Skyhigh Networks, profile picture
Uploaded bySkyhigh Networks
PDF, PPTX7,536 views

How to Find Security Breaches Before They Sink You

Anomalous activity that significantly deviates from normal patterns could indicate a security breach. Examples are provided of outliers that may warrant further investigation, such as a single IP address sending over 100,000 tweets in one day, an employee uploading 4.5 GB of files to an unsecured cloud service, or a manufacturing employee uploading 48.7 GB of data to an external sharing site in a single day. The document recommends monitoring for anomalous outliers to detect potential breaches early before they can seriously impact the business.

Embed presentation

Download as PDF, PPTX
Brought to you by ! How to Find Security Breaches Before they Sink Your Business
Security breaches can put your company on the front page
That’s why you need to find them early To stop the breach and minimize exposure But how do you tell if it’s normal behavior or something to be worried about?
Breaches create outliers. In mathematical terms, they are several standard deviations outside of normal activity
You can think of them as being at the very edge of the bell curve Anomaly
Let’s take a look at some examples
104,338 tweets in 1 day from 1 IP address Bot exfiltrating data from bank… 140 characters at a time
An employee uploads Employee leaving organization 4.5 GB of files to Kanbox Risky Service : No compliance certifications Terms & Conditions: Collects and shares data with third parties Location: Hosted in China
Single authenticated user at retail company tries to connect to GoToMyPC… 11,101,872 times in a week. User device infected with malware !
Single IP address at energy company attempts to connect to Facebook, which was blocked... 3.8 million times. Malware attempting to connect to its command and control site
Manufacturing employee has 188 uploads totaling 48.7 GBs in 1 day to Ryu Share Data sent to a Drop Zone outside of company’s jurisdictional location.
Except as otherwise expressly permitted by these Terms, any Code submitted to SourceForge.net must be licensed to Slashdot Media and other licensees under a license that is: compliant with the Open Source Initiative (“OSI”)’s Open Source Definition (http://www.opensource.org/ docs/osd) or certified as an “OSI-Approved L i c e n s e ” ( h t t p : / / o p e n s o u r c e . o r g / licenses).” 65 KB upload to open source code repository Loss of Proprietary IP
The definitive guide to the top cloud services and usage trends Brought to you by ! DOWNLOAD NOW Cloud Adoption & Risk Report

More Related Content

PPTX
Open Source Insight: Apache Struts Exploits, Cloudera IPO Risks & the Next Cy...
byBlack Duck by Synopsys
 
PPTX
Data breach
byBurhan Ahmed
 
PDF
Lessons Learned From the Yahoo! Hack
byImperva
 
PPT
Jitter Bugslec
byscottdp3
 
PDF
It’s time to boost VoIP network security
byBev Robb
 
PPT
Mitigating Malware Presentation Jkd 11 10 08 Aitp
byJoann Davis
 
PDF
Data breaches - Is Your Law Firm in Danger
byZitaAdlTrk
 
PPTX
Dave Mahon - CenturyLink & Cyber Security - How Modern Cyber Attacks Are Disr...
byAlisha Deboer
 
Open Source Insight: Apache Struts Exploits, Cloudera IPO Risks & the Next Cy...
byBlack Duck by Synopsys
 
Data breach
byBurhan Ahmed
 
Lessons Learned From the Yahoo! Hack
byImperva
 
Jitter Bugslec
byscottdp3
 
It’s time to boost VoIP network security
byBev Robb
 
Mitigating Malware Presentation Jkd 11 10 08 Aitp
byJoann Davis
 
Data breaches - Is Your Law Firm in Danger
byZitaAdlTrk
 
Dave Mahon - CenturyLink & Cyber Security - How Modern Cyber Attacks Are Disr...
byAlisha Deboer
 

What's hot

PDF
[CB20] Operation Chimera - APT Operation Targets Semiconductor Vendors by CK ...
byCODE BLUE
 
PPTX
Lan & Wan
byLan & Wan Solutions
 
PPTX
Insider theft detection
bySumanthKommineni
 
PDF
AI for CyberSecurity
bySatnam Singh
 
PDF
Study of Directory Traversal Attack and Tools Used for Attack
byijtsrd
 
PDF
UK Cyber Vulnerability Index 2013
byMartin Jordan
 
PDF
A Guide to Internet Security For Businesses- Business.com
byBusiness.com
 
PDF
Hacker Defense: How to Make Your Law Firm a Harder Target
byLexisNexis
 
PPTX
Easy security presentation 1
byMichael Buschmann
 
PDF
InfoSec Deep Learning in Action
bySatnam Singh
 
PDF
[CB20] It is a World Wide Web, but All Politics is Local: Planning to Survive...
byCODE BLUE
 
PDF
KPMG Publish and Be Damned Cyber Vulnerability Index 2012
byCharmaine Servado
 
PPTX
Webinar mobile apps sec
byIndra Zulkarnain
 
PDF
2015 Labris SOC Annual Report
byLabris Networks
 
PDF
Analyst sample Presentation
byRichard Smiraldi
 
PDF
[CB20] Illicit QQ Communities: What's Being Shared? by Aaron Shraberg
byCODE BLUE
 
PDF
Cyber threats sample
byRichard Smiraldi
 
PDF
Cyber Threats Presentation Sample
byRichard Smiraldi
 
PDF
Vz scrubbed sample_2
byRichard Smiraldi
 
[CB20] Operation Chimera - APT Operation Targets Semiconductor Vendors by CK ...
byCODE BLUE
 
Lan & Wan
byLan & Wan Solutions
 
Insider theft detection
bySumanthKommineni
 
AI for CyberSecurity
bySatnam Singh
 
Study of Directory Traversal Attack and Tools Used for Attack
byijtsrd
 
UK Cyber Vulnerability Index 2013
byMartin Jordan
 
A Guide to Internet Security For Businesses- Business.com
byBusiness.com
 
Hacker Defense: How to Make Your Law Firm a Harder Target
byLexisNexis
 
Easy security presentation 1
byMichael Buschmann
 
InfoSec Deep Learning in Action
bySatnam Singh
 
[CB20] It is a World Wide Web, but All Politics is Local: Planning to Survive...
byCODE BLUE
 
KPMG Publish and Be Damned Cyber Vulnerability Index 2012
byCharmaine Servado
 
Webinar mobile apps sec
byIndra Zulkarnain
 
2015 Labris SOC Annual Report
byLabris Networks
 
Analyst sample Presentation
byRichard Smiraldi
 
[CB20] Illicit QQ Communities: What's Being Shared? by Aaron Shraberg
byCODE BLUE
 
Cyber threats sample
byRichard Smiraldi
 
Cyber Threats Presentation Sample
byRichard Smiraldi
 
Vz scrubbed sample_2
byRichard Smiraldi
 

Viewers also liked

PPTX
Cloud security and security architecture
byVladimir Jirasek
 
PDF
Cloud Security Alliance - Guidance
bySubra Kumaraswamy CISSP CISM
 
PDF
The Dark Side of the Web
bySkyhigh Networks
 
PDF
16 Inspirational Quotes From the Late, Great Steve Jobs
byHubSpot
 
PDF
State of the Cloud in 2015
bySkyhigh Networks
 
PPTX
Csa about-threats-june-2010-ibm
bySergio Loureiro
 
PDF
The Quiet Revolution: 12 Must-Know Statistics on Cloud Usage in the Enterprise
bySkyhigh Networks
 
PDF
2014: The Year of the Data Breach
bySkyhigh Networks
 
PPTX
Internet of Things - October 2013 - Chandna
byAsheem Chandna
 
PDF
The Cloud Economy: 11 Essential Trends About How Companies Connect to Each Ot...
bySkyhigh Networks
 
PPTX
Welcome to the world of hacking
byTjylen Veselyj
 
PDF
Searching Encrypted Cloud Data: Academia and Industry Done Right
bySkyhigh Networks
 
PDF
11 European Privacy Regulations That Could Cost You €1 Million in Fines
bySkyhigh Networks
 
PDF
The 80-20 Rule for Data in the Cloud
bySkyhigh Networks
 
PDF
The Cloud in 2015: Predictions from Greylock and Sequoia
bySkyhigh Networks
 
PDF
Internet of things - Frantic
byMiika Puputti
 
Cloud security and security architecture
byVladimir Jirasek
 
Cloud Security Alliance - Guidance
bySubra Kumaraswamy CISSP CISM
 
The Dark Side of the Web
bySkyhigh Networks
 
16 Inspirational Quotes From the Late, Great Steve Jobs
byHubSpot
 
State of the Cloud in 2015
bySkyhigh Networks
 
Csa about-threats-june-2010-ibm
bySergio Loureiro
 
The Quiet Revolution: 12 Must-Know Statistics on Cloud Usage in the Enterprise
bySkyhigh Networks
 
2014: The Year of the Data Breach
bySkyhigh Networks
 
Internet of Things - October 2013 - Chandna
byAsheem Chandna
 
The Cloud Economy: 11 Essential Trends About How Companies Connect to Each Ot...
bySkyhigh Networks
 
Welcome to the world of hacking
byTjylen Veselyj
 
Searching Encrypted Cloud Data: Academia and Industry Done Right
bySkyhigh Networks
 
11 European Privacy Regulations That Could Cost You €1 Million in Fines
bySkyhigh Networks
 
The 80-20 Rule for Data in the Cloud
bySkyhigh Networks
 
The Cloud in 2015: Predictions from Greylock and Sequoia
bySkyhigh Networks
 
Internet of things - Frantic
byMiika Puputti
 

Similar to How to Find Security Breaches Before They Sink You

PPTX
Managing Technical Debt .pptx
bymageerauldnzsti
 
PPTX
Needles, Haystacks and Algorithms: Using Machine Learning to detect complex t...
byDefCamp
 
PDF
Detecting Malicious Cloud Account Behavior: A Look at the New Native Platform...
byPriyanka Aash
 
PPTX
Combating "Smash and Grab" Hacking with Tripwire Cybercrime Controls
byTripwire
 
PDF
N. Oskina, G. Asproni - Be your own Threatbuster! - Codemotion Milan 2018
byCodemotion
 
PPTX
Information security - what is going on 2016
byTomppa Kuusi (formerly Järvinen)
 
PPTX
Fraud Engineering, from Merchant Risk Council Annual Meeting 2012
byNick Galbreath
 
PDF
Countering Cyber Threats By Monitoring “Normal” Website Behavior
byEMC
 
PPTX
"Cryptography, Data Protection, and Security For Start-Ups In The Post Snowde...
byHackIT Ukraine
 
PPT
CyberCrime in the Cloud and How to defend Yourself
byAlert Logic
 
PPTX
Cyber Security
byfrcarlson
 
PDF
Demystify Information Security & Threats for Data-Driven Platforms With Cheta...
byChetan Khatri
 
PDF
Reducing Your Attack Surface & Your Role in Cloud Workload Protection
byAlert Logic
 
PDF
Reducing Your Attack Surface
byAlert Logic
 
PPTX
Cyber Threat Jujitsu 101: Acknowledge. Assess. Avoid. Address.
byTripwire
 
PPTX
Cloud Security or: How I Learned to Stop Worrying & Love the Cloud
byMarkAnnati
 
PPTX
Cyberjutitsu101coleevertzfinal 1296250763392-phpapp02
byMark Evertz
 
PDF
Modern Web Security, Lazy but Mindful Like a Fox
byC4Media
 
PDF
BSides Lisbon - Data science, machine learning and cybersecurity
byTiago Henriques
 
PDF
How we breach small and medium enterprises (SMEs)
byNCC Group
 
Managing Technical Debt .pptx
bymageerauldnzsti
 
Needles, Haystacks and Algorithms: Using Machine Learning to detect complex t...
byDefCamp
 
Detecting Malicious Cloud Account Behavior: A Look at the New Native Platform...
byPriyanka Aash
 
Combating "Smash and Grab" Hacking with Tripwire Cybercrime Controls
byTripwire
 
N. Oskina, G. Asproni - Be your own Threatbuster! - Codemotion Milan 2018
byCodemotion
 
Information security - what is going on 2016
byTomppa Kuusi (formerly Järvinen)
 
Fraud Engineering, from Merchant Risk Council Annual Meeting 2012
byNick Galbreath
 
Countering Cyber Threats By Monitoring “Normal” Website Behavior
byEMC
 
"Cryptography, Data Protection, and Security For Start-Ups In The Post Snowde...
byHackIT Ukraine
 
CyberCrime in the Cloud and How to defend Yourself
byAlert Logic
 
Cyber Security
byfrcarlson
 
Demystify Information Security & Threats for Data-Driven Platforms With Cheta...
byChetan Khatri
 
Reducing Your Attack Surface & Your Role in Cloud Workload Protection
byAlert Logic
 
Reducing Your Attack Surface
byAlert Logic
 
Cyber Threat Jujitsu 101: Acknowledge. Assess. Avoid. Address.
byTripwire
 
Cloud Security or: How I Learned to Stop Worrying & Love the Cloud
byMarkAnnati
 
Cyberjutitsu101coleevertzfinal 1296250763392-phpapp02
byMark Evertz
 
Modern Web Security, Lazy but Mindful Like a Fox
byC4Media
 
BSides Lisbon - Data science, machine learning and cybersecurity
byTiago Henriques
 
How we breach small and medium enterprises (SMEs)
byNCC Group
 

Recently uploaded

PPT
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
PPTX
DATALIVA-Presentation-EN_2026 Budgeting SAP Odoo ERP
byMustafa Kuğu
 
PDF
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
PPTX
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
PPTX
Why 2026 Could Be a Turning Point for Decentralized Exchanges.pptx
bycalliemorgan193
 
PPTX
Information about Trusted Platform Module(TPM)
bynewtoknow techs
 
PDF
splunk-peak-threat-hunting-framework.pdf
bylobster6719
 
PDF
How to Connect HP LaserJet MFP M234dwe to WiFi
byPrinter Tales
 
PDF
Top Benefits of Using KVM VPS Hosting for Growing Businesses
byEthernet Servers
 
PPTX
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
PDF
What is Voice User Interface (VUI) Definition & Examples.pdf
byDesign Studio UI UX
 
PPTX
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 
PDF
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
PDF
The_Boardroom_Cyber_Playbook_Research_Edition
bySaraDavis91
 
PPTX
Sensors-and-Actuators-in-IoT-Systems.pptx
byMuhammedNihal54
 
PDF
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
PPTX
SRWE_Module_14_SRWE_ccna_basics_routing_concepts.pptx
byahmedmahmoudece
 
PDF
Digital Transformation Services The Key to Futureproofing Your Business
byQuadrafort Technolgies
 
PDF
DevOps GenAI_ How Generative AI Is Changing Software Delivery.pdf
byDevseccops.ai
 
PDF
The CISO_Transformation_Playbook From Cost Centre to Chief Trust Officer
bysajjasridhar1990
 
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
DATALIVA-Presentation-EN_2026 Budgeting SAP Odoo ERP
byMustafa Kuğu
 
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
Why 2026 Could Be a Turning Point for Decentralized Exchanges.pptx
bycalliemorgan193
 
Information about Trusted Platform Module(TPM)
bynewtoknow techs
 
splunk-peak-threat-hunting-framework.pdf
bylobster6719
 
How to Connect HP LaserJet MFP M234dwe to WiFi
byPrinter Tales
 
Top Benefits of Using KVM VPS Hosting for Growing Businesses
byEthernet Servers
 
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
What is Voice User Interface (VUI) Definition & Examples.pdf
byDesign Studio UI UX
 
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
The_Boardroom_Cyber_Playbook_Research_Edition
bySaraDavis91
 
Sensors-and-Actuators-in-IoT-Systems.pptx
byMuhammedNihal54
 
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
SRWE_Module_14_SRWE_ccna_basics_routing_concepts.pptx
byahmedmahmoudece
 
Digital Transformation Services The Key to Futureproofing Your Business
byQuadrafort Technolgies
 
DevOps GenAI_ How Generative AI Is Changing Software Delivery.pdf
byDevseccops.ai
 
The CISO_Transformation_Playbook From Cost Centre to Chief Trust Officer
bysajjasridhar1990
 

How to Find Security Breaches Before They Sink You

  • 1.
    Brought to youby ! How to Find Security Breaches Before they Sink Your Business
  • 2.
    Security breaches canput your company on the front page
  • 3.
    That’s why youneed to find them early To stop the breach and minimize exposure But how do you tell if it’s normal behavior or something to be worried about?
  • 4.
    Breaches create outliers.In mathematical terms, they are several standard deviations outside of normal activity
  • 5.
    You can thinkof them as being at the very edge of the bell curve Anomaly
  • 6.
    Let’s take alook at some examples
  • 7.
    104,338 tweets in1 day from 1 IP address Bot exfiltrating data from bank… 140 characters at a time
  • 8.
    An employee uploads Employee leaving organization 4.5 GB of files to Kanbox Risky Service : No compliance certifications Terms & Conditions: Collects and shares data with third parties Location: Hosted in China
  • 9.
    Single authenticated userat retail company tries to connect to GoToMyPC… 11,101,872 times in a week. User device infected with malware !
  • 10.
    Single IP addressat energy company attempts to connect to Facebook, which was blocked... 3.8 million times. Malware attempting to connect to its command and control site
  • 11.
    Manufacturing employee has188 uploads totaling 48.7 GBs in 1 day to Ryu Share Data sent to a Drop Zone outside of company’s jurisdictional location.
  • 12.
    Except as otherwiseexpressly permitted by these Terms, any Code submitted to SourceForge.net must be licensed to Slashdot Media and other licensees under a license that is: compliant with the Open Source Initiative (“OSI”)’s Open Source Definition (http://www.opensource.org/ docs/osd) or certified as an “OSI-Approved L i c e n s e ” ( h t t p : / / o p e n s o u r c e . o r g / licenses).” 65 KB upload to open source code repository Loss of Proprietary IP
  • 13.
    The definitive guideto the top cloud services and usage trends Brought to you by ! DOWNLOAD NOW Cloud Adoption & Risk Report