LOGICAL SECURITY MEETS PHYSICAL SECURITY IF YOU ONLY KNEW WHAT HACKERS CAN DO!

Transcription

1

2 LOGICAL SECURITY MEETS PHYSICAL SECURITY IF YOU ONLY KNEW WHAT HACKERS CAN DO! STEVE SURFARO BUSINESS DEVELOPMENT MANAGER AXIS COMMUNICATIONS SUSAN HUNT, ESQ. SUSAN L. HUNT PC

3 Session at-a-glance Threats to your network and client data are everywhere What s your liability? Best Practices in Network Security Social Networking and you Safe internet marketing! Sue / Steve / Sue

4 Network Threats are everywhere and always evolving. Will you be protected? IBM Global Services IBM Internet Security Systems Ahead of the threat IBM Corporation Steve

5 Question Does having client data in different locations increase risk and liability? COMPANY NETWORK PORTABLE MEDIA HOSTED SERVICES Steve

6 Some answers COMPANY NETWORK PORTABLE MEDIA HOSTED SERVICES Company/Office Network: If you ve got client data on workstations and servers, your customers expect reasonable precautions be taken in protecting that data! Portable Devices: If you must transport data on USB Drives and other means, provide strong password access and encryption to that drive Online storage and service provider: research what other firms like yours currently use and verify they provide the security and quality of service you (and your clients) expect Sue

7 Access, Distribution, Endpoint The cloud Enterprise Service provider network Perimeter Local area network (LAN) Solutions and product families Clean pipes Behavioral analysis anomaly detection services (ADS) Distributed denial of service (DDoS) protection Network analysis and scrubbing Intrusion prevention Firewall Universal threat management Intrusion prevention Anomaly detection service Vulnerability management Compliance and risk management Vulnerability protection service IP Camera Endpoint Device 802.1x Port Authentication

8 Beware of the Wardriver! Steve

9 Steve

10 Beware of the Bluetooth sniper! Steve / Sue

11 Some WiFi Best Practices (at least for today!) WPA2 in place Hidden SSID? The Wi-Fi adapter of a laptop associated with a hidden-ssid network will poll for the network periodically (whether or not the network is in range) and thus disclose the SSID to those who know how to pick it up. If the SSID is not hidden, the laptop will not poll for the SSID; it is able to connect to the network without searching for it Avoid dictionary words in both the SSID and WPA passphrase Enable the firewall or get a third-party firewall Set up router for MAC address filtering Reference: Google Search Wi-Fi Network Security Plugged In Steve

12 The evolving enterprise: heterogeneity = security risk Past Present + Network Tens of targets Megabits of traffic Thousands of targets Gigabits of traffic Applications Tens of applications Web, mail, domain name server (DNS) Hundreds of applications custom protocols, payroll, trading Policy Inside and outside groups, default deny Hundreds of groups default allow The evolving enterprise (networks, applications and systems) pose a unique challenge not satisfactorily addressed by traditional REACTIVE technologies and approaches Steve

13 Legacy Security Solutions Are No Longer Effective Every year, 1 in 2 organizations suffer from a serious security breach. 99% of organizations who suffered had both firewalls and antivirus in place. *Source: FBI Computer Crime & Research Survey Sue

14 The New Attack Trends Shift from Glory-Motivated-Vandals to Financially-Politically-Motivated-Cyber- Crime They are more organized and collaborative They have a Roadmap They are playing Chess The Designer Worms and Designer Trojans What are the implications when Patient ZERO *is* the only target? The Bot-Networks (Worms Bots) Computational Currency SPAM Relays Spyware/Adware subscriptions Distributed Denial of Service Attacks Undermining Traditional AV Steve

15 The Old Enemy Chen-Ing Hau CIH Virus Joseph McElroy Hacked US Dept of Energy Jeffrey Lee Parson Blaster-B copycat Photos from colleagues at F-Secure Steve

16 The New Enemy Jeremy Jaynes $24M SPAM KING Jay Echouafni Competitive DDoS Andrew Schwarmkoff Russian Mob Phisher Photos from colleagues at F-Secure Steve

17 Question If I don t take precautions with Anti-Virus, Anti-Spyware and other best practices, am I increasing my company s liability? Steve

18 Some answers Absolutely! There are a good deal of situations that can adversely affect your business and increase your company s exposure: If your client data becomes public, you ve breached a confidentiality agreement to protect that data, whether that agreement was implied or documented Unauthorized access to your company s intellectual property not only can negatively effect your standing in a competitive market, but expose preliminary information on untested products Sue

19 Here s an interesting video clip Cue Time 0:55 2:08 and 4:00 - end Courtesy SecurityDreamer.com

20 Steve

21 Vulnerability Management You must know of a vulnerability in order to fix it Scanning/Penetration Testing once a year is like doing nothing Patching strategy is a journey, not a destination Consider both Active and Passive technologies Steve

22 Network Attacks: Worms: Carpet Bombing Steve

23 Evolving to Bots: Surgical Strike Steve

24 The shift to Malicious CODE Steve

25 The shift to Malicious CODE Steve

26 SOCIAL NETWORKING and YOU

27 Question Do Social Networking Sites help business or create security and legal issues? Steve

28 Some answers All three! Communication is key to expanding your business today and Social Networking is a necessity There are cases in which viruses and malware can spread using Social Networking site s messaging systems May be used as evidence or the subject of legal action related to damaging statements Sue

29 Social Networking Positives Helps to market yourself or company Drive traffic to your web site or blog Social Networking sites like FaceBook, LinkedIn and Twitter are part of today s internet tools forming an integrated strategy for success Get focused on the needs of your clients You ll get immediate positive feedback if you re doing this right! You ll learn to write good, marketable content Help Identify your power zone Look at what your competition or companies in other parts of the world are doing Where you ll sell the most products and services Sue

30 Some Social Networking Best Practices Be responsive give something back by replying to every message or tweet directed to you Use services like Twitter Search to make sure you see if someone s talking about you Try to participate where it makes sense Keep business and private addresses separate with your social networking accounts Don t post something you wouldn t want to be public Sue

31 and some negatives Social Networking site communications doesn t replace customer service or direct marketing Don t open your company up to more criticism Be careful who you permit to receive your messages Twitter posts may be used as evidence or the subject of legal action related to damaging statements Sue

32 Portable Platforms and you Powerful Blackberry / iphone Applications FaceBook* Post, update Account, Inbox, Notifications MySpace Mobile* Wordpress* Administer Wordpress Blog Remotely, Post Twitterific Posting, Tiny Browser Whrrl Physical location of colleagues and business partners that want to be found Sue / Steve

33 USA Today: Markets woes, job cuts create new opportunities for cybercrimes Cybercriminals have launched a massive new wave of Internet-based schemes to steal personal information The schemes online promotions touting fake computer virus protection get-rich scams funny or lurid videos The number of malicious programs circulating on the Internet tripled to more than 31,000 a day in mid- September Steve

34 Be careful out there! Cybergangs now routinely activate hundreds of social networking accounts by the minute, dedicating them to criminal pursuits Some attempt to spread viruses via the direct messaging systems used on the social-networking websites Facebook, MySpace and Twitter. "We'll investigate and take appropriate action, which may include disabling the sender's account and blocking certain links from being posted," says Facebook spokesman Barry Schnitt Sue

35 A Robust Security Posture Demands Integration Assess Assessment of the environment Detailed analysis reveals concerns and exposures IT Governance management Assessments can be done at a point in time and on a regular basis Access Defend Steve

36 A Robust Security Posture Demands Integration Assess Assessment of the environment Detailed analysis reveals concerns and exposures IT Governance management Assessments can be done at a point in time and on a regular basis Access Defend Defending enterprise, inside & out, from threats Preemptive protection of the perimeter Protection is also required inside the enterprise from threats to the infrastructure, confidential data and services Steve

37 A Robust Security Posture Demands Integration Assess Assessment of the environment Detailed analysis reveals concerns and exposures IT Governance management Assessments can be done at a point in time and on a regular basis Access Manage access to enterprise assets Enforce a consistent business security policy Management and control of user identities and privileges Defend Defending enterprise, inside & out, from threats Preemptive protection of the perimeter Protection is also required inside the enterprise from threats to the infrastructure, confidential data and services Steve

38 A Robust Security Posture Demands Integration Monitor/ Report Monitoring and taking action Central management of security events Correlation of events into potential threats Ability to take action to prevent and stop malicious threats Assess Assessment of the environment Detailed analysis reveals concerns and exposures IT Governance management Assessments can be done at a point in time and on a regular basis Access Manage access to enterprise assets Enforce a consistent business security policy Management and control of user identities and privileges Defend Defending enterprise, inside & out, from threats Preemptive protection of the perimeter Protection is also required inside the enterprise from threats to the infrastructure, confidential data and services Steve

39 NETWORK SECURITY, LEGAL ASPECTS AND SOCIAL NETWORKING STEVE SURFARO BUSINESS DEVELOPMENT MANAGER AXIS COMMUNICATIONS SUSAN HUNT, ESQ. SUSAN L. HUNT PC

40