SlideShare a Scribd company logo

Global cybersecurity on earth + in space

Download as PPTX, PDF
DIGIJAKS
DIGIJAKS

Talk by Digijaks CEO Alan W Silberberg at Geoint 2016 on Cyber Security for Ground Stations and Satellites and the data flowing between.

Presentations & Public Speaking
1 of 38
ALAN W. SILBERBERG DIGIJAKS FOUNDER + CEO GLOBAL CYBER SECURITY ON EARTH + IN SPACE US GEOINT CONFERENCE 5.18.16 Copyright © 2016 Digijaks 1
Who am I and what is Digijaks? • Alan W Silberberg • Founder of Digijaks – Boutique Cyber Security Firm • Subject Matter Expert, Cyber Security to US SBA • Member, California Governor’s Cyber Security Task Force • Former US White House aide • Former US National Archives Task Force Member • Former Executive at Paramount Pictures • Invented technology to utilize aspects of search + social media to defend against cyber attacks. • Invented technology to change and alter search results. Copyright © 2016 Digijaks 2
Summary Of Areas Covered • People • Ground Stations • Ground Station Hardware + Software • Uplinked Data • Downlinked Data • Terrestrial Platforms • Threat Matrix • Threat Actors • Suggested Changes Copyright © 2016 Digijaks 3
Copyright © 2016 Digijaks 4
3, 2, 1 – Liftoff is just beginning of challenges for satellite communications Copyright © 2016 Digijaks 5
3, 2, 1 – Liftoff is just beginning of challenges for satellite cyber security Copyright © 2016 Digijaks 6 • The challenges mount from the moment of liftoff. • Depending on the complexity of the payload and onboard data packages cyber security risks can only increase once in space due to problems and or failures on the ground, or in space. • Cyber Security was an afterthought until only recently, so there are many gaps where legacy systems and legacy technology are in the clear, not encrypted, and not ready for a modern cyber attack.
25 years ago there were dozens….. Copyright © 2016 Digijaks 7
And 1000s of Satellites now in Space Copyright © 2016 Digijaks 8
Internet = Anyone Anywhere 2 Track, Identify software, do enough open source *osint research to then move on to next phase of cyber security information collection prior to attack or breach of Ground, Person, Satellite LOTS OF DATA Copyright © 2016 Digijaks 9
People and their Devices Copyright © 2016 Digijaks 10
People and their Devices • BYOD • Social Engineering • USBs • WALK BY Photo/Video/SMS/Social Media • Laziness • Corruptness • Leveraged by Organized Crime or Foreign Intelligence • Disregard of security protocols • Will-full destruction/cyberwar/espionage Copyright © 2016 Digijaks 11
People and their Devices Copyright © 2016 Digijaks 12
People and their Devices Copyright © 2016 Digijaks 13 • Devices can be hacked and need to be screened or put in lead or steel box outside prior to entry. Air gapped breaches have been proven to be actual exploits. • Device access to Ground Station networks need to be closely controlled and monitored 24x7 including vpn, remote by proxy, late night email logins, and late night from home server logins. • In addition to physical security concerns, BYOD devices can also insert malware, viruses, worms, and can simultaneously be used to extrifilcate DATA and transmit instantly via carrier exchanges or social media to internet + Globe.
Ground Station Cyber Security Copyright © 2016 Digijaks 14
Ground Station Cyber Security Copyright © 2016 Digijaks 15 • People. People. People. • Incoming data from other ground stations/networks • Incoming data from Internet/extranet • Incoming Data bound for Sat Payload Uplink • Outgoing Data bound from Sat Payload Downlink • Uplink Data • Downlink Data • Maintenance Level • Control Level • Security Level
Ground Station Cyber Security Copyright © 2016 Digijaks 16
Ground Station Cyber Security Copyright © 2016 Digijaks 17 • Perimeters • Attractive and Visible Physical Targets • Critical Infrastructure yet not always provided security for such protections as needed • Easy to track and research using online OSINT for • SCADA Installs connected to Internet • SCADA Install passwords, default reset data • Real world representation of the need to blend physical and cyber security into one force multiplier.
Ground Station Cyber Security Copyright © 2016 Digijaks 18 What does your ground station cyber posture look like from space? Probably, another satellite is spying on you as you work and as your teams go about “securing the facility”.
You do not know who your attacker is. Copyright © 2016 Digijaks 19
But …. They know you Copyright © 2016 Digijaks 20
But they know you: Partial List of Satellite Hacks in last few years. Copyright © 2016 Digijaks 21 • US Weather System Satellites (Non Mil) NOAA satellites penetrated (CHINESE NATION STATE THREAT ACTOR) • Commercial Satellites have been compromised for APT use like in case of TURLA APT (RUSSIAN NATION STATE THREAT ACTOR) corrupted weak satellite protocols • Ground Station Software + Hardware from multiple manufacturers flagged in 2014 for cyber security failures – CERT notification was issued, but only some companies have made updates to date in 2016.
But they know you - Copyright © 2016 Digijaks 22 • In 2015 CNN and many other news outlets reported on the GPS system and satellites having been compromised and even altered. By whom? Why? What happens when that gets combined with the command and control structure for your fleet? For your bird? • SIMPLEX network known and unknown vulnerabilities include un encrypted data transmission between ground and satellite, as well as ground to ground and satellite to satellite. In 2015 warnings were issued about organizations relying on this backbone for their comms. • EXFIL sensitive data from government, military, diplomatic, research and educational organizations in US + EU. • Hide command-and-control servers from law enforcement agencies.
But they know you - Copyright © 2016 Digijaks 23
Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 24
Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 25 Several factors become weak points: A. Uplink From Ground that is un encrypted or already corrupted. B. Downlink from Bird that is same C. Penetration and or control of data stream, redistributing FUD DATA D. EXFIL of DATA E. LOSS of bird through willful destruction, terrorism, hunter killer satellite from opponent F. Corruption of GEO SPATIAL location and or timing for signal control rendering the satellite(s) useless and or dangerous or both.
Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 26 • Loss of Command and Control through ground infiltration or penetration of ground station either physically or through cyber means. • Acquisition of signals and BAND(s) data from Space by another satellite tasked with sensors/lasers to track/acquire such information without knowledge of users on ground. • Same problems apply from ground station, ie, if any of those are triggered, then the cybersecurity of the bird is already compromised.
Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 27 • Cyber Attacks are common, more common than not. • Cyber Attacks are both from the ground and from another satellite or group of satellites. • How can satellite or group of cube-sats be used in malicious ways against a country, or company or a person?
Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 28
Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 29 • Do you know who is watching from above? Or why? • What about your cyber security – how much is already penetrated from above, let alone from the computer you are already using? • What of your upstream and downstream DATA? How much is already FUD and or compromised. • Is your platform being used in a Space Based DDoS attack? Or Space Based misdirection of signal/GPS/location to purposely mislead either data or physical time and space objects like people.
Threat Matrix Copyright © 2016 Digijaks 30
Threat Matrix Copyright © 2016 Digijaks 31 • Know your weaknesses • Know the weaknesses of your staff, the training and the software and hardware. • Anticipate that you will be attacked. It is not IF but WHEN. • Use both internal and external sources of information to stay apprised of current threats against the industry or your facility. Search for the facility name and see if it is being mentioned in social media or on chat rooms. • Scour sites like Shodan weekly to ensure your IoT + SCADA devices are not listed, if they are make changes.
Threat Matrix Copyright © 2016 Digijaks 32 • Attacks will occur onto: • A. Ground Station Software • B. Ground Station Hardware • C. People + their devices • D. Social Engineering, Phishing, Whaling, Waterholes • E. Upstream Data • F. Downstream Data • G. Ground to Ground Data – SMS, Cell, Internet, Intranet, Extranet, Phone/Voice/Video • F. Satellite to Satellite Attacks on both software + hardware through lasers, sonic beams + hunter killer sats
Threat Actors • Nation State • China (estimated 125K+ official hackers paid by Gov) • Russia (17K+ Twitter Trolls + estimated 25K hackers paid by Gov) • Iran (1000s of Hackers + 100s of Twitter trolls + funding others) • North Korea • Vietnam • Ukraine • Romania • Also a host of other countries with either sophisticated telecom networks or where traditional computing is taught. • Paid hacker cartels • Paid hacker soldier of war Copyright © 2016 Digijaks 33
Threat Actors • Corporations using technology to spy on their competition or on their staff or clients. • Bad actor cyber companies doing unethical work and or illegal work under cover of “helping” • Your own people • Your own equipment • Your own networks • May already be compromised, how would you know if you do not look? Copyright © 2016 Digijaks 34
Constant Actions + Energy Needed 24x7 Copyright © 2016 Digijaks 35
Suggested Changes • Update all software and firmware on regular basis. • Do not ignore alerts from already installed software or monitoring services regarding breach behavior or irregular network data passing as regular flow. • Understand relationship (emerging and growing between physical security and cyber security in both ground and terrestrial situations. • Train employees and contractors regularly, and drill regularly in what to do when cyber attacked/ how to handle active breach / mitigation of previous breach and proactively taking steps to make changes into new paradigms. Copyright © 2016 Digijaks 36
Suggested Changes • Install and utilize two factor authentication for every entry or access to control of data streams / up + downlinks • Disable use of BYOD on premises of ground stations or only in specifically marked areas. • Institute signal proof lead/steel boxes outside of conference rooms/important areas/data centers and regulate that all personal devices be placed in one during a meeting or any grouping. • Constantly review SHODAN.IO for your installation’s SCADA and other internet connected devices/software or firmware numbers or other identifying information, then work to make changes or remove. Copyright © 2016 Digijaks 37
THANK YOU!! WWW.DIGIJAKS.COM @IDEAGOV 424.442.9658 Copyright © 2016 Digijaks 38

Recommended

Cyber espionage - Tinker, taylor, soldier, spy
Cyber espionage - Tinker, taylor, soldier, spyCyber espionage - Tinker, taylor, soldier, spy
Cyber espionage - Tinker, taylor, soldier, spyb coatesworth
 
Have the Bad Guys Won the Cyber security War...
Have the Bad Guys Won the Cyber security War...Have the Bad Guys Won the Cyber security War...
Have the Bad Guys Won the Cyber security War...Andrew Hammond
 
Cyber Security
Cyber SecurityCyber Security
Cyber Securityfrcarlson
 
Towngas Infomation Security Week 2013 presentation
Towngas Infomation Security Week 2013 presentationTowngas Infomation Security Week 2013 presentation
Towngas Infomation Security Week 2013 presentationCharles Mok
 
Is the us engaged in a cyber war
Is the us engaged in a cyber warIs the us engaged in a cyber war
Is the us engaged in a cyber warDavid Willson, Attorney, CISSP, Security +
 
Hack the World: IT/IOT/ICS SCADA OSINT
Hack the World: IT/IOT/ICS SCADA OSINT Hack the World: IT/IOT/ICS SCADA OSINT
Hack the World: IT/IOT/ICS SCADA OSINT DefCamp
 
From stealing confidential data to revenue-generating attacks
From stealing confidential data to revenue-generating attacksFrom stealing confidential data to revenue-generating attacks
From stealing confidential data to revenue-generating attacksMinseok(Jacky) Cha
 
Advantage Technology - Ransomware and the NIST Cybersecurity Framework
Advantage Technology - Ransomware and the NIST Cybersecurity FrameworkAdvantage Technology - Ransomware and the NIST Cybersecurity Framework
Advantage Technology - Ransomware and the NIST Cybersecurity FrameworkJack Shaffer
 

Recommended

Cyber espionage - Tinker, taylor, soldier, spy
Cyber espionage - Tinker, taylor, soldier, spyCyber espionage - Tinker, taylor, soldier, spy
Cyber espionage - Tinker, taylor, soldier, spyb coatesworth
 
Have the Bad Guys Won the Cyber security War...
Have the Bad Guys Won the Cyber security War...Have the Bad Guys Won the Cyber security War...
Have the Bad Guys Won the Cyber security War...Andrew Hammond
 
Cyber Security
Cyber SecurityCyber Security
Cyber Securityfrcarlson
 
Towngas Infomation Security Week 2013 presentation
Towngas Infomation Security Week 2013 presentationTowngas Infomation Security Week 2013 presentation
Towngas Infomation Security Week 2013 presentationCharles Mok
 
Is the us engaged in a cyber war
Is the us engaged in a cyber warIs the us engaged in a cyber war
Is the us engaged in a cyber warDavid Willson, Attorney, CISSP, Security +
 
Hack the World: IT/IOT/ICS SCADA OSINT
Hack the World: IT/IOT/ICS SCADA OSINT Hack the World: IT/IOT/ICS SCADA OSINT
Hack the World: IT/IOT/ICS SCADA OSINT DefCamp
 
From stealing confidential data to revenue-generating attacks
From stealing confidential data to revenue-generating attacksFrom stealing confidential data to revenue-generating attacks
From stealing confidential data to revenue-generating attacksMinseok(Jacky) Cha
 
Advantage Technology - Ransomware and the NIST Cybersecurity Framework
Advantage Technology - Ransomware and the NIST Cybersecurity FrameworkAdvantage Technology - Ransomware and the NIST Cybersecurity Framework
Advantage Technology - Ransomware and the NIST Cybersecurity FrameworkJack Shaffer
 
Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...
Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...
Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...Andrew Morris
 
Information Security Lesson 2 - Attackers and Attacks - Eric Vanderburg
Information Security Lesson 2 - Attackers and Attacks - Eric VanderburgInformation Security Lesson 2 - Attackers and Attacks - Eric Vanderburg
Information Security Lesson 2 - Attackers and Attacks - Eric VanderburgEric Vanderburg
 
Hacking Exposed Live: Mobile Targeted Threats
Hacking Exposed Live: Mobile Targeted ThreatsHacking Exposed Live: Mobile Targeted Threats
Hacking Exposed Live: Mobile Targeted ThreatsCrowdStrike
 
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...EENA (European Emergency Number Association)
 
Does a Bear Leak in the Woods?
Does a Bear Leak in the Woods?Does a Bear Leak in the Woods?
Does a Bear Leak in the Woods?ThreatConnect
 
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】Hacks in Taiwan (HITCON)
 
Honeypots for Active Defense
Honeypots for Active DefenseHoneypots for Active Defense
Honeypots for Active DefenseGreg Foss
 
Ransomware: History, Analysis, & Mitigation
Ransomware: History, Analysis, & MitigationRansomware: History, Analysis, & Mitigation
Ransomware: History, Analysis, & MitigationWhiskeyNeon
 
CrowdCasts Monthly: When Pandas Attack
CrowdCasts Monthly: When Pandas AttackCrowdCasts Monthly: When Pandas Attack
CrowdCasts Monthly: When Pandas AttackCrowdStrike
 
Mobile #Infosec hackathon for journalists(2)
Mobile #Infosec hackathon for journalists(2)Mobile #Infosec hackathon for journalists(2)
Mobile #Infosec hackathon for journalists(2)Tanja Drca
 
SACON - Deception Technology (Sahir Hidayatullah)
SACON - Deception Technology (Sahir Hidayatullah)SACON - Deception Technology (Sahir Hidayatullah)
SACON - Deception Technology (Sahir Hidayatullah)Priyanka Aash
 
2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEW2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEWSylvain Martinez
 
CrowdCasts Monthly: Going Beyond the Indicator
CrowdCasts Monthly: Going Beyond the IndicatorCrowdCasts Monthly: Going Beyond the Indicator
CrowdCasts Monthly: Going Beyond the IndicatorCrowdStrike
 
Defending Your Base of Operations: How Industrial Control Systems are Being T...
Defending Your Base of Operations: How Industrial Control Systems are Being T...Defending Your Base of Operations: How Industrial Control Systems are Being T...
Defending Your Base of Operations: How Industrial Control Systems are Being T...AFCEA International
 
Cyberwar and Geopolitics
Cyberwar and GeopoliticsCyberwar and Geopolitics
Cyberwar and Geopoliticstnwac
 
Threat Intelligence Workshop
Threat Intelligence WorkshopThreat Intelligence Workshop
Threat Intelligence WorkshopPriyanka Aash
 
Cybersecurity Law and Policy II Slides for First Summit Meeting
Cybersecurity Law and Policy II Slides for First Summit MeetingCybersecurity Law and Policy II Slides for First Summit Meeting
Cybersecurity Law and Policy II Slides for First Summit MeetingDavid Opderbeck
 
Threat-Based Adversary Emulation with MITRE ATT&CK
Threat-Based Adversary Emulation with MITRE ATT&CKThreat-Based Adversary Emulation with MITRE ATT&CK
Threat-Based Adversary Emulation with MITRE ATT&CKKatie Nickels
 
CrowdCast Monthly: Operationalizing Intelligence
CrowdCast Monthly: Operationalizing IntelligenceCrowdCast Monthly: Operationalizing Intelligence
CrowdCast Monthly: Operationalizing IntelligenceCrowdStrike
 
Entrepreneurship development
Entrepreneurship developmentEntrepreneurship development
Entrepreneurship developmentAddie Nagta
 
Watanpakistan
WatanpakistanWatanpakistan
Watanpakistanshahazadgul
 
Gdgfdg
GdgfdgGdgfdg
GdgfdgJeff AnDrés
 

More Related Content

What's hot

Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...
Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...
Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...Andrew Morris
 
Information Security Lesson 2 - Attackers and Attacks - Eric Vanderburg
Information Security Lesson 2 - Attackers and Attacks - Eric VanderburgInformation Security Lesson 2 - Attackers and Attacks - Eric Vanderburg
Information Security Lesson 2 - Attackers and Attacks - Eric VanderburgEric Vanderburg
 
Hacking Exposed Live: Mobile Targeted Threats
Hacking Exposed Live: Mobile Targeted ThreatsHacking Exposed Live: Mobile Targeted Threats
Hacking Exposed Live: Mobile Targeted ThreatsCrowdStrike
 
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...EENA (European Emergency Number Association)
 
Does a Bear Leak in the Woods?
Does a Bear Leak in the Woods?Does a Bear Leak in the Woods?
Does a Bear Leak in the Woods?ThreatConnect
 
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】Hacks in Taiwan (HITCON)
 
Honeypots for Active Defense
Honeypots for Active DefenseHoneypots for Active Defense
Honeypots for Active DefenseGreg Foss
 
Ransomware: History, Analysis, & Mitigation
Ransomware: History, Analysis, & MitigationRansomware: History, Analysis, & Mitigation
Ransomware: History, Analysis, & MitigationWhiskeyNeon
 
CrowdCasts Monthly: When Pandas Attack
CrowdCasts Monthly: When Pandas AttackCrowdCasts Monthly: When Pandas Attack
CrowdCasts Monthly: When Pandas AttackCrowdStrike
 
Mobile #Infosec hackathon for journalists(2)
Mobile #Infosec hackathon for journalists(2)Mobile #Infosec hackathon for journalists(2)
Mobile #Infosec hackathon for journalists(2)Tanja Drca
 
SACON - Deception Technology (Sahir Hidayatullah)
SACON - Deception Technology (Sahir Hidayatullah)SACON - Deception Technology (Sahir Hidayatullah)
SACON - Deception Technology (Sahir Hidayatullah)Priyanka Aash
 
2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEW2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEWSylvain Martinez
 
CrowdCasts Monthly: Going Beyond the Indicator
CrowdCasts Monthly: Going Beyond the IndicatorCrowdCasts Monthly: Going Beyond the Indicator
CrowdCasts Monthly: Going Beyond the IndicatorCrowdStrike
 
Defending Your Base of Operations: How Industrial Control Systems are Being T...
Defending Your Base of Operations: How Industrial Control Systems are Being T...Defending Your Base of Operations: How Industrial Control Systems are Being T...
Defending Your Base of Operations: How Industrial Control Systems are Being T...AFCEA International
 
Cyberwar and Geopolitics
Cyberwar and GeopoliticsCyberwar and Geopolitics
Cyberwar and Geopoliticstnwac
 
Threat Intelligence Workshop
Threat Intelligence WorkshopThreat Intelligence Workshop
Threat Intelligence WorkshopPriyanka Aash
 
Cybersecurity Law and Policy II Slides for First Summit Meeting
Cybersecurity Law and Policy II Slides for First Summit MeetingCybersecurity Law and Policy II Slides for First Summit Meeting
Cybersecurity Law and Policy II Slides for First Summit MeetingDavid Opderbeck
 
Threat-Based Adversary Emulation with MITRE ATT&CK
Threat-Based Adversary Emulation with MITRE ATT&CKThreat-Based Adversary Emulation with MITRE ATT&CK
Threat-Based Adversary Emulation with MITRE ATT&CKKatie Nickels
 
CrowdCast Monthly: Operationalizing Intelligence
CrowdCast Monthly: Operationalizing IntelligenceCrowdCast Monthly: Operationalizing Intelligence
CrowdCast Monthly: Operationalizing IntelligenceCrowdStrike
 

What's hot (19)

Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...
Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...
Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...
 
Information Security Lesson 2 - Attackers and Attacks - Eric Vanderburg
Information Security Lesson 2 - Attackers and Attacks - Eric VanderburgInformation Security Lesson 2 - Attackers and Attacks - Eric Vanderburg
Information Security Lesson 2 - Attackers and Attacks - Eric Vanderburg
 
Hacking Exposed Live: Mobile Targeted Threats
Hacking Exposed Live: Mobile Targeted ThreatsHacking Exposed Live: Mobile Targeted Threats
Hacking Exposed Live: Mobile Targeted Threats
 
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...
EENA 2021: Keynote – Open-Source Intelligence (OSINT) for emergency services ...
 
Does a Bear Leak in the Woods?
Does a Bear Leak in the Woods?Does a Bear Leak in the Woods?
Does a Bear Leak in the Woods?
 
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】
【HITCON FreeTalk 2021 - SolarWinds 供應鏈攻擊事件分析】
 
Honeypots for Active Defense
Honeypots for Active DefenseHoneypots for Active Defense
Honeypots for Active Defense
 
Ransomware: History, Analysis, & Mitigation
Ransomware: History, Analysis, & MitigationRansomware: History, Analysis, & Mitigation
Ransomware: History, Analysis, & Mitigation
 
CrowdCasts Monthly: When Pandas Attack
CrowdCasts Monthly: When Pandas AttackCrowdCasts Monthly: When Pandas Attack
CrowdCasts Monthly: When Pandas Attack
 
Mobile #Infosec hackathon for journalists(2)
Mobile #Infosec hackathon for journalists(2)Mobile #Infosec hackathon for journalists(2)
Mobile #Infosec hackathon for journalists(2)
 
SACON - Deception Technology (Sahir Hidayatullah)
SACON - Deception Technology (Sahir Hidayatullah)SACON - Deception Technology (Sahir Hidayatullah)
SACON - Deception Technology (Sahir Hidayatullah)
 
2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEW2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEW
 
CrowdCasts Monthly: Going Beyond the Indicator
CrowdCasts Monthly: Going Beyond the IndicatorCrowdCasts Monthly: Going Beyond the Indicator
CrowdCasts Monthly: Going Beyond the Indicator
 
Defending Your Base of Operations: How Industrial Control Systems are Being T...
Defending Your Base of Operations: How Industrial Control Systems are Being T...Defending Your Base of Operations: How Industrial Control Systems are Being T...
Defending Your Base of Operations: How Industrial Control Systems are Being T...
 
Cyberwar and Geopolitics
Cyberwar and GeopoliticsCyberwar and Geopolitics
Cyberwar and Geopolitics
 
Threat Intelligence Workshop
Threat Intelligence WorkshopThreat Intelligence Workshop
Threat Intelligence Workshop
 
Cybersecurity Law and Policy II Slides for First Summit Meeting
Cybersecurity Law and Policy II Slides for First Summit MeetingCybersecurity Law and Policy II Slides for First Summit Meeting
Cybersecurity Law and Policy II Slides for First Summit Meeting
 
Threat-Based Adversary Emulation with MITRE ATT&CK
Threat-Based Adversary Emulation with MITRE ATT&CKThreat-Based Adversary Emulation with MITRE ATT&CK
Threat-Based Adversary Emulation with MITRE ATT&CK
 
CrowdCast Monthly: Operationalizing Intelligence
CrowdCast Monthly: Operationalizing IntelligenceCrowdCast Monthly: Operationalizing Intelligence
CrowdCast Monthly: Operationalizing Intelligence
 

Viewers also liked

Entrepreneurship development
Entrepreneurship developmentEntrepreneurship development
Entrepreneurship developmentAddie Nagta
 
Eportfolio Mahara Webinar
Eportfolio Mahara WebinarEportfolio Mahara Webinar
Eportfolio Mahara WebinarGavin Henrick
 
ATS Armor Presentation 2016
ATS Armor Presentation 2016ATS Armor Presentation 2016
ATS Armor Presentation 2016Basel AbuShaban
 
Your Train is Running Late (Trailer)
Your Train is Running Late (Trailer)Your Train is Running Late (Trailer)
Your Train is Running Late (Trailer)ajay anand
 
Recomendações para salvamento
Recomendações para salvamentoRecomendações para salvamento
Recomendações para salvamentoRobson Peixoto
 
Biopackaging Technique: The way forward
Biopackaging Technique: The way forwardBiopackaging Technique: The way forward
Biopackaging Technique: The way forwardlancedafric.org
 
Real time face tracking
Real time face trackingReal time face tracking
Real time face trackingEslam Omar
 
GRHS.2007.CaseStudy.Crime.Kingston
GRHS.2007.CaseStudy.Crime.KingstonGRHS.2007.CaseStudy.Crime.Kingston
GRHS.2007.CaseStudy.Crime.KingstonSherrian Gray
 
論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...
論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...
論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...atsushi_hayakawa
 
IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...
IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...
IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...Iraqi Dinar News
 

Viewers also liked (17)

Entrepreneurship development
Entrepreneurship developmentEntrepreneurship development
Entrepreneurship development
 
Watanpakistan
WatanpakistanWatanpakistan
Watanpakistan
 
Gdgfdg
GdgfdgGdgfdg
Gdgfdg
 
Eportfolio Mahara Webinar
Eportfolio Mahara WebinarEportfolio Mahara Webinar
Eportfolio Mahara Webinar
 
ATS Armor Presentation 2016
ATS Armor Presentation 2016ATS Armor Presentation 2016
ATS Armor Presentation 2016
 
Your Train is Running Late (Trailer)
Your Train is Running Late (Trailer)Your Train is Running Late (Trailer)
Your Train is Running Late (Trailer)
 
HORARIOS CONTADURIA-POLITICAS-DERECHO
HORARIOS CONTADURIA-POLITICAS-DERECHOHORARIOS CONTADURIA-POLITICAS-DERECHO
HORARIOS CONTADURIA-POLITICAS-DERECHO
 
Recomendações para salvamento
Recomendações para salvamentoRecomendações para salvamento
Recomendações para salvamento
 
Biopackaging Technique: The way forward
Biopackaging Technique: The way forwardBiopackaging Technique: The way forward
Biopackaging Technique: The way forward
 
Real time face tracking
Real time face trackingReal time face tracking
Real time face tracking
 
GRHS.2007.CaseStudy.Crime.Kingston
GRHS.2007.CaseStudy.Crime.KingstonGRHS.2007.CaseStudy.Crime.Kingston
GRHS.2007.CaseStudy.Crime.Kingston
 
Gelombang pada tali
Gelombang pada taliGelombang pada tali
Gelombang pada tali
 
論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...
論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...
論文輪読会 - A Multi-level Trend-Renewal Process for Modeling Systems with Recurre...
 
FACTSHEET - IMF SDR - Special Drawing Rights
FACTSHEET - IMF SDR - Special Drawing RightsFACTSHEET - IMF SDR - Special Drawing Rights
FACTSHEET - IMF SDR - Special Drawing Rights
 
Pendataan alat 2004 2010
Pendataan alat 2004 2010Pendataan alat 2004 2010
Pendataan alat 2004 2010
 
Class 26 d, pi electronic controllers
Class 26 d, pi electronic controllersClass 26 d, pi electronic controllers
Class 26 d, pi electronic controllers
 
IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...
IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...
IMF Iraq Updates - Translated Central Bank of Iraq Delete Zeros Iraqi Dinar S...
 

Similar to Global cybersecurity on earth + in space

Cybercrime and Cybersecurity Governance: A Kenyan Perspective
Cybercrime and Cybersecurity Governance: A Kenyan PerspectiveCybercrime and Cybersecurity Governance: A Kenyan Perspective
Cybercrime and Cybersecurity Governance: A Kenyan PerspectiveIvan Sang
 
Event: George Washington University -- National Security Threat Convergence: ...
Event: George Washington University -- National Security Threat Convergence: ...Event: George Washington University -- National Security Threat Convergence: ...
Event: George Washington University -- National Security Threat Convergence: ...Chuck Brooks
 
NewsByte Mumbai October 2017
NewsByte Mumbai October 2017NewsByte Mumbai October 2017
NewsByte Mumbai October 2017chauhananand17
 
Enhancing Your Security Infrastructure with Infoblox Threat Intelligence Webinar
Enhancing Your Security Infrastructure with Infoblox Threat Intelligence WebinarEnhancing Your Security Infrastructure with Infoblox Threat Intelligence Webinar
Enhancing Your Security Infrastructure with Infoblox Threat Intelligence WebinarAdelaide Hill
 
Insider Threat Solution from GTRI
Insider Threat Solution from GTRIInsider Threat Solution from GTRI
Insider Threat Solution from GTRIZivaro Inc
 
Is6120 data security presentation
Is6120 data security presentationIs6120 data security presentation
Is6120 data security presentationJamesDempsey1
 
Internet of Things - Privacy and Security issues
Internet of Things - Privacy and Security issuesInternet of Things - Privacy and Security issues
Internet of Things - Privacy and Security issuesPierluigi Paganini
 
Cyber as WMD- April 2015- GFSU
Cyber as WMD- April 2015- GFSUCyber as WMD- April 2015- GFSU
Cyber as WMD- April 2015- GFSUMohit Rampal
 
Webinar: Why evasive zero day attacks are killing traditional sandboxing
Webinar: Why evasive zero day attacks are killing traditional sandboxingWebinar: Why evasive zero day attacks are killing traditional sandboxing
Webinar: Why evasive zero day attacks are killing traditional sandboxingCyren, Inc
 
Guerilla warfare by means of netwarfare [2001]
Guerilla warfare by means of netwarfare [2001]Guerilla warfare by means of netwarfare [2001]
Guerilla warfare by means of netwarfare [2001]Mikko Hypponen
 
Stopping zero day threats
Stopping zero day threatsStopping zero day threats
Stopping zero day threatsZscaler
 
2012 02 14 Afcom Presentation
2012 02 14 Afcom Presentation2012 02 14 Afcom Presentation
2012 02 14 Afcom PresentationEric Gallant
 
IoT DDoS Attacks: the stakes have changed
IoT DDoS Attacks: the stakes have changed IoT DDoS Attacks: the stakes have changed
IoT DDoS Attacks: the stakes have changed Great Bay Software
 

Similar to Global cybersecurity on earth + in space (20)

Cybercrime and Cybersecurity Governance: A Kenyan Perspective
Cybercrime and Cybersecurity Governance: A Kenyan PerspectiveCybercrime and Cybersecurity Governance: A Kenyan Perspective
Cybercrime and Cybersecurity Governance: A Kenyan Perspective
 
Quant & Crypto Gold
Quant & Crypto GoldQuant & Crypto Gold
Quant & Crypto Gold
 
Do it Best Corp. Techapalooza 2013 Presentation
Do it Best Corp. Techapalooza 2013 PresentationDo it Best Corp. Techapalooza 2013 Presentation
Do it Best Corp. Techapalooza 2013 Presentation
 
Event: George Washington University -- National Security Threat Convergence: ...
Event: George Washington University -- National Security Threat Convergence: ...Event: George Washington University -- National Security Threat Convergence: ...
Event: George Washington University -- National Security Threat Convergence: ...
 
DNS Cybersecurity in 2012-2015
DNS Cybersecurity in 2012-2015DNS Cybersecurity in 2012-2015
DNS Cybersecurity in 2012-2015
 
NewsByte Mumbai October 2017
NewsByte Mumbai October 2017NewsByte Mumbai October 2017
NewsByte Mumbai October 2017
 
Cyber terrorism
Cyber terrorismCyber terrorism
Cyber terrorism
 
Enhancing Your Security Infrastructure with Infoblox Threat Intelligence Webinar
Enhancing Your Security Infrastructure with Infoblox Threat Intelligence WebinarEnhancing Your Security Infrastructure with Infoblox Threat Intelligence Webinar
Enhancing Your Security Infrastructure with Infoblox Threat Intelligence Webinar
 
Insider Threat Solution from GTRI
Insider Threat Solution from GTRIInsider Threat Solution from GTRI
Insider Threat Solution from GTRI
 
Is6120 data security presentation
Is6120 data security presentationIs6120 data security presentation
Is6120 data security presentation
 
Internet of Things - Privacy and Security issues
Internet of Things - Privacy and Security issuesInternet of Things - Privacy and Security issues
Internet of Things - Privacy and Security issues
 
Cyber as WMD- April 2015- GFSU
Cyber as WMD- April 2015- GFSUCyber as WMD- April 2015- GFSU
Cyber as WMD- April 2015- GFSU
 
All about Hacking
All about HackingAll about Hacking
All about Hacking
 
Webinar: Why evasive zero day attacks are killing traditional sandboxing
Webinar: Why evasive zero day attacks are killing traditional sandboxingWebinar: Why evasive zero day attacks are killing traditional sandboxing
Webinar: Why evasive zero day attacks are killing traditional sandboxing
 
Guerilla warfare by means of netwarfare [2001]
Guerilla warfare by means of netwarfare [2001]Guerilla warfare by means of netwarfare [2001]
Guerilla warfare by means of netwarfare [2001]
 
Global Cyber Threat Intelligence
Global Cyber Threat IntelligenceGlobal Cyber Threat Intelligence
Global Cyber Threat Intelligence
 
Stopping zero day threats
Stopping zero day threatsStopping zero day threats
Stopping zero day threats
 
2012 02 14 Afcom Presentation
2012 02 14 Afcom Presentation2012 02 14 Afcom Presentation
2012 02 14 Afcom Presentation
 
IoT DDoS Attacks: the stakes have changed
IoT DDoS Attacks: the stakes have changed IoT DDoS Attacks: the stakes have changed
IoT DDoS Attacks: the stakes have changed
 
The Cybersecurity Mess
The Cybersecurity MessThe Cybersecurity Mess
The Cybersecurity Mess
 

Recently uploaded

Microsoft Copilot AI for Everyone - created by AI
Microsoft Copilot AI for Everyone - created by AIMicrosoft Copilot AI for Everyone - created by AI
Microsoft Copilot AI for Everyone - created by AITatiana Gurgel
 
Russian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls KolkataRussian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls Kolkataanamikaraghav4
 
OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...
OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...
OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...NETWAYS
 
Open Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdf
Open Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdfOpen Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdf
Open Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdfhenrik385807
 
Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)Chameera Dedduwage
 
Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Vipesco
 
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara ServicesVVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara ServicesPooja Nehwal
 
Mathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptxMathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptxMoumonDas2
 
Mohammad_Alnahdi_Oral_Presentation_Assignment.pptx
Mohammad_Alnahdi_Oral_Presentation_Assignment.pptxMohammad_Alnahdi_Oral_Presentation_Assignment.pptx
Mohammad_Alnahdi_Oral_Presentation_Assignment.pptxmohammadalnahdi22
 
Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝
Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝
Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝soniya singh
 
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night EnjoyCall Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night EnjoyPooja Nehwal
 
Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...
Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...
Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...Salam Al-Karadaghi
 
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort ServiceDelhi Call girls
 
CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...
CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...
CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...henrik385807
 
SaaStr Workshop Wednesday w: Jason Lemkin, SaaStr
SaaStr Workshop Wednesday w: Jason Lemkin, SaaStrSaaStr Workshop Wednesday w: Jason Lemkin, SaaStr
SaaStr Workshop Wednesday w: Jason Lemkin, SaaStrsaastr
 
CTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdf
CTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdfCTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdf
CTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdfhenrik385807
 
ANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docxANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docxNikitaBankoti2
 
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...Hasting Chen
 
Presentation on Engagement in Book Clubs
Presentation on Engagement in Book ClubsPresentation on Engagement in Book Clubs
Presentation on Engagement in Book Clubssamaasim06
 
WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )
WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )
WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )Pooja Nehwal
 

Recently uploaded (20)

Microsoft Copilot AI for Everyone - created by AI
Microsoft Copilot AI for Everyone - created by AIMicrosoft Copilot AI for Everyone - created by AI
Microsoft Copilot AI for Everyone - created by AI
 
Russian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls KolkataRussian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Vaishnavi 🤌 8250192130 🚀 Vip Call Girls Kolkata
 
OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...
OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...
OSCamp Kubernetes 2024 | A Tester's Guide to CI_CD as an Automated Quality Co...
 
Open Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdf
Open Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdfOpen Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdf
Open Source Strategy in Logistics 2015_Henrik Hankedvz-d-nl-log-conference.pdf
 
Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)Introduction to Prompt Engineering (Focusing on ChatGPT)
Introduction to Prompt Engineering (Focusing on ChatGPT)
 
Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510Thirunelveli call girls Tamil escorts 7877702510
Thirunelveli call girls Tamil escorts 7877702510
 
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara ServicesVVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
VVIP Call Girls Nalasopara : 9892124323, Call Girls in Nalasopara Services
 
Mathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptxMathematics of Finance Presentation.pptx
Mathematics of Finance Presentation.pptx
 
Mohammad_Alnahdi_Oral_Presentation_Assignment.pptx
Mohammad_Alnahdi_Oral_Presentation_Assignment.pptxMohammad_Alnahdi_Oral_Presentation_Assignment.pptx
Mohammad_Alnahdi_Oral_Presentation_Assignment.pptx
 
Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝
Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝
Call Girls in Sarojini Nagar Market Delhi 💯 Call Us 🔝8264348440🔝
 
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night EnjoyCall Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
Call Girl Number in Khar Mumbai📲 9892124323 💞 Full Night Enjoy
 
Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...
Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...
Exploring protein-protein interactions by Weak Affinity Chromatography (WAC) ...
 
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 93 Noida Escorts >༒8448380779 Escort Service
 
CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...
CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...
CTAC 2024 Valencia - Sven Zoelle - Most Crucial Invest to Digitalisation_slid...
 
SaaStr Workshop Wednesday w: Jason Lemkin, SaaStr
SaaStr Workshop Wednesday w: Jason Lemkin, SaaStrSaaStr Workshop Wednesday w: Jason Lemkin, SaaStr
SaaStr Workshop Wednesday w: Jason Lemkin, SaaStr
 
CTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdf
CTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdfCTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdf
CTAC 2024 Valencia - Henrik Hanke - Reduce to the max - slideshare.pdf
 
ANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docxANCHORING SCRIPT FOR A CULTURAL EVENT.docx
ANCHORING SCRIPT FOR A CULTURAL EVENT.docx
 
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
Re-membering the Bard: Revisiting The Compleat Wrks of Wllm Shkspr (Abridged)...
 
Presentation on Engagement in Book Clubs
Presentation on Engagement in Book ClubsPresentation on Engagement in Book Clubs
Presentation on Engagement in Book Clubs
 
WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )
WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )
WhatsApp 📞 9892124323 ✅Call Girls In Juhu ( Mumbai )
 

Global cybersecurity on earth + in space

  • 1. ALAN W. SILBERBERG DIGIJAKS FOUNDER + CEO GLOBAL CYBER SECURITY ON EARTH + IN SPACE US GEOINT CONFERENCE 5.18.16 Copyright © 2016 Digijaks 1
  • 2. Who am I and what is Digijaks? • Alan W Silberberg • Founder of Digijaks – Boutique Cyber Security Firm • Subject Matter Expert, Cyber Security to US SBA • Member, California Governor’s Cyber Security Task Force • Former US White House aide • Former US National Archives Task Force Member • Former Executive at Paramount Pictures • Invented technology to utilize aspects of search + social media to defend against cyber attacks. • Invented technology to change and alter search results. Copyright © 2016 Digijaks 2
  • 3. Summary Of Areas Covered • People • Ground Stations • Ground Station Hardware + Software • Uplinked Data • Downlinked Data • Terrestrial Platforms • Threat Matrix • Threat Actors • Suggested Changes Copyright © 2016 Digijaks 3
  • 4. Copyright © 2016 Digijaks 4
  • 5. 3, 2, 1 – Liftoff is just beginning of challenges for satellite communications Copyright © 2016 Digijaks 5
  • 6. 3, 2, 1 – Liftoff is just beginning of challenges for satellite cyber security Copyright © 2016 Digijaks 6 • The challenges mount from the moment of liftoff. • Depending on the complexity of the payload and onboard data packages cyber security risks can only increase once in space due to problems and or failures on the ground, or in space. • Cyber Security was an afterthought until only recently, so there are many gaps where legacy systems and legacy technology are in the clear, not encrypted, and not ready for a modern cyber attack.
  • 7. 25 years ago there were dozens….. Copyright © 2016 Digijaks 7
  • 8. And 1000s of Satellites now in Space Copyright © 2016 Digijaks 8
  • 9. Internet = Anyone Anywhere 2 Track, Identify software, do enough open source *osint research to then move on to next phase of cyber security information collection prior to attack or breach of Ground, Person, Satellite LOTS OF DATA Copyright © 2016 Digijaks 9
  • 10. People and their Devices Copyright © 2016 Digijaks 10
  • 11. People and their Devices • BYOD • Social Engineering • USBs • WALK BY Photo/Video/SMS/Social Media • Laziness • Corruptness • Leveraged by Organized Crime or Foreign Intelligence • Disregard of security protocols • Will-full destruction/cyberwar/espionage Copyright © 2016 Digijaks 11
  • 12. People and their Devices Copyright © 2016 Digijaks 12
  • 13. People and their Devices Copyright © 2016 Digijaks 13 • Devices can be hacked and need to be screened or put in lead or steel box outside prior to entry. Air gapped breaches have been proven to be actual exploits. • Device access to Ground Station networks need to be closely controlled and monitored 24x7 including vpn, remote by proxy, late night email logins, and late night from home server logins. • In addition to physical security concerns, BYOD devices can also insert malware, viruses, worms, and can simultaneously be used to extrifilcate DATA and transmit instantly via carrier exchanges or social media to internet + Globe.
  • 14. Ground Station Cyber Security Copyright © 2016 Digijaks 14
  • 15. Ground Station Cyber Security Copyright © 2016 Digijaks 15 • People. People. People. • Incoming data from other ground stations/networks • Incoming data from Internet/extranet • Incoming Data bound for Sat Payload Uplink • Outgoing Data bound from Sat Payload Downlink • Uplink Data • Downlink Data • Maintenance Level • Control Level • Security Level
  • 16. Ground Station Cyber Security Copyright © 2016 Digijaks 16
  • 17. Ground Station Cyber Security Copyright © 2016 Digijaks 17 • Perimeters • Attractive and Visible Physical Targets • Critical Infrastructure yet not always provided security for such protections as needed • Easy to track and research using online OSINT for • SCADA Installs connected to Internet • SCADA Install passwords, default reset data • Real world representation of the need to blend physical and cyber security into one force multiplier.
  • 18. Ground Station Cyber Security Copyright © 2016 Digijaks 18 What does your ground station cyber posture look like from space? Probably, another satellite is spying on you as you work and as your teams go about “securing the facility”.
  • 19. You do not know who your attacker is. Copyright © 2016 Digijaks 19
  • 20. But …. They know you Copyright © 2016 Digijaks 20
  • 21. But they know you: Partial List of Satellite Hacks in last few years. Copyright © 2016 Digijaks 21 • US Weather System Satellites (Non Mil) NOAA satellites penetrated (CHINESE NATION STATE THREAT ACTOR) • Commercial Satellites have been compromised for APT use like in case of TURLA APT (RUSSIAN NATION STATE THREAT ACTOR) corrupted weak satellite protocols • Ground Station Software + Hardware from multiple manufacturers flagged in 2014 for cyber security failures – CERT notification was issued, but only some companies have made updates to date in 2016.
  • 22. But they know you - Copyright © 2016 Digijaks 22 • In 2015 CNN and many other news outlets reported on the GPS system and satellites having been compromised and even altered. By whom? Why? What happens when that gets combined with the command and control structure for your fleet? For your bird? • SIMPLEX network known and unknown vulnerabilities include un encrypted data transmission between ground and satellite, as well as ground to ground and satellite to satellite. In 2015 warnings were issued about organizations relying on this backbone for their comms. • EXFIL sensitive data from government, military, diplomatic, research and educational organizations in US + EU. • Hide command-and-control servers from law enforcement agencies.
  • 23. But they know you - Copyright © 2016 Digijaks 23
  • 24. Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 24
  • 25. Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 25 Several factors become weak points: A. Uplink From Ground that is un encrypted or already corrupted. B. Downlink from Bird that is same C. Penetration and or control of data stream, redistributing FUD DATA D. EXFIL of DATA E. LOSS of bird through willful destruction, terrorism, hunter killer satellite from opponent F. Corruption of GEO SPATIAL location and or timing for signal control rendering the satellite(s) useless and or dangerous or both.
  • 26. Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 26 • Loss of Command and Control through ground infiltration or penetration of ground station either physically or through cyber means. • Acquisition of signals and BAND(s) data from Space by another satellite tasked with sensors/lasers to track/acquire such information without knowledge of users on ground. • Same problems apply from ground station, ie, if any of those are triggered, then the cybersecurity of the bird is already compromised.
  • 27. Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 27 • Cyber Attacks are common, more common than not. • Cyber Attacks are both from the ground and from another satellite or group of satellites. • How can satellite or group of cube-sats be used in malicious ways against a country, or company or a person?
  • 28. Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 28
  • 29. Terrestrial Platform Cyber Security Copyright © 2016 Digijaks 29 • Do you know who is watching from above? Or why? • What about your cyber security – how much is already penetrated from above, let alone from the computer you are already using? • What of your upstream and downstream DATA? How much is already FUD and or compromised. • Is your platform being used in a Space Based DDoS attack? Or Space Based misdirection of signal/GPS/location to purposely mislead either data or physical time and space objects like people.
  • 30. Threat Matrix Copyright © 2016 Digijaks 30
  • 31. Threat Matrix Copyright © 2016 Digijaks 31 • Know your weaknesses • Know the weaknesses of your staff, the training and the software and hardware. • Anticipate that you will be attacked. It is not IF but WHEN. • Use both internal and external sources of information to stay apprised of current threats against the industry or your facility. Search for the facility name and see if it is being mentioned in social media or on chat rooms. • Scour sites like Shodan weekly to ensure your IoT + SCADA devices are not listed, if they are make changes.
  • 32. Threat Matrix Copyright © 2016 Digijaks 32 • Attacks will occur onto: • A. Ground Station Software • B. Ground Station Hardware • C. People + their devices • D. Social Engineering, Phishing, Whaling, Waterholes • E. Upstream Data • F. Downstream Data • G. Ground to Ground Data – SMS, Cell, Internet, Intranet, Extranet, Phone/Voice/Video • F. Satellite to Satellite Attacks on both software + hardware through lasers, sonic beams + hunter killer sats
  • 33. Threat Actors • Nation State • China (estimated 125K+ official hackers paid by Gov) • Russia (17K+ Twitter Trolls + estimated 25K hackers paid by Gov) • Iran (1000s of Hackers + 100s of Twitter trolls + funding others) • North Korea • Vietnam • Ukraine • Romania • Also a host of other countries with either sophisticated telecom networks or where traditional computing is taught. • Paid hacker cartels • Paid hacker soldier of war Copyright © 2016 Digijaks 33
  • 34. Threat Actors • Corporations using technology to spy on their competition or on their staff or clients. • Bad actor cyber companies doing unethical work and or illegal work under cover of “helping” • Your own people • Your own equipment • Your own networks • May already be compromised, how would you know if you do not look? Copyright © 2016 Digijaks 34
  • 35. Constant Actions + Energy Needed 24x7 Copyright © 2016 Digijaks 35
  • 36. Suggested Changes • Update all software and firmware on regular basis. • Do not ignore alerts from already installed software or monitoring services regarding breach behavior or irregular network data passing as regular flow. • Understand relationship (emerging and growing between physical security and cyber security in both ground and terrestrial situations. • Train employees and contractors regularly, and drill regularly in what to do when cyber attacked/ how to handle active breach / mitigation of previous breach and proactively taking steps to make changes into new paradigms. Copyright © 2016 Digijaks 36
  • 37. Suggested Changes • Install and utilize two factor authentication for every entry or access to control of data streams / up + downlinks • Disable use of BYOD on premises of ground stations or only in specifically marked areas. • Institute signal proof lead/steel boxes outside of conference rooms/important areas/data centers and regulate that all personal devices be placed in one during a meeting or any grouping. • Constantly review SHODAN.IO for your installation’s SCADA and other internet connected devices/software or firmware numbers or other identifying information, then work to make changes or remove. Copyright © 2016 Digijaks 37
  • 38. THANK YOU!! WWW.DIGIJAKS.COM @IDEAGOV 424.442.9658 Copyright © 2016 Digijaks 38