This document discusses the importance of security and how companies can protect themselves from a variety of cyber threats. It notes that cybercrime costs $575 billion per year and attacks are increasing rapidly. It then describes the types of attacks, including phishing, denial of service attacks, and SQL injection. Finally, it provides steps companies can take to enhance their security, such as implementing firewalls, access rules, encryption, and regular software updates. The key message is that all organizations are at risk from sophisticated hackers and must have appropriate security measures in place.

1. Understanding Security
THE KNOWLEDGE TO PROTECT OURSELVES

2. Why Do We Need Security?
IS M Y COMPANY AT RISK?

3. Cybercrime
• $575 Billion / year
http://www.mcafee.com/us/resources/reports/rp-economic-impact-cybercrime2.pdf
http://www.cgma.org/magazine/news/pages/201411089.aspx
• Slows Innovation
• 48% increase in 2014
• Ransomware up 127% this year
• 1 million new malware
threats every day

4. Attack Trends

5. Advances in Hacking Technologies
• Powerful Hardware
• Multi-core CPU
• Cheap RAM
• Smart software
http://www.slideshare.net/ignmantra/seminar-cyber-defence-unsoed-21-september-2014
• Metasploit
• Kali Linux
• Faster Internet

6. How are Attacks Chosen?
• Port Scanning
• BigTarget
• TargetedAttacks
• Insider / Employee
• DDoS
• Targeted Malware

7. How Do We Protect Ourselves?
WHAT ARE WE PROTECTING OURSELVES FROM?

8. Life Cycle of a Hack
• Advanced PersistentThreat
https://en.wikipedia.org/wiki/Advanced_persistent_threat
• CommodityThreat
• “Hacktivism”

9. Who is attacking us? Why?
• Script Kiddies
• Unproven hackers
• Hack for fun
• “Hacktivist”
• Inexperienced hackers

10. Who is attacking us? Why?
• Veteran Hackers
• Political
• Monetary
• Fraud: IdentityTheft
• Botnet
• Mal-vertizing
• Ransom-ware: CryptoVirus
• “Hacktivist”

11. Who is attacking us? Why?
• Inflict Damage
• Irate Customer
• “Hacktivist”
• Disgruntled Employee
• Veteran Hackers (cont)
• Cyber-Warfare
• “Ghost Security”
• Government sponsored

12. Types of Attacks
• Email /Websites
• USB Drop / Sympathy
• Phishing / Social Engineering
• Theft
• Destruction
• Physical
• Preparing for larger attack
• Finding vulnerabilities
• Scanning

13. Types of Attacks cont.
• Denial of Service
• SYN Attack
• Take Server Down
• DoS / DDoS
• Intercept communications
• Gather information
• Man InThe Middle MITM
• Diversion

14. Types of Attacks cont.
• Web-app based
• Pull data from server
• Gather information
• Client information
• Billing information
• SQL Injection
• Imitate legitimate site
• Gather credentials / information
• Spoofing

15. Types of Attacks cont.
• Indirect attack
• Paired with Spoofing
• DNS Hijack

16. Types of Attacks cont.
• Masquerade as end user
• Gather credentials / information
• Session Hijack

17. How Do We Protect Ourselves?
STEPS WE CAN TAKE TO PROTECT OURSELVES

18. Steps we can take
• How can someone take advantage of this situation
• Change our thought process
• Strict access rules
• Firewalls
• File permissions
• Least privilege access
• Web/email filtering
• Updates/Patches

19. Steps we can take
• Network design
• Security Policy
• Sign / encrypt emails
• Anti-malware / anti-virus
• Encryption
• Network segmentation
• NAT
• Implement DMZ
• Proxy / reverse proxy

20. Steps we can take
• Download verification
• Education
• Traffic scrubbing service
• Testing and Ethical hacking
• Message Digest (MD5/SHA1)
Howdy = CA11A8D225A16796859BE939A4AF562
Howdy! = 7105F32280940271293EE00AC97DA5A7

21. More on Encryption
KEEPING OUR DATA SECURE

22. Application Level Encryption
• HTTP over SSL (HTTPS)
• Web Browsing
• FileTransfer
• FileTransfer Protocol over SSL (FTPS)
• Secure Shell SSH
• Connectivity / Administration

23. Public Key Infrastructure PKI
• Public / Private Key
• Public encrypts / private decrypts

24. Digital Signature
• Public / Private Key
• Public decrypts / private encrypts

25. Transport Encryption
• Wireless (WiFi)
• Pre-Shared Key PSK
• Enterprise Authentication Protocol EAP
• Shared Password
• Unique username and password
• WiFi Protected Access WPA2
• Authenticate to 3rd party device

26. Transport Encryption
• IP Secure - IPSEC
• Software client required
• Secure Socket Layer (SSL)VPN
• Establish through web browser
• Various encryption algorithms
• 3DES – AES – SHA1
• Virtual Private Network -VPN

27. Local Encryption
• File Level Encryption
• Laptops/Desktops
• Bit Locker
• Databases
• File Shares
• Email Store
• Hard Drive Encryption

28. Summary
• You are at risk!
• You need to understand….
• New vulnerabilities every day!
• Threat
• Vulnerabilities
• Ways to attack
• Motivation of attack
• Your technology

29. Questions?
THANK YOU!

30. Things to Think about
• Everything is vulnerable
• Everything is hackable
• Hackers are smart!