defending digital business against
play

DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI - PowerPoint PPT Presentation

Mar 08, 2024 •341 likes •777 views

www.nviso.be DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI 21/02/2019 Our Agenda 1 Demo time 2 Threat actor groups 3 Nation states 4 Hacktivism 5 Organized cyber crime 6 The bad competitor 7 The Internet of

  1. www.nviso.be DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI – 21/02/2019

  2. Our Agenda 1 Demo time 2 Threat actor groups 3 Nation states 4 Hacktivism 5 Organized cyber crime 6 The bad competitor 7 The Internet of Things and the risks

  3. Tim Beyens I am one of the partners at NVISO where I am responsible for a part of our Cyber Resilience Service Line. Together with my team I assist clients in developing and delivering secure network environments and applications.

  4. Sasja Reynaert I am a security consultant at NVISO, where I mainly focus on DFIR (Digital Forensics & Incident Response) and Red Team Testing engagements.

  5. Demo time

  6. Demo time An eye opening trip into an intrusion

  7. Threat actors Who are they and why are you their target?

  8. Different threat actors – Different threats Not all threat actors operate in the same way as such we need to adapt our prevention / detection / response strategy

  9. Threat actors Who are the typical threat actors behind cyber attacks? What is their motivation / what is the ultimate goal? www.nviso.be | 9

  10. Threat actors www.nviso.be | 10

  11. Threat actors Who are the typical threat actors behind cyber attacks? Nation state actors Actors sponsored and backed by a Nation State Hacktivist groups Actors with a political agenda Organized cyber crime Actors driven by profits engaged in cyber criminality Malicious insiders and competitors Actors operating from inside your organization or in the name of one of your competitors www.nviso.be | 11

  12. Threat actors I ntegrity C onfidentiality A vailability www.nviso.be | 12

  13. Threat actors A simple exercise… www.nviso.be | 13

  14. Nation state actors An advanced threat actor

  15. Nation state actors Who, what, why? • Government X wants insights into the actions of certain individuals in Company Y • Obtain sensitive information • Motivation for attacks can be anything (Political, Strategical, Financial, etc.) • Lots of resources and skills => advanced attacks • They use an Advanced Persistent Threat (ATP) to stealthily exfiltrate data www.nviso.be | 15

  16. Nation state actors Some Examples…. www.nviso.be | 16

  17. Advanced Persistent Threat (APT) What happened? FireEye M-Trends: Beyond the breach An APT is an advanced 47% and targeted cyber attack in which an intruder gains of breaches access to a network and discovered by remains undetected for externals an extended period of time. The above illustrations highlight two interesting statistics: • In EMEA, the median number of days before detection of an intrusion is 106 days (2017); • An average of 47% of breaches are discovered by external parties www.nviso.be | 17

  18. Advanced Persistent Threat (APT) How to prevent, detect, respond? Better get serious about cyber security: Advanced attacks require a high level of maturity to identify, protect, detect, respond and recover from cyber attacks. If your organization is a target for advanced attackers, you would need to implement a proper security management system based on an internationally recognized standard. www.nviso.be | 18

  19. Hactivists In the crosshairs of hacktivists

  20. Hacktivists Who, what, why? • They are usually motivated by a political agenda • Hacktivists would like to see Company X out of business • If they can’t provide their service for some time => their reputation will be damaged • They typically launch a DDOS attack to disrupt services delivery www.nviso.be | 20

  21. (Distributed) Denial of Service What happened? DDoS attacks take down your systems An attack that occurs when an attacker takes action that prevents legitimate users from accessing targeted computer systems, devices or other network resources. www.nviso.be | 21

  22. Hacktivists Some Examples • http://www.digitalattackmap.com/ www.nviso.be | 22

  23. (Distributed) Denial of Service How to prevent, detect, respond? Prevent Respond Detect • • • Have a (D)DOS mitigation Monitor incoming traffic Follow the mitigation plan ready plan • Specialized protection • • Secure network and detection tools and Specialized mitigation infrastructure services tools and services • • Scalable and resilient Be conscious: it may be a network architecture smoke screen www.nviso.be | 23

  24. (Distributed) Denial of Service How to prevent, detect, respond? Prevent Respond Detect www.nviso.be | 24

  25. Organized cyber crime Show me the money

  26. Organized Cyber Crime Some Examples…. TO ADD. www.nviso.be | 26

  27. Organized Cyber Crime Some Examples…. TO ADD. The past year we have seen ‘ransomware’ attacks of a whole other scale and with other motivations. www.nviso.be | 27

  28. Organized cyber crime Who, what, why? • Cyber criminals want to make money • Data is important for businesses => losing all data = catastrophically • Infect computers of Company X with Ransomware • More data is taken hostage => More likely to be payed ransom money (if victim not prepared/protected) Your computer files have been encrypted. _ www.nviso.be | 28

  29. Ransomware What happened? A type of computer crime which sees computers or data hijacked and a fee demanded to give them back to their owners. www.nviso.be | 29

  30. Ransomware How to prevent, detect, respond? Respond Prevent Detect • • • Keep systems up to date Anti-ransomware Restore from backup software • • Do no run under admin if Snapshot still • not required Suspicious file extensions unencrypted data • • • Raise awareness for Many files being Assess and improve phishing emails renamed protection • Backup www.nviso.be | 30

  31. Threat Hunting Sysmon www.nviso.be | 31

  32. Internet of Things and the risks

  33. IoT Security What if it goes bad? https://www.youtube.com/watch?v=BnAHfZWPaCs https://www.youtube.com/watch?v=BnAHfZWPaCs www.nviso.be | 38

  34. The Internet of Things (IoT) What is it? The Internet of things (IoT) is the network of physical devices, vehicles, home appliances and other items embedded with electronics, software, sensors, actuators, and connectivity which enables these objects to connect and exchange data . Each thing is uniquely identifiable through its embedded computing system but is able to inter-operate within the existing internet infrastructure. www.nviso.be | 39

  35. The Internet of Things (IoT) Are there new risks? Securing an IoT appliance means securing an entire ecosystem. The increased complexity introduces more room for error and vulnerabilities. www.nviso.be | 40

  36. IoT Security A word of caution www.nviso.be | 41

  37. The Internet of Things (IoT) What can you do? Before buying an appliance, look for known vulnerabilities www.nviso.be | 42

  38. The Internet of Things (IoT) What can you do? Don’t expose the appliance on the internet www.nviso.be | 43

  39. The Internet of Things (IoT) What can you do? Shodan Demo www.nviso.be | 44

  40. The Internet of Things (IoT) What can you do? Think twice Be careful about what you throw out www.nviso.be | 45

  41. Questions?

  42. Thank You for your interest in NVISO! Would you like to know more ? Let's get in touch! +32 (0)2 318 58 31 info@nviso.be www.nviso.be

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ICA ICA ICA Self-Defending Networks Digital antibodies neutralize threats

ICA ICA ICA Self-Defending Networks Digital antibodies neutralize threats

ICA ICA ICA Self-Defending Networks Digital antibodies neutralize threats Automatically responds to threats faster than any security team can Takes measured, targeted actions Does not disrupt day-to-day business or

169 views • 5 slides
www.centre-for-digital-business.com t hemes Did we not see the digital era coming? o Digital

www.centre-for-digital-business.com t hemes Did we not see the digital era coming? o Digital

Marie Johnson 2015 European Digital Identity Conference Managing Director and Chief Digital Officer 15 16 April 2015 Centre for Digital Business The Netherlands www.centre-for-digital-business.com t hemes Did we not see the digital era

788 views • 37 slides
Tortious Interference With Contracts and Prospective Business Advantage: Proving and Defending

Tortious Interference With Contracts and Prospective Business Advantage: Proving and Defending

Presenting a live 90-minute webinar with interactive Q&A Tortious Interference With Contracts and Prospective Business Advantage: Proving and Defending Claims Navigating the Complexities of Lawsuits Alleging Intentional and Improper Business

528 views • 48 slides
Lender Liability: Evaluating, Minimizing and Defending Claims Defending Against Attacks on Loans in

Lender Liability: Evaluating, Minimizing and Defending Claims Defending Against Attacks on Loans in

Presenting a live 90 minute webinar with interactive Q&A Lender Liability: Evaluating, Minimizing and Defending Claims Defending Against Attacks on Loans in Workouts, Defaults, and Bankruptcy TUES DAY, DECEMBER 21, 2010 1pm Eastern |

1.33k views • 131 slides
MANA MANAGING HOME BIA GING HOME BIAS: : DEFENDING THE V DEFENDING THE VALUE OF LUE OF GL

MANA MANAGING HOME BIA GING HOME BIAS: : DEFENDING THE V DEFENDING THE VALUE OF LUE OF GL

MANA MANAGING HOME BIA GING HOME BIAS: : DEFENDING THE V DEFENDING THE VALUE OF LUE OF GL GLOBAL EQUITIES OBAL EQUITIES TO US PRIV US PRIVATE CLIENT E CLIENTS Jonathan F Jonathan Foster ster President & CEO Angeles Wealth

643 views • 19 slides
Pursuing or Defending Claims Assessing Claims, Proving or Defending Liability, Navigating Complex

Pursuing or Defending Claims Assessing Claims, Proving or Defending Liability, Navigating Complex

Presenting a live 90-minute webinar with interactive Q&A Wrongful Death Claims and Survival Actions: Pursuing or Defending Claims Assessing Claims, Proving or Defending Liability, Navigating Complex Valuation and Settlement Issues WEDNESDAY,

481 views • 26 slides
Digital Delivering EACH EPISODE CONTAINS ASSEMBLAGES OF DIGITAL MATERIALITY, BUSINESS MODELS AND

Digital Delivering EACH EPISODE CONTAINS ASSEMBLAGES OF DIGITAL MATERIALITY, BUSINESS MODELS AND

5 Episodes of Digitization PLEASE READ RESEARCH PAPERS CAREFULLY BEFORE USE Drugs Digital Delivering EACH EPISODE CONTAINS ASSEMBLAGES OF DIGITAL MATERIALITY, BUSINESS MODELS AND SOCIO-DIGITAL CHANGING. RC GRANT REFERENCE EP/L021188/1

153 views • 3 slides
The New Era of Cyber Threats The Shift to Self-Learning, Self-Defending Networks Georgiana

The New Era of Cyber Threats The Shift to Self-Learning, Self-Defending Networks Georgiana

The New Era of Cyber Threats The Shift to Self-Learning, Self-Defending Networks Georgiana Wagemann Director of Sales, Darktrace Evolving Threats in a New Business Landscape Outsourced IT, SaaS, cloud, virtual, supply chain, IoT Not just data

412 views • 15 slides
Using technology to im prove your business and patient outcom es The RACGP Digital Business Kits

Using technology to im prove your business and patient outcom es The RACGP Digital Business Kits

Using technology to im prove your business and patient outcom es The RACGP Digital Business Kits Call 1800 194 319 for technical assistance The Digital Business Kits project a partnership between the Australian Government Department of

799 views • 52 slides
Business 4.0 .0 Ade e McC cCormack Di Digital l strategist Digital represents mankinds

Business 4.0 .0 Ade e McC cCormack Di Digital l strategist Digital represents mankinds

Business 4.0 .0 Ade e McC cCormack Di Digital l strategist Digital represents mankinds return to its true nature Think Poly-modal business The Talent is now in charge Leaders now exist to serve the talent The nature of culture

486 views • 20 slides
Building a digital business Kalman Tiboldi Founder & CEO ( Former CBIO of TVH) TVH Group: 2

Building a digital business Kalman Tiboldi Founder & CEO ( Former CBIO of TVH) TVH Group: 2

A TVH Parts company Building a digital business Kalman Tiboldi Founder & CEO ( Former CBIO of TVH) TVH Group: 2 Business Units 6800 colleagues worldwide Digital innovation at the core of TVH In-house developed IT & Business Close

639 views • 25 slides
SybilGuard: Defending Against Sybil Attacks SybilGuard: Defending Against Sybil Attacks via

SybilGuard: Defending Against Sybil Attacks SybilGuard: Defending Against Sybil Attacks via

SybilGuard: Defending Against Sybil Attacks SybilGuard: Defending Against Sybil Attacks via Social Networks via Social Networks Intel Research Pittsburgh / CMU Haifeng Yu National University of Singapore Michael Kaminsky Intel Research

501 views • 22 slides
Enabling Digital Business Leadership Henry Minogue CIO UPC Ireland 9th September 2014

Enabling Digital Business Leadership Henry Minogue CIO UPC Ireland 9th September 2014

Enterprise Capability: Enabling Digital Business Leadership Henry Minogue CIO UPC Ireland 9th September 2014 @Henryminogue Presentation Contents Who is UPC ? The Digital Journey Know your digital customer Digital Strategy

326 views • 30 slides
Master Betriebswirtschaft (Business Administration) Business Entrepreneurship and Digital

Master Betriebswirtschaft (Business Administration) Business Entrepreneurship and Digital

Master Betriebswirtschaft (Business Administration) Business Entrepreneurship and Digital Technology Management Winter semester 2016/ 2017 Prof. Dr. Holger Gnzel 04 May 2016 Agenda Why study the master programme Business

455 views • 24 slides
Defending ERISA Conflict of Interest Discovery Requests Limiting the Scope of Discovery,

Defending ERISA Conflict of Interest Discovery Requests Limiting the Scope of Discovery,

Presenting a live 90-minute webinar with interactive Q&A Defending ERISA Conflict of Interest Discovery Requests Limiting the Scope of Discovery, Preparing and Defending 30(b)(6) Depositions, and More THURSDAY, MARCH 27, 2014 1pm Eastern

711 views • 41 slides
Digital Transformation An Imperative for Irish Business Aisling Curtis @aisling_curtis

Digital Transformation An Imperative for Irish Business Aisling Curtis @aisling_curtis

Digital Transformation An Imperative for Irish Business Aisling Curtis @aisling_curtis Commercial Director at Microsoft Ireland What is Digital Transformation Why Digital Transformation? 90 21.3 trillion billion Global digital

319 views • 14 slides
PORTFOLIO OF SERVICES Who is mrHouston? 360 Our story We have been maximizing our clients

PORTFOLIO OF SERVICES Who is mrHouston? 360 Our story We have been maximizing our clients

PORTFOLIO OF SERVICES Who is mrHouston? 360 Our story We have been maximizing our clients value for over 18 years. We are a key player in ICT management. Who we are Our multidisciplinary, highly qualified team is composed of 50 people.

402 views • 24 slides
Service Activity David Moore, Colleen Shannon, Douglas J. Brown, Geoffrey M. Voelker, Stefan

Service Activity David Moore, Colleen Shannon, Douglas J. Brown, Geoffrey M. Voelker, Stefan

Inferring Internet Denial-of- Service Activity David Moore, Colleen Shannon, Douglas J. Brown, Geoffrey M. Voelker, Stefan Savage Presented by Thangam Seenivasan & Rabin Karki 1 Simple Question How prevalent are denial-of-service

886 views • 50 slides
Countering SYN Flood Denial-of-Service (DoS) Attacks Ross Oliver Tech Mavens

Countering SYN Flood Denial-of-Service (DoS) Attacks Ross Oliver Tech Mavens

Countering SYN Flood Denial-of-Service (DoS) Attacks Ross Oliver Tech Mavens reo@tech-mavens.com What is a Denial-of- Service (DoS) attack? ! Attacker generates unusually large volume of requests, overwhelming your servers ! Legitimate

493 views • 27 slides
Realize SFC Using ONOS SDN Controller Mohan Kumar, Senior Software Engineer, Huawei Indian Cathy

Realize SFC Using ONOS SDN Controller Mohan Kumar, Senior Software Engineer, Huawei Indian Cathy

Realize SFC Using ONOS SDN Controller Mohan Kumar, Senior Software Engineer, Huawei Indian Cathy Zhang, Principal Architect, Huawei USA 1. Understand OpenStack Neutron SFC Feature: Its Flexible Architecture to Integrate with Multiple SDN

520 views • 25 slides
Legislative Audit Workshop Cybersecurity in the Year 2020 Jim Edman Chief Information Security

Legislative Audit Workshop Cybersecurity in the Year 2020 Jim Edman Chief Information Security

Legislative Audit Workshop Cybersecurity in the Year 2020 Jim Edman Chief Information Security Officer Miguel Penaranda Deputy CISO 5/19/2020 Critical Cyber Security Recommendations Backup Your Data Apply Automatic Updates & Patches

655 views • 27 slides
Statistical Opportunities in Network Security David J. Marchette marchettedj@nswc.navy.mil Naval

Statistical Opportunities in Network Security David J. Marchette marchettedj@nswc.navy.mil Naval

Statistical Opportunities in Network Security David J. Marchette marchettedj@nswc.navy.mil Naval Surface Warfare Center Code B10 < > - + Interface 2003 p.1/36 Outline Intro to Network Data Monitoring Denial of Service Attacks

644 views • 39 slides
The Superintendents Worst Fear ESC Region 1 Finance Advisory Council November 10

The Superintendents Worst Fear ESC Region 1 Finance Advisory Council November 10

The Superintendents Worst Fear ESC Region 1 Finance Advisory Council November 10 Superintendents Imagine having to notify parents or employees that their personal privacy has been violated!!!!!! Martin Yarborough BS, MEd, PhD (Tarleton

759 views • 55 slides
Not-a-Bot Improving Service Availability in the Face of Botnet Attacks Overview Introduction

Not-a-Bot Improving Service Availability in the Face of Botnet Attacks Overview Introduction

Not-a-Bot Improving Service Availability in the Face of Botnet Attacks Overview Introduction to the problem Architecture of NAB A way to attest human-generated traffic Use of attestation to mitigate presented problems Results

418 views • 25 slides

More recommend