locale specific threats
play

Locale-specific threats Security challenges due to globalization - PowerPoint PPT Presentation

Dec 01, 2022 •367 likes •752 views

Locale-specific threats Security challenges due to globalization Anthony Bettini McAfee Labs June 9, 2010 Agenda In the dawn of time Think globally, act locally Audit fatigue Local concerns, trends, economics, and even

  1. Locale-specific threats Security challenges due to globalization Anthony Bettini McAfee Labs June 9, 2010

  2. Agenda • In the dawn of time • “Think globally, act locally” • Audit fatigue • Local concerns, trends, economics, and even pop culture! • Vulnerabilities, 0days, and malware • Leverage what’s already out there • Partnership • Wrap up 2 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  3. In the beginning… 3 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  4. In the dawn of time • That’s how most business begins, with one headquarters, in one GEO or region • As the business expands internationally or an IT administrator moves from startups to enterprises, “things change” • For a long time, both enterprises and even security vendors, were myopic 4 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  5. (In)security myopia “Those with myopia see near objects clearly but far away objects appear blurred.” 5 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  6. What’s going on? • People (and organizations) have a natural tendency to silo or bucketize work, projects, ownership, and responsibilities • This leads to a virtual myopia, where IT security staff are only responsible for and spending time on the threats most well understood and nearest to them • Microsoft vulnerabilities seem “more well handled” lately, and Adobe vulnerabilities are “next in line, and being struggled with” • Flash and Reader aren’t “new risks”, they have been risky for ages 6 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  7. Are the Adobe threats of late an ocean? • More likely a wave than an ocean • If focused on too heavily, certainly a case of myopia could be developing • What other waves could be causing rising tides in the near future? “A rising tide lifts all boats.” – President John F. Kennedy 7 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  8. Threats are more like waves than oceans • Waves hit land, recede, and repeat • Some turn into hurricanes or tsunamis • There’s always more coming • They are all a bit similar and all a bit different • Some will turn into rising tides, others will fizzle out • Be ready for surprises! 8 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  9. “Think globally, act locally” • May apply well to environmental politics, but this line of thinking only enhances myopia relative to IT security • Unfortunately for people in IT security (vendors and enterprises) a more apt quote could be “Think globally and locally, act globally and locally” • What does all this mean? 9 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  10. Quite a challenge 10 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  11. Survey says… • In 2009, McAfee surveyed many of our thousands of risk and compliance as well as IPS (both network and host) customers to gage which international threats were at the tops of our customers minds. • The question read: – “McAfee runs into threats in the field that are specific to a region, geography, country or language. How would you prioritize threat coverage, language support, and regulatory compliance for the following countries?” • Alphabetically shown here, but randomly sorted to survey participants, the choices were: – Brazil, China, France, Germany, Japan, Korea, Mexico, and Russia 11 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  12. Are the Adobe threats of late an ocean? • The top choices, consistently were: • #1 China (Average of 50% of all surveyed chose China #1) • #2 Russia (Average of 25% of all surveyed chose Russia #2) • All other choices had mixed non- significant rankings • What does this really mean? 12 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  13. Global world, global threats • Proper handling of locale-specific threats are not just about… – Translating documentation into Danish – Blocking SPAM written in Simplified and Traditional Chinese – Repairing malware that is common in Brazil – Enabling Host IPS hooks on French versions of Microsoft Windows • It is about all of these things holistically and a whole lot more! 13 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  14. Audit fatigue • Network Frontiers (an organization that maps the various standards and regulations to a common framework) estimates that there are more than 400 requirements worldwide that impact IT. – “Most large organizations that conduct international business could easily be dealing with upwards of 40 mandates, depending on how diversified their businesses are.” (De Souza, Evelyn. The Cost of Audits. “McAfee Security Journal”. Summer 2009) 14 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  15. Quick questions to ask yourself • Does your organization operate in more than one country? • Store health care records? • Process credit cards transactions? • Is involved in the storage of health care records? • Is a publicly traded company? 15 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  16. Yes • The more questions you answered “Yes” to, the more regulations your business is likely to be responsible for compliance to and possibly audited against • With an average enterprise exposed to over 40 regulations that they must comply with, after talking with many customers, McAfee has termed the resulting feeling “audit fatigue” • Doing business internationally is one of the main drivers to amplifying regulation count, as regulations like Sarbanes-Oxley often have per- country equivalents that must be adhered to, such as Japan’s Financial Instruments and Exchange Law (often termed “J-SOX” in English) 16 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  17. Who’s on first? • Once you figure out which regulations and technical controls actually apply to your organization, then you must: • Under their impacts • Monitor them for changes • Enforce them locally and in some cases globally • Audit against them • Often just getting a translation can be a challenge! 17 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  18. Local concerns, trends, economics, and pop culture • Local non-security trends (such as those in pop culture) can ultimately impact threat and response trends globally • Examples we’ll soon cover: – Alexa and Chinese BBS’ – Web search term safety – Gold farming – Perfect Dark ( パーフェクトダーク ) 18 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  19. USA and 中国 – Alexa juxtaposition 19 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  20. Internet usage patterns and threats intersect • One of the top groupings of web sites that are popular in China, both in # of hits and time spent, are web portals that maintain forums (often referred to as a bulletin board system (BBS) in China) • As China is both a large source of new malware and the forums allow user-contributed content, there has been many problems with malicious users linking to malware • Likely to increase with the usage of URL shorteners like bit.ly and TinyURL • NOT just a local problem in China though, similar forum sites are popular with Chinese emigrants overseas (such as MITBBS in the USA) and suffer from the same security challenges (drive by downloads, phishing, 0 sized IFRAMEs, etc) 20 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  21. Internet usage patterns and threats intersect • Next we’ll look at the safety of the top 10 search keywords in four countries – USA – Canada – Australia – New Zealand • Poll: How many people expect the keywords to be at least: – 75% similar? – 50% similar? – 25% similar? – 10% similar? 21 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  22. Dangerous search terms: USA / Canada 22 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

  23. Dangerous search terms: Australia / New Zealand 23 Locale-specific threats: Security challenges due to globalization June 9, 2010 Confidential McAfee Internal Use Only

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lecture IX The savannah game 1 The savannah as a bigraph ( thanks to Benson et al. ) F locale

Lecture IX The savannah game 1 The savannah as a bigraph ( thanks to Benson et al. ) F locale

Lecture IX The savannah game 1 The savannah as a bigraph ( thanks to Benson et al. ) F locale 0 2 1 next 3 5 4 Nodes with control locale are locales ; their contiguity is repre- sented by linkage of next nodes. 2 F locale 0 2 1

275 views • 13 slides
Multi-locale Chapel Environment 2 Motivation Why PGAS (Partitioned Global Address Space)

Multi-locale Chapel Environment 2 Motivation Why PGAS (Partitioned Global Address Space)

ChplBlamer: A Data-centric and Code-centric Combined Profiler for Multi-locale Chapel Programs Hui Zhang, Jeffrey K. Hollingsworth {hzhang86, hollings}@cs.umd.edu Department of Computer Science, University of Maryland- College Park 1

569 views • 18 slides
TR15 2018 1 2 TR360 2016 + T h r e a t s + Typical Threats Low-Tech Malicious Threats

TR15 2018 1 2 TR360 2016 + T h r e a t s + Typical Threats Low-Tech Malicious Threats

TR15 2018 1 2 TR360 2016 + T h r e a t s + Typical Threats Low-Tech Malicious Threats Explosive ad incendiary Threats Bio Hazardous Powder Threats 3 Improvised mechanical Devices TR15 Smart Scan Can easily detect the component

192 views • 16 slides
Objective : Detection of wide range of potential threats Device / Vehicle Op. Speed Autonomy

Objective : Detection of wide range of potential threats Device / Vehicle Op. Speed Autonomy

Multistatic underwater protection sonar best patterns for harbour and larger critical environments Objective: Fixed Asset protection from UW threats Approach: Multistatic active specific patterns and Presentation panel: Deployed & Mobile

178 views • 16 slides
Internationalization & Localization SWEN-444 The Basics Locale set of linguistic and

Internationalization & Localization SWEN-444 The Basics Locale set of linguistic and

Internationalization & Localization SWEN-444 The Basics Locale set of linguistic and cultural parameters associated with a geographic region E.g., language, text orientation, date/time format, currency, accented and double-byte

699 views • 30 slides
Internationalization & Localization SWEN-444 The Basics Locale set of linguistic and

Internationalization & Localization SWEN-444 The Basics Locale set of linguistic and

Internationalization & Localization SWEN-444 The Basics Locale set of linguistic and cultural parameters associated with a geographic region E.g., language, text orientation, date/time format, currency, accented and double-byte

587 views • 35 slides
R.I.T S. Ludi/R. Kuehl p. 1 R I T Software Engineering The Basics Locale set of

R.I.T S. Ludi/R. Kuehl p. 1 R I T Software Engineering The Basics Locale set of

Internationalization & Localization SE 444 R.I.T S. Ludi/R. Kuehl p. 1 R I T Software Engineering The Basics Locale set of linguistic and cultural parameters associated with a geographic region E.g., language, text

691 views • 35 slides
The Lgilocal project La norme locale tout simplement

The Lgilocal project La norme locale tout simplement

The Lgilocal project La norme locale tout simplement partage How to facilitate the sharing of local law F. Amardeilh, D. Bourcier, H.

290 views • 16 slides
PRESENTING The Prestige ! The Lifestyle ! The Locale ! Picturesque Views Appointed Marketing

PRESENTING The Prestige ! The Lifestyle ! The Locale ! Picturesque Views Appointed Marketing

PRESENTING The Prestige ! The Lifestyle ! The Locale ! Picturesque Views Appointed Marketing Agency Thomson'Area' (Nature'By'Your'Home)' More than half of this huge district is taken up by :- Greenery Reservoirs Golf Course There is no

703 views • 42 slides
53-74% Average anti-virus effectiveness against new threats* * RAP Proactive 400 New threats

53-74% Average anti-virus effectiveness against new threats* * RAP Proactive 400 New threats

53-74% Average anti-virus effectiveness against new threats* * RAP Proactive 400 New threats every minute* * Merrill Lynch ...Causing $3T USD in costs, and expected to double by 2021* * CyberSecurity Ventures (2015) Todays threat

508 views • 35 slides
Spectroscopie vibrationnelle applique la dtermination de la structure locale des verres

Spectroscopie vibrationnelle applique la dtermination de la structure locale des verres

Spectroscopie vibrationnelle applique la dtermination de la structure locale des verres silicats B. Hehlen 1,2 1 Laboratoire Charles Coulomb (L2C), University Montpellier II, France. 2 CNRS, UMR5221, Montpellier, France. Outline I-

639 views • 32 slides
Loom ing Threats - transcript of presentation video Nick : Team 4 Looming Threats, please give

Loom ing Threats - transcript of presentation video Nick : Team 4 Looming Threats, please give

Loom ing Threats - transcript of presentation video Nick : Team 4 Looming Threats, please give them a hand. Mark : Good afternoon, Simon and I have the absolute pleasure to be presenting on behalf of Team Looming Threats. So, one of the, I guess

377 views • 3 slides
CYBER THREATS AND HOW TO A VOID THEM AGENDA 1. Development of the cyber world 2. Threats

CYBER THREATS AND HOW TO A VOID THEM AGENDA 1. Development of the cyber world 2. Threats

CYBER THREATS AND HOW TO A VOID THEM AGENDA 1. Development of the cyber world 2. Threats to small businesses 3. Cyber Recovery Insurance Y our presenters Anne Jackson Sarah Morton Gary Hibberd Sales Director, Lorega Sales and

342 views • 31 slides
Enabling Sparse Matrix Computation in Multi-locale Chapel Tyler Simon Laboratory for Physical

Enabling Sparse Matrix Computation in Multi-locale Chapel Tyler Simon Laboratory for Physical

Enabling Sparse Matrix Computation in Multi-locale Chapel Tyler Simon Laboratory for Physical Sciences, College Park, MD Amer Tahir Milton Halem University of Maryland Baltimore County, MD Mo Motivation, Objectives & Related Work rk

628 views • 8 slides
SWAF VBS3 1 Locations with VBS3 (some 700 student seats) Stationary Locale network Stationary

SWAF VBS3 1 Locations with VBS3 (some 700 student seats) Stationary Locale network Stationary

SWAF VBS3 1 Locations with VBS3 (some 700 student seats) Stationary Locale network Stationary and StriSimPC mobile Boden Ume Uppsala National network Kungsngen Enkping (under construction) Karlberg Vllinge

306 views • 26 slides
Unicode BCP47 Extensions Mark Davis http://goo.gl/owbBk Unicode Locale/Lang ID BCP47

Unicode BCP47 Extensions Mark Davis http://goo.gl/owbBk Unicode Locale/Lang ID BCP47

Unicode BCP47 Extensions Mark Davis http://goo.gl/owbBk Unicode Locale/Lang ID BCP47 Optional: only use where needed sl -Latn -IT -fonipa EXTENSIONS Variant(s) [digit4/alphanum5..8] Italy - ISO 3166 [alpha2] or UN M49* [digit3]

550 views • 10 slides
Riding the unknowns for The Treasury Lecture [Background reading only] AUTHOR: Adrian Orr CEO

Riding the unknowns for The Treasury Lecture [Background reading only] AUTHOR: Adrian Orr CEO

TITLE: Riding the unknowns for The Treasury Lecture [Background reading only] AUTHOR: Adrian Orr CEO #1951679 EVENT | PRESENTATION: 22 July 2016 C2 - INTERNAL USE ONLY \ FILE INFO \ PG 2 Outline n Global Themes and the Role of

703 views • 12 slides
Irreducible Parallelism and Desirable Serialism John McCarthy UMass Amherst 1 Background

Irreducible Parallelism and Desirable Serialism John McCarthy UMass Amherst 1 Background

Irreducible Parallelism and Desirable Serialism John McCarthy UMass Amherst 1 Background Harmonic Serialism (HS) is a version of OT with a Gen Eval Gen loop (Prince & Smolensky, McCarthy). HSs Gen, unlike parallel

910 views • 60 slides
Prediction and Odds 18.05 Spring 2014 January 1, 2017 1 / 20 Probabilistic Prediction Also

Prediction and Odds 18.05 Spring 2014 January 1, 2017 1 / 20 Probabilistic Prediction Also

Prediction and Odds 18.05 Spring 2014 January 1, 2017 1 / 20 Probabilistic Prediction Also called probabilistic forecasting. Assign a probability to each outcome of a future experiment. Prediction: It will rain tomorrow. Probabilistic

349 views • 20 slides
On the Feasibility of Learning Human Biases for Reward Inference Rohin Shah, Noah Gundotra,

On the Feasibility of Learning Human Biases for Reward Inference Rohin Shah, Noah Gundotra,

On the Feasibility of Learning Human Biases for Reward Inference Rohin Shah, Noah Gundotra, Pieter Abbeel, Anca Dragan A conversation amongst IRL researchers A conversation amongst IRL researchers [Ziebart et al, 2008] To deal with suboptimal

487 views • 14 slides
Memory Corruption The (almost) Complete History... haroon meer - 2010 @haroonmeer |

Memory Corruption The (almost) Complete History... haroon meer - 2010 @haroonmeer |

Memory Corruption The (almost) Complete History... haroon meer - 2010 @haroonmeer | haroon@thinkst.com Who ? haroon meer thinkst ? some papers, some books, some talks academic wannabe Why? Why? Why? Why? Why? twitter made me do it!

959 views • 92 slides
Doesn't Help Roman Frigg LSE Plan Primer: High Resolution Climate Projection Part I The

Doesn't Help Roman Frigg LSE Plan Primer: High Resolution Climate Projection Part I The

Local High-Resolution Climate Projections: Why a Multi-Model Approach Doesn't Help Roman Frigg LSE Plan Primer: High Resolution Climate Projection Part I The Perils of Model Error Laplaces Demon and the Adventures of His

1.66k views • 165 slides
Attribute Interactions in Machine Learning Aleks Jakulin Faculty of Computer and Information

Attribute Interactions in Machine Learning Aleks Jakulin Faculty of Computer and Information

Attribute Interactions in Machine Learning Aleks Jakulin Faculty of Computer and Information Science University of Ljubljana Attribute Interactions p.1/17 A Classification Problem A TTRIBUTES L ABEL Name Hair Height Weight Lotion

473 views • 21 slides
Making a Difference A Case Study 1 Agenda Making a Difference The Foundation Building

Making a Difference A Case Study 1 Agenda Making a Difference The Foundation Building

Making a Difference A Case Study 1 Agenda Making a Difference The Foundation Building a Healthy Organization A Case Study: The Rise and Fall (and Rise!) of the House OIG Creating a Culture of Pervasive Leadership The

614 views • 45 slides

More recommend