Allot Communications, profile picture
Uploaded byAllot Communications
PDF, PPTX697 views

Network Security - Luxury or Must Have?

The document discusses the increasing threats to cybersecurity, such as DDoS attacks and cyber warfare, highlighting incidents involving groups like Lizard Squad and the implications of such attacks. It emphasizes the importance of securing infrastructure in a hybrid cloud environment and the emerging trend of 'Security as a Service' to combat these threats. Ultimately, the document advocates for actionable security measures and continuous intelligence for enterprises to navigate the evolving cyber landscape.

Embed presentation

Download as PDF, PPTX
Securing your infrastructure: Luxury or Must have? Roee Besser Technical Manager www.allot.com May 2015
The Cyberspace is unsafe 1 * Source: http://map.ipviking.com/
Who is the Enemy? Motives:  Ego  Hactivism  Revenge  Personal and Commercial Profit Bringing a Civilization to Its Knees… 2 Cyber Warfare SPAMHOUS DNS DDOS March 2013 "A 17 year old male from London was arrested in April 2013 after a series of distributed denial of service (DDoS) attacks which led to worldwide disruption of internet exchanges and services. " knocking PlayStation Network (PSN) and Xbox Live offline December 2014 One group, Lizard Squad, has claimed responsibility for the outages. They teased plans to do this despite a rival group, The Finest, claiming they'd be able to stop them. 2007 cyberattacks on Estonia On March 2009 , a "commissar" of the Kremlin- backed youth group Nashi, has claimed responsibility for the attack.
What Are The Main Threats? • Worms • Zero day attacks • DDosS attacks • Spam • Zombies and Botnets 3
4 The World is changing
Enterprises migrated to Hybrid Cloud 6 Private Cloud Applications At Home On the Road Users On Campus In the Branch ALWAYS CONNECTED Public Cloud The Internet is the new IT Ensuring Availability, Performance & Security across Clouds WAN INTERNET B Y O D 24/7
Emerging SECaaS 6 “Security as a Service refers to the provision of security applications and services via the cloud either to cloud- based infrastructure and software or from the cloud to the customers’ on premise systems.” * CSA SecaaS Working Group “Defined Categories of Service 2011”
7 What is Required?
Richest Intelligence Directly from the Wire 8 Broadband Experience Analytics User ControlRegulatory Compliance Security Intelligence Control & Care Mobile SIEM Operations Intelligence Private Cloud Public Cloud Internet Applications Users At Home On the Road In the Branch On Campus USER LOCATION ENDPOINT NETWORK CONTENT APPLICATION
Actionable Security – URL Filtering – Black List, White List Categorized Content Filtering Anti Virus/Malware User Access to this website is forbidden! HTTP WAP www.illegalcontent.com 9 – Web & Mail Protection SMTP POP3 Access to this website is forbidden! Access to this website is forbidden! 1st Filter URL Blacklist 2nd Filter Full URL Categorization 3rd Filter Virus/Malware Protection
Actionable Security – 10 Anti-DDoS as a Service Audit User Activity •NBAD •DDOS •Scanning – DDoS Protection •HBAD •Spammers and blacklisted IPs •Scanning •DOS - Network Based Anomaly Detection - Host Based Anomaly Detection
11 Real UseCase
True story – an ISP in Spain 12 NBAD: 3 Events over a weekend
True story – an ISP in Spain 13 NBAD: UDP Flood DDoS Attack (I) • Bandwidth wasting flood – 8.32G • High packet rate – 197Kpps • payload
True story – an ISP in Spain 14 NBAD: UDP Flood DDoS Attack (III • You can see here payload of the packet and also the target host: •5.34.135.36 (dynamic.user.wimaxonline.es)
True story – an ISP in Spain 15 NBAD: UDP Flood DDoS Attack (III) • Top Attackers with the IP address and reverse resolution along with the amount of traffic sent. •Only one internal host attacked.
True story – an ISP in Spain 16 NBAD: Fragmented Traffic Flood(I) • Bandwidth wasting flood – 11.0G • High packet rate – 83.7Kpps • Rubbish payload
True story – an ISP in Spain 17 NBAD: Fragmented Traffic Flood(II) • See the pattern of an attack. Pay attention to the payload … “flood” 
Securing the Enterprise in the Cloud Era and the User in a Mobile World Contact Allot to Learn More www.allot.com

More Related Content

PDF
Black alps 2018-folini-d-dos
byChristian Folini
 
PDF
Cybercrime in the Deep Web (BHEU 2015)
byMarco Balduzzi
 
PPTX
Deepweb darknet mansukhani
byJack Mansukhani
 
PDF
CryptoParty Belfast July 2015 Online Privacy Tips
bypgmaynard
 
PPTX
The Deep Web, TOR Network and Internet Anonymity
byAbhimanyu Singh
 
PPTX
Ali shahbazi khojasteh - deep web
byAli Shahbazi Khojasteh
 
PDF
ARM 7 - ISOC: MANRS, Security and resilience of global routing system
byAPNIC
 
PPTX
Deep web
byAbu Kaisar
 
Black alps 2018-folini-d-dos
byChristian Folini
 
Cybercrime in the Deep Web (BHEU 2015)
byMarco Balduzzi
 
Deepweb darknet mansukhani
byJack Mansukhani
 
CryptoParty Belfast July 2015 Online Privacy Tips
bypgmaynard
 
The Deep Web, TOR Network and Internet Anonymity
byAbhimanyu Singh
 
Ali shahbazi khojasteh - deep web
byAli Shahbazi Khojasteh
 
ARM 7 - ISOC: MANRS, Security and resilience of global routing system
byAPNIC
 
Deep web
byAbu Kaisar
 

What's hot

PPTX
Deep Web - what to do and what not to do
byCysinfo Cyber Security Community
 
PPTX
Dark net
byMudasser Afzal
 
PPTX
Ransomware the clock is ticking
byManoj Kumar Mishra
 
PDF
78751355 cryptomorphosis
byP-e-t-a-r
 
PDF
ISIS Cyber Terrorism Analysis
byLars Hilse Global Thought Leader in #CyberSecurity, #CyberTerrorism, #CyberDefence, #CyberCrime
 
PPTX
Sony Attack by Destover Malware. Part of Cyphort Malware Most Wanted Series.
byCyphort
 
PDF
Top Secret - The Secure Internet Starts Here
byTom Millitzer
 
PDF
Us gov't building hacker army for cyber war yahoo! news
byMarioEliseo3
 
PPTX
Darknet
byKamalPreet Saluja
 
PPTX
Ransomware: Mitigation Through Preparation
byHostway|HOSTING
 
PPTX
Guide to dark web
byJspider - Noida
 
PPTX
Dos & Ddos Attack. Man in The Middle Attack
bymarada0033
 
PPTX
The Dark Web
byjamiecornista
 
PPTX
Ransomware History and Monitoring Tips
byNetFort
 
PPTX
The Deep Web
byMelissa Pereira
 
PPTX
Igor Beliaiev "Incident Busters. Human Security Interaction"
byIgor Beliaiev
 
PDF
Botnets - What, How and Why by Utsav Mittal @ OWASP Delhi July, 2014 Monthly ...
byOWASP Delhi
 
PPTX
Dark and Deep web
byKhaled Sany
 
PDF
How the Surveillance State Changes IT Security Forever
byRichard Stiennon
 
PPTX
ION Malta - DANE: The Future of TLS
byDeploy360 Programme (Internet Society)
 
Deep Web - what to do and what not to do
byCysinfo Cyber Security Community
 
Dark net
byMudasser Afzal
 
Ransomware the clock is ticking
byManoj Kumar Mishra
 
78751355 cryptomorphosis
byP-e-t-a-r
 
ISIS Cyber Terrorism Analysis
byLars Hilse Global Thought Leader in #CyberSecurity, #CyberTerrorism, #CyberDefence, #CyberCrime
 
Sony Attack by Destover Malware. Part of Cyphort Malware Most Wanted Series.
byCyphort
 
Top Secret - The Secure Internet Starts Here
byTom Millitzer
 
Us gov't building hacker army for cyber war yahoo! news
byMarioEliseo3
 
Darknet
byKamalPreet Saluja
 
Ransomware: Mitigation Through Preparation
byHostway|HOSTING
 
Guide to dark web
byJspider - Noida
 
Dos & Ddos Attack. Man in The Middle Attack
bymarada0033
 
The Dark Web
byjamiecornista
 
Ransomware History and Monitoring Tips
byNetFort
 
The Deep Web
byMelissa Pereira
 
Igor Beliaiev "Incident Busters. Human Security Interaction"
byIgor Beliaiev
 
Botnets - What, How and Why by Utsav Mittal @ OWASP Delhi July, 2014 Monthly ...
byOWASP Delhi
 
Dark and Deep web
byKhaled Sany
 
How the Surveillance State Changes IT Security Forever
byRichard Stiennon
 
ION Malta - DANE: The Future of TLS
byDeploy360 Programme (Internet Society)
 

Similar to Network Security - Luxury or Must Have?

PPSX
Network security
bysyed mehdi raza
 
PPT
Network security
byPushkar Dutt
 
PDF
Eximbank security presentation
bylaonap166
 
PPT
Network Security
byVIKAS SINGH BHADOURIA
 
PPTX
Network security and System Admin
byMD SAHABUDDIN
 
PPT
Network Security
byMohammed Adam
 
PDF
Akamai___WebSecurity_eBook_Final
byCheryl Goldberg
 
PPT
Network seurity
byNaqash Rasheed
 
PPTX
DSS ITSEC 2013 Conference 07.11.2013 -Radware - Protection against DDoS
byAndris Soroka
 
PPT
Event - Internet Thailand - Total Security Perimeters
bySomyos U.
 
PPTX
Cyber Security
byBryCunal
 
PDF
A10 issa d do s 5-2014
byRaleigh ISSA
 
PPTX
2025 HackRedCon Cyber Career Paths.pptx Scott Stanton
byScott Stanton
 
PPTX
Network security - Defense in Depth
byDilum Bandara
 
PPT
Network Security fundamentals
byTariq kanher
 
PDF
Cybersecurity: Do Your Have a Plan to Address Threats and Prevent Liability?
byCodero
 
PPT
Cloud Computing & Security
byAwais Mansoor Chohan
 
PDF
denialofservice.pdfdos attacck basic details with interactive design
byperfetbyedshareen
 
PPT
Guillaume Lovet. Kibernetinių nusikaltimų daugėja: grėsmių įmonėms analizė
byTEO LT, AB
 
PPTX
Network Security
byPuneet Abichandani
 
Network security
bysyed mehdi raza
 
Network security
byPushkar Dutt
 
Eximbank security presentation
bylaonap166
 
Network Security
byVIKAS SINGH BHADOURIA
 
Network security and System Admin
byMD SAHABUDDIN
 
Network Security
byMohammed Adam
 
Akamai___WebSecurity_eBook_Final
byCheryl Goldberg
 
Network seurity
byNaqash Rasheed
 
DSS ITSEC 2013 Conference 07.11.2013 -Radware - Protection against DDoS
byAndris Soroka
 
Event - Internet Thailand - Total Security Perimeters
bySomyos U.
 
Cyber Security
byBryCunal
 
A10 issa d do s 5-2014
byRaleigh ISSA
 
2025 HackRedCon Cyber Career Paths.pptx Scott Stanton
byScott Stanton
 
Network security - Defense in Depth
byDilum Bandara
 
Network Security fundamentals
byTariq kanher
 
Cybersecurity: Do Your Have a Plan to Address Threats and Prevent Liability?
byCodero
 
Cloud Computing & Security
byAwais Mansoor Chohan
 
denialofservice.pdfdos attacck basic details with interactive design
byperfetbyedshareen
 
Guillaume Lovet. Kibernetinių nusikaltimų daugėja: grėsmių įmonėms analizė
byTEO LT, AB
 
Network Security
byPuneet Abichandani
 

More from Allot Communications

PDF
Securing people and things a monetization opportunity
byAllot Communications
 
PDF
Network Security‬ and Big ‪‎Data Analytics‬
byAllot Communications
 
PDF
How to make virtual network services a winner rather than an integration disa...
byAllot Communications
 
PDF
Allot Real Life Use Cases for Customer Enagagement
byAllot Communications
 
PDF
Securing the Enterprise with Application Aware Acceptable Use Policy
byAllot Communications
 
PDF
How to Use Actionable Insights to Increase Revenues
byAllot Communications
 
PDF
CMTS Channel Awareness and Congestion Mitigation - Optimize Network Performance
byAllot Communications
 
PDF
Allot ServiceProtector - DDos Mitigation
byAllot Communications
 
PPTX
Allot Cloud/Trends H2/2014 Slideshare
byAllot Communications
 
PDF
Allot Optenet Parental Control: Solution Brief
byAllot Communications
 
PDF
Allot Content Delivery Networks (CDN)
byAllot Communications
 
Securing people and things a monetization opportunity
byAllot Communications
 
Network Security‬ and Big ‪‎Data Analytics‬
byAllot Communications
 
How to make virtual network services a winner rather than an integration disa...
byAllot Communications
 
Allot Real Life Use Cases for Customer Enagagement
byAllot Communications
 
Securing the Enterprise with Application Aware Acceptable Use Policy
byAllot Communications
 
How to Use Actionable Insights to Increase Revenues
byAllot Communications
 
CMTS Channel Awareness and Congestion Mitigation - Optimize Network Performance
byAllot Communications
 
Allot ServiceProtector - DDos Mitigation
byAllot Communications
 
Allot Cloud/Trends H2/2014 Slideshare
byAllot Communications
 
Allot Optenet Parental Control: Solution Brief
byAllot Communications
 
Allot Content Delivery Networks (CDN)
byAllot Communications
 

Recently uploaded

PDF
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
PDF
apidays Paris 2025 | Zero Trust By Design
byapidays
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PDF
apidays New York 2025 | AI in Application Security
byapidays
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PPTX
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
PPTX
PPTX game guess the logo with a twistppt
byAdrianAnig
 
PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PDF
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
PDF
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
PPTX
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
apidays Paris 2025 | Zero Trust By Design
byapidays
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
Workflow and decision Automation with Flowable
bychakib ch
 
apidays New York 2025 | AI in Application Security
byapidays
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
PPTX game guess the logo with a twistppt
byAdrianAnig
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 

Network Security - Luxury or Must Have?

  • 1.
    Securing your infrastructure: Luxury orMust have? Roee Besser Technical Manager www.allot.com May 2015
  • 2.
    The Cyberspace isunsafe 1 * Source: http://map.ipviking.com/
  • 3.
    Who is theEnemy? Motives:  Ego  Hactivism  Revenge  Personal and Commercial Profit Bringing a Civilization to Its Knees… 2 Cyber Warfare SPAMHOUS DNS DDOS March 2013 "A 17 year old male from London was arrested in April 2013 after a series of distributed denial of service (DDoS) attacks which led to worldwide disruption of internet exchanges and services. " knocking PlayStation Network (PSN) and Xbox Live offline December 2014 One group, Lizard Squad, has claimed responsibility for the outages. They teased plans to do this despite a rival group, The Finest, claiming they'd be able to stop them. 2007 cyberattacks on Estonia On March 2009 , a "commissar" of the Kremlin- backed youth group Nashi, has claimed responsibility for the attack.
  • 4.
    What Are TheMain Threats? • Worms • Zero day attacks • DDosS attacks • Spam • Zombies and Botnets 3
  • 5.
  • 6.
    Enterprises migrated toHybrid Cloud 6 Private Cloud Applications At Home On the Road Users On Campus In the Branch ALWAYS CONNECTED Public Cloud The Internet is the new IT Ensuring Availability, Performance & Security across Clouds WAN INTERNET B Y O D 24/7
  • 7.
    Emerging SECaaS 6 “Security asa Service refers to the provision of security applications and services via the cloud either to cloud- based infrastructure and software or from the cloud to the customers’ on premise systems.” * CSA SecaaS Working Group “Defined Categories of Service 2011”
  • 8.
  • 9.
    Richest Intelligence Directlyfrom the Wire 8 Broadband Experience Analytics User ControlRegulatory Compliance Security Intelligence Control & Care Mobile SIEM Operations Intelligence Private Cloud Public Cloud Internet Applications Users At Home On the Road In the Branch On Campus USER LOCATION ENDPOINT NETWORK CONTENT APPLICATION
  • 10.
    Actionable Security – URLFiltering – Black List, White List Categorized Content Filtering Anti Virus/Malware User Access to this website is forbidden! HTTP WAP www.illegalcontent.com 9 – Web & Mail Protection SMTP POP3 Access to this website is forbidden! Access to this website is forbidden! 1st Filter URL Blacklist 2nd Filter Full URL Categorization 3rd Filter Virus/Malware Protection
  • 11.
    Actionable Security – 10 Anti-DDoSas a Service Audit User Activity •NBAD •DDOS •Scanning – DDoS Protection •HBAD •Spammers and blacklisted IPs •Scanning •DOS - Network Based Anomaly Detection - Host Based Anomaly Detection
  • 12.
  • 13.
    True story –an ISP in Spain 12 NBAD: 3 Events over a weekend
  • 14.
    True story –an ISP in Spain 13 NBAD: UDP Flood DDoS Attack (I) • Bandwidth wasting flood – 8.32G • High packet rate – 197Kpps • payload
  • 15.
    True story –an ISP in Spain 14 NBAD: UDP Flood DDoS Attack (III • You can see here payload of the packet and also the target host: •5.34.135.36 (dynamic.user.wimaxonline.es)
  • 16.
    True story –an ISP in Spain 15 NBAD: UDP Flood DDoS Attack (III) • Top Attackers with the IP address and reverse resolution along with the amount of traffic sent. •Only one internal host attacked.
  • 17.
    True story –an ISP in Spain 16 NBAD: Fragmented Traffic Flood(I) • Bandwidth wasting flood – 11.0G • High packet rate – 83.7Kpps • Rubbish payload
  • 18.
    True story –an ISP in Spain 17 NBAD: Fragmented Traffic Flood(II) • See the pattern of an attack. Pay attention to the payload … “flood” 
  • 19.
    Securing the Enterprise inthe Cloud Era and the User in a Mobile World Contact Allot to Learn More www.allot.com