Watering Hole Attacks

•

5 gefällt mir•13,575 views

Watering hole attacks are the latest threat to your organization's cyber security. View this Slideshare to learn how watering hole attacks work and what steps you can take to protect yourself and your organization.

Technologie

CYBER SECURITY 201:
WATERING HOLE
ATTACKS
Brought to you by

Cyber criminals are seeing fewer results
from spear phishing attacks because
users are getting smarter about email

Instead of chasing their prey, these
cyber criminals set a trap and wait for
the prey to come to them
See how it works >

Attackers target an organization1
2
3
4
Use tracking tools to ﬁnd sites employees use
Plant malware on these sites
Identify vulnerabilities
5 Exploit is delivered to the target machine
HOW IT WORKS
5 Access targeted information

FIND TARGET

Cybercriminals identify a target organization, but
may not be able to attack head-on due to
hardened security.
?
STEP 1

!
FIND THE SITES THEY USE
These attackers use common internet tracking tools like
AddThis and KISSMetrics to identify sites frequently
visited by employees of their target company
STEP 2

PLANT MALWARE
Then, they plant malware on these
sites and wait for users to visit.
STEP 3

1
IDENTIFY VULNERABILITIES
Malicious content scans user machines for
exploitable vulnerabilities like outdated anti-virus
and browsers. The user’s computer phones home to
the attacker with vulnerabilities.
STEP 4

1
EXPLOIT
EXPLOIT DELIVERED
The exploit is delivered to the target machine.
STEP 5

ACCESS TARGET INFORMATION

Steal intellectual property or gain
access to sensitive information
Insert malware into the source code of
a company like Apple or Facebook
Steal ﬁnancial data to commit fraud
or sell the information to criminals
STEP 6

Third party web analytics and tracking services know
which websites people visit and which links they click
Legitimate websites are used effectively to deliver
malware because they aren’t blacklisted
Zero day vulnerabilities, undetectable by anti-virus,
are exploited by sophisticated and well-funded
criminals such as the Elderwood group
WHY IT WORKS

Identify and block the tracking services that are
monitoring the activity of your employees
PROTECTION TIP 1

Use browser
plug-ins that block
HTTP redirects
PROTECTION TIP 2

Enable automatic
updates for web
browsers
PROTECTION TIP 3

Maintain visibility over all tracking services in use to
identify and block new services
PROTECTION TIP 4

GET MORE DETAILS & TIPS
Download the 4-Step Guide to
Cloud Data Security to learn about
the new attack vectors & how to
protect your company
http://bit.ly/4StepGuide
Brought to you by !
DOWNLOAD THE GUIDE

Weitere ähnliche Inhalte

Andere mochten auch

The Cloud in 2015: Predictions from Greylock and Sequoia

Skyhigh Networks

Internet of Things - October 2013 - Chandna

Asheem Chandna

Csa about-threats-june-2010-ibm

Sergio Loureiro

Internet of things - Frantic

Miika Puputti

Cloud Security Alliance - Guidance

Subra Kumaraswamy CISSP CISM

16 Inspirational Quotes From the Late, Great Steve Jobs

HubSpot

Cloud security and security architecture

Vladimir Jirasek

Waterhole Attack

Symantec

In computing, a firewall is a software or hardware-based network security system that controls the incoming and outgoing network traffic based on applied rule set. A firewall establishes a barrier between a trusted, secure internal network and another network (e.g., the Internet) that is not assumed to be secure and trusted. Many personal computer operating systems include software-based firewalls to protect against threats from the public Internet. Many routers that pass data between networks contain firewall components and, conversely, many firewalls can perform basic routing functions.

Firewalls

Sonali Parab

Andere mochten auch (9)

The Cloud in 2015: Predictions from Greylock and Sequoia

Internet of Things - October 2013 - Chandna

Csa about-threats-june-2010-ibm

Internet of things - Frantic

Cloud Security Alliance - Guidance

16 Inspirational Quotes From the Late, Great Steve Jobs

Cloud security and security architecture

Waterhole Attack

Firewalls

Kürzlich hochgeladen

This presentation explores the impact of HTML injection attacks on web applications, detailing how attackers exploit vulnerabilities to inject malicious code into web pages. Learn about the potential consequences of such attacks and discover effective mitigation strategies to protect your web applications from HTML injection vulnerabilities. for more information visit https://bostoninstituteofanalytics.org/category/cyber-security-ethical-hacking/

HTML Injection Attacks: Impact and Mitigation Strategies

Boston Institute of Analytics

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Increase engagement and revenue with Muvi Live Paywall! In this presentation, we will explore the five key benefits of using Muvi Live Paywall to monetize your live streams. You'll learn how Muvi Live Paywall can help you: Monetize your live content easily: Set up pay-per-view access to your live streams and start generating revenue from your content. Increase audience engagement: Provide exclusive, premium content behind the paywall to keep your viewers engaged. Gain valuable viewer insights: Track viewer data and analytics to better understand your audience and tailor your content accordingly. Reduce content piracy: Muvi Live Paywall's security features help protect your content from unauthorized distribution. Streamline your workflow: The all-in-one platform simplifies the process of managing and monetizing your live streams. With Muvi Live Paywall, you can take control of your live stream monetization and create a sustainable business model for your content. Learn more about Muvi Live Paywall and start generating revenue from your live streams today!

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Roshan Dwivedi

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Kürzlich hochgeladen (20)

HTML Injection Attacks: Impact and Mitigation Strategies

MINDCTI Revenue Release Quarter One 2024

Boost Fertility New Invention Ups Success Rates.pdf

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Powerful Google developer tools for immediate impact! (2023-24 C)

Partners Life - Insurer Innovation Award 2024

Boost PC performance: How more available memory can improve productivity

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

GenAI Risks & Security Meetup 01052024.pdf

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Why Teams call analytics are critical to your entire business

🐬 The future of MySQL is Postgres 🐘

Data Cloud, More than a CDP by Matt Robison

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Automating Google Workspace (GWS) & more with Apps Script

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Watering Hole Attacks

1. CYBER SECURITY 201: WATERING HOLE ATTACKS Brought to you by

2. Cyber criminals are seeing fewer results from spear phishing attacks because users are getting smarter about email

3. Instead of chasing their prey, these cyber criminals set a trap and wait for the prey to come to them See how it works >

4. Attackers target an organization1 2 3 4 Use tracking tools to ﬁnd sites employees use Plant malware on these sites Identify vulnerabilities 5 Exploit is delivered to the target machine HOW IT WORKS 5 Access targeted information

5. FIND TARGET Cybercriminals identify a target organization, but may not be able to attack head-on due to hardened security. ? STEP 1

6. ! FIND THE SITES THEY USE These attackers use common internet tracking tools like AddThis and KISSMetrics to identify sites frequently visited by employees of their target company STEP 2

7. PLANT MALWARE Then, they plant malware on these sites and wait for users to visit. STEP 3

8. 1 IDENTIFY VULNERABILITIES Malicious content scans user machines for exploitable vulnerabilities like outdated anti-virus and browsers. The user’s computer phones home to the attacker with vulnerabilities. STEP 4

9. 1 EXPLOIT EXPLOIT DELIVERED The exploit is delivered to the target machine. STEP 5

10. ACCESS TARGET INFORMATION Steal intellectual property or gain access to sensitive information Insert malware into the source code of a company like Apple or Facebook Steal ﬁnancial data to commit fraud or sell the information to criminals STEP 6

11. Third party web analytics and tracking services know which websites people visit and which links they click Legitimate websites are used effectively to deliver malware because they aren’t blacklisted Zero day vulnerabilities, undetectable by anti-virus, are exploited by sophisticated and well-funded criminals such as the Elderwood group WHY IT WORKS

12. Identify and block the tracking services that are monitoring the activity of your employees PROTECTION TIP 1

13. Use browser plug-ins that block HTTP redirects PROTECTION TIP 2

14. Enable automatic updates for web browsers PROTECTION TIP 3

15. Maintain visibility over all tracking services in use to identify and block new services PROTECTION TIP 4

16. GET MORE DETAILS & TIPS Download the 4-Step Guide to Cloud Data Security to learn about the new attack vectors & how to protect your company http://bit.ly/4StepGuide Brought to you by ! DOWNLOAD THE GUIDE

Watering Hole Attacks

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Andere mochten auch

Andere mochten auch (9)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

Watering Hole Attacks