Upload File

recent developments in cyber€¦ · secops north america 2016 recent developments in cyber james...

  • Home
  • Documents
  • Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed
9
SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed in today’s presenta=on are my own, and do not represent those of RBC Financial Group and its subsidiaries.

Upload: others

Post on 29-Sep-2020

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

RecentDevelopmentsinCyberJamesP.O’SheaIIIRBCCapitalMarkets

DISCLAIMER:Theviewsandopinionsexpressedintoday’spresenta=onaremyown,anddonotrepresentthoseofRBCFinancialGroupandits

subsidiaries.

Page 2: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

CyberEvolvesfrom1990stoPresent

GenericAFacks

•  RandomTargets•  LowVolume,‘nuisance’value• Moderate/highdifficultytobuildanduseaFacktools

•  Limitedskillpool•  Isolatedtoindividualcomputersorsmallworkgroups

•  RandomlyaFackwhatthevirusdecidestoaFack

•  Return:onlynotorietytoaFacker

BroadlyTargetedAFacks

•  Generalizedtargets•  HighVolume,LowValue•  Improvingskillpool•  Commercialspamcampaigns•  DenialofService•  Generalizedphishing

•  Hitandrun•  AFackthe(hoped-for)holderofatradeablecommodity

•  Return:propertyofthevicYm’swhichtheaFackercanre-sell,one-Yme,withshortlifespananddecreasingvalueoverYme(password;creditcard)

PersonalizedAFacks

•  Specific,individual,targets•  LowVolume,HighValue(USD1bn?)• MaturesupplychainforcrimewareandassociatedecosystemforeaseofaFack•  SpearPhishing•  Customizedexploitcode•  AdvancedPersistentThreats

•  Getinandstayin•  AFackaspecificbusinessprocess•  Return:abilitytoconYnuallyobserve&extractvaluedirectlyfrom/asthevicYm

Page 3: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

Howdoesabreachoccur?Moststartwithanemail…

Page 4: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

BreachesOccurFasterThanDetecYon

AFackersaregebngfasteratbreaching,andaredoingsomorerapidlythandefendersaregebngfasteratdetecYng

Page 5: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

1/3ofRecipientsWillOpenaPhishing(Test)Email;>50%of‘Openers’WillClickTheMaliciousLinkWithin3Hours

1min40sec.MedianYmeforthe1strecipientofaphishingcampaigntoopenthebademail

3min45sec.

MedianYmeunYlthemaliciousaFachmentisclickedonbyanyrecipientfromthestartofaphishingcampaign

Page 6: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

MostVicYmsDoNotKnowThey’reBreached

LawEnforcementandotherThirdPartyNoYficaYonstoVicYmarethemostcommonmethodsofdiscoveringabreach

FrauddetecYonandotherinternalcontrolshavebeenrapidlydecliningasmeansofdetecYngbreach

Page 7: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

AnOunceofPrevenYon:99%+OfBreachesExploitVulnerabiliYesThatAreMoreThan1YearOld

Page 8: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

WhatCanYouDo?

•  Inventoryyourdataandprocesses.•  Knowwhatismostimportanttoyourfirm.

•  Classifyyourdata.•  Whichofthoseimportantitemscomesfirst?

•  Haveaplan;assumebreach.•  Howwillyouoperatealerabreachoccurs?

•  Youwill‘fightlikeyoutrain.’•  Exerciseyourplansregularly.

•  Shareinforma=onandexper=sewithinyourindustryandgovernmentregularly•  ParYcipateininformaYonsharingorganizaYonslikeFS-ISACandFBI’sInfraGard•  BuildtherelaYonshipsyouwillneedbeforeyouneedthem

Page 9: Recent Developments in Cyber€¦ · SecOps North America 2016 Recent Developments in Cyber James P. O’Shea III RBC Capital Markets DISCLAIMER: The views and opinions expressed

SecOpsNorthAmerica2016

FurtherReading

•  The2016VerizonDBIRdatain4-minuteformforFinancialServiceshFp://www.verizonenterprise.com/resources/reports/rp_2016-DBIR-Financial-Data-Security_en_xg.pdf•  The2016fullVerizonDataBreachInvesYgaYonsReporthFp://www.verizonenterprise.com/verizon-insights-lab/dbir/2016/• DataBreachDigest–Briefcasestudiesofwhoandhow.hFp://www.verizonenterprise.com/resources/reports/rp_data-breach-digest_xg_en.pdf•  20CriYcalSecurityControls–CenterforInternetSecurityhFps://www.cisecurity.org/criYcal-controls.cfm


Recent developments in_text_steganography

Recent Audit Developments

Recent developments in Argentina's agricultural export ... · Recent developments in Argentina's agricultural ... from its peak of around 18 per cent in ... Recent developments in

Domestic Refrigerators-recent Developments

RECENT COMMUNIST LOGISTICAL DEVELOPMENTS IN …Title: RECENT COMMUNIST LOGISTICAL DEVELOPMENTS IN SOUTHERN LAOS : Subject: RECENT COMMUNIST LOGISTICAL DEVELOPMENTS IN SOUTHERN …

Recent Developments - Dunsmuir.pdf

Mandatory and Guideline Sentencing: Recent Developments by … · Mandatory and Guideline Sentencing: Recent Developments ... Mandatory and Guideline Sentencing: Recent Developments

Recent Developments For Sustainable Dairy MSME Egypt · Recent Developments For Sustainable Dairy MSME Egypt ... Recent Developments For Sustainable Dairy MSMEs ... Total milk production

GDML - recent developments

Recent developments

RECENT DEVELOPMENTS VOLUNTARY ADMINISTRATIONS Creative ...bfsla.org/wp-content/uploads/papers/1995/Recent Developments - Voluntary... · RECENT DEVELOPMENTS - VOLUNTARY ADMINISTRATIONS

RECENT DEVELOPMENTS IN INTERNATIONAL COMMODITY …...Title: RECENT DEVELOPMENTS IN INTERNATIONAL COMMODITY AGREEMENTS : Subject: RECENT DEVELOPMENTS IN INTERNATIONAL COMMODITY AGREEMENTS

Philippines Recent Macroeconomic Developments … Recent Macroeconomic Developments and Reform Efforts ... The Labor Market, ... RECENT MACROECONOMIC DEVELOPMENTS AND REFORM EFFORTS

RECENT DEVELOPMENTS IN THE MERCHANT SHIPBUILDING … · Title: RECENT DEVELOPMENTS IN THE MERCHANT SHIPBUILDING INDUSTRY IN POLAND : Subject: RECENT DEVELOPMENTS IN THE MERCHANT SHIPBUILDING

Recent Developments in Lca

RECENT DEVELOPMENTS IN HPLC AND UHPLCfiles.alfresco.mjh.group/alfresco_images/pharma/2019/01/... · 2019. 1. 15. · HPLC and UHPLC Recent Developments in 4 RECENT DEVELOPMENTS IN

ADJUDICATION: RECENT DEVELOPMENTS

RECENT LEGAL DEVELOPMENTS

RECENT DEVELOPMENTS IN RADIOSS

Recent Legislative and Judicial Developments in ... · Recent Legislative and Judicial Developments in Continental Europe. ... Recent Legislative and Judicial Developments in Continental

Recent Developments in Regional Economic Analysisregion.snu.ac.kr/bk/achievement/data/BK_08-05.pdf · Recent Developments in Regional Economic Analysis ... Recent Developments in

Some Recent Developments in Statistical Theory … Recent Developments in Statistical Theory and Applications Selected Proceedings of the International Conference on Recent Developments

Survey of recent developments

Recent PROOF developments

Recent developments and outlook

RECENT DEVELOPMENTS IN PENNSYLVANIA MEDICAL MALPRACTICE … · recent developments in pennsylvania medical malpractice law january 3, ... recent developments in pennsylvania medical

Recent Developments In Nanovaccine

RECENT DEVELOPMENTS IN FEDERAL INCOME …dallasbar.org/sites/default/files/McGovern - Recent Tax... · RECENT DEVELOPMENTS IN FEDERAL INCOME TAXATION “Recent developments are just

TrEnds and rEcEnT dEvElopmEnTs contents Financial ... · Financial Education in Europe TrEnds and rEcEnT dEvElopmEnTs Financial Education in Europe TrEnds and rEcEnT dEvElopmEnTs

Tobacco Industry: Recent Developments

Cybersecurity and the Law · 2016. 2. 29. · Learning Objectives •Explain the possible legal ramifications of a cyber-attack •Review recent developments in Cyber Security Law

IAIS Recent Developments

Recent Developments in MIS

Recent Developments Fertilizer Production

GRETINA : Recent Developments