Hacking involves a single target and shallow attacks using common tools and techniques, motivated by financial or political goals. Cyber attacks are part of cyber warfare involving strategic targets across physical, social, intelligence and electronic domains using custom tools in a coordinated campaign. Cyber defenses require a strategic defense in depth approach across all domains with awareness training, unlike typical IT security products. Hacking is an individual battle while cyber attacks are part of a larger warfare strategy.

1. Hacking vs. Cyber
Hacking is a single battle, Cyber attack is part of warfare
Iftach Ian Amit | Director of Services, IOActive inc.

2. About

3. Hacking

4. Hacking

5. Hacking
• How it looks like in the industry:
– Vulnerability Assessments
– Penetration Testing
– Code Reviews
– Other marketing terminology (that may involve the term “cyber” by
mistake)

6. Hacking
• Features:
– Usually a single target
– Surface of attack – shallow (opportunistic)
– Tools/Techniques: common, or simple development effort
• Motivation:
– Financial
– Political
– Challenge
• Defenses:
– Anti-Virus, Firewalls, WAF, IDS, IPS, etc…
– Really ???

7. Cyber Attack

8. Warfare

9. Cyber Attack

11. Warfare
• So… how does your “cyber” work out so far?
• Confused yet?
• Good.

12. Warfare

13. This isn’t about computers anymore!
Hint – it never was.

14. Cyber Warfare
• As the name suggests – it’s part of a bigger picture. Warfare.
• Warfare is never fought in a single domain (unless you want to lose…)
• Physical
• Social
• Intelligence
• Electronic
These are the domains that cyberwar is engaged in

15. Hack into the server farm?
Or just take the server (hack into the server
room…)

16. Bypass the firewall?
Nope. I’ll just walk into the network…
Or let you install my backdoor for me:

17. Social

19. Social-Electronic convergence

20. Intelligence

21. Check out
Guy’s talk
Right after this!

22. Final convergence – Electronic/Digital
• Here’s your “cyber”…
The new language: Campaign
• Profiling, intel gathering, reconnaissance
• Vulnerability research (not just software!)
• Exploitation
• Establishing control, opening comm channels, In ALL domains!
broadening foothold
• Targeting assets
• Exfiltration

23. Cyber Warfare
• Features:
– Multiple strategic targets
– Surface of attack – full
– Tools/Techniques: all, including all domains, and often with custom built tools
• Motivation:
– Financial
– Political
• Defenses:
– Strategic Defense in Depth (not vendor products)
– Awareness and Education (the human factor)
– Coverage of all domains at the defense strategy

24. Practicing “cyber” – Red Team Testing
Pre-
Intelligence Threat
Homework engagement
Gathering Modeling
Interactions
Vulnerability Post
Hands-on Analysis
Exploitation
Exploitation
Writing Reporting

25. Hacking vs. Cyber
China always had it right 

26. QUESTIONS?
Iftach Ian Amit
@iiamit
iamit@ioactive.com