SlideShare a Scribd company logo

標的型(サイバースパイ)攻撃とソーシャルエンジニアリング, KPMGセミナー

Gohsuke Takama
Gohsuke Takama
TechnologyBusiness
1 of 62
Download to read offline
Gohsuke Takama / , Meta Associates, 2012 2 http://www.slideshare.net/gohsuket
about… ✴ Gohsuke Takama / , Meta Associates http://www.meta-associates.com/ ✴ , IT , ✴ , , ✴ : Black Hat Japan, PacSec ✴ ( , , ) ✴ ( ) ✴ : DHS, NIST, NERC, EPRI, Stanford Research, Sandia , Bell , ISAC Council, John Arquilla(NPS ), Richard Clarke, John Tritak, Paul Kurtz (Good Harbor Consulting) ✴ : , , ✴ : Patch Advisor( ), SecWest (PacSec ) ✴ IT , ( ) ✴ : CodeGate2008 ( ), (2002, 2010), ✴ : http://blog.f-secure.jp/ http://scan.netsecurity.ne.jp/ ✴ Privacy International, London, UK http://www.privacyinternational.org/ ✴ , Gohsuke Takama
Gohsuke Takama
http://www.ipa.go.jp/security/fy23/reports/measures/documents/report20120120.pdf Gohsuke Takama
http://www.ipa.go.jp/security/vuln/newattack.html Gohsuke Takama
11 x 10 = 9 8 7 R 6 5 4 3 2 1 A B C D E F G H I J K Gohsuke Takama
A Attacks Gohsuke Takama
? "Spear Phishing" "Advanced Persistent Threat" APT "Targeted Cyber Espionage" "Adaptive Persistent Attack" APA "Top APT Research of 2011 (That You Probably Haven’t Heard About)" Gohsuke Takama http://blog.trendmicro.com/top-apt-research-of-2011-that-you-probably-havent-heard-about/
? http://paulsparrows.wordpress.com/2011-cyber-attacks-timeline-master-index/ Gohsuke Takama http://paulsparrows.wordpress.com/2012-cyber-attacks-timeline-master-index/
? • , IHI... (2011) • , ... (2011, ID, ?) • JAXA (2011, NASA ?) • ShadyRAT (2011, 14 OperationAurora (2010, Google 70 ), 34 ), Night Dragon (2010, ), GhostNet (2009, 103 ) • RSA / Lockheed Martin (2011, SecurID , Lockheed ) • DigiNotar (2011, Google SSL ) Gohsuke Takama • Stuxnet (2010, )
? RSA SecurID Gohsuke Takama
? Diginotar 2011 9 19 20 Gohsuke Takama
? = (Cyber Espionage) "Targeted Cyber Espionage" "Advanced Persistent Threat" APT "Adaptive Persistent Attack" APA Gohsuke Takama
? / 1 , Gohsuke Takama
? ✴ APT, • = • • : , , • → → → ✴ ( ) • = • Gohsuke Takama • →
? EU $1 Trillion/ = 80 (McAfee 2009 ) EU $3.4 Billion = 2720 (2011,VISA CyberSource ) ¥57.4 ¥19 (2011) https://www.europol.europa.eu/sites/default/files/publications/iocta.pdf Gohsuke Takama http://www.net-security.org/secworld.php?id=12273
? • : OSI Gohsuke Takama
? 7 Psychological , Human Factor 6 Custom (Habit) , 5 Operation 4 Content Intangibles 3 OS/Application 2 Hardware Tangibles 1 Physical Gohsuke Takama
? , APT, Psychological , Phishing ? , ID / , , , Custom XSS, XSRF, CSIRT, PKI, ID, SSL DoS, Spam, , CSIRT , , Operation , , , , , , Content Spam, , IDS OS/ DoS, , , IDS, Application 0day, rootkit, IPS, , OS/ , , Hardware , , , , , , , Physical , Gohsuke Takama
? ✴ (Firewall) •( + ) ✴ •= ( ) ✴ 100% > • ( ?) ✴ PKI = DigiNotar ✴ = Gohsuke Takama •( )
S Social Engineering Gohsuke Takama
: : syoutenn_aguri@aol.jp : ( ) : Photo.zip : : 3 , 7 ( 1 ( ), 10 Gohsuke Takama
Gohsuke Takama
Gohsuke Takama
Gohsuke Takama
90% Gohsuke Takama
10% Gohsuke Takama
90% or 10% Gohsuke Takama
: A28 90% 3:20 : .xls Gohsuke Takama
: A28 10% 3:20 : .xls Gohsuke Takama
Visual Cognition Lab 1999 http://www.youtube.com/watch?v=vJG698U2Mvo Gohsuke Takama
http://ja.wikipedia.org/wiki/ Gohsuke Takama
http://ja.wikipedia.org/wiki/ Gohsuke Takama
http://ja.wikipedia.org/wiki/ Gohsuke Takama
http://ja.wikipedia.org/wiki/ Gohsuke Takama
http://ja.wikipedia.org/wiki/ Gohsuke Takama
( : Turing test) 1950 Computing Machinery and Intelligence [1] http://ja.wikipedia.org/wiki/ Gohsuke Takama
W Who, Why, What Gohsuke Takama
? ? Law, Market, Norms, Architecture Gohsuke Takama
? ? Gohsuke Takama
? ? Gohsuke Takama
? ? Political Power Money Ideology - - - - Gohsuke Takama Technical Control
? ? Political Power Money Ideology : - - - - Gohsuke Takama Technical Control
? ? Political Power APT Money Ideology Lulz : - - - - Gohsuke Takama Technical Control
HUMINT, COMINT→CYBINT? Gohsuke Takama
HUMINT, COMINT→CYBINT? HUMINT: Human Intelligence COMINT: Communications Intelligence (Signals Intelligence) CYBINT*: Cyber Intelligence (Network Intelligence) http://en.wikipedia.org/wiki/Network_intelligence Gohsuke Takama
HUMINT, COMINT→CYBINT? , , , , , • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • , • • • • • • • • • • • • • • • • • Gohsuke Takama
HUMINT, COMINT→CYBINT? , , , , , • NW • NW • •Spam ( ) • • • •IP • • • • • • • • , F/W • •Fax, • USB • • • • • CD-ROM • • • • • • • • • • • • • • • • • • LAN • • • •Fax • • • • • • • • • • • • • • • • • • • • • • • • • • • • • , • • • • Gohsuke Takama
"Stuxnet" HUMINT, CYBINT "Nuclear scientist killed in Tehran was Iran's top Stuxnet expert" Gohsuke Takama http://www.debka.com/article/20406/
"Stuxnet" HUMINT, CYBINT Gohsuke Takama
A x S xW = what to do? Gohsuke Takama
? , , , , , • / • • • • • VPN, • • - • • • / / • • • • • • • • • • •MAC • PR • / • Gohsuke Takama
✴ , ✴ ✴ / ✴ • • -DMZ • - Gohsuke Takama
• • • • • Twitter, Facebook, IRC, Weibo, RenRen • : https://www.recordedfuture.com/ "RQ-170" Jul 30 2006--Mar 14 2012 https://www.recordedfuture.com/rf/s/2z0Cm4 Gohsuke Takama
✴ • = • • = • • • = • Gohsuke Takama •
✴ ) ( ✴ • • • • / Gohsuke Takama
✴ • SSL / TLS ✴ (PGP ) ✴ (Chat, IM, SMS, ) ✴ • Chat, IM, SMS ,VoIP Gohsuke Takama •
Gohsuke Takama
MAC Gohsuke Takama
/ MAC ✴ LAN • LAN • LAN • F/W Gohsuke Takama
✴ PR • • / • Soft Power = 1990 ( Joseph Nye Hard Power ) • http://ja.wikipedia.org/wiki/ • Gohsuke Takama
Gohsuke Takama

Recommended

BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...
BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...
BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...
Gohsuke Takama
 
A perspective for counter strategy against cybercrime and cyber espionage
A perspective for counter strategy against cybercrime and cyber espionageA perspective for counter strategy against cybercrime and cyber espionage
A perspective for counter strategy against cybercrime and cyber espionage
Gohsuke Takama
 
データプライバシーでのEUとアメリカ...そして日本
データプライバシーでのEUとアメリカ...そして日本データプライバシーでのEUとアメリカ...そして日本
データプライバシーでのEUとアメリカ...そして日本
Gohsuke Takama
 
パーソナルデータ保護の課題と国際情勢2013
パーソナルデータ保護の課題と国際情勢2013パーソナルデータ保護の課題と国際情勢2013
パーソナルデータ保護の課題と国際情勢2013
Gohsuke Takama
 
サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011
サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011
サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011
Gohsuke Takama
 
Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015
Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015
Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015
Gohsuke Takama
 
Hackers and Hacking a brief overview 5-26-2016
Hackers and Hacking a brief overview 5-26-2016Hackers and Hacking a brief overview 5-26-2016
Hackers and Hacking a brief overview 5-26-2016
Gohsuke Takama
 
パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本
パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本
パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本
Gohsuke Takama
 

Recommended

BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...
BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...
BCL WhiteSalon "Convergence of Bio X Silicon X Robotics may bring us to the C...
Gohsuke Takama
 
A perspective for counter strategy against cybercrime and cyber espionage
A perspective for counter strategy against cybercrime and cyber espionageA perspective for counter strategy against cybercrime and cyber espionage
A perspective for counter strategy against cybercrime and cyber espionage
Gohsuke Takama
 
データプライバシーでのEUとアメリカ...そして日本
データプライバシーでのEUとアメリカ...そして日本データプライバシーでのEUとアメリカ...そして日本
データプライバシーでのEUとアメリカ...そして日本
Gohsuke Takama
 
パーソナルデータ保護の課題と国際情勢2013
パーソナルデータ保護の課題と国際情勢2013パーソナルデータ保護の課題と国際情勢2013
パーソナルデータ保護の課題と国際情勢2013
Gohsuke Takama
 
サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011
サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011
サイバー犯罪・サイバースパイ活動とアイデンティティ_11-04-2011
Gohsuke Takama
 
Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015
Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015
Privacy is Personal Security, Digital Privacy is Digital Self Defense 11-18-2015
Gohsuke Takama
 
Hackers and Hacking a brief overview 5-26-2016
Hackers and Hacking a brief overview 5-26-2016Hackers and Hacking a brief overview 5-26-2016
Hackers and Hacking a brief overview 5-26-2016
Gohsuke Takama
 
パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本
パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本
パーソナルデータ保護の課題と国際情勢 2013 - 2014, EU, USA, と日本
Gohsuke Takama
 
Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Gohsuke Takama
 
TGC Planning Sheet 1.30
TGC Planning Sheet 1.30TGC Planning Sheet 1.30
TGC Planning Sheet 1.30
Gohsuke Takama
 
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Gohsuke Takama
 
Privacy in Digital Society デジタル社会におけるプライバシー
Privacy in Digital Society デジタル社会におけるプライバシーPrivacy in Digital Society デジタル社会におけるプライバシー
Privacy in Digital Society デジタル社会におけるプライバシー
Gohsuke Takama
 
Data Privacy: Anonymization & Re-Identification
Data Privacy: Anonymization & Re-IdentificationData Privacy: Anonymization & Re-Identification
Data Privacy: Anonymization & Re-Identification
Mike Nowakowski
 
EU-U.S. Privacy Shield: Should You Sign Up?
EU-U.S. Privacy Shield: Should You Sign Up?EU-U.S. Privacy Shield: Should You Sign Up?
EU-U.S. Privacy Shield: Should You Sign Up?
Winston & Strawn LLP
 
ARX - a comprehensive tool for anonymizing / de-identifying biomedical data
ARX - a comprehensive tool for anonymizing / de-identifying biomedical dataARX - a comprehensive tool for anonymizing / de-identifying biomedical data
ARX - a comprehensive tool for anonymizing / de-identifying biomedical data
arx-deidentifier
 
An overview of methods for data anonymization
An overview of methods for data anonymizationAn overview of methods for data anonymization
An overview of methods for data anonymization
arx-deidentifier
 
Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...
Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...
Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...
Gohsuke Takama
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Edi Saputra
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
DianaGray10
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
Rustici Software
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
danishmna97
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
Remote DBA Services
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
apidays
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Juan lago vázquez
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
Zilliz
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
apidays
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
Sandro Moreira
 

More Related Content

Viewers also liked

Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Gohsuke Takama
 
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Gohsuke Takama
 
ARX - a comprehensive tool for anonymizing / de-identifying biomedical data
ARX - a comprehensive tool for anonymizing / de-identifying biomedical dataARX - a comprehensive tool for anonymizing / de-identifying biomedical data
ARX - a comprehensive tool for anonymizing / de-identifying biomedical data
arx-deidentifier
 

Viewers also liked (9)

Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
Workshop「企画書・プレゼン・リリース作成に効く! ネットメディア時代のロジカル文章脳プログラミング術」
 
TGC Planning Sheet 1.30
TGC Planning Sheet 1.30TGC Planning Sheet 1.30
TGC Planning Sheet 1.30
 
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
Startup Weekend Tokyo12 20 2009 Wubble Yoga App1
 
Privacy in Digital Society デジタル社会におけるプライバシー
Privacy in Digital Society デジタル社会におけるプライバシーPrivacy in Digital Society デジタル社会におけるプライバシー
Privacy in Digital Society デジタル社会におけるプライバシー
 
Data Privacy: Anonymization & Re-Identification
Data Privacy: Anonymization & Re-IdentificationData Privacy: Anonymization & Re-Identification
Data Privacy: Anonymization & Re-Identification
 
EU-U.S. Privacy Shield: Should You Sign Up?
EU-U.S. Privacy Shield: Should You Sign Up?EU-U.S. Privacy Shield: Should You Sign Up?
EU-U.S. Privacy Shield: Should You Sign Up?
 
ARX - a comprehensive tool for anonymizing / de-identifying biomedical data
ARX - a comprehensive tool for anonymizing / de-identifying biomedical dataARX - a comprehensive tool for anonymizing / de-identifying biomedical data
ARX - a comprehensive tool for anonymizing / de-identifying biomedical data
 
An overview of methods for data anonymization
An overview of methods for data anonymizationAn overview of methods for data anonymization
An overview of methods for data anonymization
 
Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...
Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...
Security, Privacy Data Protection and Perspectives to Counter Cybercrime 0409...
 

Recently uploaded

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Angeliki Cooney
 

Recently uploaded (20)

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 

標的型(サイバースパイ)攻撃とソーシャルエンジニアリング, KPMGセミナー

  • 1. Gohsuke Takama / , Meta Associates, 2012 2 http://www.slideshare.net/gohsuket
  • 2. about… ✴ Gohsuke Takama / , Meta Associates http://www.meta-associates.com/ ✴ , IT , ✴ , , ✴ : Black Hat Japan, PacSec ✴ ( , , ) ✴ ( ) ✴ : DHS, NIST, NERC, EPRI, Stanford Research, Sandia , Bell , ISAC Council, John Arquilla(NPS ), Richard Clarke, John Tritak, Paul Kurtz (Good Harbor Consulting) ✴ : , , ✴ : Patch Advisor( ), SecWest (PacSec ) ✴ IT , ( ) ✴ : CodeGate2008 ( ), (2002, 2010), ✴ : http://blog.f-secure.jp/ http://scan.netsecurity.ne.jp/ ✴ Privacy International, London, UK http://www.privacyinternational.org/ ✴ , Gohsuke Takama
  • 6. 11 x 10 = 9 8 7 R 6 5 4 3 2 1 A B C D E F G H I J K Gohsuke Takama
  • 7. A Attacks Gohsuke Takama
  • 8. ? "Spear Phishing" "Advanced Persistent Threat" APT "Targeted Cyber Espionage" "Adaptive Persistent Attack" APA "Top APT Research of 2011 (That You Probably Haven’t Heard About)" Gohsuke Takama http://blog.trendmicro.com/top-apt-research-of-2011-that-you-probably-havent-heard-about/
  • 9. ? http://paulsparrows.wordpress.com/2011-cyber-attacks-timeline-master-index/ Gohsuke Takama http://paulsparrows.wordpress.com/2012-cyber-attacks-timeline-master-index/
  • 10. ? • , IHI... (2011) • , ... (2011, ID, ?) • JAXA (2011, NASA ?) • ShadyRAT (2011, 14 OperationAurora (2010, Google 70 ), 34 ), Night Dragon (2010, ), GhostNet (2009, 103 ) • RSA / Lockheed Martin (2011, SecurID , Lockheed ) • DigiNotar (2011, Google SSL ) Gohsuke Takama • Stuxnet (2010, )
  • 11. ? RSA SecurID Gohsuke Takama
  • 12. ? Diginotar 2011 9 19 20 Gohsuke Takama
  • 13. ? = (Cyber Espionage) "Targeted Cyber Espionage" "Advanced Persistent Threat" APT "Adaptive Persistent Attack" APA Gohsuke Takama
  • 14. ? / 1 , Gohsuke Takama
  • 15. ? ✴ APT, • = • • : , , • → → → ✴ ( ) • = • Gohsuke Takama • →
  • 16. ? EU $1 Trillion/ = 80 (McAfee 2009 ) EU $3.4 Billion = 2720 (2011,VISA CyberSource ) ¥57.4 ¥19 (2011) https://www.europol.europa.eu/sites/default/files/publications/iocta.pdf Gohsuke Takama http://www.net-security.org/secworld.php?id=12273
  • 17. ? • : OSI Gohsuke Takama
  • 18. ? 7 Psychological , Human Factor 6 Custom (Habit) , 5 Operation 4 Content Intangibles 3 OS/Application 2 Hardware Tangibles 1 Physical Gohsuke Takama
  • 19. ? , APT, Psychological , Phishing ? , ID / , , , Custom XSS, XSRF, CSIRT, PKI, ID, SSL DoS, Spam, , CSIRT , , Operation , , , , , , Content Spam, , IDS OS/ DoS, , , IDS, Application 0day, rootkit, IPS, , OS/ , , Hardware , , , , , , , Physical , Gohsuke Takama
  • 20. ? ✴ (Firewall) •( + ) ✴ •= ( ) ✴ 100% > • ( ?) ✴ PKI = DigiNotar ✴ = Gohsuke Takama •( )
  • 21. S Social Engineering Gohsuke Takama
  • 22. : : syoutenn_aguri@aol.jp : ( ) : Photo.zip : : 3 , 7 ( 1 ( ), 10 Gohsuke Takama
  • 28. 90% or 10% Gohsuke Takama
  • 29. : A28 90% 3:20 : .xls Gohsuke Takama
  • 30. : A28 10% 3:20 : .xls Gohsuke Takama
  • 31. Visual Cognition Lab 1999 http://www.youtube.com/watch?v=vJG698U2Mvo Gohsuke Takama
  • 37. ( : Turing test) 1950 Computing Machinery and Intelligence [1] http://ja.wikipedia.org/wiki/ Gohsuke Takama
  • 38. W Who, Why, What Gohsuke Takama
  • 39. ? ? Law, Market, Norms, Architecture Gohsuke Takama
  • 40. ? ? Gohsuke Takama
  • 41. ? ? Gohsuke Takama
  • 42. ? ? Political Power Money Ideology - - - - Gohsuke Takama Technical Control
  • 43. ? ? Political Power Money Ideology : - - - - Gohsuke Takama Technical Control
  • 44. ? ? Political Power APT Money Ideology Lulz : - - - - Gohsuke Takama Technical Control
  • 46. HUMINT, COMINT→CYBINT? HUMINT: Human Intelligence COMINT: Communications Intelligence (Signals Intelligence) CYBINT*: Cyber Intelligence (Network Intelligence) http://en.wikipedia.org/wiki/Network_intelligence Gohsuke Takama
  • 47. HUMINT, COMINT→CYBINT? , , , , , • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • , • • • • • • • • • • • • • • • • • Gohsuke Takama
  • 48. HUMINT, COMINT→CYBINT? , , , , , • NW • NW • •Spam ( ) • • • •IP • • • • • • • • , F/W • •Fax, • USB • • • • • CD-ROM • • • • • • • • • • • • • • • • • • LAN • • • •Fax • • • • • • • • • • • • • • • • • • • • • • • • • • • • • , • • • • Gohsuke Takama
  • 49. "Stuxnet" HUMINT, CYBINT "Nuclear scientist killed in Tehran was Iran's top Stuxnet expert" Gohsuke Takama http://www.debka.com/article/20406/
  • 50. "Stuxnet" HUMINT, CYBINT Gohsuke Takama
  • 51. A x S xW = what to do? Gohsuke Takama
  • 52. ? , , , , , • / • • • • • VPN, • • - • • • / / • • • • • • • • • • •MAC • PR • / • Gohsuke Takama
  • 53. , ✴ ✴ / ✴ • • -DMZ • - Gohsuke Takama
  • 54. • • • • Twitter, Facebook, IRC, Weibo, RenRen • : https://www.recordedfuture.com/ "RQ-170" Jul 30 2006--Mar 14 2012 https://www.recordedfuture.com/rf/s/2z0Cm4 Gohsuke Takama
  • 55. • = • • = • • • = • Gohsuke Takama •
  • 56. ) ( ✴ • • • • / Gohsuke Takama
  • 57. • SSL / TLS ✴ (PGP ) ✴ (Chat, IM, SMS, ) ✴ • Chat, IM, SMS ,VoIP Gohsuke Takama •
  • 60. / MAC ✴ LAN • LAN • LAN • F/W Gohsuke Takama
  • 61. PR • • / • Soft Power = 1990 ( Joseph Nye Hard Power ) • http://ja.wikipedia.org/wiki/ • Gohsuke Takama