cybersecurity update
play

Cybersecurity Update Its More Than Technology People: Your First - PowerPoint PPT Presentation

Sep 28, 2023 •174 likes •486 views

Cybersecurity Update Its More Than Technology People: Your First Line of Defense Incident Response Overview Types of data in your environment and why it is important. Trending threats. Minimizing risks through layers of defense:

  1. Cybersecurity Update It’s More Than Technology People: Your First Line of Defense Incident Response

  2. Overview • Types of data in your environment and why it is important. • Trending threats. • Minimizing risks through layers of defense: People , Polices and Technology .

  3. Data You Control Family Information (Spouse, Children) Personally Identifiable Information (PII) General Ledger Details Data that could potentially identify a specific individual. Income Tax Returns Info that could distinguish one person from another. Insurance Policy Numbers Loan Information (Acct # & Balance) Account Numbers (Bank & Credit Card) Name, Address, Phone, Date of Birth Accounts Payable/Receivable Information Organizational Documents Bank Routing Numbers Passport Information Client Login & Password Information Social Security Number (SSN) Client Payroll Information Tax Identification Number Copies of Bank Statements

  4. Data Breaches World’s Biggest Data Breaches & Hacks 4

  5. US Breach Summary • 1 Jan 2005 – 31 Dec 2018 1 – Total breaches = 9,084 – Records exposed = 1,099,019,895 1 http://www.idtheftcenter.org/Data-Breaches/data-breaches 5

  6. Financial and Insurance All Sectors

  7. Avenues of Attack • Basic cyber hygiene (it’s like common sense) – Unpatched known vulnerabilities cause 44 percent of breaches…2 to 4 years old • Configurations, Ports & Protocols – Public facing when it should be behind a firewall – Unused ports should be closed – Remote access should be limited; secure (VPN) • User credentials – Passwords: need complex and changed often – Use multi-factor authentication • User behavior – Education & Awareness • StopThinkConnect.org • LockDownYourLogin.com – Prepare for phishing, pretexting & scams – App “Terms of Service”

  8. Motives for Attacks 2017 Verizon DBIR

  9. The Market for Stolen Account Credentials First Seven Months of 2017 • Botmaster sold approximately 35,000 credential pairs via the ‘Carder’s Paradise’ market • Earned $288,609.25 • Average of $8.19 for each credential sold through the service. 9 https://krebsonsecurity.com/2017/12/the-market-for-stolen-account-credentials/

  10. Dark Web Accounts Price List Account Price Verizon $12 Wireless.com Airbnb.com $15 Ebay.com $10 Fido.ca $20 Buy Accounts Chase.com $25 Orders Citibank $25 Navyfederal.org $60 Target.com $10 Wellsfargo.com $25 Rbroyalbank.com $65 BB&T.com $25 TDBank.com $25 Ally.com $25 Criminals can specify the financial institution when purchasing usernames and passwords. If what they want is not available, they can place an “order” for a credential set.

  11. What is working for criminals? Verizon DBIR 2018

  12. 5 Common Attack Methods People: Your First Line of Defense PHISHING PRETEXTING FACILITY ACCESS ENTICEMENT DUMPSTER DIVING

  13. People Policies Technology

  14. Employees are your first line of defense.

  15. Multi-Factor Authentication

  16. Remain Vigilant First Line of Defense – People! Users Make or Break Information Security. Recognize and question changes in systems.

  18. Incident Response Incident response is a process, not an isolated event. In order for incident response to be successful, teams should take a coordinated and organized approach to any incident.

  19. Digital Forensics Recovering and investigating material found in digital devices Understanding what happened Determining the extent of the breach

  20. Response Team Representation  Executive Management  IT Department  IT Vendors  Information Security  Legal  Human Resources

  21. Incident Response Plan Should be separate from DR/BC or other plans Define roles and responsibilities Establish common process Categorize incident severity Requires training for team members

  22. Incident Response Must be led by an experienced incident manager Communications are essential Pre-determined actions, locations, budgets, etc. are crucial Do Not Jump To Conclusions!

  23. Incident Response Steps Detection Response Reporting Recovery Remediation

  24. Recognize the threat DETECTION Determine root cause Identify possible solutions Communicate with stakeholders

  25. One test per year A Smarter Way to Security Places responsibilities of log management into the expert hands of security analysts and consultants . Eliminates costly capital investment of traditional SIEM operations. Detection Tool - Managed SIEM (Security Information and Event Management) 24x7 Alerting Reporting Real-time Analysis

  26. Financial Institution Recommendations Source: Verizon 2018 Data Breach Investigation Report

  27. Responding to a Data Breach Action Items – Contact Cybersecurity firm to Begin Your Investigation • Experienced consultants will help guide your steps both during and after the incident. – Contact an Attorney • As part of our response services, Pratum can guide you to an attorney experienced in data breaches. – Contact Your Insurance Agent • Keep your insurance agent informed when dealing with a breach.

  28. Summary Having a plan to address an incident before it happens is invaluable Assigning an incident manager will help reduce confusion and decrease time and money spent during incident response. Overreaction and assumptions will be costly

  29. Q&A Todd.Robran@Pratum.com www.Pratum.com

  30. References World’s Biggest Data Breaches & Hacks • – http://informationisbeautiful.net/visualizations/worlds-biggest-data-breaches-hacks/ Use A Passphrase • – http://www.useapassphrase.com/ The Market for Stolen Credentials • – https://krebsonsecurity.com/2017/12/the-market-for-stolen-account-credentials/ ‘;-- have I been pwned? • – https://haveibeenpwned.com/ FFIEC Cybersecurity Assessment Tool User’s Guide • – https://www.ffiec.gov/pdf/cybersecurity/FFIEC_CAT_May_2017.pdf FFIEC Cybersecurity Assessment Tool Frequently Asked Questions • – https://www.ffiec.gov/pdf/cybersecurity/FFIEC_CAT%20FAQs.pdf FFIEC CAT Overview for CEOs and Boards of Directors • – https://www.ffiec.gov/pdf/cybersecurity/FFIEC_CAT_CEO_Board_Overview_June_2015_PDF1.pdf FSSCC Automated Cybersecurity Assessment Tool V2 • – https://www.fsscc.org/files/galleries/FSSCC_ACAT_v2_1.xlsx (updated post to web 12 Jun 2018) FFIEC Cyber Attacks Involving Extortion Joint Statement • – https://www.ffiec.gov/press/PDF/FFIEC%20Joint%20Statement%20Cyber%20Attacks%20Involving%20Extortion.pdf Verizon Data Breach Investigations Report • https://www.verizonenterprise.com/verizon-insights-lab/dbir/ – 2018 Report: https://www.verizonenterprise.com/resources/reports/rp_DBIR_2018_Report_en_xg.pdf – Version Data Breach Digest • http://www.verizonenterprise.com/verizon-insights-lab/data-breach-digest/2017/ –

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

GLOBAL PRIVACY & CYBERSECURITY UPDATE View PDF | Forward | Subscribe | Subscribe to RSS |

GLOBAL PRIVACY & CYBERSECURITY UPDATE View PDF | Forward | Subscribe | Subscribe to RSS |

Global Privacy & Cybersecurity Update Issue 21 | February 2019 Jones Day GLOBAL PRIVACY & CYBERSECURITY UPDATE View PDF | Forward | Subscribe | Subscribe to RSS | Related Publications United States | Latin America | Europe | Asia |

257 views • 15 slides
U.S. National U.S. National Why are we talking about Cybersecurity Cybersecurity

U.S. National U.S. National Why are we talking about Cybersecurity Cybersecurity

U.S. National U.S. National Why are we talking about Cybersecurity Cybersecurity cybersecurity? William J. Perry Martin Casado Keith Coleman Dan Wendlandt MS&E 91SI Spring 2004 Stanford University U.S. National Cybersecurity

79 views • 7 slides
Cybersecurity Update Dale Marroquin, CISSP Information Security Officer San Antonio Federal

Cybersecurity Update Dale Marroquin, CISSP Information Security Officer San Antonio Federal

Cybersecurity Update Dale Marroquin, CISSP Information Security Officer San Antonio Federal Credit Union Topics Cybersecurity news and headlines What are the threats and targets? Hackers and malware Email - Phishing

854 views • 50 slides
Cybersecurity Update: Latest Impacts on Aerospace & Defense Presented d by: Brandon Gunter

Cybersecurity Update: Latest Impacts on Aerospace & Defense Presented d by: Brandon Gunter

The Aerospace & Defense Forum Arizona Chapter March 9, 2017 Cybersecurity Update: Latest Impacts on Aerospace & Defense Presented d by: Brandon Gunter Senior Manager, Cybersecurity Services Brandon.Gunter@mossadams.com (206)

255 views • 11 slides
Presented by: Islanders Bank Cybersecurity Awareness Cybersecurity Awareness Objectives:

Presented by: Islanders Bank Cybersecurity Awareness Cybersecurity Awareness Objectives:

Presented by: Islanders Bank Cybersecurity Awareness Cybersecurity Awareness Objectives: Define Cybersecurity & why its important Provide information about Dept. Homeland Security Cybersecurity Campaigns: National

328 views • 22 slides
An Update from Washington Cybersecurity / R&D Douglas Maughan, Ph.D. Division Director

An Update from Washington Cybersecurity / R&D Douglas Maughan, Ph.D. Division Director

Homeland Security Advanced Research Projects Agency An Update from Washington Cybersecurity / R&D Douglas Maughan, Ph.D. Division Director October 30, 2012 http://www.cyber.st.dhs.gov Environment: Greater Use of Technology, More

572 views • 29 slides
Implementing Consequence-Driven Cybersecurity with Continuous ICS Monitoring & Threat Modeling

Implementing Consequence-Driven Cybersecurity with Continuous ICS Monitoring & Threat Modeling

Implementing Consequence-Driven Cybersecurity with Continuous ICS Monitoring & Threat Modeling Phil Neray, VP of Industrial Cybersecurity Agenda NotPetya: How a Single Piece of Code Crashed the World (Wired) VPNFilter Update

610 views • 24 slides
Superintendents Teacher Leadership Council Cybersecurity Update Dr. Jack Green, NPS Technology

Superintendents Teacher Leadership Council Cybersecurity Update Dr. Jack Green, NPS Technology

Superintendents Teacher Leadership Council Cybersecurity Update Dr. Jack Green, NPS Technology Services Thursday, February 14, 2019 1 Our Our M Mis ission: ion: To prepare and inspire all students to achieve their full potential Our

419 views • 14 slides
Cybersecurity A presentation to the National Association of Black Accountants Cleveland

Cybersecurity A presentation to the National Association of Black Accountants Cleveland

Cybersecurity A presentation to the National Association of Black Accountants Cleveland Chapter Contents Cybersecurity and risk management 1 Cybersecurity and the regulatory 2 environment Cybersecurity and the audit 3 4 Appendix

685 views • 37 slides
0 SILICON VALLEY CLEAN ENERGY 1 Item 3 PRESENTATION What is Cybersecurity, Why is it important?

0 SILICON VALLEY CLEAN ENERGY 1 Item 3 PRESENTATION What is Cybersecurity, Why is it important?

Item 3 SVCE Cybersecurity Update PRESENTATION December 2019 SILICON VALLEY CLEAN ENERGY Y 0 SILICON VALLEY CLEAN ENERGY 1 Item 3 PRESENTATION What is Cybersecurity, Why is it important? Cybersecurity is the collection of tools, policies,

740 views • 14 slides
Welcome and Opening Remarks Richard Bailey Assistant Commissioner, DOS March 6, 2020 Agenda

Welcome and Opening Remarks Richard Bailey Assistant Commissioner, DOS March 6, 2020 Agenda

Welcome and Opening Remarks Richard Bailey Assistant Commissioner, DOS March 6, 2020 Agenda Cybersecurity - Foreign Travel - Risk Assessment - Software Cybersecurity Policy - Municipal Cybersecurity Update IT Strategic Planning 2

802 views • 44 slides
KACo Cybersecurity Training KACo Cybersecurity Training Cybersecurity Threats Phishing

KACo Cybersecurity Training KACo Cybersecurity Training Cybersecurity Threats Phishing

7/17/2020 KACo Cybersecurity Training KACo Cybersecurity Training Cybersecurity Threats Phishing Attacks Malware/Ransomware Hacking Imposter Scams 1 7/17/2020 KACo Cybersecurity Training BEWARE OF Phishing Phishing attacks

248 views • 6 slides
Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright

Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright

Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright CyberSecurity Scholar 4 September 2019 James Davenport Formal Methods and CyberSecurity CyberSecurity CyberSecurity failures abound: tens daily in the

212 views • 19 slides
Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright

Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright

Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright CyberSecurity Scholar 4 September 2018 James Davenport Formal Methods and CyberSecurity CyberSecurity CyberSecurity failures abound: tens daily in the

325 views • 18 slides
ITU Mandate and Activities ITU Mandate and Activities Related to Cybersecurity Cybersecurity

ITU Mandate and Activities ITU Mandate and Activities Related to Cybersecurity Cybersecurity

ITU Mandate and Activities ITU Mandate and Activities Related to Cybersecurity Cybersecurity Related to Subregional Seminar on Cybersecurity for Information and Communication Networks 21 June 2005 Lima, Peru Christine Sund Christine Sund

921 views • 48 slides
Being Strategic about Cybersecurity Regional Cybersecurity Forum, 29-30 Nov 2016, Grand Hotel

Being Strategic about Cybersecurity Regional Cybersecurity Forum, 29-30 Nov 2016, Grand Hotel

Being Strategic about Cybersecurity Regional Cybersecurity Forum, 29-30 Nov 2016, Grand Hotel Sofia, Bulgaria Mr. Joaqun Castelln , Operational Director Spanish National Security Department Ms. Anita TIKOS , Desk Officer for International

197 views • 15 slides
Analyst Day Follow us on Twitter: @TrygIR 19 June 2017 Agenda Introduction: Morten Hbbe, CEO

Analyst Day Follow us on Twitter: @TrygIR 19 June 2017 Agenda Introduction: Morten Hbbe, CEO

Analyst Day Follow us on Twitter: @TrygIR 19 June 2017 Agenda Introduction: Morten Hbbe, CEO Recent financial development: Christian Baltzer, CFO Cyber insurance: Ulrik Andersson, Special Risk Director Innovation/The Camp: Lars Bonde, COO

742 views • 61 slides
Global Phishing Survey 2H2009 Greg Aaron Rod Rasmussen Released May 11, 2010

Global Phishing Survey 2H2009 Greg Aaron Rod Rasmussen Released May 11, 2010

Global Phishing Survey 2H2009 Greg Aaron Rod Rasmussen Released May 11, 2010 http://apwg.org/reports/APWG_GlobalPhishingSurvey_2H2009.pdf Goals Study domain names and URLs to: Provide a consistent benchmark for scope of phishing problems

232 views • 22 slides
! Hello! Gavin Dennis Information Security Consultant Symptai Consulting Ltd. & OpenWave

! Hello! Gavin Dennis Information Security Consultant Symptai Consulting Ltd. & OpenWave

Cyber-Attack and Security: PUTTING THE AUDIT COMMITTEE ON HIGH ALERT ! Hello! Gavin Dennis Information Security Consultant Symptai Consulting Ltd. & OpenWave Information Security Ltd. LETS FOCUS ON 1 EVERYONE IS IMPORTANT IN

406 views • 22 slides
Enterprise Security with Expanded Network Boundaries Dr. Zhijun (William) Zhang Lead Security

Enterprise Security with Expanded Network Boundaries Dr. Zhijun (William) Zhang Lead Security

Enterprise Security with Expanded Network Boundaries Dr. Zhijun (William) Zhang Lead Security Architect at The World Bank Group Data Breaches in the News Large-scale breaches are now a regular occurrence across industry and geography

221 views • 18 slides
Napolon Bonaparte Napolon was born in 1769 in Corsica. His family was not rich, but Napolon

Napolon Bonaparte Napolon was born in 1769 in Corsica. His family was not rich, but Napolon

Napolon Bonaparte Napolon was born in 1769 in Corsica. His family was not rich, but Napolon was talented and won a scholarship to a famous military school. Napoleon's father, Carlo Buonaparte, was Corsica's representative to the court of

185 views • 4 slides
Reinvention Engine: NBC Neebo to the Finish Line NOTES: Add stuff from pages four and five about

Reinvention Engine: NBC Neebo to the Finish Line NOTES: Add stuff from pages four and five about

Reinvention Engine: NBC Neebo to the Finish Line NOTES: Add stuff from pages four and five about the buying experience, big change for stores, defined through clients eyes, Verizon, dont want to be tr4apped in the bookstore box NATE:

927 views • 28 slides
2Q16 Quarterly Review Berli Jucker Public Company Limited 30 August 2016 1 Notes on Forward

2Q16 Quarterly Review Berli Jucker Public Company Limited 30 August 2016 1 Notes on Forward

2Q16 Quarterly Review Berli Jucker Public Company Limited 30 August 2016 1 Notes on Forward Looking The following presentation may contain forward looking statements by the management of Berli Jucker Public Company Limited (BJC),

509 views • 37 slides
Welcome to the Webinar! Webinar will be 90 minutes in length with time for questions Audio

Welcome to the Webinar! Webinar will be 90 minutes in length with time for questions Audio

Alliance for Water Efficiency 9/9/2014 Welcome to the Webinar! Webinar will be 90 minutes in length with time for questions Audio is through your telephone or computer microphone & speakers The webinar phone line will be muted

704 views • 34 slides

More recommend