2012, 2013, 2014, IT security, ITSEC, infosec, Latvia, Lithuania, Estonia, Compliance, data, protection, network, governance, identity, cloud, virtualization, antivirus, firewall, device control, application control, SIEM, security event and information management, log, risk, encryption, IPS, IDS, DdoS, DOS, IBM, Forescout, Lumension, McAfee, Symantec, Sophos, Q1 Labs, Radware, WAF, vulnerability, hacker, Avecto, Balabit, Checkpoint, Varonis, Guardium, Appscan, DLP, data leak protection, Mobile, MDM, MAM, MobileIron, Centrify, Cyberoam, HP, PCI DSS, Cobit, ITIL, SOX, BASEL, anomaly detection, prevention, cert, enisa, observeIT, microsoft, oracle, samsung, accelliion, ipoque, DPA, ExtremeNetworks, Cadence, Opticom, Datakom, VARAM, The Baltic States, Baltics, IBM, Security intelligence, Qradar, Guardium, MioSoft, BeyondTrust, Retina, Critical infrastructure, ISACA

1. Data protection in
digital era
Andris Soroka
7th of April, 2014
Riga, Latvia

2. The Saga Begins – Scared vs. Informed

3. About speaker

4. “Data Security Solutions” business card
Specialization – IT Security
IT Security services (consulting,
audit, pen-testing, market analysis,
system testing and integration,
training and technical support)
Solutions and experience portfolio
with more than 20 different
technologies – cyber-security global
market leaders from more than 10
countries
Trusted services provider for
banks, insurance companies,
government and private companies
(critical infrastructure etc.)

5. Role of DSS in Cyber-security
Development in Baltics
Cyber-Security Awareness Raising
Technology and knowledge transfer
Most Innovative Portfolio
Trusted Advisor to its Customers

6. Cybersecurity Awareness Raising
Own organized conference “DSS ITSEC”
5th annual event this year
More than 400 visitors + more than 250 online
live streaming watchers from LV, EE, LT
4 parallel sessions with more than 40
international speakers, including Microsoft, Oracle,
Symantec, IBM, Samsung and many more –
everything free of charge
Participation in other events & sponsorship
CERT & ISACA conferences & events
RIGA COMM, HeadLight, IBM Pulse Las vegas
Roadshows and events in Latvia / Lithuania /
Estonia (f.i. Vilnius Innovation Forum, Devcon,
ITSEC HeadLight, SFK, business associations)
Participation in cyber security discussions, strategy
preparations, seminaries, publications etc.

7. Innovations – technology & knowledge transfer
Innovative Technology Transfer
Number of unique projects done with
different technology global leadership
vendors
Knowledge transfer (own employees,
customers – both from private & public,
other IT companies in LV, EE, LT)
Specialization areas include:
Endpoint Security
Network Security
Security Management
Application Security
Mobile Security
Data Security
Cyber-security
Security Intelligence

8. Some just basic ideas

11. AGENDA – IT Security basics in ~ 40 mins
Introduction of DSS and speaker
Prologue: Digital World 2014
The Saga begins – Cyber Criminals
Introduction & business card
Business behind
Examples
The Story Continues – Targets of Cyber
Criminals
Individuals
Business Owners
Government
Value of Information Security for business
Risk management
Technology
Conclusion
Q&A (if time allows)

12. Prologue: The Digital World 2014 & future

13. Prologue: Some new technologies
3D Printers
Google Glasses (“glassh**es)
Cloud Computing
Big Data & Supercomputers
Mobile Payment & Virtual Money
Robotics and Intraday Deliveries
Internet of things
Augmented Reality
Extreme development of Aps
Digital prototyping
Gadgets (devices) & Mobility
Technology replaced jobs (automation)
Geo-location power
Biometrics
Health bands and mHealth
Electronic cars
Avegant Glymph and much, much
more

17. Prologue: Mobility & Gadgets
Multi-OS

18. Millions of mobile applications

19. Digital Agenda for European Union

20. Personal data concerns of EU digital agenda

21. The Sage Continues: Cybercriminals

22. Weakest link is always the most important
Source: IBM X-Force annual report 2013

23. True or fake? In fact this isn’t funny...

24. Best «success story» describing hackers..

25. No changes in that perspective

26. Privacy is gone?

27. Disaster in software world - NSA

28. Disaster in technology world - NSA
Governments write malware and
exploits (USA started, others follow..)
Cyber espionage
Sabotage
Cyber wars
Infecting own citizens
Surveillance
Known NSA “partners”
Microsoft (incl. Skype)
Apple
Adobe
Facebook
Google
Many, many others
Internet is changing!!!
USA thinks that internet is their
creation and foreign users should
think of USA as their masters…

29. Disaster in software world - NSA

30. Privacy is gone?

31. War on privacy is still on! At least in EU!
ICO fines Midlothian Council £140K
for data breaches
Monday 30 January 2012 09:58

32. Advertisement break

33. Bright future of the internet way ahead..
1995 – 2005
1st Decade of the
Commercial Internet
2005 – 2015
2nd Decade of the
Commercial InternetMotive
Script-kiddies or hackers
Insiders
Organized crime
Competitors, hacktivists
National Security
Infrastructure Attack
Espionage
Political Activism
Monetary Gain
Revenge
Curiosity

34. Many countries are in the game now…

35. Many countries are in the game now…

36. Many countries are in the game now…

37. Global statistics

38. Examples: Hackers searching tool

39. Mobility & Security...

40. Mobility and Security (cont.)
McAfee 2013 Q1 Threats Report
Federal Reserve Survey March 2013
Mobile Malware
Explodes
Mobile banking
adoption rising
End users fall victim
to mobile attacks

41. Some examples of incidents (DDoS)

42. Cyberwars going on!

43. Examples: Hackers searching tool

44. Examples: Hackers searching tool

45. Examples (continued)

46. Examples: Whistleblowers should be careful
Source: Juris Pūce, Analytica IT Security

47. Examples (continued)

48. Examples: Hacker is watching / listening

49. Google maps helped hacked incercept calls..

50. The Sage: Simplicity

51. Some examples of incidents

52. Hacking business services...
Current prices on the Russian underground market:
Hackingcorporatemailbox: $500
Winlockerransomware: $10-$20
Unintelligentexploitbundle: $25
Intelligentexploitbundle: $10-$3,000
Basiccrypter(forinsertingroguecodeintobenignfile): $10-$30
SOCKSbot(togetaroundfirewalls): $100
Hiringa DDoSattack: $30-$70/day,$1,200/month
Botnet: $200for2,000bots
DDoSBotnet: $700
ZeuSsourcecode: $200-$250
Windowsrootkit(forinstallingmaliciousdrivers): $292
HackingFacebookorTwitteraccount: $130
HackingGmailaccount: $162
Emailspam: $10per onemillionemails
Emailscam(usingcustomerdatabase): $50-$500per onemillionemails

53. Examples: Advanced Persistent Threat

54. Lets summarize The Saga told

55. The value of a hacked computer…
Source: Brian Crebs IT security blog

56. Why hackers might want to “contact” You?
Business
Commercial espionage (financial, business and personal data)
An attack can stop the business, services (competition)
You are spam target
Your home page could be damaged
They can control and monitor you
They can change data in systems
Home page cross-scripting
Private person
You have the infrastructure for tests of new viruses and robots
You have server where to store illegal stuff (programs, files etc.)
They can do criminal (or any) activities using your computer
WiFi – they can just borrow the internet
You have the information which could be sold in black market
“The results” of damage
Financial loss (costs, data, market, value)
Reputation (customer, partner, HR)
Development and competitiveness loss

57. Conclusion: The Saga will continue anyway

58. Conclusion: The Saga will continue anyway
For many companies security is like salt, people just
sprinkle it on top.

59. Smart ones act smart way – risk mgmt.

60. Think security first & Where are You here?
Organizations Need an Intelligent View of Their Security Posture
Proactive
AutomatedManual
Reactive
Optimized
Organizations use
predictive and
automated security
analytics to drive toward
security intelligence
Proficient
Security is layered
into the IT fabric and
business operations
Basic
Organizations
employ perimeter
protection, which
regulates access and
feeds manual reporting

61. New game, new rules..
Productivity
Security

62. Challenge for business ahead..
DROŠĪBAS PASĀKUMI
Costs Security costs
Optimum? Remaining part of risk
Security actions
Risks
New optimum?
Source: Māris Gabaliņš, The Art Of The Systems

63. Take-Away as conclusion
Security Maturity
Develop a Risk-aware Security Strategy
49% of C level executives have no measure
of the effectiveness of their security efforts
31% of IT professionals have no risk strategy
2012 Forrester Research Study, 2013 Global Reputational Risk & IT Study, IBM

64. Costs for business from cybercrime

65. Return of Investment

66. “DSS” is here for You! Just ask for…
Si vis pacem, para bellum. (Lat.)

67. Remedy against the poison

68. Some just basic ideas
Policy and real time control
Of devices and applications
Of people and IT stuff
Of data leak protection
Of internet usage
Of any access
Of employees training
Of….
Encryption of data..
Mobile phones
Voice calls and text messages
eMails
Computers and devices
Data bases
…

69. Some just basic ideas
Multifaceted strategy is required
Layers of controls (tech and non-tech)
Awareness / Prevention
Educate workforce (social engineering+)
Segmentation
What if intrusion happen? (modeling)
Critical assets definition & action plan
Roles, responsibilities, access rules
Risk analysis
Business continuity
Continuous real time monitoring,
identification and disruption
All data, all users, all systems
Anomaly detection and analysis
Intelligence

70. Prologue of prologue…

71. Think security first
www.dss.lv
andris@dss.lv
+371 29162784

72. Think security first