A Child Like Approach to Grid Cybersecurity

•Download as PPTX, PDF•

3 likes•591 views

This document outlines a presentation given by Robert M. Lee on grid cybersecurity. The presentation uses the metaphor of a child named Little Bobby to discuss various cybersecurity topics in a simplified way. It begins with a case study of the Ukraine cyber attack and then covers Little Bobby's views on attribution, adversary tactics, the media, security controls, active defense, and metrics. The presentation aims to take a child-like approach to explaining complex cybersecurity challenges facing grid infrastructure.

A Child Like Approach to Grid Cyber Security

Read Coil
• Robert M. Lee
• CEO of Dragos Security
• SANS ICS 515 – Active Defense and Incident Response author
• SANS FOR 578 – Cyber Threat Intelligence author
• PhD Student at Kings College London
• Non-Resident National Cyber Security Fellow at New America
• Author of SCADA and Me and writer of Little Bobby

Today’s Agenda
• Case-Study: Ukraine Cyber Attack
• Little Bobby’s Views on the World

Little Bobby on
Nation-State Attribution

Little Bobby on the Confusion
Around Active Defense

Little Bobby on
Network Security Monitoring

Little Bobby on
Metrics and Telling Your Story

Contact Me (or Little Bobby)
• SANS: RobertMLee@SANS.org
• Twitter: @RobertMLee
• Little Bobby: www.LittleBobbyComic.com
• Twitter: @_LittleBobby_

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is an Enterprise Security Consultant at Sword and Shield Enterprise Security in Knoxville, TN. Joe also maintains his own Blog and Podcast called Advanced Persistent Security. In his spare time, Joe enjoys reading news relevant to information security, attending information security conferences, contributing blogs to various outlets, bass fishing, and flying his drone.

Charity: A Secret for Cyberspace by Jon Creekmore

EC-Council

Today, there lies an untapped source of great capability within cyberspace; charities. From the rise of the makerspace movement, to an explosion of STEM initiatives in third world countries, and even robotic competitions globally, our world is changing due to cyberspace. Through studying current initiatives and personal experiences, this presentation will present a plan and method to impact the evolution of cyberspace.

Dark Arts Of Social Engineering

Nutan Kumar Panda

Keeping you and your library safe and secure

LYRASIS

Weaponizing OSINT – Hacker Halted 2019 – Michael James

EC-Council

Privacy Primer

ConnectSafely

Search & Rescue and Missing Persons’ investigations often come to a standstill due to lack of information. How can technology change that? Robert Sell will explore the answer. We will hear how crowdsourced OSINT can be successfully used by emergency services and law enforcement, providing lifesaving information to fill the gaps and bring loved ones back to their families. Robert Sell, OSINT expert and Founder, Trace Labs

Social Media Driving Licence 5 - Twitter tools: curation control and reach

CJBS smdl

OSINT mindset to protect your organization - Null monthly meet version

Chandrapal Badshah

From OSINT to Phishing presentation

Jesse Ratcliffe, OSCP

網絡倫理 Internet Ethics

Calvin C. Yu

Cybercrime and the Developer: How to Start Defending Against the Darker Side...

Steve Poole

JavaOne 2016 Talk In the world of DevOps and the cloud, most developers have to learn new technologies and methodologies. The focus tends to be on adding capabilities such as resilience and scaling to an application. One critical aspect consistently overlooked is security. In this session, learn about a few of the simple actions you can take (and some behaviors you must change) to create a more secure Java application for the cloud. The world of the cybercriminal is closer than you realize. Hear how at risk your application may be, see practical examples of how you can inadvertently leave the doors open, and understand what you can do to make your Java solution more secure.

Jax london2016 cybercrime-and-the-developer

Steve Poole

In the emerging world of DevOps and the Cloud, most developers are trying to learn new technologies and methodologies. The focus tends to be on adding capabilities such as resiliency and scaling to an application. Still, one critical item consistently overlooked is security. The world of the Cyber Criminal is closer than you realize. Watch a real man-in-the-middle demonstration and learn just how simple it can be for others to steal your secrets. In this talk you’ll learn about other practical examples of how you can inadvertently leave the doors open and what you can do to keep your system secure. In the end, security is everyone’s concern and this talk will teach you a few of simple actions you can take (and some behaviours you must change) to create a more secure application in the Cloud.

Protecting Your IP: Data Security for Software Technology

Shawn Tuma

Cyber Security for the Employee - AFP Annual Conference 2016

Brad Deflin

Charleston 2022 - Cybersecurity 101 - What Every Librarian Needs to Know abou...

Matthew Ragucci

In today's world, it’s not a question of if your institution will be hit by a cyberattack, but when. Who's responsible for protecting your institution? Everyone, including the library. With higher education experiencing digital transformation and universities increasingly vulnerable to cyberthreats, it is imperative that institutions take proactive measures to mitigate the risks – and as stewards of access to campus networks, libraries are in a position to make that mitigation more effective. In this session, we will get advice on library-based network security strategies from a former university CISO, a cybersecurity expert, a university librarian, and a library technology communication expert. They will answer your questions about vulnerability, communication, and aligning strategies with your IT department. The panel will also share measures that every library can take to protect sensitive campus and student data, stay compliant with license agreements, and discourage copyright piracy.

BSidesLV Vulnerability & Exploit Trends

Ed Bellis

UW Cybersecurity Lecture 9 - Social Media

Dr Stylianos Mystakidis

Digital Age-Preparing Yourself

jkl0202

Progscon cybercrime and the developer

Steve Poole

n the world of DevOps and the cloud, most developers have to learn new technologies and methodologies. The focus tends to be on adding capabilities such as resilience and scaling to an application. One critical aspect consistently overlooked is security. In this session, learn about a few of the simple actions you can take (and some behaviors you must change) to create a more secure Java application for the cloud. The world of the cyber criminal is closer than you realize. Hear how at risk your application may be, see practical examples of how you can inadvertently leave the doors open, and understand what you can do to make your Java solution more secure.

Devnexus 2017 Cybercrime and the Developer: How do you make a difference?

Steve Poole

Cybercrime how bad can it be? Organised attacks around the world in 2016 have shown how unprepared we are to deal with the growth of Cybercrime. In this talk learn a little about the scale of the challenge developers face from assaults on our systems. Be prepared to be appalled and scared. Fainting is not allowed. Discover how to fight back and see how you can change your behaviour and your code to defend against these attacks. Your destiny is clear - it’s time to be come a Cyber Defender

Outpost24 webinar - Bridging your cyber hygiene gap to prevent enterprise hac...

Outpost24

Bulletproof IT Security

London School of Cyber Security

We are delighted to have Gary Miliefsky on our second Hacker Hotshot of 2013! Gary is the Editor of Cyber Defense Magazine, which he recently founded after years of being a cover story author and regular contributor to Hakin9 Magazine. In partnership with UMASS, he started the Cyber Defense Test Labs to perform independent lab reviews of next generation information security products. Gary is also the founder of NetClarity, Inc., which is the world's first next generation agentless, non-inline network access control (NAC) and bring your own device (BYOD) management appliances vendor based on a patented technology which he invented.

2015: The year-ahead-in-cyber-security

Stephen Cobb

NSS Labs’ 2016 Information Security Predictions

NSS Labs

The challenge of security awareness

Jisc

Cybercrime and the Developer: How to Start Defending Against the Darker Side

Steve Poole

In the world of DevOps and the cloud, most developers have to learn new technologies and methodologies. The focus tends to be on adding capabilities such as resilience and scaling to an application. One critical aspect consistently overlooked is security. In this session, learn about a few of the simple actions you can take (and some behaviours you must change) to create a more secure Java application for the cloud. The world of the cybercriminal is closer than you realize. Hear how at risk your application may be, see practical examples of how you can inadvertently leave the doors open, and understand what you can do to make your Java solution more secure.

What's hot

Cloud Proxy Technology – Hacker Halted 2019 – Jeff Silver

EC-Council

EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...

EENA (European Emergency Number Association)

Social Media Driving Licence 5 - Twitter tools: curation control and reach

CJBS smdl

OSINT mindset to protect your organization - Null monthly meet version

Chandrapal Badshah

From OSINT to Phishing presentation

Jesse Ratcliffe, OSCP

網絡倫理 Internet Ethics

Calvin C. Yu

What's hot (6)

Cloud Proxy Technology – Hacker Halted 2019 – Jeff Silver

EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...

Social Media Driving Licence 5 - Twitter tools: curation control and reach

OSINT mindset to protect your organization - Null monthly meet version

From OSINT to Phishing presentation

網絡倫理 Internet Ethics

Similar to A Child Like Approach to Grid Cybersecurity

Cybercrime and the Developer: How to Start Defending Against the Darker Side...

Steve Poole

Jax london2016 cybercrime-and-the-developer

Steve Poole

Protecting Your IP: Data Security for Software Technology

Shawn Tuma

Cyber Security for the Employee - AFP Annual Conference 2016

Brad Deflin

Charleston 2022 - Cybersecurity 101 - What Every Librarian Needs to Know abou...

Matthew Ragucci

BSidesLV Vulnerability & Exploit Trends

Ed Bellis

UW Cybersecurity Lecture 9 - Social Media

Dr Stylianos Mystakidis

Digital Age-Preparing Yourself

jkl0202

Progscon cybercrime and the developer

Steve Poole

Devnexus 2017 Cybercrime and the Developer: How do you make a difference?

Steve Poole

Outpost24 webinar - Bridging your cyber hygiene gap to prevent enterprise hac...

Outpost24

Bulletproof IT Security

London School of Cyber Security

2015: The year-ahead-in-cyber-security

Stephen Cobb

NSS Labs’ 2016 Information Security Predictions

NSS Labs

The challenge of security awareness

Jisc

Cybercrime and the Developer: How to Start Defending Against the Darker Side

Steve Poole

Do it Best Corp. Techapalooza 2013 Presentation

Brian T. O'Hara CISA, CISM, CRISC, CCSP, CISSP

There is a global war already taking place today. We simply have yet to acknowledge it. Our banks are under attack, our public utilities are at risk and the internet is being used more and more for political purposes, both bad and good. Cybercriminals blazingly brazenly brag their accomplishments and thumb their noses at authorities around the world. Governments are struggling with controls that are either too permissive or too restrictive. Join us in an important discussion of the state of the state of Cyber(x) as we explore issues and peer into the future. Find out what the “bad guys” are up to, and what the future holds.

Threat Modeling In 2021

Adam Shostack

Vulnerability & Exploit Trends: A Deep Look Inside the Data

Kenna

Michael Roytman, Data Scientist, Kenna & Ed Bellis, CEO, Kenna (BSidesLV, 2013) While the past isn’t a direct indication of future performance, knowing the past is essential to predicting the future. In security, this requires reviewing large quantities of vulnerability, defect and exploit data to fully understand how attackers are likely to approach their task. This presentation by Kenna CEO Ed Bellis, and Data Scientist Michael Roytman covers vulnerability statistics as it relates to fixing security issues by: Examining the overlapping data generated from 20 of the leading security tools on the market Comparing & contrasting this with the output of multiple breach reports and database Extracting trends that may be important in helping to reduce the number of breaches in the future This is based on research from over 30M vulnerabilities analyzed over the past 12 months, generated across some of the largest corporations in the world. Take a look at this presentation to learn how others are remediating vulnerabilities, how effective their efforts are, and how they could do it a little bit better.

NCSAM = Cyber Security Awareness Month: Trends and Resources

Stephen Cobb

Similar to A Child Like Approach to Grid Cybersecurity (20)

Cybercrime and the Developer: How to Start Defending Against the Darker Side...

Jax london2016 cybercrime-and-the-developer

Protecting Your IP: Data Security for Software Technology

Cyber Security for the Employee - AFP Annual Conference 2016

Charleston 2022 - Cybersecurity 101 - What Every Librarian Needs to Know abou...

BSidesLV Vulnerability & Exploit Trends

UW Cybersecurity Lecture 9 - Social Media

Digital Age-Preparing Yourself

Progscon cybercrime and the developer

Devnexus 2017 Cybercrime and the Developer: How do you make a difference?

Outpost24 webinar - Bridging your cyber hygiene gap to prevent enterprise hac...

Bulletproof IT Security

2015: The year-ahead-in-cyber-security

NSS Labs’ 2016 Information Security Predictions

The challenge of security awareness

Cybercrime and the Developer: How to Start Defending Against the Darker Side

Do it Best Corp. Techapalooza 2013 Presentation

Threat Modeling In 2021

Vulnerability & Exploit Trends: A Deep Look Inside the Data

NCSAM = Cyber Security Awareness Month: Trends and Resources

Recently uploaded

Mind map of terminologies used in context of Generative AI

Kumud Singh

Removing Uninteresting Bytes in Software Fuzzing

Aftab Hussain

Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process. In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds. - These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.

Communications Mining Series - Zero to Hero - Session 1

DianaGray10

This session provides introduction to UiPath Communication Mining, importance and platform overview. You will acquire a good understand of the phases in Communication Mining as we go over the platform with you. Topics covered: • Communication Mining Overview • Why is it important? • How can it help today’s business and the benefits • Phases in Communication Mining • Demo on Platform overview • Q/A

GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...

Neo4j

Leonard Jayamohan, Partner & Generative AI Lead, Deloitte This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.

Uni Systems Copilot event_05062024_C.Vlachos.pdf

Uni Systems S.M.S.A.

20240605 QFM017 Machine Intelligence Reading List May 2024

Matthew Sinclair

Large Language Model (LLM) and it’s Geospatial Applications

Rohit Gautam

RESUME BUILDER APPLICATION Project for students

KAMESHS29

Epistemic Interaction - tuning interfaces to provide information for AI support

Alan Dix

Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024 https://alandix.com/academic/papers/synergy2024-epistemic/ As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.

Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!

SOFTTECHHUB

As the digital landscape continually evolves, operating systems play a critical role in shaping user experiences and productivity. The launch of Nitrux Linux 3.5.0 marks a significant milestone, offering a robust alternative to traditional systems such as Windows 11. This article delves into the essence of Nitrux Linux 3.5.0, exploring its unique features, advantages, and how it stands as a compelling choice for both casual users and tech enthusiasts.

UiPath Test Automation using UiPath Test Suite series, part 5

DianaGray10

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

20240609 QFM020 Irresponsible AI Reading List May 2024

Matthew Sinclair

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

UiPath Test Automation using UiPath Test Suite series, part 6

DianaGray10

Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI. UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities. Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes. What will you get from this session? 1. Insights into integrating generative AI. 2. Understanding how this integration enhances test automation within the UiPath platform 3. Practical demonstrations 4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath Topics covered: What is generative AI Test Automation with generative AI and Open AI. UiPath integration with generative AI Speaker: Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP

Pushing the limits of ePRTC: 100ns holdover for 100 days

Adtran

By Design, not by Accident - Agile Venture Bolzano 2024

Pierluigi Pugliese

GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024

Neo4j

GridMate - End to end testing is a critical piece to ensure quality and avoid...

ThomasParaiso2

Building RAG with self-deployed Milvus vector database and Snowpark Container...

Zilliz

Recently uploaded (20)

Mind map of terminologies used in context of Generative AI

Removing Uninteresting Bytes in Software Fuzzing

Communications Mining Series - Zero to Hero - Session 1

GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...

Uni Systems Copilot event_05062024_C.Vlachos.pdf

20240605 QFM017 Machine Intelligence Reading List May 2024

Large Language Model (LLM) and it’s Geospatial Applications

RESUME BUILDER APPLICATION Project for students

Epistemic Interaction - tuning interfaces to provide information for AI support

Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!

UiPath Test Automation using UiPath Test Suite series, part 5

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

20240609 QFM020 Irresponsible AI Reading List May 2024

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

UiPath Test Automation using UiPath Test Suite series, part 6

Pushing the limits of ePRTC: 100ns holdover for 100 days

By Design, not by Accident - Agile Venture Bolzano 2024

GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024

GridMate - End to end testing is a critical piece to ensure quality and avoid...

Building RAG with self-deployed Milvus vector database and Snowpark Container...