Paul Henry’s 2011 Malware Trends

•Download as PPT, PDF•

2 likes•431 views

Join security and forensics expert, Paul Henry, to learn about the latest malware trends and more importantly, practical steps you can take to better protect your organization from evolving threats. Learn: • How social media and removable devices have become new, targeted paths into your network • Why traditional defenses are not effective in the unending arms race with financially motivated “bad guys” • How to ensure an effective depth-in-defense security strategy that includes application whitelisting

Technology

Today’s Speaker Paul Henry Security & Forensics Analyst MCP+I, MCSE, CCSA, CCSE, CFSA, CFSO, CISSP,-ISSAP, CISM, CISA, CIFI, CCE SANS Institute Instructor

Today’s Agenda Shift in IT Risk and Threat Landscape 2011 Malware Trends Practical Steps to Prevent Malware Q&A

Ask a Question Via Twitter ,[object Object]

The Shifting IT Risk and Threat Landscape… and the Impact to Your Information

Shift in Information that is Targeted ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Web Applications are the Leading Attack Path The applications we use today for productivity Collaborative / Browser-based / Open Source Social Communities, Gadgets, Blogging and Widgets open up our networks to increasing risk everyday. Source: Verizon, 2010 Data Breach Investigations Report

Endpoint Security Today ,[object Object],[object Object]

[object Object],[object Object],[object Object],[object Object],[object Object],5

Trend #1: Social Media as a Delivery Vehicle for Malware ,[object Object],[object Object],[object Object],[object Object],Source: Verizon, 2010 Data Breach Investigations Report

Be Sure to Change to HTTPS Account>Account Settings>Account Security and select the secure browsing / HTTPS checkbox and your FB visit including your login will be encrypted

Trend 3: Traditional Defenses are Not Keeping Up

Trend 4: DDoS and Fake AV Attacks on the Rise ,[object Object]

Why Question Big Money In Fake AV? Over 500,000 Unique Fake AV Binaries in the last Q of 2010

Summary of Trends ,[object Object],[object Object],[object Object],[object Object],[object Object]

Focus on the Endgame, Not the Delivery Method ,[object Object],[object Object],[object Object]

Rethink Your Patch Strategy Source: 1 - SANS Institute ,[object Object],[object Object],[object Object],[object Object]

Ensure Depth-in-Defense with Application Whitelisting Learned (Adaptive) Allow Known Good; Block Everything Else Block Known Bad; Allow Everything Else ,[object Object],[object Object],[object Object],[object Object],Gartner Research

Manage the Removable Devices in Your Environment *Worldwide State of The Endpoint Report 2009 Without Enforcement, Your Policy has No Teeth!

Consolidate Your Endpoint Security Technologies ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],Lumension Global State of The Worldwide Endpoint 2009

[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Brad Andrews, CEO, RBA Communications Evaluating DREAD – Applying D.R.E.A.D. to the results of STRIDE. This session is a continuation of Parts 1 and 2 and will apply the DREAD model to the threats we found in the previous session. We will start by discussing the elements of the DREAD model that is often used to evaluate risks to systems that are identified in threat modeling. These are Damage, Reproducibility, Exploitability, Affected Users, Discoverability. We will then work through the threats found in the previous session. This will continue the focus on Amazon.com and go to other systems if time is available. This session will expect those present to be involved in finding and suggesting values for each of the DREAD elements as they apply to the covered risks.

Nonprofit Cybersecurity Incident Report

Community IT Innovators

Join CTO Matthew Eshleman as he walks through the inaugural Nonprofit Cybersecurity Incident Report from Community IT Innovators. This report looks at the different types of attacks that occur at small and mid-sized organizations. He also shares advice on security improvements that provide protection against the most common attacks. Learn the role of leadership in placing a value on cybersecurity preparedness for your nonprofit and the long term planning that should accompany your immediate assessment of your security risk. For the video of the presentation or to subscribe to future webinars: https://www.communityit.com/connect-with-us/webinars/

End User Security Awareness Presentation

Cristian Mihai

Are Your IT Systems Secure?

Nex-Tech

CYBERSECURITY: Game Planning for Success lunch and learn event, April 10th

United Technology Group (UTG)

Did you know that today's cyber threat landscape costs companies BILLIONS in damages each year? We want to help protect your company, employees and customers from the rising threat landscape! This presentation includes: • The state of cybersecurity and the threat landscape • How a threat-focused approach is changing the ability to detect and respond to breaches • How to develop a security game plan around a proven process • How to automatically defend your network with Cisco’s Advanced Malware Protection (AMP) http://www.utgsolutions.com/solutions/security-compliance

6 Defence-In-Depth Security Tactics as Recommended by the National Cyber Secu...

Ivanti

This webinar series is designed to help internal auditors looking to equip themselves with competencies and confidence to handle audit of IT controls and information security, and learn about the emerging technologies and their underlying risks The series focuses on contemporary IT audit approaches relevant to Internal Auditors and the processes underlying risk based IT audits. Session 1 of 10 This Webinar focuses on Cyber Defense • Threats/Threat actors/Common Cyber Attack methods • Attacks and vulnerabilities exposed • Layered protection measures against Cyber threats • Firewalls and levels of protection they provide • Traffic profiling and monitoring for inbound and outbound traffic • Intrusion Detection • Incidences of Compromises • Penetration testing regimes and vulnerability testing • NIST Vulnerability Checklist • The Security Content Automation Protocol (SCAP)

The Cost of Inactivity: Malware Infographic

Cisco Security

ICION 2016 - Cyber Security GovernanceCharles Lim

Cybersecurity - Sam Maccherola

TechBiz Forense Digital

Cisco's 2016 Annual Security report

Cisco Canada

We will present the details of the Cisco's 2016 Annual Security report with emphasis on the Canadian landscape. The Cisco 2016 Annual Security Report; which presents research, insights, and perspectives from Cisco Security Research & highlights the challenges that defenders face in detecting and blocking attackers who employ a rich and ever-changing arsenal of tools. The report also includes research from external experts, such as Level 3 Threat Research Labs, to help shed more light on current threat trends. We take a close look at data compiled by Cisco researchers to show changes over time, provide insights on what this data means, and explain how security professionals should respond to threats.

What's hot

Information security

Appin Faridabad

3 Perspectives Around Data Breaches

Symantec

What lies ahead? 2016 Cyber Security Predictions from Symantec in the EMEA (E...

Symantec

Jonathan raymond 2010 rotman telus - atlseccon2011

Atlantic Security Conference

Research PaperDavid Chaponniere

2019 Cyber Security Trends

Internetwork Engineering (IE)

Whitepaper - CISO Guide_6ppEric Zhuo

Key Strategies to Address Rising Application Risk in Your EnterpriseLumension

Chapter 2 konsep dasar keamanan

newbie2019

Chapter 4

NorazlinaAbdullah4

Layer 8 Security - Securing the Nut Between the Keyboard & Screen

Brian Honan

2018 sans security awareness report

John Martens

Whitepaper: BATTLING IT OUT: APPLICATION AND MOBILE SECURITY - Happiest Minds

Happiest Minds Technologies

Network Security for Employees

OPSWAT

Executive Information Security Training

Angela Samuels

Security models of modern mobile systems

Divya Raval

Insider threats

izoologic

Cybersecurity Series - Cyber Defense for Internal Auditors

Jim Kaplan CIA CFE

The Cost of Inactivity: Malware Infographic

Cisco Security

ICION 2016 - Cyber Security GovernanceCharles Lim

What's hot (20)

Information security

3 Perspectives Around Data Breaches

What lies ahead? 2016 Cyber Security Predictions from Symantec in the EMEA (E...

Jonathan raymond 2010 rotman telus - atlseccon2011

Research Paper

2019 Cyber Security Trends

Whitepaper - CISO Guide_6pp

Key Strategies to Address Rising Application Risk in Your Enterprise

Chapter 2 konsep dasar keamanan

Chapter 4

Layer 8 Security - Securing the Nut Between the Keyboard & Screen

2018 sans security awareness report

Whitepaper: BATTLING IT OUT: APPLICATION AND MOBILE SECURITY - Happiest Minds

Network Security for Employees

Executive Information Security Training

Security models of modern mobile systems

Insider threats

Cybersecurity Series - Cyber Defense for Internal Auditors

The Cost of Inactivity: Malware Infographic

ICION 2016 - Cyber Security Governance

Similar to Paul Henry’s 2011 Malware Trends

Cybersecurity - Sam Maccherola

TechBiz Forense Digital

Cisco's 2016 Annual Security report

Cisco Canada

State of endpoint risk v3Lumension

Cisco 2014 Midyear Security Report

Cisco Security

Joint Presentation on The State of Cybersecurity ('15-'16) & Third Party Cyb...

Rishi Singh

It's Time to Rethink Your Endpoint Strategy

Lumension

Today's IT network is more distributed and virtual than ever with the increased use of remote endpoints and cloud-based applications. And increasingly sophisticated malware is targeting the information stored on and accessed by these endpoints and applications. The security status quo has left organizations managing a multitude of products – and has not reduced the IT risk. This series examines the evolving threat landscape, why current defenses are decreasing in effectiveness and what key strategies you can implement to shift from the status quo and improve security from zero-day and targeted attacks, while also simplifying and reducing the costs of managing the endpoint environment.

11 19-2015 - iasaca membership conference - the state of security

Matthew Pascucci

2014 the future evolution of cybersecurity

Matthew Rosenquist

Cybersecurity is difficult. It is a serious endeavor which over time strives to find a balance in managing the security of computing capabilities to protect the technology which connects and enriches the lives of everyone. Characteristics of cyber risk continue to mature and expand on the successes of technology innovation, integration, and adoption. It is no longer a game of tactics, but rather a professional discipline, continuous in nature, where to be effective strategic leadership must establish effective and efficient structures for evolving controls to sustain an optimal level of security. This presentation will discuss the emerging challenges as it analyzes the cause-and-effect relationships of factors driving the future of cybersecurity.

C3Praveen Malisetty

Cyber Security: Most Important Aspect of a Successful Business

Fibonalabs

Cyber Security in business is all about protecting the data, not just the online data but also the offline data, from theft and any sort of damage. It includes the security of personal data, intellectual property data, protected information, sensitive data, government data as well as the data of various industries. It is a shield that helps in safeguarding the entire data of a business. Running a business is not everyone’s cup of tea and what makes it further difficult is the absence of cyber security. Let’s learn what impact this service has on the running of a successful business.

Securing the Cloud

GGV Capital

How to avoid cyber security attacks in 2024 - CyberHive.pdf

online Marketing

Technology continues to evolve at a rapid pace, presenting both opportunities and challenges. Among these challenges, the threat of cyber security attacks looms large. This poses significant risks to individuals, businesses, and governments alike. The importance of adopting robust security measures cannot be overstated. please visit: https://www.cyberhive.com/insights/how-to-avoid-cyber-security-attacks-in-2024/

Five Network Security Threats And How To Protect Your Business Wp101112Erik Ginalick

5 network-security-threatsReadWrite

Cyberattacks on the Rise: Is Your Nonprofit Prepared?

TechSoup

Cyberattacks against small and midsize organizations have increased from 11 percent to 15 percent in 2020, according to an Avast survey. Nonprofits are no exception to this alarming trend, which results in lost productivity, damaged reputations, and serious financial implications. Whether you’re a one-person IT team or a nontechnical concerned stakeholder, this webinar will help you - Protect your organization from common malware attacks - Set up a strong cybersecurity strategy for your organization - Identify solutions to help minimize cyberattack risks

Segurinfo2014 Santiago Cavanna

Santiago Cavanna

Presentacion realizada en Argentina y Paraguay Durante Marzo 2014. En Argentina por Faustino Sanchez. En Paraguay por Santiago Cavanna. Trata sobre el problema de la presencia de vulnerabilidades en aplicaciones, el impacto que tiene en las organizaciones y la forma que se encuentra disponible para descubrirlas en forma temprana y facilitar su remediacion Links disponibles en http://www.santiagocavanna.com/segurinfo-2014-el-costo-oculto-de-las-aplicaciones-vulnerables/

Cybercriminals and security attacks

GFI Software

Information security in todays world

Sibghatullah Khattak

Similar to Paul Henry’s 2011 Malware Trends (20)

Cybersecurity - Sam Maccherola

Cisco's 2016 Annual Security report

State of endpoint risk v3

Cisco 2014 Midyear Security Report

Joint Presentation on The State of Cybersecurity ('15-'16) & Third Party Cyb...

It's Time to Rethink Your Endpoint Strategy

11 19-2015 - iasaca membership conference - the state of security

2014 the future evolution of cybersecurity

Cyber Security: Most Important Aspect of a Successful Business

Securing the Cloud

How to avoid cyber security attacks in 2024 - CyberHive.pdf

Five Network Security Threats And How To Protect Your Business Wp101112

5 network-security-threats

Cyberattacks on the Rise: Is Your Nonprofit Prepared?

Segurinfo2014 Santiago Cavanna

Cybercriminals and security attacks

Information security in todays world

More from Lumension

Using SCCM 2012 r2 to Patch Linux, UNIX and Macs

Lumension

Today, everything has to be patched. From desktop and laptop to server and every operating system in between. With compliance, what we have to pay attention to is what’s actually out there on our network – not just what you wish were there. Servers (Windows, UNIX and Linux)Even Windows-centric environments have at least a few UNIX or Linux servers that need to be secure and patched. Linux and UNIX servers often fulfill critical functions with few and short maintenance windows. These can be a real pain point for admins who specialize in Windows or are managed by an entirely different admin. Desktops (Windows and Macs)Maybe you are responsible for desktops instead of servers. Again it’s not just a Windows story any more. More and more people are opting for Macs instead of Windows. Watch the vulnerability lists and you’ll see that Macs need patching too. The kicker though is the 80/20 rule. If at least 80% of the computers on your network are Windows and the remaining 20% are everything else – it’s a safe bet, given the maturity and ease of WSUS, that 20% of your patching effort goes to Windows but 80% of your effort is consumed with patching all the different flavors of UNIX, Linux and your Mac computers. We need one system to manage all our patches and one pane of glass to prove compliance from data center to desktop. Believe it or not System Center 2012 R2 provides the infrastructure to do just that – it just needs a little help. Last time we showed you how you can patch 3rd party apps on Windows through System Center Update Manager. This time we’ll show you how you can patch non-Windows systems using the new System Center clients for UNIX, Linux and Mac.

2015 Endpoint and Mobile Security Buyers Guide

Lumension

Mike Rothman, Analyst and President of Securosis, as he dives into an interactive discussion around endpoint security management in 2015. • Protecting Endpoints: How the attack surface has changed, and the impact to your defense strategy • Anti-Malware: The best ways to deal with today’s malware and effectively protect your endpoints from attack • Endpoint Hygiene: Why you can’t forget the importance of ensuring solid management of your endpoint devices • BYOD and Mobility: The extent that corporate data on smart mobile devices impacts your organization • The Most Important Buying Considerations in 2015

Top 10 Things to Secure on iOS and Android to Protect Corporate Information

Lumension

Security expert Randy Franklin Smith from Ultimate Windows Security, shows you a technical and pragmatic approach to mobile security for iOS and Android. For instance, for iOS-based devices, he talks about: • System security • Encryption and data protection • App Security • Device controls Randy also discusses Android-based devices. While Android gets its kernel from Linux, it builds on Linux security in a very specialized way to isolate applications from each other. And learn about iOS and Android mobile device management needs: Password and remote wipe capabilities are obvious but there’s much more to the story. And you’ll hear Randy's list of top-10 things you need to secure and manage on mobile devices in order to protect access to your organization’s network and information.

2014 BYOD and Mobile Security Survey Preliminary Results

Lumension

Using SCUP (System Center Updates Publisher) to Security Patch 3rd Party Apps...Lumension

Careto: Unmasking a New Level in APT-ware Lumension

Securing Your Point of Sale Systems: Stopping Malware and Data Theft

Lumension

Point of Sale (POS) systems have long been the target of financially-motivated crime. And in 2013 the magnitude of cybercrime against POS systems skyrocketed, with 97% of breaches in the retail sector and 47% in the healthcare sector aimed against POS systems. With sensitive financial and personal records getting exposed by the millions, the FBI recently warned that POS systems are under sustained and continued attack. During this webcast, we will take you into the three critical entry points to POS system attacks. We’ll discuss how the attacks look, the timelines for these breaches, and what proactive security measures you can take to help your organization minimize the risk to your POS systems. •3 Critical Entry Points to POS System Attacks •Impacts to an Organization •Top 3 Security Measures to Minimize Risk

2014 Security Trends: SIEM, Endpoint Security, Data Loss, Mobile Devices and ...

Lumension

Thanks to you, the audience at UltimateWindowsSecurity, for the 2014 Survey. It was a great success with over 600 respondents! I appreciate all of you who took the time give me your thoughts. You’ve provided some great ideas for real training for free™ in the coming year and I’ve learned which topics are most important to you. That’s going to benefit all of us. In this presentation, we'll present our findings. We’ll talk about the community’s top goals for 2014, which topics you recommended I cover in 2014 and what our community sees as the greatest security concerns for 2014. And we’ll discuss other trends emerging from the data. Find out about the top trends, such as: SIEM – What are the top SIEM solutions? What is the UWS community’s top 3 biggest challenges with log/monitoring/security analytics? Endpoint Security – How widely is application whitelisting being used and what is driving its adoption? Which endpoint security technologies really work and which are just hype? Mobile Devices – Are employee owned mobile devices supported at your organization? Is your biggest concern with mobile devices malware, data loss, compliance? The Cloud – How widely are your peers embracing the cloud? Is your organization’s security policy, technology and training keeping up with the move to the cloud? Advanced Security Topics – What are your peers doing about “big data”? What about endpoints as sensors, and other new security approaches? This will be a fact-filled and fascinating presentation on where we are and where we are going on a host of different security fronts. Don’t miss it.

2014 Data Protection Maturity Survey: Results and AnalysisLumension

Greatest It Security Risks of 2014: 5th Annual State of Endpoint Risk

Lumension

Organizations around the world are losing intellectual property and customer data to cyber criminals at mind-boggling rates. How is this happening? For 5 consecutive years, the annual State of the Endpoint Report, conducted by Ponemon Institute, has surveyed IT practitioners involved in securing endpoints. This year’s report reveals endpoint security risk is more difficult to minimize than ever before. What are IT pros most concerned about heading into 2014? From the proliferation of mobile devices, third party applications, and targeted attacks/APTs, endpoint security risk for 2014 is becoming more of a challenge to manage. Larry Ponemon of the Ponemon Institute reveals statistics on growing insecurity, IT’s perceived areas of greatest risk for 2014 as well as tactical suggestions for how to improve your endpoint security. Specifically, you will learn: •IT perspective on the changing threat landscape and today’s Top 5 risks; •Disconnect between perceived risk and corresponding strategies to combat those threats; •Tips and tricks on how to best communicate today’s threats and subsequent needed responses up the management chain

Windows XP is Coming to an End: How to Stay Secure Before You MigrateLumension

Adobe Hacked Again: What Does It Mean for You?

Lumension

Last time it was Adobe’s code signing servers. This time it’s 2.9 million (let’s just call it 3) customers’ data and lots and lots of source code – including that of Acrobat. Adobe products already require constant patching but offer no enterprise level solution for patching. In this presentation by Ultimate Windows Security, we’ll present why this will likely lead to more and we’ll look at what we know about this latest Adobe breach. But more importantly I’ll show what you can do in advance to protect yourself against zero-day exploits in Adobe products and programs. After all this won’t be the last time a software vendor is hacked. In this day and age we have to protect ourselves from the failures of our software providers. I’ll present 3 ways you can go on the offensive to protect yourself from the constant vulnerabilities discovered in Adobe Reader, Acrobat, Flash and Oracle Java. Here’s what we’ll discuss: *Alternatives to Adobe and Java *Different ways to containing vulnerable apps in a sandbox * Using advanced memory protection technologies to detect and stop buffer overflows and other memory based attacks Patching and AV only helps you close the window on hacker opportunity. To prevent the window from opening in the first place you have to prevent untrusted code from ever running in the first place. That requires application whitelisting and memory protection against code injection – a growing menace that bypasses controls based on file system and EXE scanning. That’s why Lumension is sponsoring this event. I think you’ll be interested seeing 2 of their end-point security technologies that will help protect you from the new exploits on their way as a result of this hack as well as the constant stream of exploits discovered every day. This is going to be a really cool presentation with practical tips that you can apply. Learn how to protect your systems from other software vendor vulnerabilities.

Real World Defense Strategies for Targeted Endpoint Threats Lumension

APTs: The State of Server Side Risk and Steps to Minimize RiskLumension

2014 Ultimate Buyers Guide to Endpoint Security SolutionsLumension

Data Protection Rules are Changing: What Can You Do to Prepare?

Lumension

The European Union’s proposed new data protection regulation aims to update Europe’s data protection laws and to provide a more consistent data protection framework across the Continent. But the new regulation, which replaces the EU’s existing data protection directive and member states’ data protection laws, will put some new demands on organisations holding personal data. Breach disclosure and “the right to be forgotten” will force businesses to update their data protection and retention policies. This presentation will: - Review the current EU laws, and contrast them with laws in other parts of the world; - Examine the arguments for strengthening data protection in Europe, and the likely outcomes; - Look at what security teams should already be doing to put themselves ahead of legislative changes; - Outline strategies and technologies organisations need to meet current and future data protection requirements - Help infosecurity teams to explain the changes – and their consequences – to their boards

Java Insecurity: How to Deal with the Constant Vulnerabilities

Lumension

Just over a decade ago, the outcry over Microsoft’s security problems reached such a deafening level that it finally got the attention of Bill Gates, who wrote the famous Trustworthy Computing memo. Today, many would say that Microsoft leads the industry in security and vulnerability handling. Now, it’s Java that’s causing the uproar. But has Oracle learned anything from Microsoft in handling these seemingly ceaseless problems? I’ll start by reviewing the wide-ranging Java security changes Oracle is promising to make. They sound so much like the improvements Microsoft made back with Trustworthy Computing that I’m amazed it hasn’t been done before! We’ll move on to discuss what you can do now to address Java security in your environment. One of the banes of security with Java is the presence of multiple versions of Java, often on the same computer. Sometimes you really need multiple versions of Java to support applications with version dependencies (crazy, I know). But other times, multiple copies of Java are there “just because.” In this webinar, we’ll talk about the current Java mess and how you can get out of it, including: Assessment. We’ll discuss ways and tools for cataloging what versions of Java are actually out there on your endpoints. Identification. We’ll look at methods for identifying which versions are actually required by your users; for instance, I’ll show you how you might use Process Tracking and File Access events in the Windows Security Log to see which Java files are being accessed, by whom, and by which programs. Disabling. Can you just disable Java? Maybe not for everyone, but what if you could disable it for certain roles within your company that make up 25% – or even 75% – of your workforce? That would be worth it. We’ll explore how you might go about such a measure. Hardening. We’ll dive into the technical details of hardening Java and reducing your Java attack surface, where possible. Filtering. Another way to reduce your Java risk is by filtering Java content at your gateway. Again not full coverage control – but what is? Patching. Then, we’ll delve into the Java patching nightmare. Depending on self-updaters on each endpoint, is could be a recipe for disaster, and I’ll explain why. Basically the only way out of the Java mess is a 3rd party solution that can perform centralized patch management and remediation and that’s where our sponsor, Lumension, will come in.

BYOD & Mobile Security: How to Respond to the Security Risks

Lumension

Bring Your Own Device (BYOD) is a popular topic in 2013. Trying to understand the security risks and prepare strategies to either adopt, or decide against BYOD for security and data control reasons is the challenge. The 160,000 member Information Security Community on LinkedIn conducted the survey "BYOD & Mobile Security 2013" to shed some light on the drivers for BYOD, how companies will benefit from BYOD, and how they respond to the security risks associated with this trend. With 1,600 responses, some interesting insights and patterns into BYOD were uncovered.

3 Executive Strategies to Reduce Your IT Risk

Lumension

Do you want to know how ‘best-of-breed’ enterprises prioritize their IT risk? Join Richard Mason, Vice President & Chief Security Officer at Honeywell, whose team is responsible for global security, during a roundtable discussion with Pat Clawson, Chairman & CEO of Lumension and Roger Grimes, Security Columnist & Author. Uncover strategies beyond traditional antivirus signatures and learn a more holistic approach to effective risk management. Find out ‘how’ and ‘why’ you can make security a prioritized function within your organization. Join this expert panel webcast to learn how to: 1)Understand your business audiences and evaluate their risk tolerance 2)Leverage reputation management services that are appropriate for your organization 3)Utilize realistic change management to secure prioritized data depositories

The Evolution of Advanced Persistent Threats_The Current Risks and Mitigation...

Lumension

APTs have become a major topic of conversation – and in some cases, a critical threat – among IT security departments. But the technology and motivation behind APTs has changed significantly since the introduction of Stuxnet, continuing to evolve rapidly to avoid detection. In this special Dark Reading presentation, a leading expert on the origins and directions of APTs will discuss the changing nature of these sophisticated threats – and how you can prepare your enterprise security environment to detect and mitigate these complex and dangerous attacks.

More from Lumension (20)

Using SCCM 2012 r2 to Patch Linux, UNIX and Macs

2015 Endpoint and Mobile Security Buyers Guide

Top 10 Things to Secure on iOS and Android to Protect Corporate Information

2014 BYOD and Mobile Security Survey Preliminary Results

Using SCUP (System Center Updates Publisher) to Security Patch 3rd Party Apps...

Careto: Unmasking a New Level in APT-ware

Securing Your Point of Sale Systems: Stopping Malware and Data Theft

2014 Security Trends: SIEM, Endpoint Security, Data Loss, Mobile Devices and ...

2014 Data Protection Maturity Survey: Results and Analysis

Greatest It Security Risks of 2014: 5th Annual State of Endpoint Risk

Windows XP is Coming to an End: How to Stay Secure Before You Migrate

Adobe Hacked Again: What Does It Mean for You?

Real World Defense Strategies for Targeted Endpoint Threats

APTs: The State of Server Side Risk and Steps to Minimize Risk

2014 Ultimate Buyers Guide to Endpoint Security Solutions

Data Protection Rules are Changing: What Can You Do to Prepare?

Java Insecurity: How to Deal with the Constant Vulnerabilities

BYOD & Mobile Security: How to Respond to the Security Risks

3 Executive Strategies to Reduce Your IT Risk

The Evolution of Advanced Persistent Threats_The Current Risks and Mitigation...

Recently uploaded

ODC, Data Fabric and Architecture User Group

CatarinaPereira64715

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

FIDO Alliance

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

Inflectra

In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring. Learn about: • The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks. • Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective. • Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification. • Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process. Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

Tobias Schneck

As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other? Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.

From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...

Product School

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

Product School

How world-class product teams are winning in the AI era by CEO and Founder, P...

Product School

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

Paul Groth

JMeter webinar - integration with InfluxDB and Grafana

RTTS

Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application. In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics. Length: 30 minutes Session Overview ------------------------------------------- During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana: - What out-of-the-box solutions are available for real-time monitoring JMeter tests? - What are the benefits of integrating InfluxDB and Grafana into the load testing stack? - Which features are provided by Grafana? - Demonstration of InfluxDB and Grafana using a practice web application To view the webinar recording, go to: https://www.rttsweb.com/jmeter-integration-webinar

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Jeffrey Haguewood

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams. Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

Knowledge engineering: from people to machines and back

Elena Simperl

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

Ramesh Iyer

In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

Leading Change strategies and insights for effective change management pdf 1.pdf

OnBoard

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

Designing Great Products: The Power of Design and Leadership by Chief Designe...

Product School

Recently uploaded (20)

ODC, Data Fabric and Architecture User Group

UiPath Test Automation using UiPath Test Suite series, part 3

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

How world-class product teams are winning in the AI era by CEO and Founder, P...

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

JMeter webinar - integration with InfluxDB and Grafana

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

Knowledge engineering: from people to machines and back

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

GraphRAG is All You need? LLM & Knowledge Graph

The Art of the Pitch: WordPress Relationships and Sales

Leading Change strategies and insights for effective change management pdf 1.pdf

Essentials of Automations: Optimizing FME Workflows with Parameters

Designing Great Products: The Power of Design and Leadership by Chief Designe...

Paul Henry’s 2011 Malware Trends

1. Paul Henry’s 2011 Malware Trends

2. Today’s Speaker Paul Henry Security & Forensics Analyst MCP+I, MCSE, CCSA, CCSE, CFSA, CFSO, CISSP,-ISSAP, CISM, CISA, CIFI, CCE SANS Institute Instructor

3. Today’s Agenda Shift in IT Risk and Threat Landscape 2011 Malware Trends Practical Steps to Prevent Malware Q&A

5. The Shifting IT Risk and Threat Landscape… and the Impact to Your Information

7. Web Applications are the Leading Attack Path The applications we use today for productivity Collaborative / Browser-based / Open Source Social Communities, Gadgets, Blogging and Widgets open up our networks to increasing risk everyday. Source: Verizon, 2010 Data Breach Investigations Report

9. 2011 Malware Trends

10.

11.

12. Click Jacking On Facebook

13. Spear Phishing On Facebook

14. Sniffing Passwords On Facebook

15. Be Sure to Change to HTTPS Account>Account Settings>Account Security and select the secure browsing / HTTPS checkbox and your FB visit including your login will be encrypted

16. Trend 2: Better Tools For The Bad Guys

17. Trend 3: Traditional Defenses are Not Keeping Up

18.

19.

20. Why Question Big Money In Fake AV? Over 500,000 Unique Fake AV Binaries in the last Q of 2010

21. Trend 5: Stuxnet – A Game Changer

22. It Is Not Over Yet

23.

24. Practical Steps to Prevent Malware

25.

26.

27.

28. Manage the Removable Devices in Your Environment *Worldwide State of The Endpoint Report 2009 Without Enforcement, Your Policy has No Teeth!

29.

30. Q&A

31.

Editor's Notes

Web application vulnerabilities continue to be the attack vector of choice The web continues to be a common path of infection. Among web-based malware, we distinguish auto-executed “drive-by downloads” from those involving user interaction. Many of the latter incorporate a social engineering aspect (“click to clean your system”). The web installation vector is more opportunistic in nature than the “installed by attacker” variety that usually targets a pre-selected victim. Once the system is infected, the malware alerts an external agent who will then initiate further attacks. The web is a popular vector for the simple reason of that’s where the users are. Overly-trusting browsers and users operating with administrative privileges only add to this popularity. While not extremely common, we did observe several cases in which malware was coded directly into an existing program or script. This, of course, requires access to the system but also knowledge of how the code works. Not surprisingly, these often involve malicious insiders who developed the code or administer the system on which it runs. However, a few very interesting cases of this type were committed by outsiders. One of these involved an external agent that had access to the system for over six months. During this time, he studied the input/output process and developed a custom script to siphon data when new accounts were created.
Why am I picking on Facebook? More than 500 million people are on it. Search any company name Find an employee Send them a message leading them to a malicious site Compromise their PC Surf their VPN in to the company network
Vulnerabilities affecting a typical end-user PC from 2007-2009 almost doubled from 220 to 420 and its expected to double again in 2010 (Secunia Half Year Report 2010) A PC with 50 programs installed had 3.5 times more vulnerabilities in the 24 third party programs installed than in the 26 Microsoft programs installed. It is expected that this ratio will increase to 4.4 in 2010. ( Secunia Half Year Report 2010) Discover: Gain complete visibility of all IT assets, both managed and unmanaged. Assess: Perform a deep analysis and thorough OS, application and security configuration vulnerability assessments. Prioritize: Focus on your most critical security risks first. Remediate: Automatically deploy patches to an entire network per defined policy to support all OS’s and applications. Report: Provide operational and management reports that consolidate discovery, assessment and remediation information on a single management console.

Paul Henry’s 2011 Malware Trends

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Paul Henry’s 2011 Malware Trends

Similar to Paul Henry’s 2011 Malware Trends (20)

More from Lumension

More from Lumension (20)

Recently uploaded

Recently uploaded (20)

Paul Henry’s 2011 Malware Trends

Editor's Notes