2. WARNING: DEFINITIONS ARE NOT CLEAN
• SIMPLIFICATIONS OF DEFINITIONS INTRODUCE ERRORS
• SEMANTICS WASTE TIME

3. UNDERSTANDING RISK
• SECURE COMPUTER === PICKY COMPUTER
• CAN YOUR SYSTEM SPARE THE RESOURCES?
• DO YOU REALLY NEED THIS LEVEL OF PROTECTION?
• IS YOUR PROTECTION DUMB?

4. MALWARE
• SOFTWARE DESIGNED AND EXECUTED FOR MALICIOUS INTENT
• TOLLING
• STEALING
• GENERAL LAW BREAKING

6. TERMINOLOGY
• VIRUSES
• ATTACHES ITSELF TO A PROGRAM AND PROPAGATES ITSELFTHROUGHOUT THE SYSTEM
• WORMS
• STANDALONE PROGRAM THAT CAN PROPAGATEITSELF TO OTHERSYSTEMS OVER A NETWORK
• TROJAN HORSE
• MASQUERADESAS LEGITIMATE SOFTWARE OR BUNDLES ITSELFWITH LEGITIMATESOFTWARE.
• POTENTIALLY UNDESIRABLE PROCESSES (PUPS)
• RUNSAS HIDDEN PROCESSES
• COMMAND AND CONTROL (C&C, C2)
• A SERVER THE ATTACKUSESTO ISSUE COMMANDS TO INFECTEDSYSTEMS

7. TERMINOLOGY PT. 2
• “IN THE WILD”
• WHEN MALWAREOR ATTACKSARE FOUNDON THE OPENNET INSTEAD OF A LAB ENVIRONMENT
• ZERO DAY (0DAY, “OH-DAY”)
• SECURITYBUG IN A PROGRAM THATIS UNKNOWNAT TIME OF USE
• VULNERABILITY
• FEATURESOR BUGSIN PROGRAMMING THATCAN HAVEUNINTENDED USES
• EXPLOIT
• THE RESULTS OF A VULNERABILITY
• SCRIPT KIDDIES (SKIDDIES)
• WANNABEHACKERSUSING PREMADETOOLS INSTEAD OF LEARNING
• INSULT

9. TYPES OF ATTACKS
• ADWARE
• DELIVERS ADVERTISEMENTS TO THE USER
• SPYWARE
• SOFTWARETHAT COLLECTS INFORMATIONABOUT THE USER.(KEY LOGGING, RAM SCRAPING)
• BOTS
• SOFTWARETHAT AUTOMATICALLY PERFORMSA TASK
• RANSOMWARE
• REMOVES USERACCESSTO FILES AND DISPLAYS INSTRUCTIONS ON HOW THE USER CAN GET ACCESS BACK
• ROOTKITS
• PROVIDES REMOTEACCESS TO A SYSTEMAND AVOIDS ANTIVIRUSDETECTION
• SECURITYBUGS/EXPLOITS
• UNINTENDED ERRORS IN PROGRAMMING THAT ALLOW FORMALICIOUS EXPLOITATION

10. TYPES OF ATTACKS PT. 2
• BACKDOORS
• LEAVES AN ENTRY POINT FOR ATTACKERSTO REGAIN ACCESSTO THE SYSTEM
• DOS/DDOS
• OVERLOAD SERVERSWITH REQUESTS TO PREVENT USABILITY
• PHISHING
• SOCIAL ENGINEERING TRICKUSER INTO INSTALLING MALWARE
• MACROS
• SCRIPTS ATTACHEDTO DOCUMENTS THAT ARE OPENED BY THE DOCUMENT VIEWER
• DROPPERS
• TOOL USED TO UPLOAD MALWARE TO A USER

11. CREATION/TOOLS
• SKIDDYKIT DEVELOPERS
• INDIVIDUALS
• HACKING GROUPS
• HACKINGTEAM
• EXPLOIT KITS
• MIRAI
• WAREZ
• ANGLER
• EVOLUTION
• TWEAKING PREMADE MALWARE

13. RED FLAGS
• SYSTEM IS SLOWER THAN USUAL
• MAGICAL POPUPS
• SMALL TRAFFIC PULSES
• UNKNOWN PROCESSES RUNNING

14. RED FLAGS PT. 2
• INVOLUNTARY SETTING CHANGES
• BROWSER HOMEPAGE
• STARTUP PROGRAMS
• MAGICAL CMD PROMPTS
• MAGICAL WEBCAM ON
• MAGICAL SHORTCUTS
• YOUR COMPUTER WON’T LET YOU DOWNLOAD AN ANTIVIRUS

16. ANTIVIRUS
• MALWARE BYTES
• WINDOWS DEFENDER
• CLAM AV

17. FIREWALL RULES
• LINUX UNCOMPLICATED FIREWALL (UFW/GUFW)
• WINDOWS FIREWALL
• MAC FIREWALL
• PALO ALTO

18. DISABLE AUTO-RUN APPLICATIONS
• MSCONFIG
• AUTOSTART FOLDERS AND OPTIONS

19. EMAIL FILTERS
• SPAM
• DON’T LOAD EXTERNAL GRAPHICS
• VIEW AS TEXT

20. TRAFFIC AND LOG ANALYSIS (IDS/IPS)
• SPLUNK
• PROXY
• SNORT
• OSSEC

21. REMOVE UNUSED PROGRAMS
• UNSUPPORTED PROGRAMS
• ONE-TIME USE PROGRAMS

22. SAFE DOWNLOADING/INSTALLING
• WATCH FOR FREEWARE ADD-ONS
• DON’T EXPRESS INSTALL

23. SAFE BROWSING
• GOOGLE A WEBSITE INSTEAD OF TYPING IT IN
• USE A SERIF FONT
• CHECK VIRUSTOTAL
• ADD-ONS
• NOSCRIPT
• ADBLOCKERS
• WOT

24. STAY PATCHED
• UPDATES ARE MOSTLY SENT OUT WHEN VULNERABILITIES ARE FIXED

25. SANDBOXING
• FIREJAIL
• BITBOX
• VIRTUAL MACHINES

26. KNOW YOUR SYSTEM
• KNOW YOUR SYSTEM

27. BACKUP YOUR SYSTEM
• BACKUP YOUR SYSTEM

28. EXTRA TALKS

29. HEART BLEED
• OPENSSL/TLS DECRYPTION VULNERABILITY

30. MIRAI
• IOT BOTNET

31. ANGLER

32. DARKCOMMET
• REMOTE ACCESS/ADMINISTRATION TOOL

33. ZEUS
• TROJAN VIRUS AIMED AT THE FINANCIAL SECTOR

34. STUXNET
• FIRST KNOWN CYBER WEAPON OF INTERNATIONAL WARFARE

35. LUCKY
• RANSOMWARE

36. SHELLSHOCK
• PRIVILEGE ESCALATION ON INTERNET FACING UNIX SYSTEMS

37. CODE RED
• DDOS WORM

38. QUESTIONS
• HTTPS://YOUTU.BE/MBYRZVN3UXS