Recommended
More Related Content
What's hot
What's hot (18)
Similar to Cybersecurity in the gambling industry
Similar to Cybersecurity in the gambling industry (20)
Recently uploaded
Recently uploaded (20)
Cybersecurity in the gambling industry
- 1. US $6Trl lost to cybercrime every year. more profitable than global trade of all drugs.
- 2. US $6Trl lost to cybercrime half the GDP of china
- 3. US $6Trl lost to cybercrime 333 times the GDP of North Korea
- 4. US $6Trl lost to cybercrime 12 times the gross yield from global gambling market
- 5. you can be hacked let me turn your digitally monitored implantable device off
- 6. we are under attack by 2019 ransomware will hit a company every 14 seconds
- 7. harder to detect attackers hide in encrypted legitimate cloud traffic
- 8. the big data bang 200 billion smart devices connected by 2020
- 9. who survives wins big
- 11. security at the core
- 13. situational awareness what are the threats and what do they mean for you #BECYBERRESILIENT
- 14. cybersecurity hygene brush those old patches, floss those vulnerabilities
- 15. employee awareness build cybersecurity consciousness, achieve nirvana
- 16. active defence put your SOC on, protect your crown jewels
- 17. regulatory security support and cyberdefence
Editor's Notes
- Big relevant Change in the world. The 2016 Cybercrime Report from Cybersecurity Ventures predicts cyber crime will cost the world in excess of $6 trillion annually by 2021, making it more profitable than the global trade of all major illegal drugs combined. It is a global phenomenon that does not leave anybody untouched.
- Big relevant Change in the world It is half the GDP of China. Cybercrime costs include damage and destruction of data, stolen money, lost productivity, theft of intellectual property, theft of personal and financial data, embezzlement, fraud, post-attack disruption to the normal cost of business, forensic investigation, restoration and deletion of hacked data and systemsand reputational harm.
- Big relevant Change in the world Several time that of North Korea. Both countries appear to be very active in perpetrating cyberattacks.
- Big relevant Change in the world It is 12 times the gross gaming yield from the global gambling market
- Do you know that you can be hacked? Not something outside you, something inside you. Hundred of thousands – and possibly millions – of people can be hacked now via their wirelessly connected and digitally monitored implantable medical devices (IMDs), which include cardioverter defibrillators (ICD), pacemakers, deep brain neurostimulators, insulin pumps, ear tubes, and much more every day as technology improves. 45 trillion networked sensors 20 years from now.
- MALWARE By highlighting a shift in the world, you get prospects to open up about how that shift affects them, how it scares them, and where they see opportunities. Our companies have some of the largest transactional platforms that exist on the planet. They are easily the target of increasingly sophisticated attacks. In 2017 we have witnessed hackers taking malware to unprecedented levels of sophistication and impact. (ACR18p3) And all it takes is for someone within your organisation to open the wrong file, or navigate to the wrong website. Entire gaming operations have been brought down simply because someone within the customer support team opened what they thought was the screenshot sent by a customer, which turned out to be a malicious file – ransomware – which paralysed the entire organisation. Have you heard of WannaCry? The attack that brought down the entire UK health system in 2017. Currently every 40 seconds, a business falls victim to a ransomware attack. This will rise to every 14 seconds by 2019. Stealing of high rollers information. Malware, inside threats. Buying employees out that make small money through salary. Support opens screenshot sent from client that is complaining about the service. Fraud. Hacker playing 4 out of 5 players in the game. Repitation and information are your asset.
- WEAPONIZING CLOUD SERVICES By highlighting a shift in the world, you get prospects to open up about how that shift affects them, how it scares them, and where they see opportunities. What we also noticed in 2017 is that adversaries are becoming more adept at evasion— and weaponizing cloud services and other technology used for legitimate purposes. ACR18p3 By mixing their encrypted traffic with that of legitimate cloud based organisations – like Google, Amazon, Spotify – they became virtually impossible to detect. You have probably heard of DDoS attacks. These now involve an increasingly larger amount of traffic. Burst tactics are typically aimed at gaming websites and service providers due to their targets’ sensitivity to service availability and their inability to sustain such attack maneuvers. Timely or random bursts of high traffic rates over a period of days or even weeks can leave these organizations with no time to respond, causing severe service disruptions. ACR18p32 Stealing of high rollers information. Malware, inside threats. Buying employees out that make small money through salary. Support opens screenshot sent from client that is complaining about the service. Fraud. Hacker playing 4 out of 5 players in the game. Repitation and information are your asset.
- INTERNET OF THINGS GAPS IN SECURITY Plus we are getting into the habit of connecting everything around us. Adversaries are exploiting undefended gaps in security, many of which stem from the expanding Internet of Things (IoT) and use of cloud services. Microsoft predicts that data volumes online will be 50 times greater in 2020 than they were in 2016. 2 billion objects in 2006 to 200 billion objects by 2020 (Intel) An attacker might have the ability to turn off life support systems in hospitals or take control of connected cars on the road.
- WINNER AND LOSERS THE CHANGE WILL CREATE WINNERS AND LOOSER WINNER: have the essential, healthy life and cybersecurity strategy. Winners are those who know that it is just a matter of time before you are attacked. If you think you are safe, you a re delusional. You must be ready at all time to confront attack. LOSERS: They think they are safe, that they have a tool that does everything for them.
- The winners are those organisations that are confident that they have fully considered the information security implications of their current strategy and that their risk landscape incorporates and monitors relevant cyberthreats, vulnerability and risks.
- Having put security at the heart of the organisation’s strategy, they have maintained and even enhanced the trust of their customers, regulators and the media. By making cybersecurity a core part of their business strategy and culture, they have enabled the entire organisation to understand the risk they faced, embraced the innovation needed to counter those risks and had the resilience to regroup and restore operations smoothly and efficiently after a cyber breach. LIVE LIVE LIVE LIVE LIVE LIVE Organizations need an integrated cybersecurity vision – one that brings together the various functions and dependencies with other parts of the organization, external key stakeholders and third party suppliers.
- You will be able to go to sleep. You will be able to go on holiday.
- WIZARD 1 The first step for organizations seeking to enhance their cybersecurity ability is to develop a better understanding the nature of the threat to them. It will be impossible to build greater cybersecurity resilience winto the organisation without first identifying the causes of harm and how they might manifest themselves. Spear phishing, rogue employees planted to undertake espionage, leveraging of security gapscreated by convergence between personal and corporate devices on the network.
- WIZARD 2 With good cybersecurity hygiene in place it should be possible to prevent a very sizable proportion of common attackes. For the next few years, patching known vulnerabilities and removing web servers vulnerability could be the most impactful actions for boosting your cybersecurity. Implementing first-line-of-defense tools that can scale, like cloud security platforms. • Confirming that they adhere to corporate policies and practices for application, system, and appliance patching. • Employing network segmentation to help reduce outbreak exposures. • Adopting next-generation endpoint process monitoring tools. • Accessing timely, accurate threat intelligence data and processes that allow for that data to be incorporated into security monitoring and eventing. • Performing deeper and more advanced analytics. • Reviewing and practicing security response procedures. • Backing up data often and testing restoration procedures—processes that are critical in a world of fast-moving, network-based ransomware worms and destructive cyber weapons. • Reviewing third-party efficacy testing of security technologies to help reduce the risk of supply chain attacks. • Conducting security scanning of microservice, cloud service, and application administration systems. • Reviewing security systems and exploring the use of SSL analytics—and, if possible, SSL decryption.
- WIZARD 3 Employee awareness is a crucial frontline defence, building cybersecurity consciousness and password discipline throughout the organization. 90% of all attacks happen because of employee negligence: phishing attacks.
- WIZARD 4 SOC are moving into active defence – a deliberately planned and continuously executed campaign that aims to identify and remove hidden attackers and defeat likely threat scenarios targeting the organization’s most critical assets Crown jewels are the most valuable assets of an organization, must identify and protect well. CyberHat’s SOC The hackers point of view. If you think like the enemy, you will be one step ahead of the competition. Everything from the first moment `[visibility of network, team monitoring your network 24/4, team optimizing your security tools, so you get th eright messages, the right warning, high level forensic experts, intelligence team (threat intelligence and hunting)] Incidence response team, so if something happens you have someone that can help you the attacker. IBM can send you consultants at 500/hour and in one week. Extension of your team. Combination of all capability in house very rare. Not many companies will have in house capabilities, the ones that claim they have it they a re subcontracting. Developed internal technologies and methodologies that help us manage all these capabilities. Core is people, Israeli army experience. Exposure make expertise and technology better every day. Technology agnostic helps being up to date.
- The road to the promised land is littered with obstacles so prospects are sceptical about our ability to deliver. What is the best evidence that we can offer that we can make the story we are telling come true?