Upload File

adapting to the age of anonymous

60
©2011 Akamai Adapting to the Age of Anonymous Joshua Corman Director of Security Intelligence @joshcorman http://cognitivedissidents.wordpress.com / SOURCE Barcelona - November 17, 2011

Upload: source-conference

Post on 17-Jan-2015

1.297 views

Category:

Technology


0 download

Report

Tags:

DESCRIPTION

SOURCE Barcelona 2011 - Joshua Corman

TRANSCRIPT

Page 1: Adapting To The Age Of Anonymous

©2011 Akamai

Adapting to the Age of Anonymous

Joshua Corman

Director of Security Intelligence

@joshcorman

http://cognitivedissidents.wordpress.com/

SOURCE Barcelona - November 17, 2011

http://cognitivedissidents.wordpress.com/
http://cognitivedissidents.wordpress.com/
Page 2: Adapting To The Age Of Anonymous

©2011 Akamai

About Joshua CormanDirector of Security Intelligence for Akamai Technologies•Former Research Director, Enterprise Security [The 451 Group]•Former Principal Security Strategist [IBM ISS]

Industry Experience•Expert Faculty: The Institute for Applied Network Security (IANS)•2009 NetworkWorld Top 10 Tech People to Know•Co-Founder of “Rugged Software” www.ruggedsoftware.org

Things I’ve been researching•Compliance vs Security•Disruptive Security for Disruptive Innovations•Chaotic Actors•Espionage•Security Metrics

2

http://www.networkworld.com/supp/2009/outlook/010509-tech-people-to-know.html
http://www.ruggedsoftware.org/
Page 3: Adapting To The Age Of Anonymous

©2011 Akamai

Agenda

• Understanding Anonymous in under 7 minutes

• Deconstructing Anonymous

• Adapting to Anonymous

• Building a Better Anonymous?

Page 4: Adapting To The Age Of Anonymous

©2011 Akamai

Understanding Anonymous:The Rise of the Chaotic Actor

Director of Security Intelligence

Akamai Technologies

2011 FlashTalks powered by PechaKucha

Joshua Corman@joshcorman

Page 5: Adapting To The Age Of Anonymous

©2011 Akamai5

Page 6: Adapting To The Age Of Anonymous

©2011 Akamai

Page 7: Adapting To The Age Of Anonymous

©2011 Akamai

Paradox Slide/Deliberate Disinformation

Page 8: Adapting To The Age Of Anonymous

©2011 Akamaihttp://www.csoonline.com/article/682511/the-rise-of-the-chaotic-actor-understanding-anonymous-and-ourselves

Page 9: Adapting To The Age Of Anonymous

©2011 Akamai9

Some men just want to see the world burn…

Page 10: Adapting To The Age Of Anonymous

©2011 Akamai

Lots & Lots of Anonymous Sects

10

Page 11: Adapting To The Age Of Anonymous

©2011 Akamai

Your Headline Here (in Title Caps)

11

Page 12: Adapting To The Age Of Anonymous

©2011 Akamai

You Choose Your Own Level of Involvement

12

Page 13: Adapting To The Age Of Anonymous

©2011 Akamai

Anonymous* Unmasked? [*Alleged]

Page 14: Adapting To The Age Of Anonymous

©2011 Akamai

You Choose Your Own Level of Involvement

14

Page 15: Adapting To The Age Of Anonymous

©2011 Akamai

You Choose Your Own Level of Involvement

15

Page 16: Adapting To The Age Of Anonymous

©2011 Akamai

Escalation?

16

Page 17: Adapting To The Age Of Anonymous

©2011 Akamai

Anomalous Anonymous?

17

Page 18: Adapting To The Age Of Anonymous

©2011 Akamai

False Flags: Adaptive Persistent Adversaries

“Anonymous is God’s gift to the Chinese” – CISO

Page 19: Adapting To The Age Of Anonymous

©2011 Akamai

Cyber-Neo-McCarthyism

I am not now…

…nor have I ever been…

…a member of Anonymous.

Page 20: Adapting To The Age Of Anonymous

©2011 Akamai

Building a Better Anonymous…

20

Page 21: Adapting To The Age Of Anonymous

©2011 Akamai

Building a Better Anonymous…

21

Page 22: Adapting To The Age Of Anonymous

©2011 Akamai

The easy answers Suggested Background

Page 23: Adapting To The Age Of Anonymous

©2011 Akamai

23

Joshua Corman@joshcorman

Page 24: Adapting To The Age Of Anonymous

©2011 Akamai

Agenda

• Understanding Anonymous in under 7 minutes

• Deconstructing Anonymous

• Adapting to Anonymous

• Building a Better Anonymous?

Page 25: Adapting To The Age Of Anonymous

©2011 Akamai

PANEL: Whoever Fights Monsters…

Page 26: Adapting To The Age Of Anonymous

©2011 Akamai

Page 27: Adapting To The Age Of Anonymous

©2011 Akamai

Page 28: Adapting To The Age Of Anonymous

©2011 Akamai

Page 29: Adapting To The Age Of Anonymous

©2011 Akamai

Page 30: Adapting To The Age Of Anonymous

©2011 Akamai

Operation Payback(Anonymous Takes Center Stage)

August-December 2010

Initial Targets

•MPAA

•RIAA

•Intellectual Property Offices

In December, switched to WikiLeaks “defense”

•Financial services: PayPal, Mastercard, Visa

•Public personas: Lieberman, Palin

•Others: Lawyers, security researchers

Stats:

•1k-3k attackers in IRC

•1500 copies of LOIC in Hivemind (# in IRC/2)

•1.5 Gbps peak attack traffic (# in IRC/2)

•750 Mbps sustained traffic (# in IRC/4)

Page 31: Adapting To The Age Of Anonymous

©2011 Akamai

Page 32: Adapting To The Age Of Anonymous

©2011 Akamai

Page 33: Adapting To The Age Of Anonymous

©2011 Akamai

Page 34: Adapting To The Age Of Anonymous

©2011 Akamai

Discussion

Page 35: Adapting To The Age Of Anonymous

©2011 Akamai

Page 36: Adapting To The Age Of Anonymous

©2011 Akamai

Page 37: Adapting To The Age Of Anonymous

©2011 Akamai

Page 38: Adapting To The Age Of Anonymous

©2011 Akamai

Page 39: Adapting To The Age Of Anonymous

©2011 Akamai

BRAND POLLUTION

http://cognitivedissidents.wordpress.com/2011/11/11/an-anonymous-ink-blot-rorschach/“An Anonymous Ink Blot Rorschach” What do you see in the Anonymous Ink Blot ?

http://cognitivedissidents.wordpress.com/2011/11/11/an-anonymous-ink-blot-rorschach/
http://cognitivedissidents.wordpress.com/2011/11/11/an-anonymous-ink-blot-rorschach/
Page 40: Adapting To The Age Of Anonymous

©2011 Akamai

BRAND POLLUTION

Page 41: Adapting To The Age Of Anonymous

©2011 Akamai

BRAND POLLUTION

Page 42: Adapting To The Age Of Anonymous

©2011 Akamai

False Cover: Criminal and State Actors

“Anonymous is God’s gift to the Chinese” – CISO

Page 43: Adapting To The Age Of Anonymous

©2011 Akamai

Page 44: Adapting To The Age Of Anonymous

©2011 Akamai

Agenda

• Understanding Anonymous in under 7 minutes

• Deconstructing Anonymous

• Adapting to Anonymous

• Building a Better Anonymous?

Page 45: Adapting To The Age Of Anonymous

©2011 Akamai

Page 46: Adapting To The Age Of Anonymous

©2011 Akamai

Page 47: Adapting To The Age Of Anonymous

©2011 Akamai

Page 48: Adapting To The Age Of Anonymous

©2011 Akamai

Page 49: Adapting To The Age Of Anonymous

©2011 Akamai

DDoS is Legion

74% of surveyed companies experienced one or more DDoS attacks in the past year, 31% of these attacks resulting in service disruption.1

1 Forrester Research

Page 50: Adapting To The Age Of Anonymous

©2011 Akamai

Some of my data

• Typical Attack Size: 3-10 Gbps

• Large Attack Size: 100-200 Gbps

• Attacks are originating from all geographies and are moving between geographies during the attack

2009 2010 20110

100

200

300

400

500

600

Num

ber

of

Att

ack

s

Page 51: Adapting To The Age Of Anonymous

©2011 Akamai

Agency – PROTECTED

U.S. Government Customer 1

U.S. Government Customer 2

U.S. Government Customer 3

U.S. Government Customer 4

U.S. Government Customer 5

U.S. Government Customer 6

New U.S. Government Customer

Peak Traffic

124 Gbps

32 Gbps

9 Gbps

9 Gbps

2 Gbps

1.9 Gbps

0.7 Gbps

Times Above Normal Traffic

598x

369x

39x

19x

9x

6x

SITE DOWN before Akamai

July 4th – 7th 2009 DDoS Attack400,000 Korean Bots Attack Key U.S. Government Web Sites

Page 52: Adapting To The Age Of Anonymous

©2011 Akamai

Agenda

• Understanding Anonymous in under 7 minutes

• Deconstructing Anonymous

• Adapting to Anonymous

• Building a Better Anonymous?

Page 53: Adapting To The Age Of Anonymous

©2011 Akamai

Agenda

Page 54: Adapting To The Age Of Anonymous

©2011 Akamai

Page 55: Adapting To The Age Of Anonymous

©2011 Akamai

Page 56: Adapting To The Age Of Anonymous

©2011 Akamai

Page 57: Adapting To The Age Of Anonymous

©2011 Akamai

Page 58: Adapting To The Age Of Anonymous

©2011 Akamai

Page 59: Adapting To The Age Of Anonymous

©2011 Akamai

Discussion

Page 60: Adapting To The Age Of Anonymous

©2011 Akamai

Thank You!

Joshua Corman

@joshcorman

http://cognitivedissidents.wordpress.com/

Barcelona, November 17, 2011

http://cognitivedissidents.wordpress.com/
http://cognitivedissidents.wordpress.com/

2006 Adapting Education to the Information Age - KERISenglish.keris.or.kr/whitepaper/WhitePaper_eng_2006.pdf · Globalization of e-Learning ... Adapting ICT in Higher Education

Anonymous Complaints

AnonRep: Towards Tracking-Resistant Anonymous Reputation · forded by fully anonymous, unlinkable messaging? Can we build an anonymous reputation system? In an anonymous reputation

Learning Chinese in Our Own Way-Adapting Second Language Education Based on Age and Ethnicity

Anonymous Affidavit

Anonymous Networks · Overview - What is an anonymous network ? - Motivations for anonymous networks - Examples of anonymous networks - Attacks on Anonymous network and solutions

Anonymous ist nicht Anonymous

Trustee Conference PM1: Adapting to the digital age: The role of trustees in leading change

Equity: Ageless in the Age of Statutes€¦ · Equity: Ageless in the Age of Statutes ... Peter Turner and the anonymous reviewer. ... some “constitutional” laws which Parliament

Adapting & Thriving in an Age of Digital Disruptionyour2.capgemini.com/siemens/files/2014/06/Vortrag-D... ·  · 2014-06-11Adapting & Thriving in an Age of Digital Disruption June

Anonymous Script

(anonymous)...(anonymous) ... 2020

Learning Chinese in Our Own Way-Adapting Second Language Education Based on Age and Ethnicity Jia Li MIT Academy, CA

Adapting your eye exam routine to the digital age handouts_files... · 2017-12-12 · Adapting your eye exam routine to the digital age Prof Bruce Evans ... Full handout of slides

Local Alcoholics Anonymous and Narcotics Anonymous Meeting

AML AND AGE VERIFICATION IN ONLINE GAMINGmassgaming.com/.../AML-and-Age-Verification-in-Online-Gaming.pdf · AML AND AGE VERIFICATION IN ONLINE GAMING ... laws Gaming sites ... Anonymous

County Report Bell County Texas - Institute for Health ... · Male 23.4 24.5 24.5 1418 -3.6 prevalence (%), age-standardized, 2012 ... County_Report_Bell_County_Texas Author (anonymous)

Adapting news media for the digital age

Adapting Clinical Guidelines for the Digital Age: A Multi ... · 15/05/2018 · Adapting Clinical Guidelines for the Digital Age: ... heavily in local pilot implementation. Involvement

Understanding millennials requires adapting the … · Understanding millennials requires adapting the research ... –Daniel Kahneman. ... Understanding millennials requires adapting

Pedagogical Content Knowledge for Teaching …...Pedagogical Content Knowledge for Teaching Inclusive Design Anonymous ICER submission Anonymous anonymous@anonymous ABSTRACT Inclusive

MODERN CUSTOMER JOURNEY ADAPTING TO THE DIGITAL AGE 1 AXIOM ADVISING

Adapting Manufacturing for the Digital Age

Anonymous v2

Twitterers anonymous

Anonymous women? Gamblers Anonymous and gender

Author’s Response to Anonymous Referee 1 Anonymous Referee #1€¦ · Author’s Response to Anonymous Referee 1 Anonymous Referee #1 Received and published: 9 February 2015 This

What do you remember about the following topics? Hunting and gathering Adapting Extinction The end of the last Ice Age

Avtaleforvalter sender og innhenter svar · Vaktmestertjenester Vaktmestertjenester Fullføringstidspunkt E-postadresse anonymous anonymous anonymous anonymous anonymous anonymous

How Anonymous is “Anonymous”? - Mayer Brown Anonymous is “Anonymous”? ... potential plaintiffs and defendants can take a number of steps to improve ... noncompliance with the

Anonymous Network

Anonymous, El-manual Super Secreto - 2011 Anonymous

Nicotine anonymous

Anonymous email

3 BENEFITS OF A SELF-ADAPTING DATA WAREHOUSE...exciting new era: the age of the self-adapting data warehouse. In the pages that follow, we’ll explain how data warehousing evolved,