Securing your company's networks

Transcript

1. Spying in a Digital World Benjamin Scott [email protected]

2. github.com/bschmoker Propaganda and information control Cheap do-it-yourself SIGINT Valuable data

   is pooled in weak points The Problem

3. github.com/bschmoker The Truth Convenience beats Security Everything has bugs Users

   always click

4. github.com/bschmoker The Risk to Gov’t Strategic Intrusions • military advantage

   • diplomatic maneuvering Blunting economic edge • wide-scale industrial espionage • research and engineering copying

5. github.com/bschmoker Losing economic value • vulnerable clients / social networks

   Theft and abuse of Assets • certificates / hosting / user accounts The Risk to Companies

6. github.com/bschmoker The Threat Major Players: - Intelligence agencies - Mercenaries

   - Sympathizers Differences: - intent / goals - budget / workforce - stealthiness

7. github.com/bschmoker For Instance APT28 - Uses Sofacy and Chopstick to

   spy on NATO targets APT29 - Uses Cozicar to spy on US targets Mercenaries - Uses Potao / BlackEnergy / UltraVNC on targets aligned with Russian conflicts

8. github.com/bschmoker Spam Exploit Botnet Cashout Intrusion The Underground As a

   Service

9. github.com/bschmoker The Solution Block Delivery Stop the Install Prevent Comms

   Sweep for Infections Respond and Fix

10. github.com/bschmoker Assume you are compromised Deter the correct bad guys

    Build herd immunity The Mentality