why they want your digital devices · verizon 2012 data breach investigations report . 1 to 10. 11...

Stephen Cobb, CISSP Security Evangelist Why THEY want your digital devices

Upload: others

Post on 06-Oct-2020

0 views

Category:

Documents

0 download

Report

Download

Embed Size (px):

TRANSCRIPT

Stephen Cobb, CISSP Security Evangelist

Why THEY want your digital devices

To own your network?

Page 3: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

36 ways to abuse hacked devices • Spam zombie • DDoS extortion zombie • Click fraud zombie • Anonymization proxy • CAPTCHA solving zombie

• eBay/PayPal fake auctions • Online gaming credentials • Website FTP credentials • Skype/VoIP credentials • Encryption certificates

• Fake antivirus • Ransomware • Email account ransom • Webcam image extortion

• Bank account data • Credit card data • Stock and 401K accounts • Wire transfer data

• Phishing site • Malware download site • Warez piracy server • Child porn server • Spam site

• Harvest email contacts • Harvest associated accounts • Access to corporate email • Webmail spam • Stranded abroad scams

• Facebook • Twitter • LinkedIn • Google+

• Online gaming characters • Online gaming goods/$$$ • PC game license keys • OS license key

Based on original work by Brian Krebs: krebsonsecurity.com

Web server

Botnet activity

Email attacks

Virtual goods

Reputation hijacking

Financial credentials

Hostage attacks

Account credentials

Page 4: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

IMPACT

ADVANTAGE

MONEY

CREDENTIALS

Verizon 2012 Data Breach Investigations Report

1 to 10

11 to 100

101 to 1,000

1,001 to 10,000

10,001 to 100,000

Over 100,000

0 100 200 300 400 500 600

720 breaches by size of organization (employees)

SMBs

Page 6: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

The SMB sweet spot for the cyber-criminally inclined

Assets worth looting

Level of protection

Big enterprise SMB “sweet spot” Consumers

Page 7: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

How do they get to your devices?

1. Malware involved in 69% of breaches 2. Hacking* used in 81% of breaches Breaches combining malware and hacking: 61%

Verizon 2012 Data Breach Investigations Report

*80% of hacking is passwords: default, missing, guessed, stolen, cracked

Tools of the trade

Page 9: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

Page 10: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

Thriving markets for credentials

Page 11: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

Hot markets for hacked devices

Page 12: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

All driven by proven business strategies

Page 13: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

So how do you defend your devices?

Two main attacks…. …and defenses

Scanning

Authentication

Malware

Hacking

Page 14: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

Scanning requires proper implementation

0% 20% 40%

Scan devices while connected

Scan devices prior to connection

Require AV on mobile devices

Measures in use at a sample of healthcare facilities

Ponemon Institute Third Annual Benchmark Study on Patient Privacy & Data Security

Page 15: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

Authentication requires more than passwords

Passwords exposed in 2012: 75,000,000 And those are just the ones we know about Need to add a second factor to authentication

Page 16: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

The defenses you need

SMART Scanning

STRONG Authentication

Malware

Hacking

Plus polices and training to implement effectively

Page 17: Why THEY want your digital devices · Verizon 2012 Data Breach Investigations Report . 1 to 10. 11 to 100. 101 to 1,000. 1,001 to 10,000. 10,001 to 100,000. Over 100,000. 0. 100

Stephen Cobb [email protected] WeLiveSecurity.com

Thank you!

Annual Report - New Britain Palm Oil Limited...range of Holdings Number of Holders 1 - 1,000 1,084 1,001 - 5,000 86 5,001 - 10,000 95 10,001 - 100,000 262 100,001 and over 87 Total

SECTION 1 CABINET SECRETARIAT - Government of Pakistanfinance.gov.pk/budget/pink_book_detail_ND.pdf · 011101 - A063 Entertainments & Gifts 100,000 100,000 100,000 011101 - A09 Physical

s3.amazonaws.como. c o o o o o z O O c 00. $1,001 - $15,000 $50,001 - $100,000 $250,001 $500,000 Over $1,000.000 * over Excepted Trust Dividends Interest None (or less than $201)

100,000 KP

2013 WORKFORCE & IMMIGRATION STUDY · 2018. 1. 11. · What were your gross sales or revenues for ... Less than $100,000 Less than $100,000 $100,000 - $250,000 $100,000 - $500,000

CMI columnist and author of 1,001 Ways to Reward Employees …€¦ · CMI columnist and author of 1,001 Ways to Reward Employees Bob Nelson has ideas for every age group. BY BOB

1,001 Days Of Bombril.062010letter

Driver Logs. Compliance with hours of service regulations Having a GVWR or GCWR of 10,001 pounds or more 1a

1,001 Free Urdu Novels ...Respected Urdu Lover, Greetings and Welcome, Our mission is to upload 1,001 Free Urdu Novels by 2010. You can help us by (1) Composing some pages of the upcoming

Statement of Economic Interests · FPPC Advice Email: [email protected] FPPC Toll-Free Helpline*. 866/275-3772 $2,000 - $10,000 $10,001 - $100,000 $100,001 - $1,000,000 Over $1,000,000

TEXTILES TO TRANSFORM - mehler-texnologies.com · Crack resistance DIN 53359 A No. of folding 100,000 T - 100,000 T - 100,000 T - 100,000 T - 100,000 T - no cracks no cracks no cracks

FY 2020 - 2024 Capital Improvement Program Electric System · 38 Electric Vehicle Charging Infrastructure (3225) 3,413,000 2,600,000 413,000 100,000 100,000 100,000 100,000 ... FY

Please type print in Ink. 29 15 4$? 8 (M~ME)4 · 2020-03-13 · $10,001 -$100,000 DOVER $100,000 o $10,001 -$100,000 0 OVER $100,000 o Guarantor, if appficable o Guarantor, if applicable

· PDF file(Describe) FAIR MARKET VALUE $2,000 - $10,000 C] $100,001 - NATURE OF INVESTMENT [2 $10,001 - $100,000 [2 Over ... NATURE OF INVESTMENT Corporate bond

Genomics and personalised medicine · •Tom – Deputy Chief Scientist & Director of Public Health, 100,000 Genomes Project •100,000 Genomes Project •Sequencing 100,000 genomes

SFC Investor Presentation - Bell Potter Nov-07 · Market Cap (@ $9/share) $127 million Top 20: 7.7 million Holder Spread: > 100,000 shares 13 10,001 – 100,000shares 122

EMERGENCY ASSESSMENT OF DEBRIS-FLOW HAZARDS FROM BASINS BURNED BY THE 2007 … · 2008. 1. 18. · 10,001 – 100,000. Introduction. The objective of this report is to present a preliminary

The $100,000 Pyramid

1,001 Facts You Learned and Forgot in High School available now at storeprime.com

1,001 GED - download.e-bookshelf.de › download › 0010 › 0987 › ... · 2 1,001 GED Test Practice Questions For Dummies About This Book The first half of this book contains

DSCSA Serialization End-to-End Proof of Concept Pilot · Branded 10,001 + J&J Memphis, TN Becky Hehnly Branded 10,001 + Mylan Charlotte, NC Mark Gutman Generic 10,001 + Pfizer Memphis,

Executive Branch Personnel Public Financial Disclosure ...Index...3.17 The Southern Company N/A $1,001 - $15,000 Dividends $201 - $1,000 3.18 IBM Common Stock N/A $1,001 - $15,000

20 I: O0 Please type or pdnt in ink. NAME OF FILER (LAST ... · (mndd~2012) descdbe)* CA ST Econ Recovery Oakland Calif SWR SER A $10,001- Bond $100,000 $10,001 o Bond $100,000 $100,001

1,001 Best Slow-Cooker Recipes: The Only Slow-Cooker - Ning

Lesro Industries, Inc. 800.275lesro.com/FABRIC_PDF/HCV3456789.pdf · Technical Information Healthcare Vinyl Selections Abrasion (D.R.) 100,000 100,000 200,000 100.000 100,000 400,000

Acute Compartment Syndrome Marc Hirner. Demographics Incidence: Incidence: Men 7.3/100,000 Men 7.3/100,000 Women0.7/100,000 Women0.7/100,000 69% due to

◦ 1,001 10 th and 11 th grade high school students (53% girls)

Development Application Form new · 2020. 7. 2. · 1.2C Development cost over $10,001 - $100,000 $116.00 ... Referral Fee to Government Agencies . 1.5* Referral to Government agencies

1,001 Essential Turkish Idioms - Learn Turkish | Online

Mission 1,001 Novels · Respected Urdu Lover, Greetings and Welcome, Our mission is to upload 1,001 Free Urdu Novels by 2010. You can help us by (1) Composing some pages of the upcoming

Fungi 100,000 species

· the financial statements and independent auditor's report for the period ended 30 June ... Analysis of Shareholdings 6 8 9 10 12 13 1,001 5,001 10,001 50,001 100,001

Pilot 2006 Environmental Performance Index (EPI)...10,001 8,001 6,001 4,001 2,001 1 South Asia Target Nepal Bangladesh Sri Lanka India Pakistan 10,001 8,001 6,001 4,001 2,001 1 East

~eqUOia - Sequoia Healthcare District Meals on Wheels $100,000 $100,000 $100,000 Volunteers, Inc. 31. Planned Parenthood Redwood City $100,000 $75,000 $75,000 Mar Monte Health Center

100,000 Genomes Project