, National Security Directorate

SGIG Cyber Security Program Review Process A. DAVID MCKINNON, PH.D. Cyber Security Group, National Security Directorate TCIPG Industry Workshop 2014 November 14, 2014 PNNL-SA-106570 1 SGIG Cyber Security Program Overview Smart Grid

675 views • 10 slides
Apache As A Malware-Scanning Proxy Jeremy Stashewsky, Sophos Plc. http://www.sophos.com/

Apache As A Malware-Scanning Proxy Jeremy Stashewsky, Sophos Plc. http://www.sophos.com/

Apache As A Malware-Scanning Proxy Jeremy Stashewsky, Sophos Plc. http://www.sophos.com/ jeremys@ca.sophos.com Overview The case: building an appliance product Apache HTTPD proxy architecture Malware scanning: challenges and

895 views • 68 slides
Institute for Cyber Security A Lattice Interpretation of Group-Centric Collaboration with

Institute for Cyber Security A Lattice Interpretation of Group-Centric Collaboration with

Institute for Cyber Security A Lattice Interpretation of Group-Centric Collaboration with Expedient Insiders Khalid Zaman Bijon, Tahmina Ahmed, Ravi Sandhu, Ram Krishnan Institute for Cyber Security University of Texas at San Antonio 1 1

336 views • 16 slides
Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

ABB MINING USER CONFERENCE, MAY 02-05, 2017 Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial Automation Division Agenda Why worry about cyber security? ABBs approach to cyber security Cyber security

1.07k views • 39 slides
Security Testing Checking for what shouldnt happen Azqa Nadeem PhD Student @ Cyber Security

Security Testing Checking for what shouldnt happen Azqa Nadeem PhD Student @ Cyber Security

Security Testing Checking for what shouldnt happen Azqa Nadeem PhD Student @ Cyber Security Group The Cyber Security lecture series 1 Agenda for today Part I Latest security news Security vulnerabilities in Java

2.02k views • 185 slides
https://woebot.io/ Soft awareness 2017 chats with Replika https://vimeo.com/250440998#t=40s

https://woebot.io/ Soft awareness 2017 chats with Replika https://vimeo.com/250440998#t=40s

https://woebot.io/ Soft awareness 2017 chats with Replika https://vimeo.com/250440998#t=40s https://www.pandorabots.com/mitsuku/ 80% of companies will use ChatBots by the end of 2020 Chatbots can cut operational costs by up to 30%.

493 views • 7 slides
Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web application weaknesses XSS AJAX weaknesses SQL Injection Attacks (Slides from Lars Olson)

588 views • 41 slides
https://vimeo.com/217238769/9eab91e516 If you are interested in the bartender competition,

https://vimeo.com/217238769/9eab91e516 If you are interested in the bartender competition,

https://vimeo.com/217238769/9eab91e516 If you are interested in the bartender competition, contact Joe Hess at jhconsulting77@gmail.com or Susan Eberly at susane@alegreconcierge.com To participate as a Velocity Food Vendor and receive

539 views • 27 slides
Alex Zolciak Alex Zolciak 2D Alex Zolciak 3D Alex Zolciak Other https://vimeo.com/122535005

Alex Zolciak Alex Zolciak 2D Alex Zolciak 3D Alex Zolciak Other https://vimeo.com/122535005

The Works Of Alex Zolciak Alex Zolciak 2D Alex Zolciak 3D Alex Zolciak Other https://vimeo.com/122535005 https://vimeo.com/album/3231818/video/117452636

425 views • 16 slides
Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three points of failure in any secure network: Technology (hardware and software) Technology Support (ITS) End Users (USD students and employees)

359 views • 23 slides
Cyber 101 Aaron Yates Chief Executive, Berea A crash course on cyber security, data protection

Cyber 101 Aaron Yates Chief Executive, Berea A crash course on cyber security, data protection

www.berea-group.co m Cyber 101 Aaron Yates Chief Executive, Berea A crash course on cyber security, data protection and cyber insurance. Chelmsford CII Wednesday, 13th February 2019 Berea Focused on high scale cyber support for SMEs.

532 views • 34 slides
CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY HAPPEN London June 2019 INTRODUCTION Cyber Security The activity or process, ability or capability, or state whereby information and

735 views • 24 slides
ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* * Preliminary programme, subject to revision/update status 16 December 2014 4 February 2015 Day 1: Cyber Security Readiness Registration KU

306 views • 4 slides
Larry Clinton Operations Officer Internet Security Alliance lclinton@eia.org 703-907-7028

Larry Clinton Operations Officer Internet Security Alliance lclinton@eia.org 703-907-7028

Larry Clinton Operations Officer Internet Security Alliance lclinton@eia.org 703-907-7028 202-236-0001 Presentation Outline The Growing Problem of Cyber Security Traditional Solutions and Why They Wont Work A New Paradigm (tools

591 views • 34 slides
SCORE Website Cybersecurity Presentation DASHBOARD INTERACTIVE Digital Marketing Firm that

SCORE Website Cybersecurity Presentation DASHBOARD INTERACTIVE Digital Marketing Firm that

SCORE Website Cybersecurity Presentation DASHBOARD INTERACTIVE Digital Marketing Firm that emphasizes Website Security Founded in January of 2006 13 Team Members Work with Small and Medium Sized Businesses and Agencies

522 views • 41 slides
CYBERSECURITY CYBERSECURITY SEMINAR SEMINAR STEVE RUTKOVITZ STEVE RUTKOVITZ ABOUT STEVE

CYBERSECURITY CYBERSECURITY SEMINAR SEMINAR STEVE RUTKOVITZ STEVE RUTKOVITZ ABOUT STEVE

PROTECTING YOU AND YOUR BUSINESS CYBERSECURITY CYBERSECURITY SEMINAR SEMINAR STEVE RUTKOVITZ STEVE RUTKOVITZ ABOUT STEVE RUTKOVITZ ABOUT STEVE RUTKOVITZ For over 20 years, Steve owned and operated a very successful MSP business. W ith a

516 views • 25 slides
Modern Digital Security John Dmytrasz - Senior Network Administrator Mike Ali - Network

Modern Digital Security John Dmytrasz - Senior Network Administrator Mike Ali - Network

Modern Digital Security John Dmytrasz - Senior Network Administrator Mike Ali - Network Administrator What are the threats facing you in your digital life? The biggest threat to computer security is you and your employees Social

571 views • 23 slides
CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview 1. What is at risk? 2. Global industry trends 3. BDO/AusCERT survey 4. Recent cyber case studies 5. Cyber risk mitigation strategies Page

481 views • 35 slides
Steroids [root@tools ~]# whoami Martin (purehate) Bos Core Developer for Backtrack Linux

Steroids [root@tools ~]# whoami Martin (purehate) Bos Core Developer for Backtrack Linux

Password Cracking on Steroids [root@tools ~]# whoami Martin (purehate) Bos Core Developer for Backtrack Linux Owner of Computer Rehab Co-Founder Question-Defense Security Enthusiast [root@tools ~]# whoami Alex (dakykilla) Kah

392 views • 37 slides
A P P L I C AT I O N S T H R O U G H A N AT TA C K E R S L E N S M I C H A E L C O AT E S

A P P L I C AT I O N S T H R O U G H A N AT TA C K E R S L E N S M I C H A E L C O AT E S

A P P L I C AT I O N S T H R O U G H A N AT TA C K E R S L E N S M I C H A E L C O AT E S , T R U S T &amp; I N F O R M AT I O N S E C U R I T Y O F F I C E R @ _ M W C W H AT S G O I N G W R O N G Deconstructing Breaches

844 views • 55 slides
Cybersecurity, Insurers, and the Department: What You Need to Know John J. Lacek IV, Esq.

Cybersecurity, Insurers, and the Department: What You Need to Know John J. Lacek IV, Esq.

Cybersecurity, Insurers, and the Department: What You Need to Know John J. Lacek IV, Esq. Department Counsel Chair Cybersecurity Incident Response Task Force Office of Chief Counsel | www.insurance.pa.gov A Growing Threat and Growing

531 views • 25 slides

More recommend