Can you tell if your computer has been compromised? Cyber Security is a practice which intends to protect computers, networks, programs and data from unintended or unauthorized access, change or destruction More than 50% of the world's population is actively connected to the internet. Cyber Security is becoming a fundamental requirement for every business organization worldwide. We are all susceptible to this new frontier of crime and it is our responsibility to be prepared.

1. Presenter: Rory Ebanks
November 15, 2017

2. An industry leader in technology solutions for audit, security, business process controls monitoring, data
analysis and compliance.
 Founded in 1998.
 Offices in Kingston, Jamaica and Port‐of‐Spain, Trinidad
 Over 150 clients across 15 countries in the Caribbean
2

3. 3

4.  Do you know if your organization is secure?
 What security strategy does your organization have in place?
 How quickly can you recover from an attack?
 When was the last time you updated your passwords?
 Do you use the same password for all of your accounts?
 Do you have your data backed up and can you easily restore it?
 Do you frequently use open Wi-Fi networks?
 Do you have anti-virus and anti-malware software installed?
 Do you always check and install the latest updates for your operating system and
software?
4

5. 5

6.  February: Cloudbleed: the internet infrastructure company Cloudflare announced
that a bug in its platform caused random leakage of potentially sensitive customer
data.
 March: Thousands of documents detailing the CIA’s efforts and methodologies for
hacking into iPhones, Android devices and Smart TVs, were released.
 April: Shadow Brokers released a Windows exploit known as EternalBlue, which
hackers have since used to infect targets in two high-profile ransomware attacks.
 May: Wannacry
 June: Petya/NotPetya/Nyetya/Goldeneye
6

7. 7

8. 8

9. • BATTLEFIELD – Where the conflict occurs
• Anywhere with connected computing resources
9
Corporate Network
Financial Internet Banking
Social Media
Business
Personal Life

10.  What is Cyber Security?
 Why Cyber Security?
 Cyber Attack?
10

11.  Survey and assess
 Exploit and penetrate
 Escalate privileges
 Maintain access
 Deny service
11

12.  Identity theft, fraud, extortion
 Malware (spyware, Trojans and viruses)
 Pharming, phishing, spamming
 Social Engineering
 Stolen hardware, such as laptops or mobile devices
 Denial-of-service and distributed denial-of-service attacks
12

13.  Injection attacks
 Buffer Overflow
 Man-in-the-middle/Sniffing
 Password attack (Brute force or dictionary)
 Website defacement
 Private and public Web browser exploits
 Social Media Threat/Instant messaging abuse
 Vulnerability exploitation
13

14. 14

15.  What is ransomware?
 Where did ransomware originate?
 How much are victims expected to pay?
 By the FBI’s estimates, ransomware cost companies worldwide a total of US$1
billion in 2016, making it the most profitable malware type in the history of
cybercrime.
15

16. 16

17. 17

18. 18

19.  Aircrack-ng
 Hydra/John the Ripper
 BurpSuite
 Maltego
 Metasploit
 Nmap
 SQL Map
 Wireshark
 Nessus
19

20. 20

21. 21

22.  https://threatmap.checkpoint.com/ThreatPortal/livemap.html
 https://threatmap.fortiguard.com/
22

23. 23

24.  Keep an eye out for phony email messages.
 Things that indicate a message may be fraudulent are:
 misspellings,
 poor grammar
 odd phrasings
 Web site addresses with strange extensions
 Web site addresses that are entirely numbers where there are normally words, and
 anything else out of the ordinary.
24

25. 25

26. 26

27. 27

28. ● Users
● Authentication (username & password)
● P@ssw0rds: How weak are they?
 Combine this reality with the fact that in most cases, the password is something
like “123456” or “password” and it’s easy to see just how backwards password-
based “security” really is.
28

29. 29
More than 50 % of people use the top
25 most common passwords,
according to password manager
Keeper, with a significant 17 % -
almost one in five - of all users
having "123456" as their protective
code.

30. 30

31.  Mobile security hasn’t progressed as fast as smartphone adoption and use.
 Five common ways mobile devices are breached:
 Device loss or theft
 Unsecured networks: Infected Wi-Fi networks
 Malicious Apps
 Phishing
 Unaware users: No passwords, No firmware updates
31

32.  Apps download
 Install a “find my phone” app & antivirus
 Consider the access permissions for apps
 Ensure phone has access control measures
 Update apps and operating system
 Use VPNs if connecting to public networks
 Establish Application control and whitelisting
32

33.  Key loggers
 Fake WAP
 Eavesdropping (Passive Attacks)
 Phishing
 Malware (Active Attacks)
 Denial of Service
33

34. 34
A Slow Computer
Sometimes, a slow computer means that your system has been infected. Malware tends to slow down your computer’s
operating system, making applications unusually slow.
A Crashing Computer
If you find that applications or your entire computer often crashes unexpectedly, it may be infected with malware.
Annoying Pop-ups
Getting unwanted pop-ups is a sign that your computer has been infected. Often the malware causing the pop-ups is
doing further damage to your computer in the background.
Fake Email/Social Media Messages
If your friends/colleagues tell you that they have received messages from you that you didn’t send, your computer is
likely infected with malware and it is trying to infect other people.
Unexpected Software
If you notice software on your computer that was recently downloaded without your permission, it is likely a
malicious program.
Disabled Antivirus Software
Certain types of malware will disable your antivirus software when your computer becomes infected.

35.  Password:
 Don’t use your login name
 Don’t use your personal information such as last name, first name
 Don’t use numbers significant to you or someone close to you
 Don’t use passwords based on simple keyboard patterns
 Don’t share passwords
 Do not turn off security applications
 Do not let unknown people touch your computer/device
 Do not give out your password to anyone including IT Staff
 Do not use insecure wireless connections
 Do not open an unknown website or link
 Do not open an email attachment unless you are certain
35

36.  Strong passwords
 Keep your passwords in a safe place and try not to use the same password for every
service you use online.
 Use a Password Manager
 Change passwords on a regular basis
 Stay out of Bad Neighbourhoods
 Don't Fall for Pop-ups
 Screen your email
 Keep your devices current with the latest patches and updates
36

37.  Protect your computer with security software - firewall, antivirus, anti-malware
 Backup your data
 Check your financial accounts regularly to ensure no fraudulent activity has taken
place.
 Do the Two-Step: Many companies now offer two-factor authentication, or two-step
verification, for your online accounts.
 Be wary of wireless hot-spots
 Be wary of applications and files downloaded from the internet
37

38.  Do not provide personal, financial or other confidential information through email.
 When entering information on a website, check the domain’s security.
 Pay attention to the URL of the site you visit, there can be slight variations to the
domain name to cause red flags. I.e. spelling or .com vs .org, etc.
 Use secure connections - Encryption: Websites should use SSL (secure socket
layer) to encrypt data
38

39. 39

40.  Implement a formal information security governance approach
 Stop data loss by implementing a data loss prevention/protection solution
 Perform periodic penetration assessment
 Implement mobile device management software to control all devices.
 Perform employee security awareness training periodically to educate and train users
 Monitor user activity to detect possible insider threats
 Establish a backup strategy to continuously backup and protect data
 Implement a patch management strategy to update software and systems automatically
 Establish a data classification strategy to identify and classify critical information system
assets.
 Create and document contingency plans and procedures, based on business and security
impacts.
40

41.  User is ultimately responsible.
 We all have a role to play in Cybersecurity
 The only system which is truly secure is one which is switched off and unplugged
 Get Tested !! Ensure a Security Strategy have been defined
41

42. 42

43.  https://www.youtube.com/watch?v=K8DJCqSPmdI
 https://www.slideshare.net/SecureData/secure-data-phishing-webinarv2
 https://msdn.microsoft.com/en-us/library/ff648641.aspx
 https://www.acs.org.au/content/dam/acs/acs-
publications/ACS_Cybersecurity_Guide.pdf
 https://www.accenture.com/t20170926T072837Z__w__/us-en/_acnmedia/PDF-
61/Accenture-2017-CostCyberCrimeStudy.pdf
 https://www.itgovernance.co.uk/blog/list-of-data-breaches-and-cyber-attacks-in-
october-2017-55-million-records-leaked/
 https://www.youtube.com/watch?v=Em3u17ME4oU
 http://resources.infosecinstitute.com/anatomy-of-an-apt-attack-step-by-step-
approach/#gref
 Checkpoint Mid-Year Report (Cyber Attack Trends 2017)
43