SlideShare ist ein Scribd-Unternehmen logo

Cyber Security Emerging Threats

•Als PPT, PDF herunterladen•
•
I
isc2dfw

Mike Saylor's Briefing to the Dallas-Fort Worth Chapter

Technologie
1 von 42
Cyber Security Current Trends & Emerging Threats Michael Saylor | Executive Director Cyber Defense Labs Page 1
Michael (Mike) Saylor, CISM, CISA • 19 years of IT security and Cyber investigations • Incident Response, Fraud Investigations, Digital Forensics • Executive Director for Cyber Defense Labs at UT Dallas • President Emeritus for the North Texas FBI Infragard • Cyber Crime Committee Member for the North Texas Crime Commission • CIO for the Texas Credit Union League • Professor of Cyber Security for Collin College • B.S. in Information Systems, and Masters Criminal Justice • Worked with local and federal law enforcement on high profile cases Page 2
Recent Trends Industry Analysis (2012-2013) Continuing and Emerging Threats Continued Convergence Drugs, Crime, and Terrorism Enterprise Best Practices Page 3
Recent Trends Most attacks in 2013 had both web, and social engineering components, but there was also a dramatic rise in politically motivated DDoS attacks. • Mobile Devices and Mobile Applications • Hacktivism / Cyber Protests (Defacement, DDoS) • Advanced Persistent Threat (APT) • Lures Social Engineering & Social Media Search Engine Optimization Poisoning Spam and Spear Phishing Page 4
Mobile Devices • 6.8 Billion Mobile Subscribers on the Planet 96% of the population • Mobile Apps increasingly rely on a Internet browser • AppStores have poor patch management and Q/A • Mobile anti-malware solutions immature • 51% of users circumvent or disable device passwords & security controls • Growing number of malicious mobile applications and mobile exploitation Page 5
Mobile Devices Recent attacks include: • Mobile based DDoS tools (MDDoS) • Scrapping apps, looking for sensitive data on device. • SMShing – SMS texts asking for bank credentials / PIN, or to call 800 number • Trojan / Malware – PC malware transferred from phones that are charging. Page 6
Mobile Devices Page 7
Recent Trends • Malicious Android Apps up 580% (28k) • Location Services? • Mobile Threats will impact your organization – eventually! • CEO’s Phone? Page 8
Malware 82% of malware sites are hosted on compromised systems 55% of data-stealing malware is web-based Page 9
Hacktivism / Cyber Protests • Attacks in Response to Geo-Political issues • Objectives are primarily to disrupt and / or voice the views of a particular group. – Website defacements – Denial of Service attacks (US / Israeli Banks / Government, business sites) – Automated exploit attempts • The Syrian Electronic Army (SEA), hacked API news and planted a false story about Obama being injured in a bombing attack on the Whitehouse and drove the stock market down over 200 points in a few seconds. Page 10
Hacktivism / Cyber Protests Page 11
Techniques Page 12
Countries Top Ten Hacking Countries, by Attack Traffic % 1. China 41 percent (of the world's attack traffic) 2. U.S. 10 percent 3. Turkey 4.7 percent 4. Russia 4.3 percent 5. Taiwan 3.7 percent 6. Brazil 3.3 percent 7. Romania 2.8 percent 8. India 2.3 percent 9. Italy 1.6 percent 10. Hungary 1.4 percent Page 13
Countries Page 14
Advanced Persistent Threats Any computer system connected to a communications medium will be compromised given enough time and the appropriate resources. 80% of attacks in 2013 required multi-stage defenses for protection. APT Attacks use: -Highly Customized Tools and Intrusion Techniques -Stealthy, Patient attack methods to reduce detection -Focus on high value targets (Mil, Pol, Eco, Intel) -Well funded & staffed, supported by Mil or State Intel -Organizations are targeted for strategic importance Page 15
APT APT Attackers worked with BotNet operators to determine if target systems have already been compromised. Use of polymorphic code that manifests differently on each system it infects. Cyber Criminals are becoming Information Brokers as a result of their Industrial Espionage schemes. Page 16
APT – Distribution of Targets Page 17
“A Thousand Grains of Sand…” The Chinese continue to follow the ancient book, "The Art of War,“ which advises the commission of espionage by "a thousand grains of sand"; meaning obtaining small but innumerable pieces of information by vast numbers of people acting as armies of spies sent against the enemy. This recruitment usually translates to ethnic, 1st generation Chinese immigrants with cultural and familial ties to China. The Chinese government then reciprocates by helping their part-time spies create or proceed with commercial or business ventures in the United States. This is called guanxi (goowongsee). As a result, the Chinese coordinators do not offer money, and they do not accept walk-in cases, which may turn out to be "dangles" (double agents). Most espionage activities are coordinated by the Ministry of State Security (MSS) or the military intelligence arm of the People's Liberation Army (PLA). Dave Wise, Espionage Author Page 18
Espionage • Mandiant’s 2013 report on the Chinese (APT1) attacks on 141 organizations since 2006 (115 were in the U.S.). • The report presents substantial evidence of Chinese sponsored activities, including photos, forensics, communications, and profiles. • Soon after Mandiant’s report, the U.S. government publishes a 140 page strategy to combat the theft of U.S. trade secrets • The U.S. government initially attempted to halt the attacks on U.S. organizations, but soon resorted to asking China to please stop stealing our stuff. • China’s response to the Mandiant report was that it was “unprofessional” to publish and make such claims. Page 19
Espionage • According to the U.S. Justice Department, of 20 cases of economic espionage and trade secret criminal cases from January 2009 to January 2013, 16 involved Chinese nationals; i.e. organizations hired foreign nationals to work on national security level projects (DuPont, NASA, Google, Intel, DoD, etc.) • 63% of impacted organizations learn they were breached from an external source, like law enforcement. • Organizations are being targeted by more than one attack group, sometimes in succession. In 2012, 38% of targets were attacked again after the original incident was remediated, lodging more than one thousand attempts to regain entry to former victims. • Feb 2013 report (Akamai) shows that 30% of all observed attacks came from China and 13% originated from within the U.S. March 2013 report (Solutionary) states that the majority of attacks on the U.S. are now originating in the U.S. Page 20
Espionage Page 21
Espionage Page 22
Exploit Toolkits & Malware • In 2013, Exploit Toolkits cost between $40 and $4k • The Malware that likely compromised Target’s POS system, cost less than $3,000. • 61% of all malware is based on pre-existing toolkits; upgrades keep them current and provide additional capabilities (“Value”) • Toolkits used for Targeted Attacks can create custom Blog entries, emails, IMs, & web site templates to entice targets toward malicious links / content. (Blackhole >100k/day) Page 23
Exploit Toolkits & Malware • Traditional Attacks were loud, high volume attacks typically stopped by threat monitoring tools • Today’s sniper attacks use specific exploits to get clear shots at the objective • The convergence of Social Engineering, Social Profiling, and Geo-Location improve attack success • Rogue software (anti-virus, registry cleaner, machine speed improvement, backup software, etc) – Increase in MAC Malware (MAC Defender) – +50% attacks on Social Media sites were Malware Page 24
Lures Several attacks in 2013 were conducted by luring victims to accept malware or follow a link to an infected site. 4% of all email contained a Malware or a link to and infected site. There are 6 stages of the attack: Page 25
Lures Page 26
Lures – Facebook Specific • Typo-Squatting • Fake Facebook Applications • Hidden Camera Video Lure • Celebrity Deaths • Fake Offers & Gifts • Browser Plugin Scams • Fake Profile Creeper • Blog Spam Attack Page 27
Search Engine Poisoning 2013 saw an increase in malware infections as a result of SEP. • Hackers crawling current news headlines, creating related malicious sites and conducting SEP • Google Images – links to source photo • Using web analytics to determine what people are searching for Page 28
Top Social Engineering Lures Page 29
SPAM 2013 SPAM Results • Spam is at 69% of all global email • Phishing attacks are 1 in every 414 emails • Email that contained a virus were 1 in every 291 • Top Industries Attacked: Manufacturing, Financial, Services, Government, Energy • Top Recipients Attacked: R&D, Sales, C-Suite, Shared Mailbox Page 30
Phishing • 639 Unique Brands were target by Phishing in Q2’13 Page 31
Emerging Threats Page 32
Emerging Threats • Mobile Internet will continue to increase as it eventually takes the place of desktop Internet. • The illegal drug organizations are looking to Cyber Crime to facilitate their business and expand their operations. Your organization could be infiltrated by an insider, socially engineered for identities and social profiles, and Crypto-Locker from ransomeware. potentially held hostage with Russia is • one of the current Threats increase Localized Nation State attacks on U.S. Page 33
Emerging Threats Terrorists are expected to continue to expand their technical capabilities which may lead to an increase in cyber crime and cyber terrorism. • Domestic groups funded by foreign States to conduct US-based attacks • Cyber crime as a funding vehicle for Terrorism • Cyber as a facilitator / component for a Terrorist attack (Effects-Based Operations) Page 34
Emerging Threats • Malware embedded at the hardware / chip level of consumer products will continue to increase. • Targeted Attacks and APT will continue to increase in number and sophistication. • Sophistication from APT attacks will trickle down to black market malware toolkits. • Mobile Phone attacks will increase in volume and type • Insider Threat will continue to grow as new technology is introduced, especially non-company devices • Thwarting attacks will require multi-stage defenses Page 35
Emerging Threats • Attackers are increasingly using outsourced service providers (HR, Procurement, IT, Finance, etc.) as a means to gain access to their victims. • Attackers are using comprehensive reconnaissance (network, physical, social) to help navigate victims’ organization and networks more effectively (e.g. network infrastructure, system administration guides, etc.) • The use of “Black Hats for Hire” will grow to support the organizational foot soldiers of Nation State actors. Ic3Br3ak3r223:“im not an Anon just to be clear on that, im an independent for black market…: im a destroyer i dont build anything i only take it apart…I get payed or they pay again and again” (Hacked: MIT, Harvard, CIA Web Pages, Israeli Military Emails, Pentagon Emails and Axis Security camera around the world. ) Page 36
Emerging Threats Network Attacks Web Sites Cloud Provider / Vendor NETWORK Company Data DMZ Social Engineering Phone Calls INTERNAL NETWORK Mobile Device / Media CORE SYSTEMS APT Internet Use Physical Security Breach Wireless Home Networks Malware Internet WORMS Virus PERIMETER Emails Social Engineering Social Networking Remote Users Network Attacks Physical Breach Wireless Malware Networks Phishing Insiders Worms Virus Malware Page 37
Emerging Threats • Growth of the Dark Web / Tor Network – Law Enforcement has little understanding of these “off the web” networks, how to access them, and the types of activities being conducted there, including: • • • • • CrimeWare Child Pornography Trafficking of Drugs, Weapons, Humans Child Exploitation Sex Tourism – Without LE involvement and understanding in these networks, criminal activity will grow and evolve, and outpace legislative and procedural response to these crimes. Page 38
Emerging Threats • Sophistication of “Call-Home” tactics of Malware will continue to grow, including the use of Twitter, DNS, VoIP, and other open communication channels for command and control. • Recent and emerging Ransomeware and Crimeware receive updates / patches and can be armed with various modules. • Your Social Media Identity is or soon will be valued greater than your Credit Cards. Page 39
Best Practice Guidelines User Education and Awareness and Education and Awareness Containment is the new Prevention….Compromise is inevitable Monitoring Network, Vulnerabilities, and Brand Anti-Virus, Anti-Malware, Device Control Encryption (Would have helped Target) Data Loss Prevention & Monitoring Removable Media Policy Mobile Device Policy Frequent Risk-Based Security Assessments and Updates Aggressive Patching and Software Polling Incident Response Procedures Page 40 Social Media / Social Networking Policy
References Global mobile statistics 2013, mobithinking.com 2013 Mandiant Report – February 2013 Securelist 2013 Hackmageddon 2013 Government Technology 2013 Kaspersky Labs report on Red October 2013 Symantec Intelligence Reports 2013 Bit9 Cyber Security Report 2012 Georgia Tech - Emerging Cyber Threats Report 2012 WebSense Threat Report 2012 TrendLabs – Security in the Age of Mobility 2012 LookOut Mobile Security Report 2012 Breakthrough Silicon Scanning Discovers Backdoor, University of Cambridge 2012 Tiger Trap, David Wise, 2012 TrendMicro, Peter the Great versus Sun Tzu, 2012 Page 41
Questions / Contact Info Questions? Mike Saylor | Cyber Defense Labs Msaylor@CyberDefenseLabs.org 972-454-0227 Terry Quan | Cyber Defense Labs TQuan@CyberDefenseLabs.org 214-563-5235 Page 42

Empfohlen

Overview of the Cyber Kill Chain [TM]
Overview of the Cyber Kill Chain [TM]Overview of the Cyber Kill Chain [TM]
Overview of the Cyber Kill Chain [TM]
David Sweigert
 
The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)
PECB
 
Dell Technologies Cyber Security playbook
Dell Technologies Cyber Security playbookDell Technologies Cyber Security playbook
Dell Technologies Cyber Security playbook
Margarete McGrath
 
Security Operations Center (SOC) Essentials for the SME
Security Operations Center (SOC) Essentials for the SMESecurity Operations Center (SOC) Essentials for the SME
Security Operations Center (SOC) Essentials for the SME
AlienVault
 
Network Security Fundamentals
Network Security FundamentalsNetwork Security Fundamentals
Network Security Fundamentals
Rahmat Suhatman
 
Vulnerability Management
Vulnerability ManagementVulnerability Management
Vulnerability Management
asherad
 
Social engineering hacking attack
Social engineering hacking attackSocial engineering hacking attack
Social engineering hacking attack
Pankaj Dubey
 
Cyber kill chain
Cyber kill chainCyber kill chain
Cyber kill chain
Ankita Ganguly
 

Empfohlen

Overview of the Cyber Kill Chain [TM]
Overview of the Cyber Kill Chain [TM]Overview of the Cyber Kill Chain [TM]
Overview of the Cyber Kill Chain [TM]
David Sweigert
 
The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)
PECB
 
Dell Technologies Cyber Security playbook
Dell Technologies Cyber Security playbookDell Technologies Cyber Security playbook
Dell Technologies Cyber Security playbook
Margarete McGrath
 
Security Operations Center (SOC) Essentials for the SME
Security Operations Center (SOC) Essentials for the SMESecurity Operations Center (SOC) Essentials for the SME
Security Operations Center (SOC) Essentials for the SME
AlienVault
 
Network Security Fundamentals
Network Security FundamentalsNetwork Security Fundamentals
Network Security Fundamentals
Rahmat Suhatman
 
Vulnerability Management
Vulnerability ManagementVulnerability Management
Vulnerability Management
asherad
 
Social engineering hacking attack
Social engineering hacking attackSocial engineering hacking attack
Social engineering hacking attack
Pankaj Dubey
 
Cyber kill chain
Cyber kill chainCyber kill chain
Cyber kill chain
Ankita Ganguly
 
Network security - Defense in Depth
Network security - Defense in DepthNetwork security - Defense in Depth
Network security - Defense in Depth
Dilum Bandara
 
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Edureka!
 
Addressing the cyber kill chain
Addressing the cyber kill chainAddressing the cyber kill chain
Addressing the cyber kill chain
Symantec Brasil
 
Is Cyber Resilience Really That Difficult?
Is Cyber Resilience Really That Difficult?Is Cyber Resilience Really That Difficult?
Is Cyber Resilience Really That Difficult?
John Gilligan
 
6 Steps for Operationalizing Threat Intelligence
6 Steps for Operationalizing Threat Intelligence6 Steps for Operationalizing Threat Intelligence
6 Steps for Operationalizing Threat Intelligence
Sirius
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023
PECB
 
Presentation of Social Engineering - The Art of Human Hacking
Presentation of Social Engineering - The Art of Human HackingPresentation of Social Engineering - The Art of Human Hacking
Presentation of Social Engineering - The Art of Human Hacking
msaksida
 
Cyber Resilience
Cyber ResilienceCyber Resilience
Cyber Resilience
Ian-Edward Stafrace
 
Security operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتSecurity operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیت
ReZa AdineH
 
Security Operation Center Fundamental
Security Operation Center FundamentalSecurity Operation Center Fundamental
Security Operation Center Fundamental
Amir Hossein Zargaran
 
Vulnerability assessment and penetration testing
Vulnerability assessment and penetration testingVulnerability assessment and penetration testing
Vulnerability assessment and penetration testing
Abu Sadat Mohammed Yasin
 
Cyber security
Cyber securityCyber security
Cyber security
Bhavin Shah
 
Cyber Security Incident Response Planning
Cyber Security Incident Response PlanningCyber Security Incident Response Planning
Cyber Security Incident Response Planning
PECB
 
How to Reduce the Attack Surface Created by Your Cyber-Tools
How to Reduce the Attack Surface Created by Your Cyber-ToolsHow to Reduce the Attack Surface Created by Your Cyber-Tools
How to Reduce the Attack Surface Created by Your Cyber-Tools
Enterprise Management Associates
 
Social engineering presentation
Social engineering presentationSocial engineering presentation
Social engineering presentation
pooja_doshi
 
Cybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHSCybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHS
John Gilligan
 
Building a Next-Generation Security Operations Center (SOC)
Building a Next-Generation Security Operations Center (SOC)Building a Next-Generation Security Operations Center (SOC)
Building a Next-Generation Security Operations Center (SOC)
Sqrrl
 
Threat Modeling Everything
Threat Modeling EverythingThreat Modeling Everything
Threat Modeling Everything
Anne Oikarinen
 
Threat Hunting
Threat HuntingThreat Hunting
Threat Hunting
Splunk
 
Understanding cyber resilience
Understanding cyber resilienceUnderstanding cyber resilience
Understanding cyber resilience
Christophe Foulon, CISSP
 
Emerging Threats - The State of Cyber Security
Emerging Threats - The State of Cyber SecurityEmerging Threats - The State of Cyber Security
Emerging Threats - The State of Cyber Security
Cisco Canada
 
Emerging Threats and Attack Surfaces
Emerging Threats and Attack SurfacesEmerging Threats and Attack Surfaces
Emerging Threats and Attack Surfaces
Peter Wood
 

Weitere ähnliche Inhalte

Was ist angesagt?

6 Steps for Operationalizing Threat Intelligence
6 Steps for Operationalizing Threat Intelligence6 Steps for Operationalizing Threat Intelligence
6 Steps for Operationalizing Threat Intelligence
Sirius
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023
PECB
 
Security operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتSecurity operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیت
ReZa AdineH
 
How to Reduce the Attack Surface Created by Your Cyber-Tools
How to Reduce the Attack Surface Created by Your Cyber-ToolsHow to Reduce the Attack Surface Created by Your Cyber-Tools
How to Reduce the Attack Surface Created by Your Cyber-Tools
Enterprise Management Associates
 
Social engineering presentation
Social engineering presentationSocial engineering presentation
Social engineering presentation
pooja_doshi
 
Threat Modeling Everything
Threat Modeling EverythingThreat Modeling Everything
Threat Modeling Everything
Anne Oikarinen
 

Was ist angesagt? (20)

Network security - Defense in Depth
Network security - Defense in DepthNetwork security - Defense in Depth
Network security - Defense in Depth
 
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
 
Addressing the cyber kill chain
Addressing the cyber kill chainAddressing the cyber kill chain
Addressing the cyber kill chain
 
Is Cyber Resilience Really That Difficult?
Is Cyber Resilience Really That Difficult?Is Cyber Resilience Really That Difficult?
Is Cyber Resilience Really That Difficult?
 
6 Steps for Operationalizing Threat Intelligence
6 Steps for Operationalizing Threat Intelligence6 Steps for Operationalizing Threat Intelligence
6 Steps for Operationalizing Threat Intelligence
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023
 
Presentation of Social Engineering - The Art of Human Hacking
Presentation of Social Engineering - The Art of Human HackingPresentation of Social Engineering - The Art of Human Hacking
Presentation of Social Engineering - The Art of Human Hacking
 
Cyber Resilience
Cyber ResilienceCyber Resilience
Cyber Resilience
 
Security operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتSecurity operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیت
 
Security Operation Center Fundamental
Security Operation Center FundamentalSecurity Operation Center Fundamental
Security Operation Center Fundamental
 
Vulnerability assessment and penetration testing
Vulnerability assessment and penetration testingVulnerability assessment and penetration testing
Vulnerability assessment and penetration testing
 
Cyber security
Cyber securityCyber security
Cyber security
 
Cyber Security Incident Response Planning
Cyber Security Incident Response PlanningCyber Security Incident Response Planning
Cyber Security Incident Response Planning
 
How to Reduce the Attack Surface Created by Your Cyber-Tools
How to Reduce the Attack Surface Created by Your Cyber-ToolsHow to Reduce the Attack Surface Created by Your Cyber-Tools
How to Reduce the Attack Surface Created by Your Cyber-Tools
 
Social engineering presentation
Social engineering presentationSocial engineering presentation
Social engineering presentation
 
Cybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHSCybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHS
 
Building a Next-Generation Security Operations Center (SOC)
Building a Next-Generation Security Operations Center (SOC)Building a Next-Generation Security Operations Center (SOC)
Building a Next-Generation Security Operations Center (SOC)
 
Threat Modeling Everything
Threat Modeling EverythingThreat Modeling Everything
Threat Modeling Everything
 
Threat Hunting
Threat HuntingThreat Hunting
Threat Hunting
 
Understanding cyber resilience
Understanding cyber resilienceUnderstanding cyber resilience
Understanding cyber resilience
 

Andere mochten auch

Emerging threats of cyberterrorism
Emerging threats of cyberterrorismEmerging threats of cyberterrorism
Emerging threats of cyberterrorism
Nishith Pandit
 
Current & Emerging Cyber Security Threats
Current & Emerging Cyber Security ThreatsCurrent & Emerging Cyber Security Threats
Current & Emerging Cyber Security Threats
NCC Group
 
Cyber crime and security ppt
Cyber crime and security pptCyber crime and security ppt
Cyber crime and security ppt
Lipsita Behera
 

Andere mochten auch (10)

Emerging Threats - The State of Cyber Security
Emerging Threats - The State of Cyber SecurityEmerging Threats - The State of Cyber Security
Emerging Threats - The State of Cyber Security
 
Emerging Threats and Attack Surfaces
Emerging Threats and Attack SurfacesEmerging Threats and Attack Surfaces
Emerging Threats and Attack Surfaces
 
Emerging threats of cyberterrorism
Emerging threats of cyberterrorismEmerging threats of cyberterrorism
Emerging threats of cyberterrorism
 
Luncheon 2016-01-21 - Emerging Threats and Strategies for Defense by Paul Fle...
Luncheon 2016-01-21 - Emerging Threats and Strategies for Defense by Paul Fle...Luncheon 2016-01-21 - Emerging Threats and Strategies for Defense by Paul Fle...
Luncheon 2016-01-21 - Emerging Threats and Strategies for Defense by Paul Fle...
 
Ransomware and Emerging Cyber Threats: Why It's More Than Just An IT Problem ...
Ransomware and Emerging Cyber Threats: Why It's More Than Just An IT Problem ...Ransomware and Emerging Cyber Threats: Why It's More Than Just An IT Problem ...
Ransomware and Emerging Cyber Threats: Why It's More Than Just An IT Problem ...
 
Current & Emerging Cyber Security Threats
Current & Emerging Cyber Security ThreatsCurrent & Emerging Cyber Security Threats
Current & Emerging Cyber Security Threats
 
Cyber security presentation
Cyber security presentationCyber security presentation
Cyber security presentation
 
Cloud computing security from single to multiple
Cloud computing security from single to multipleCloud computing security from single to multiple
Cloud computing security from single to multiple
 
Research and Development
Research and DevelopmentResearch and Development
Research and Development
 
Cyber crime and security ppt
Cyber crime and security pptCyber crime and security ppt
Cyber crime and security ppt
 

Ähnlich wie Cyber Security Emerging Threats

Cyber Wars.pptx
Cyber Wars.pptxCyber Wars.pptx
Cyber Wars.pptx
ArjunKumar684595
 
7 mike-steenberg-carlos-lopera-us-bank
7 mike-steenberg-carlos-lopera-us-bank7 mike-steenberg-carlos-lopera-us-bank
7 mike-steenberg-carlos-lopera-us-bank
shreemala1
 
Cyber Crimes.pptx
Cyber Crimes.pptxCyber Crimes.pptx
Cyber Crimes.pptx
mnm Lastopop
 
Running headEMERGING THREATS AND COUNTERMEASURES .docx
Running headEMERGING THREATS AND COUNTERMEASURES .docxRunning headEMERGING THREATS AND COUNTERMEASURES .docx
Running headEMERGING THREATS AND COUNTERMEASURES .docx
rtodd599
 
Francesca Bosco, Le nuove sfide della cyber security
Francesca Bosco, Le nuove sfide della cyber securityFrancesca Bosco, Le nuove sfide della cyber security
Francesca Bosco, Le nuove sfide della cyber security
Andrea Rossetti
 
28658043 cyber-terrorism
28658043 cyber-terrorism28658043 cyber-terrorism
28658043 cyber-terrorism
Dharani Adusumalli
 
Advancing Women in Cyber Security Careers - A National Priority
Advancing Women in Cyber Security Careers - A National PriorityAdvancing Women in Cyber Security Careers - A National Priority
Advancing Women in Cyber Security Careers - A National Priority
Career Communications Group
 

Ähnlich wie Cyber Security Emerging Threats (20)

Event: George Washington University -- National Security Threat Convergence: ...
Event: George Washington University -- National Security Threat Convergence: ...Event: George Washington University -- National Security Threat Convergence: ...
Event: George Washington University -- National Security Threat Convergence: ...
 
Cybersecurity Awareness- Libya' 1st Cybersecurity Days Conference (CDC)
Cybersecurity Awareness- Libya' 1st Cybersecurity Days Conference (CDC)Cybersecurity Awareness- Libya' 1st Cybersecurity Days Conference (CDC)
Cybersecurity Awareness- Libya' 1st Cybersecurity Days Conference (CDC)
 
Cyber crime: A Quick Survey
Cyber crime: A Quick SurveyCyber crime: A Quick Survey
Cyber crime: A Quick Survey
 
Cyber Wars.pptx
Cyber Wars.pptxCyber Wars.pptx
Cyber Wars.pptx
 
7 mike-steenberg-carlos-lopera-us-bank
7 mike-steenberg-carlos-lopera-us-bank7 mike-steenberg-carlos-lopera-us-bank
7 mike-steenberg-carlos-lopera-us-bank
 
Cyber warfare ss
Cyber warfare ssCyber warfare ss
Cyber warfare ss
 
Worldwide Cyber Threats report to House Permanent Select Committee on Intelli...
Worldwide Cyber Threats report to House Permanent Select Committee on Intelli...Worldwide Cyber Threats report to House Permanent Select Committee on Intelli...
Worldwide Cyber Threats report to House Permanent Select Committee on Intelli...
 
Brooks18
Brooks18Brooks18
Brooks18
 
Types of Cyber Threats By Dr.S.Jagadeesh Kumar
Types of Cyber Threats By Dr.S.Jagadeesh KumarTypes of Cyber Threats By Dr.S.Jagadeesh Kumar
Types of Cyber Threats By Dr.S.Jagadeesh Kumar
 
SANSFIRE - Elections, Deceptions and Political Breaches
SANSFIRE - Elections, Deceptions and Political BreachesSANSFIRE - Elections, Deceptions and Political Breaches
SANSFIRE - Elections, Deceptions and Political Breaches
 
A Survey On Cyber Crime Information Security
A Survey On Cyber Crime Information SecurityA Survey On Cyber Crime Information Security
A Survey On Cyber Crime Information Security
 
The Social Takeover
The Social TakeoverThe Social Takeover
The Social Takeover
 
Cyber Crimes.pptx
Cyber Crimes.pptxCyber Crimes.pptx
Cyber Crimes.pptx
 
AECF: A Look into Cyber Crime - Doomsday Preppers for the Naked and Afraid
AECF: A Look into Cyber Crime - Doomsday Preppers for the Naked and AfraidAECF: A Look into Cyber Crime - Doomsday Preppers for the Naked and Afraid
AECF: A Look into Cyber Crime - Doomsday Preppers for the Naked and Afraid
 
Running headEMERGING THREATS AND COUNTERMEASURES .docx
Running headEMERGING THREATS AND COUNTERMEASURES .docxRunning headEMERGING THREATS AND COUNTERMEASURES .docx
Running headEMERGING THREATS AND COUNTERMEASURES .docx
 
Francesca Bosco, Le nuove sfide della cyber security
Francesca Bosco, Le nuove sfide della cyber securityFrancesca Bosco, Le nuove sfide della cyber security
Francesca Bosco, Le nuove sfide della cyber security
 
Cyber terrorism
Cyber terrorismCyber terrorism
Cyber terrorism
 
Cybercrime: A Seminar Report
Cybercrime: A Seminar ReportCybercrime: A Seminar Report
Cybercrime: A Seminar Report
 
28658043 cyber-terrorism
28658043 cyber-terrorism28658043 cyber-terrorism
28658043 cyber-terrorism
 
Advancing Women in Cyber Security Careers - A National Priority
Advancing Women in Cyber Security Careers - A National PriorityAdvancing Women in Cyber Security Careers - A National Priority
Advancing Women in Cyber Security Careers - A National Priority
 

KĂźrzlich hochgeladen

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
 

KĂźrzlich hochgeladen (20)

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation Strategies
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 

Cyber Security Emerging Threats

  • 1. Cyber Security Current Trends & Emerging Threats Michael Saylor | Executive Director Cyber Defense Labs Page 1
  • 2. Michael (Mike) Saylor, CISM, CISA • 19 years of IT security and Cyber investigations • Incident Response, Fraud Investigations, Digital Forensics • Executive Director for Cyber Defense Labs at UT Dallas • President Emeritus for the North Texas FBI Infragard • Cyber Crime Committee Member for the North Texas Crime Commission • CIO for the Texas Credit Union League • Professor of Cyber Security for Collin College • B.S. in Information Systems, and Masters Criminal Justice • Worked with local and federal law enforcement on high profile cases Page 2
  • 3. Recent Trends Industry Analysis (2012-2013) Continuing and Emerging Threats Continued Convergence Drugs, Crime, and Terrorism Enterprise Best Practices Page 3
  • 4. Recent Trends Most attacks in 2013 had both web, and social engineering components, but there was also a dramatic rise in politically motivated DDoS attacks. • Mobile Devices and Mobile Applications • Hacktivism / Cyber Protests (Defacement, DDoS) • Advanced Persistent Threat (APT) • Lures Social Engineering & Social Media Search Engine Optimization Poisoning Spam and Spear Phishing Page 4
  • 5. Mobile Devices • 6.8 Billion Mobile Subscribers on the Planet 96% of the population • Mobile Apps increasingly rely on a Internet browser • AppStores have poor patch management and Q/A • Mobile anti-malware solutions immature • 51% of users circumvent or disable device passwords & security controls • Growing number of malicious mobile applications and mobile exploitation Page 5
  • 6. Mobile Devices Recent attacks include: • Mobile based DDoS tools (MDDoS) • Scrapping apps, looking for sensitive data on device. • SMShing – SMS texts asking for bank credentials / PIN, or to call 800 number • Trojan / Malware – PC malware transferred from phones that are charging. Page 6
  • 8. Recent Trends • Malicious Android Apps up 580% (28k) • Location Services? • Mobile Threats will impact your organization – eventually! • CEO’s Phone? Page 8
  • 9. Malware 82% of malware sites are hosted on compromised systems 55% of data-stealing malware is web-based Page 9
  • 10. Hacktivism / Cyber Protests • Attacks in Response to Geo-Political issues • Objectives are primarily to disrupt and / or voice the views of a particular group. – Website defacements – Denial of Service attacks (US / Israeli Banks / Government, business sites) – Automated exploit attempts • The Syrian Electronic Army (SEA), hacked API news and planted a false story about Obama being injured in a bombing attack on the Whitehouse and drove the stock market down over 200 points in a few seconds. Page 10
  • 11. Hacktivism / Cyber Protests Page 11
  • 13. Countries Top Ten Hacking Countries, by Attack Traffic % 1. China 41 percent (of the world's attack traffic) 2. U.S. 10 percent 3. Turkey 4.7 percent 4. Russia 4.3 percent 5. Taiwan 3.7 percent 6. Brazil 3.3 percent 7. Romania 2.8 percent 8. India 2.3 percent 9. Italy 1.6 percent 10. Hungary 1.4 percent Page 13
  • 15. Advanced Persistent Threats Any computer system connected to a communications medium will be compromised given enough time and the appropriate resources. 80% of attacks in 2013 required multi-stage defenses for protection. APT Attacks use: -Highly Customized Tools and Intrusion Techniques -Stealthy, Patient attack methods to reduce detection -Focus on high value targets (Mil, Pol, Eco, Intel) -Well funded & staffed, supported by Mil or State Intel -Organizations are targeted for strategic importance Page 15
  • 16. APT APT Attackers worked with BotNet operators to determine if target systems have already been compromised. Use of polymorphic code that manifests differently on each system it infects. Cyber Criminals are becoming Information Brokers as a result of their Industrial Espionage schemes. Page 16
  • 17. APT – Distribution of Targets Page 17
  • 18. “A Thousand Grains of Sand…” The Chinese continue to follow the ancient book, "The Art of War,“ which advises the commission of espionage by "a thousand grains of sand"; meaning obtaining small but innumerable pieces of information by vast numbers of people acting as armies of spies sent against the enemy. This recruitment usually translates to ethnic, 1st generation Chinese immigrants with cultural and familial ties to China. The Chinese government then reciprocates by helping their part-time spies create or proceed with commercial or business ventures in the United States. This is called guanxi (goowongsee). As a result, the Chinese coordinators do not offer money, and they do not accept walk-in cases, which may turn out to be "dangles" (double agents). Most espionage activities are coordinated by the Ministry of State Security (MSS) or the military intelligence arm of the People's Liberation Army (PLA). Dave Wise, Espionage Author Page 18
  • 19. Espionage • Mandiant’s 2013 report on the Chinese (APT1) attacks on 141 organizations since 2006 (115 were in the U.S.). • The report presents substantial evidence of Chinese sponsored activities, including photos, forensics, communications, and profiles. • Soon after Mandiant’s report, the U.S. government publishes a 140 page strategy to combat the theft of U.S. trade secrets • The U.S. government initially attempted to halt the attacks on U.S. organizations, but soon resorted to asking China to please stop stealing our stuff. • China’s response to the Mandiant report was that it was “unprofessional” to publish and make such claims. Page 19
  • 20. Espionage • According to the U.S. Justice Department, of 20 cases of economic espionage and trade secret criminal cases from January 2009 to January 2013, 16 involved Chinese nationals; i.e. organizations hired foreign nationals to work on national security level projects (DuPont, NASA, Google, Intel, DoD, etc.) • 63% of impacted organizations learn they were breached from an external source, like law enforcement. • Organizations are being targeted by more than one attack group, sometimes in succession. In 2012, 38% of targets were attacked again after the original incident was remediated, lodging more than one thousand attempts to regain entry to former victims. • Feb 2013 report (Akamai) shows that 30% of all observed attacks came from China and 13% originated from within the U.S. March 2013 report (Solutionary) states that the majority of attacks on the U.S. are now originating in the U.S. Page 20
  • 23. Exploit Toolkits & Malware • In 2013, Exploit Toolkits cost between $40 and $4k • The Malware that likely compromised Target’s POS system, cost less than $3,000. • 61% of all malware is based on pre-existing toolkits; upgrades keep them current and provide additional capabilities (“Value”) • Toolkits used for Targeted Attacks can create custom Blog entries, emails, IMs, & web site templates to entice targets toward malicious links / content. (Blackhole >100k/day) Page 23
  • 24. Exploit Toolkits & Malware • Traditional Attacks were loud, high volume attacks typically stopped by threat monitoring tools • Today’s sniper attacks use specific exploits to get clear shots at the objective • The convergence of Social Engineering, Social Profiling, and Geo-Location improve attack success • Rogue software (anti-virus, registry cleaner, machine speed improvement, backup software, etc) – Increase in MAC Malware (MAC Defender) – +50% attacks on Social Media sites were Malware Page 24
  • 25. Lures Several attacks in 2013 were conducted by luring victims to accept malware or follow a link to an infected site. 4% of all email contained a Malware or a link to and infected site. There are 6 stages of the attack: Page 25
  • 27. Lures – Facebook Specific • Typo-Squatting • Fake Facebook Applications • Hidden Camera Video Lure • Celebrity Deaths • Fake Offers & Gifts • Browser Plugin Scams • Fake Profile Creeper • Blog Spam Attack Page 27
  • 28. Search Engine Poisoning 2013 saw an increase in malware infections as a result of SEP. • Hackers crawling current news headlines, creating related malicious sites and conducting SEP • Google Images – links to source photo • Using web analytics to determine what people are searching for Page 28
  • 29. Top Social Engineering Lures Page 29
  • 30. SPAM 2013 SPAM Results • Spam is at 69% of all global email • Phishing attacks are 1 in every 414 emails • Email that contained a virus were 1 in every 291 • Top Industries Attacked: Manufacturing, Financial, Services, Government, Energy • Top Recipients Attacked: R&D, Sales, C-Suite, Shared Mailbox Page 30
  • 31. Phishing • 639 Unique Brands were target by Phishing in Q2’13 Page 31
  • 33. Emerging Threats • Mobile Internet will continue to increase as it eventually takes the place of desktop Internet. • The illegal drug organizations are looking to Cyber Crime to facilitate their business and expand their operations. Your organization could be infiltrated by an insider, socially engineered for identities and social profiles, and Crypto-Locker from ransomeware. potentially held hostage with Russia is • one of the current Threats increase Localized Nation State attacks on U.S. Page 33
  • 34. Emerging Threats Terrorists are expected to continue to expand their technical capabilities which may lead to an increase in cyber crime and cyber terrorism. • Domestic groups funded by foreign States to conduct US-based attacks • Cyber crime as a funding vehicle for Terrorism • Cyber as a facilitator / component for a Terrorist attack (Effects-Based Operations) Page 34
  • 35. Emerging Threats • Malware embedded at the hardware / chip level of consumer products will continue to increase. • Targeted Attacks and APT will continue to increase in number and sophistication. • Sophistication from APT attacks will trickle down to black market malware toolkits. • Mobile Phone attacks will increase in volume and type • Insider Threat will continue to grow as new technology is introduced, especially non-company devices • Thwarting attacks will require multi-stage defenses Page 35
  • 36. Emerging Threats • Attackers are increasingly using outsourced service providers (HR, Procurement, IT, Finance, etc.) as a means to gain access to their victims. • Attackers are using comprehensive reconnaissance (network, physical, social) to help navigate victims’ organization and networks more effectively (e.g. network infrastructure, system administration guides, etc.) • The use of “Black Hats for Hire” will grow to support the organizational foot soldiers of Nation State actors. Ic3Br3ak3r223:“im not an Anon just to be clear on that, im an independent for black market…: im a destroyer i dont build anything i only take it apart…I get payed or they pay again and again” (Hacked: MIT, Harvard, CIA Web Pages, Israeli Military Emails, Pentagon Emails and Axis Security camera around the world. ) Page 36
  • 37. Emerging Threats Network Attacks Web Sites Cloud Provider / Vendor NETWORK Company Data DMZ Social Engineering Phone Calls INTERNAL NETWORK Mobile Device / Media CORE SYSTEMS APT Internet Use Physical Security Breach Wireless Home Networks Malware Internet WORMS Virus PERIMETER Emails Social Engineering Social Networking Remote Users Network Attacks Physical Breach Wireless Malware Networks Phishing Insiders Worms Virus Malware Page 37
  • 38. Emerging Threats • Growth of the Dark Web / Tor Network – Law Enforcement has little understanding of these “off the web” networks, how to access them, and the types of activities being conducted there, including: • • • • • CrimeWare Child Pornography Trafficking of Drugs, Weapons, Humans Child Exploitation Sex Tourism – Without LE involvement and understanding in these networks, criminal activity will grow and evolve, and outpace legislative and procedural response to these crimes. Page 38
  • 39. Emerging Threats • Sophistication of “Call-Home” tactics of Malware will continue to grow, including the use of Twitter, DNS, VoIP, and other open communication channels for command and control. • Recent and emerging Ransomeware and Crimeware receive updates / patches and can be armed with various modules. • Your Social Media Identity is or soon will be valued greater than your Credit Cards. Page 39
  • 40. Best Practice Guidelines User Education and Awareness and Education and Awareness Containment is the new Prevention….Compromise is inevitable Monitoring Network, Vulnerabilities, and Brand Anti-Virus, Anti-Malware, Device Control Encryption (Would have helped Target) Data Loss Prevention & Monitoring Removable Media Policy Mobile Device Policy Frequent Risk-Based Security Assessments and Updates Aggressive Patching and Software Polling Incident Response Procedures Page 40 Social Media / Social Networking Policy
  • 41. References Global mobile statistics 2013, mobithinking.com 2013 Mandiant Report – February 2013 Securelist 2013 Hackmageddon 2013 Government Technology 2013 Kaspersky Labs report on Red October 2013 Symantec Intelligence Reports 2013 Bit9 Cyber Security Report 2012 Georgia Tech - Emerging Cyber Threats Report 2012 WebSense Threat Report 2012 TrendLabs – Security in the Age of Mobility 2012 LookOut Mobile Security Report 2012 Breakthrough Silicon Scanning Discovers Backdoor, University of Cambridge 2012 Tiger Trap, David Wise, 2012 TrendMicro, Peter the Great versus Sun Tzu, 2012 Page 41
  • 42. Questions / Contact Info Questions? Mike Saylor | Cyber Defense Labs Msaylor@CyberDefenseLabs.org 972-454-0227 Terry Quan | Cyber Defense Labs TQuan@CyberDefenseLabs.org 214-563-5235 Page 42