APT-in-Doraemon-movie-Nobitas-treasure-island-eng

Slide 1

Slide 1 text

ADVANCED PERSISTENT THREAT IN DORAEMON MOVIE “NOBITA’S TREASURE ISLAND” @MC_SEC_KB

Slide 2

Slide 2 text

CONTENTS 1. Replay 2. Explanation from the viewpoint of security 3. Conclusion

Slide 3

Slide 3 text

1. REPLAY

Slide 4

Slide 4 text

Gian & Suneo tried to stop the opponents… Opponent2: Swordmaster Opponent1: Gunmaster using 2guns,and stretching arms.

Slide 5

Slide 5 text

They could not move because the opponent targeted with the gun. But they found Doraemon’s secret tool in their foot. Becoming captain hat： If one wears this hat, he/she can… 1 : change the scenery of all people on the same ship into Caribbean style.（Advanced Reality tool） 2 : have the strongest privilege on the ship and make all people on the same ship obey to him/her. （Privilege elevation tool）

Slide 6

Slide 6 text

Dive into the sea to avoid the gun.

Slide 7

Slide 7 text

Dive to inside space of the gun’s range.

Slide 8

Slide 8 text

Attack from the air…

Slide 9

Slide 9 text

Cut !

Slide 10

Slide 10 text

Ship wrecked, and Suneo was thrown into the sea, but…

Slide 11

Slide 11 text

Gian wearing the hat landed on the opponents’ ship.

Slide 12

Slide 12 text

He used the power of the tool, it means that… The captain's command is absolute !

Slide 13

Slide 13 text

Having the strongest privilege on the ship and make all people on the same ship obey to him.（Privilege elevation tool）アイアイサー！ Aye, aye, sir! The captain's command is absolute !

Slide 14

Slide 14 text

Gian and Suneo suppressed the opponents’ ship.

Slide 15

Slide 15 text

2. EXPLANATION FROM THE VIEWPOINT OF SECURITY Explanation from the viewpoint of security is written in this box.

Slide 16

Slide 16 text

Network protection with Firewall : Blocking unecessary port . Gian & Suneo tried to stop the opponents…

Slide 17

Slide 17 text

Evasion of Firewalls: Diving into the target with commonly used ports, e.g.http/https/ftp/smtp/DNS and so on. Dive into the sea to avoid the gun.

Slide 18

Slide 18 text

Dive to inside space of the gun’s range. Evasion of Firewalls: Diving into the target with commonly used ports, e.g.http/https/ftp/smtp/DNS and so on.

Slide 19

Slide 19 text

They could avoided firewalls and reached to the target. Attack from the air…

Slide 20

Slide 20 text

The target reacted to the phishing mail… Cut !

Slide 21

Slide 21 text

“I opened the file, but I don’t know about it.” The target deleted the phising mail, but… Ship wrecked, and Suneo was thrown into the sea, but…

Slide 22

Slide 22 text

At the same time, more powerful and more evil something was downloaded… To tell the truth, this is just a decoy. Gian wearing the hat landed on the opponents’ ship.

Slide 23

Slide 23 text

It commands the privilege elevation on the system. He used the power of the tool, it means that… The captain's command is absolute !

Slide 24

Slide 24 text

アイアイサー！ Having the strongest privilege on the ship and make all people on the same ship obey to him.（Privilege elevation tool） Aye, aye, sir! The captain's command is absolute ! It seized the root/admin privilege on the system.

Slide 25

Slide 25 text

Malware hijacked the system Gian and Suneo suppressed the opponents’ ship.

Slide 26

Slide 26 text

３. CONCLUSION

Slide 27

Slide 27 text

Dad, what is “Advanced Persistent Threat” ?

Slide 28

Slide 28 text

That’s what Gian & Suneo did in “Nobita’s Treasure Island” Dad, what is “Advanced Persistent Threat” ?

Slide 29

Slide 29 text

You can explain APT as easily as this ! That’s what Gian & Suneo did in “Nobita’s Treasure Island” Dad, what is “Advanced Persistent Threat” ?