BUILDING AN EFFECTIVE PROGRAM TO PROTECT AGAINST FRAUD
|
|
- Mercy Watson
- 5 years ago
- Views:
Transcription
1 BUILDING AN EFFECTIVE PROGRAM TO PROTECT AGAINST FRAUD Navindra Ramnauth CISSP Principal Sales Engineer Proofpoint, Inc.
2 Proofpoint at a Glance LEADING CUSTOMERS DEEP SECURITY DNA UNIQUE VISIBILITY ENTERPRISE CLASS ~60% of the Fortune threat ops and research team 20B+ messages processed daily 8 straight years of MQ leadership 6,000+ Enterprise Customers 38,000+ Essentials Customers 120+ Tier 1 ISPs ~25% revenue invested in R&D 330K+ daily unique malware samples from malware exchange 1T+ node threat graph 60M+ mobile apps scanned 90%+ renewal rate Proofpoint, Inc.
3 THE BILLION DOLLAR PROBLEM Proofpoint, Inc.
4 Security: Rapidly Evolving Landscape $ Invented Hello, WWW! Spam Malware Spear Phishing Social Eng Attacks Data Breaches Ransomware BEC $712 Per employee $3.7M Per company $1B+ For large breaches $5B In 2017 $5.3B worldwide Source: CSOonline.com, Cybersecurity ventures, Nucleus Research, FBI Proofpoint, Inc.
5 is vulnerable to identity deception Anyone can pretend to be anyone Think of the from field being entirely editable Even the SMTP protocol itself states that is inherently vulnerable to identity deception There is nothing to stop me sending an to anyone pretending to be Donald Trump at the White House dot gov Proofpoint, Inc.
6 Definitions fraud: Criminal use of identity deception and Social engineering tactics over to Dupe a target into giving up money, data, information or access fraud targets: Employees/Educators Supply Chain Public Business Compromise (aka CEO impersonation, whaling, etc.): B2B flavor of fraud Originally synonymous with wire transfer fraud Proofpoint, Inc.
7 Independent survey of 2,250 businesses 75 percent of organizations experienced at least one targeted fraud attack > 77 percent of businesses expect they will fall victim to fraud in next 12 months Proofpoint, Inc.
8 How Are Companies Protecting Themselves? Proofpoint, Inc.
9 Who Is Most At Risk? Proofpoint, Inc.
10 WHY THESE ATTACKS ARE SO SUCCESSFUL Proofpoint, Inc.
11 Fraud Characteristics Proofpoint, Inc.
12 Everyone is Targeted All Organizations - Large and Small Large and small organizations worldwide are getting targeted All Industries All industries are targeted Average BEC attacks per company targeted Average BEC Attacks Per Company Targeted Vertical 2017-Q2 Manufacturing VERTICAL 2017-Q2 Telecommunications Manufacturing 44 Technology Telecommunications 39 Energy/Utilities Technology 38 Energy/Utilities 31 Business Services Business Services 29 Automotive Automotive 26 Financial Services Financial Services 23 Retail Retail 22 Transportation Transportation 20 Healthcare Healthcare 19 Entertainment/Media Entertainment/Media 17 CFO HR FINANCE PAYROLL COO All Functions All functions within organizations are targeted CFO 47% HR Finance Payroll 25% 25% 13% 13% 8% 8% COO 5% 5% 47% Source: Proofpoint Threat Research Proofpoint, Inc.
13 4 Common Fraud Personalities The Authoritarian The Conversationalist The Fake Chain of s The False Approver Exploit leadership position Build dialogue Illusion of credibility Establish believability Create urgency Seek to earn trust Realistic experience Move from channel Avoid dialogue Follow-up Elicit emotional response Evade detection Proofpoint, Inc.
14 Budgeting/staff costs Budgeting/staff costs PS Paul Smith Monday, 19 th June 2017 at Sarah Foster Hi Sarah, I m finalizing the budget forecast for staff costs for next year - can you send over the W2 s for the office based staff? Any questions please call me (I m going to be in the car for the next couple of hours). Thanks and regards, Paul Paul Smith Chief Financial Officer Proofpoint, Inc.
15 Accounting changes, action rq d Accounting changes, action rq d SR Steve Roberts <jroberts@trustedpartner.com> Monday, 19 th June 2017 at John Parry Hi John, We re making some structural banking changes ahead of March Please update the payment details you use for out international business to the following: China Merchants Bank, H. O. Shenzhen (SWIFT CODE: CMBCCNBSXXX) Account Number: Account Holder: Partner International Holdings Any questions ring me on (408) Steve Steve Roberts Trusted Partner Proofpoint, Inc.
16 How Are Companies Protecting Themselves? Proofpoint, Inc.
17 92% OF COMPANIES WERE TARGETED BY AT LEAST 1 ATTACK IN Q DOMAIN SPOOFING yourcompany.com % of customers targeted by BEC tactic 63% LOOK-ALIKE DOMAIN y0urc0rnpany.com 15% DISPLAY NAME SPOOFING <John Smith> 92% 0% 10% 20% 30% 40% 50% 60% 70% 80% 90% 100% Proofpoint, Inc.
18 HOW TO STOP FRAUD Proofpoint, Inc.
19 Multi-Layered Security: Identity & Security Screening Proofpoint, Inc.
20 IDENTITY CONTROL Proofpoint, Inc.
21 Authentication Legitimate Company Legitimate Partner Inbox Suspicious Proofpoint, Inc.
22 Lookalike Domain Discovery acme.com company.com acme-us.com cornpany.com proofpoint.com proofp0int.com DETECT & ANALYZE FLAG SUSPICIOUS TAKE DOWN Proofpoint, Inc.
23 CONTENT ANALYSIS Proofpoint, Inc.
24 Classification Sender has a good reputation From: Partner <partnerexec@partner.com> Subject: Account Changes, Action Required Date: Oct 9, :07 AM PDT To: order admin<oa@acme.com> Potentially suspicious subject Appears to come from a trusted source Hi John, We re making some structural banking changes ahead of March Sender/receiver relationship Please update the payment details you use for out international business to the following: China Merchants Bank, H. O. Shenzhen (SWIFT CODE: CMBCCNBSXXX) Account Number: Account Holder: Partner International Holdings Thanks, Alice Potentially suspicious content to analyze Proofpoint, Inc.
25 Data Loss Prevention DOC JPG PDF PPT DETECT and BLOCK BEC-related content sent from the organization Proofpoint, Inc.
26 Proofpoint Fraud Proofpoint, Inc.
27 Point Solutions Only Solve Part of the Problem Tactic & Target Employees Customers Partners Domain spoofing Person Person Vendor 1 Person <person@company.com Cousin domains Person <badguy@gmail.com Person <badguy@gmail.com Person <badguy@gmail.com Display Name spoofing Vendor 2 Person <person@c0rnmpany.com Person <person@c0rnmpany.com Person <person@c0rnmpany.com Proofpoint, Inc.
28 Proofpoint s EFD 360 Tactic & Target Employees Customers Partners Domain spoofing Person <person@company.com Person <person@company.com Person <person@company.com Cousin domains Person <badguy@gmail.com Person <badguy@gmail.com Person <badguy@gmail.com Display Name spoofing 360 protection across ALL fraud tactics and targets Person <person@c0rnmpany.com Person <person@c0rnmpany.com Person <person@c0rnmpany.com Proofpoint, Inc.
29 Proofpoint s EFD 360 Tactic & Target Employees Customers Partners Domain spoofing Person <person@company.com Person <person@company.com Person <person@company.com Cousin domains Person <badguy@gmail.com Person <badguy@gmail.com Person <badguy@gmail.com Display Name spoofing 360 protection across ALL fraud tactics and targets Person <person@c0rnmpany.com Person <person@c0rnmpany.com Person <person@c0rnmpany.com Visibility and control from a SINGLE pane of glass Proofpoint, Inc.
30 Proofpoint, Inc.
PEOPLE CENTRIC SECURITY THE NEW
PEOPLE CENTRIC SECURITY THE NEW PARADIGM IN CYBERSECURITY David Karlsson SE Nordics March 2018 1 2018 Proofpoint, Inc. Proofpoint at a Glance LEADING CUSTOMERS DEEP SECURITY DNA UNIQUE VISIBILITY PARTNERS
More informationTurning the Tide: Fending off Cyber Threats
SESSION ID: SPO1-W05A Turning the Tide: Fending off Cyber Threats Authenticate / Protect / Respond Roy Murdoch SE Manager NEMEA Proofpoint Who s in the Actors Sights? Attacks Increasingly Target Individuals,
More informationMachine-Powered Learning for People-Centered Security
White paper Machine-Powered Learning for People-Centered Security Protecting Email with the Proofpoint Stateful Composite Scoring Service www.proofpoint.com INTRODUCTION: OUTGUNNED AND OVERWHELMED Today
More informationTABLE OF CONTENTS Introduction: IS A TOP THREAT VECTOR... 3 THE PROBLEM: ATTACKS ARE EVOLVING FASTER THAN DEFENSES...
The Guide TABLE OF CONTENTS Introduction: EMAIL IS A TOP THREAT VECTOR... 3 THE PROBLEM: ATTACKS ARE EVOLVING FASTER THAN EMAIL DEFENSES... 4 Today s Top Email Fraud Tactics...5 Advanced Malware...8 Outbound
More informationEBOOK. Stopping Fraud. How Proofpoint Helps Protect Your Organization from Impostors, Phishers and Other Non-Malware Threats.
EBOOK Stopping Email Fraud How Proofpoint Helps Protect Your Organization from Impostors, Phishers and Other Non-Malware Threats www.proofpoint.com EBOOK Stopping Email Fraud 2 Today s email attacks have
More informationEvolution of Spear Phishing. White Paper
Evolution of Spear Phishing White Paper Executive Summary Phishing is a well-known security threat, but few people understand the difference between phishing and spear phishing. Spear phishing is the latest
More informationREPORT. proofpoint.com
REPORT proofpoint.com Email fraud, also known as business email compromise (BEC), is one of today s greatest cyber threats. These socially engineered attacks seek to exploit people rather than technology.
More information2018 Edition. Security and Compliance for Office 365
2018 Edition Security and Compliance for Office 365 [Proofpoint has] given us our time back to focus on the really evil stuff. CISO, Global 500 Manufacturer Like millions of businesses around the world,
More informationwith Advanced Protection
with Advanced Email Protection OVERVIEW Today s sophisticated threats are changing. They re multiplying. They re morphing into new variants. And they re targeting people, not just technology. As organizations
More informationREPORT. Year In Review. proofpoint.com
REPORT Year In Review proofpoint.com Email fraud, also known as business email compromise (BEC), is one of today s greatest cyber threats. These socially engineered attacks seek to exploit people rather
More informationTrustwave SEG Cloud BEC Fraud Detection Basics
.trust Trustwave SEG Cloud BEC Fraud Detection Basics Table of Contents About This Document 1 1 Background 2 2 Configuring Trustwave SEG Cloud for BEC Fraud Detection 5 2.1 Enable the Block Business Email
More informationSecurity and Compliance for Office 365
Security and Compliance for Office 365 [Proofpoint has] given us our time back to focus on the really evil stuff. CISO, Global 500 Manufacturer Like millions of businesses around the world, you may be
More informationProofpoint, Inc.
1 2018 Proofpoint, Inc. Juan Carlos Cabrera Country Manager Caribbean & Central America AMENAZAS EN EL 2018 SABES QUIEN ESTA UTILIZANDO TU DOMINIO? 2 2017 Proofpoint, Inc. Juan Carlos Cabrera Country Manager
More informationSecurity & Phishing
Email Security & Phishing Best Practices In Cybersecurity Presenters Bill Shieh Guest Speaker Staff Engineer Information Security Ellie Mae Supervisory Special Agent Cyber Crime FBI 2 What Is Phishing?
More informationCLICK TO EDIT MASTER TITLE STYLE Fraud Overview and Mitigation Strategies
Fraud Overview and Mitigation Strategies SUNTRUST TEAM: DOUG HICKMAN SENIOR VICE PRESIDENT FOUNDATIONS AND ENDOWMENTS SPECIALTY PRACTICE JAMES BERNAL ASSISTANT VICE PRESIDENT FOUNDATIONS AND ENDOWMENTS
More informationWHITEPAPER. Protecting Against Account Takeover Based Attacks
WHITEPAPER Protecting Against Account Takeover Based Email Attacks Executive Summary The onslaught of targeted email attacks such as business email compromise, spear phishing, and ransomware continues
More informationThe. Guide. Managing Business Compromise and Impostor Threats to Keep Your Organization Protected
The Guide Managing Business Email Compromise and Impostor Threats to Keep Your Organization Protected Table of Contents Executive Summary... 4 How to Protect Your Organization... 4 Introduction... 6 HOW
More informationFRAUD DEFENSE: How To Fight The Next Generation of Targeted BEC Attacks
EMAIL FRAUD DEFENSE: How To Fight The Next Generation of Targeted BEC Attacks Brian Westnedge bwestnedge@proofpoint.com November 8, 2017 1 2017 Proofpoint, Inc. THE BUSINESS PROBLEM BUSINESS EMAIL COMPROMISE
More information2018 Edition. A Practical Guide to Protecting Your Organization. proofpoint.com
2018 Edition A Practical Guide to Protecting Your Organization proofpoint.com Surviving Email Fraud: A Practical Guide to Protecting Your OrganizatioN 3 Table of Contents Executive Summary... 4 How to
More informationFraud Update: Why Fraudsters Love Wires and How to Stop Them. Luis Rojas, Director, Product Management WesPay 2014
Fraud Update: Why Fraudsters Love Wires and How to Stop Them Luis Rojas, Director, Product Management WesPay 2014 Competitive Pressures Drive Fraud and Operational Risk Availability Of Information Creates
More informationPreventing fraud in public sector entities
Preventing fraud in public sector entities Fraud is a serious problem that can affect anyone, from individuals to large companies and associations. For public sector entities, fraud both external and internal
More informationEBOOK. Stopping Fraud. How Proofpoint Helps Protect Your Organisation from Impostors, Phishers and Other Non-Malware Threats.
EBOOK Stopping Email Fraud How Proofpoint Helps Protect Your Organisation from Impostors, Phishers and Other Non-Malware Threats www.proofpoint.com EBOOK Stopping Email Fraud 2 Today s email attacks have
More informationCybersecurity Guidance for Small Firms Thursday, November 8 9:00 a.m. 10:00 a.m.
Cybersecurity Guidance for Small Firms Thursday, November 8 9:00 a.m. 10:00 a.m. It is crucial that small financial firms take proper cybersecurity measures to protect their customers and their firm. During
More informationPersonal Cybersecurity
Personal Cybersecurity The Basic Principles Jeremiah School, CEO How big is the issue? 9 8 7 6 5 4 3 2 1 Estimated global damages in 2018 0 2016 2018 2020 2022 2024 2026 2028 2030 Internet Users Billions
More informationCYBER SECURITY RESOURCE GUIDE. Cyber Fraud Overview. Best Practices and Resources. Quick Reference Guide for Employees. Cyber Security Checklist
CORPORATE & INSTITUTIONAL BANKING CYBER SECURITY RESOURCE GUIDE Cyber Fraud Overview Best Practices and Resources Quick Reference Guide for Employees Cyber Security Checklist 2 5 7 9 AWARENESS OF CYBER
More informationAutomated Context and Incident Response
Technical Brief Automated Context and Incident Response www.proofpoint.com Incident response requires situational awareness of the target, his or her environment, and the attacker. However, security alerts
More informationCyber Insurance: What is your bank doing to manage risk? presented by
Cyber Insurance: What is your bank doing to manage risk? David Kitchen presented by Lisa Micciche Today s Agenda Claims Statistics Common Types of Cyber Attacks Typical Costs Incurred to Respond to an
More informationCYBERSECURITY SAVE YOUR BOTTOM LINE IBC Annual Convention Anne Benigsen, Bankers Bank of the West
CYBERSECURITY SAVE YOUR BOTTOM LINE I t s n o t a l l a b o u t m o n e y - r e a l l y 1 WHO AM I? 24 years in IT. 10 years in IS. 7 years in banking. Small business. Large business. Government. Entertainment
More informationEmployee Privacy in the Electronic Workplace
Employee Privacy in the Electronic Workplace Jane Shea and Michael Severini Today s Speakers Jane Hils Shea, Esq. Member & Chair of Data Privacy and Information Security Practice Group Frost Brown Todd
More information2018 Guide to Building Your Security Strategy. January 23, pm 2 pm ET
2018 Guide to Building Your Security Strategy January 23, 2018 1 pm 2 pm ET Agenda Welcome and Introductions Claudia Ellison, Program Director, ehealth Initiative Discussion & Comments Ryan Witt, Managing
More informationPhishing in the Age of SaaS
Phishing in the Age of SaaS AN ESSENTIAL GUIDE FOR BUSINESSES AND USERS The Cloud Security Platform Q3 2017 intro Phishing attacks have become the primary hacking method used against organizations. In
More informationWhat can we lose not implementing proper security in our IT environment? Aleksandar Pavlovic Security Account Manager Cisco
What can we lose not implementing proper security in our IT environment? Aleksandar Pavlovic Security Account Manager Cisco Increasing Digital Traffic Creates a Greater Attack Surface Global IP Traffic
More informationA Layered Approach to Fraud Mitigation. Nick White Product Manager, FIS Payments Integrated Financial Services
A Layered Approach to Fraud Mitigation Nick White Product Manager, FIS Payments Integrated Financial Services Session Agenda Growing Fraud Concerns Old Habits Die Hard Maneuvering through the Barriers
More informationHow to Conquer Targeted Threats: SANS Review of Agari Enterprise Protect
How to Conquer Targeted Email Threats: SANS Review of Agari Enterprise Protect A SANS Product Review Written by Dave Shackleford May 2017 Sponsored by Agari 2017 SANS Institute Introduction: Email Is a
More informationBuilding a Threat Intelligence Program
WHITE PAPER Building a Threat Intelligence Program Research findings on best practices and impact www. Building a Threat Intelligence Program 2 Methodology FIELD DATES: March 30th - April 4th 2018 351
More informationCybersecurity for the SMB. CrowdStrike s Murphy on Steps to Improve Defenses on a Smaller Scale
Cybersecurity for the SMB CrowdStrike s Murphy on Steps to Improve Defenses on a Smaller Scale The high-profile breaches of Fortune 100 companies are the ones that get the headlines, but small and midsized
More informationCE Advanced Network Security Phishing I
CE 817 - Advanced Network Security Phishing I Lecture 15 Mehdi Kharrazi Department of Computer Engineering Sharif University of Technology Acknowledgments: Some of the slides are fully or partially obtained
More informationRecognizing Fraud Staying Safe 2018 Information/Cyber Security Training
Recognizing Fraud Staying Safe 2018 Information/Cyber Security Training Copyright Sage Data Security 2017-2018 All Rights Reserved Presented by: John H Rogers, CISSP Director of Advisory Services john.rogers@sagedatasecurity.com
More informationTHE CLOUD SECURITY CHALLENGE:
THE CLOUD EMAIL SECURITY CHALLENGE: CLOSING THE CYBERSECURITY SKILLS GAP THROUGH AUTOMATION THE EMAIL SECURITY CHALLENGE Email remains at the heart of the business communications landscape. While nobody
More informationImplementing an Enterprise Phishing Program & Lessons Learned
Implementing an Enterprise Phishing Program & Lessons Learned Events that drove the Project u Increase in Business Email Compromise (BEC) attempts u Increase in Wire Transfer Requests via Spoofed email
More informationState of the Phish 2016
State of the Phish 2016 1 Introduction & Overview In October 2015, Wombat Security acquired ThreatSim, bringing together two of the leading simulated phishing attack tools. ThreatSim has historically prepared
More informationCybersecurity The Evolving Landscape
Cybersecurity The Evolving Landscape 1 Presenter Zach Shelton, CISA Principal DHG IT Advisory Zach.Shelton@DHG.com Raleigh, NC 14+ years of experience in IT Consulting 11+ years of experience with DHG
More informationTHE EFFECTIVE APPROACH TO CYBER SECURITY VALIDATION BREACH & ATTACK SIMULATION
BREACH & ATTACK SIMULATION THE EFFECTIVE APPROACH TO CYBER SECURITY VALIDATION Cymulate s cyber simulation platform allows you to test your security assumptions, identify possible security gaps and receive
More informationFTA 2017 SEATTLE. Cybersecurity and the State Tax Threat Environment. Copyright FireEye, Inc. All rights reserved.
FTA 2017 SEATTLE Cybersecurity and the State Tax Threat Environment 1 Agenda Cybersecurity Trends By the Numbers Attack Trends Defensive Trends State and Local Intelligence What Can You Do? 2 2016: Who
More informationCombating Cyber Risk in the Supply Chain
SESSION ID: CIN-W10 Combating Cyber Risk in the Supply Chain Ashok Sankar Senior Director Cyber Strategy Raytheon Websense @ashoksankar Introduction The velocity of data breaches is accelerating at an
More informationProtecting Against Account Takeover Based Attacks
Protecting Against Account Takeover Based Email Attacks Executive Summary The onslaught of targeted email attacks such as Business Email Compromise, spear phishing, and ransomware continue uninterrupted,
More informationCYBER SOLUTIONS & THREAT INTELLIGENCE
CYBER SOLUTIONS & THREAT INTELLIGENCE STRENGTHEN YOUR DEFENSE DarkTower is a global advisory firm focused on security for some of the world s leading organizations. Our security services, along with real-world
More informationCybersecurity A Regulatory Perspective Sara Nielsen IT Manager Federal Reserve Bank of Kansas City
1 Cybersecurity A Regulatory Perspective Sara Nielsen IT Manager Federal Reserve Bank of Kansas City The opinions expressed are those of the presenters and are not those of the Federal Reserve Banks, the
More informationWebomania Solutions Pvt. Ltd. 2017
The other name for link manipulation is Phishing or you can say link manipulation is type of phishing attack done generally to mislead the user to a replica website or a looka-like of some well-known site.
More informationNew Zealand National Cyber Security Centre Incident Summary
New Zealand National Cyber Security Centre 2013 Incident Summary National Cyber Security Centre 2013 Incident Summary Foreword The incidents summarised in this report reinforce that cyber security is truly
More informationSECOPS: NAVIGATE THE NEW LANDSCAPE FOR PREVENTION, DETECTION AND RESPONSE
SESSION ID: SBX4W5 SECOPS: NAVIGATE THE NEW LANDSCAPE FOR PREVENTION, DETECTION AND RESPONSE Dara Such VP & Publisher, Security Networking and IoT TechTarget @darasuch What we ll cover today State of SecOps:
More informationybersecurity for the Modern Era Three Steps to Stopping malware, Credential Phishing, Fraud and More
ybersecurity for the Modern Era Three Steps to Stopping malware, Credential Phishing, Email Fraud and More www.proofpoint.com EBOOK Cybersecurity in the modern era 2 ONLY AMATEURS ATTACK MACHINES. PROFESSIONALS
More informationEmployee Security Awareness Training
Employee Security Awareness Training September 2016 Purpose Employees have access to sensitive data through the work they perform for York. Examples of sensitive data include social security numbers, medical
More informationINTRODUCTION. We would like to thank HelpSystems for supporting this unique research. We hope you will enjoy the report.
2019 SIEM REPORT INTRODUCTION Security Information and Event Management (SIEM) is a powerful technology that allows security operations teams to collect, correlate and analyze log data from a variety of
More informationGovernance Ideas Exchange
www.pwc.com.au Anatomy of a Hack Governance Ideas Exchange Robert Di Pietro October 2018 Cyber Security Anatomy of a Hack Cyber Security Introduction Who are the bad guys? Profiling the victim Insights
More informationKnowBe4 is the world s largest integrated platform for awareness training combined with simulated phishing attacks.
KnowBe4 is the world s largest integrated platform for awareness training combined with simulated phishing attacks. About Us The world s most popular integrated Security Awareness Training and Simulated
More informationBRING SPEAR PHISHING PROTECTION TO THE MASSES
E-Guide BRING SPEAR PHISHING PROTECTION TO THE MASSES SearchSecurity phishing. I n this expert tip, David Sherry describes how a combination of technical controls and user awareness training can help put
More informationManaged Enterprise Phishing Protection. Comprehensive protection delivered 24/7 by anti-phishing experts
Managed Enterprise Phishing Protection Comprehensive protection delivered 24/7 by anti-phishing experts MANAGED ENTERPRISE PHISHING PROTECTION 24/7 expert protection against phishing attacks that get past
More informationHow To Build or Buy An Integrated Security Stack
SESSION ID: PDIL-W03 How To Build or Buy An Integrated Security Stack Jay Leek CISO Blackstone Haddon Bennett CISO Change Healthcare Defining the problem 1. Technology decisions not reducing threat 2.
More informationSecurity for Financial Services: Addressing the Perception Gaps in a Dynamic Landscape
White Paper Security for Financial Services: Addressing the Perception Gaps in a Dynamic Landscape Financial services organizations have a unique relationship with technology: electronic data and transactions
More informationWebroot Phishing Threat Trends
December 2016 Webroot Phishing Threat Trends An update to the 2016 Threat Brief Introduction Who would ever fall for that? That s what many people think when they see a phishing attempt, since less advanced
More informationAn Ounce of Prevention
REPORT An Ounce of Prevention A 12-month analysis of ransomware, email fraud and other healthcare threats and how you can stop them proofpoint.com 2 Table of Contents INTRODUCTION...3 Why this report is
More informationPanda Security 2010 Page 1
Panda Security 2010 Page 1 Executive Summary The malware economy is flourishing and affecting both consumers and businesses of all sizes. The reality is that cybercrime is growing exponentially in frequency
More informationAgari Global DMARC Adoption Report: Open Season for Phishers
Agari Global DMARC Adoption Report: Open Season for Phishers Executive Summary Based on Agari research of public DNS records, 92 percent of all Fortune 500 companies have left their customers and business
More informationAccelerating growth and digital adoption with seamless identity trust
Accelerating growth and digital adoption with seamless identity trust IBM Trusteer helps organizations seamlessly establish identity trust across the omnichannel customer journey Let s get started 3 Introduction
More informationSecuring today s identity and transaction systems:! What you need to know! about two-factor authentication!
Securing today s identity and transaction systems:! What you need to know! about two-factor authentication! 1 Today s Speakers! Alex Doll! CEO OneID Jim Fenton! Chief Security Officer OneID 2 Contents!
More informationWayward Wi-Fi. How Rogue Hotspots Can Hijack Your Data and Put Your Mobile Devices at Risk
Wayward Wi-Fi How Rogue Hotspots Can Hijack Your Data and Put Your Mobile Devices at Risk 288 MILLION There are more than 288 million unique Wi-Fi networks worldwide. Source: Wireless Geographic Logging
More informationA CFO s Guide to Cyber Security in the Coming Year
CYBER SECURITY A CFO s Guide to Cyber Security in the Coming Year LEVERAGE TECHNOLOGY AND YOUR FINANCIAL INSTITUTION TO BUILD BETTER DEFENSES www.cfo.com www.huntington.com A CFO s Guide to Cyber Security
More informationJune 2 nd, 2016 Security Awareness
June 2 nd, 2016 Security Awareness Security is the degree of resistance to, or protection from, harm. if security breaks down, technology breaks down Protecting People, Property and Business Assets Goal
More informationIT Security Update on Practical Risk Mitigation Strategies
IT Security Update on Practical Risk Mitigation Strategies Bonnie Bastow, CIA, CISA, CISM Director May 2016 This material was used by Elliott Davis Decosimo during an oral presentation; it is not a complete
More informationHOW TO PHISH YOUR BUSINESS (AND GET MANAGEMENT S BUY-IN)
HOW TO PHISH YOUR BUSINESS (AND GET MANAGEMENT S BUY-IN) Answering key questions about the value, cost, risk, and execution of a phishing awareness program TABLE OF CONTENTS Introduction: What Management
More informationThe Cost of Phishing. Understanding the True Cost Dynamics Behind Phishing Attacks A CYVEILLANCE WHITE PAPER MAY 2015
The Cost of Phishing Understanding the True Cost Dynamics Behind Phishing Attacks A CYVEILLANCE WHITE PAPER MAY 2015 Executive Summary.... 3 The Costs... 4 How To Estimate the Cost of an Attack.... 5 Table
More informationInformation Governance, the Next Evolution of Privacy and Security
Information Governance, the Next Evolution of Privacy and Security Katherine Downing, MA, RHIA, CHPS, PMP Sr. Director AHIMA IG Advisors Follow me @HIPAAQueen 2017 2017 Objectives Part Part I IG Topic
More information5 Trends That Will Impact Your IT Planning in Layered Security. Executive Brief
5 Trends That Will Impact Your IT Planning in 2012 Layered Security Executive Brief a QuinStreet Excutive Brief. 2011 Layered Security Many of the IT trends that your organization will tackle in 2012 aren
More informationThis Online Gaming Company Didn t Want to Roll the Dice on Security That s Why it Worked with BlackBerry
This Online Gaming Company Didn t Want to Roll the Dice on Security That s Why it Worked with BlackBerry At a Glance With offices across the country, this gaming company has been in operation for decades.
More informationA Data-Centric Approach to Endpoint Security
A Data-Centric Approach to Endpoint Security September 28, 2017 Eric Ogren Senior Analyst, Security 451 Research Bill Bradley Director of Product Marketing Digital Guardian About Eric Ogren Eric Ogren
More informationPhishing: When is the Enemy
Phishing: When E-mail is the Enemy Phishing, once only a consumer worry, is creating headaches for e-mail administrators as businesses become the next target. CONTENTS Understanding the Enemy 2 Three Things
More informationThe Credential Phishing Handbook. Why It Still Works and 4 Steps to Prevent It
The Credential Phishing Handbook Why It Still Works and 4 Steps to Prevent It Introduction Phishing is more than 20 years old, but still represents more than 90% of targeted attacks. The reason is simple:
More informationCAGFO Conference September 2018
Cybersecurity Risk CAGFO Conference September 2018 With you today Scott MacLennan CISSP, CISA Senior Manager, Risk Consulting Winnipeg, MB smaclennan@kpmg.ca 204 957 2203 Marcus Jungbauer CISSP-ISSAP,
More informationCybersecurity and Nonprofit
Cybersecurity and Nonprofit 2 2 Agenda Cybersecurity and Non Profits Scenario #1 Scenario #2 What Makes a Difference Cyber Insurance and How it Helps Question and Answer 3 3 Cybersecurity and Nonprofit
More informationEvaluating DMARC Effectiveness for the Financial Services Industry
Evaluating DMARC Effectiveness for the Financial Services Industry by Robert Holmes General Manager, Email Fraud Protection Return Path Executive Summary Email spoofing steadily increases annually. DMARC
More informationAKAMAI CLOUD SECURITY SOLUTIONS
AKAMAI CLOUD SECURITY SOLUTIONS Whether you sell to customers over the web, operate data centers around the world or in the cloud, or support employees on the road, you rely on the Internet to keep your
More informationTM
TM Medical Devices Medical Insurers Medical Providers Pharmaceutical Medical Labs Medical Retail #1 Most at Risk Sector $200 for Every Record: Cost of the breach, downtime, reputational damage, litigations,
More information2018 GLOBAL CHANNEL PARTNER SURVEY THYCOTIC CHANNEL PARTNER SURVEY REPORT
2018 GLOBAL CHANNEL PARTNER SURVEY THYCOTIC CHANNEL PARTNER SURVEY REPORT THYCOTIC 2018 GLOBAL CHANNEL PARTNER SURVEY Channel Partner survey highlights client cybersecurity concerns and opportunities for
More informationfalanx Cyber Falanx Phishing: Measure your resilience
falanx Cyber Falanx Email Phishing: Measure your resilience Contents What is Email Phishing? 3 Why should I carry out an Email Phishing exercise? 4 PhishEd Managed regular phishing 5 Single assessments
More informationAltitude Software. Data Protection Heading 2018
Altitude Software Data Protection Heading 2018 How to prevent our Contact Centers from Data Leaks? Why is this a priority for Altitude? How does it affect the Contact Center environment? How does this
More informationCyber Security Updates and Trends Affecting the Real Estate Industry
Cyber Security Updates and Trends Affecting the Real Estate Industry What, Why, and How? Agenda Cyber Security Today Changes to Security Standards and Trends Protecting Yourself and Your Organization Takeways
More informationA Brief Introduction to Phishing, Spear Phishing, Whaling & Social Engineering
A Brief Introduction to Phishing, Spear Phishing, Whaling & Social Engineering A Brief Introduction to Phishing, Whaling, and Social Engineering - William Favre Slater III 1 A Brief Introduction to Phishing,
More informationIC B01: Internet Security Threat Report: How to Stay Protected
IC B01: Internet Security Threat Report: How to Stay Protected Piero DePaoli Director, Product Marketing IC B01: Internet Security Threat Report: How to Stay Protected 1 Topics 1 Targeted Attacks 2 Spam
More informationTarget Breach Overview
Target Breach Overview Q: Media reports are stating that Target experienced a data breach. Can you provide more specifics? A: Yes, Target has confirmed that it experienced unauthorized access to its systems
More informationSecurity. The DynaSis Education Series for C-Level Executives
Email Security The DynaSis Education Series for C-Level Executives Threats to your IT network abound, many of them delivered through email. Fortunately, there are cost effective tools available to protect
More informationThe Anti-Impersonation Company. Date: May 2 nd, ValiMail. All Rights Reserved. Confidential and Proprietary.
The Email Anti-Impersonation Company Date: May 2 nd, 2017 Email: I need you, but I don t trust you 3 90%+ of cyber attacks start with a phish 4 Anyone can send email in your name Your Company 3 rd -Party
More informationCybersecurity. You have been breached; What Happens Next THE CHALLENGE FOR THE FINANCIAL SERVICES INDUSTRY
Cybersecurity THE CHALLENGE FOR THE FINANCIAL SERVICES INDUSTRY Gary Meshell World Wide Leader Financial Services Industry IBM Security March 21 2019 You have been breached; What Happens Next 2 IBM Security
More information2017 Annual Meeting of Members and Board of Directors Meeting
2017 Annual Meeting of Members and Board of Directors Meeting Dan Domagala; "Cybersecurity: An 8-Point Checklist for Protecting Your Assets" Join this interactive discussion about cybersecurity trends,
More informationKey Findings from the Global State of Information Security Survey 2017 Indonesian Insights
www.pwc.com/id Key Findings from the State of Information Security Survey 2017 n Insights Key Findings from the State of Information Security Survey 2017 n Insights By now, the numbers have become numbing.
More informationRIMS Perk Session Protecting the Crown Jewels A Risk Manager's guide to cyber security March 18, 2015
www.pwc.com RIMS Perk Session 2015 - Protecting the Crown Jewels A Risk Manager's guide to cyber security March 18, 2015 Los Angeles RIMS Agenda Introductions What is Cybersecurity? Crown jewels The bad
More informationPhishing. Eugene Davis UAH Information Security Club April 11, 2013
Phishing Eugene Davis UAH Information Security Club April 11, 2013 Overview A social engineering attack in which the attacker impersonates a trusted entity Attacker attempts to retrieve privileged information
More informationPercentage of Cybercrime Claims by Method of Attack
Cybercrime: Hype or Real Threat to Businesses? Cybercrime has become front-page news because the threat to businesses and individuals continues to grow, and the attacks are seemingly indiscriminate, keeping
More informationSOUTH AFRICA PHISHING RESPONSE TRENDS. Welcome to the Jumble
SOUTH AFRICA PHISHING RESPONSE TRENDS Welcome to the Jumble 2 OVERVIEW Organisations in South Africa and around the world are moving aggressively to fight phishing attacks. With the number of global phishing
More informationYour security on click Jobs
Your security on click Jobs At Click Jobs is a trading name of Raspberry Recruitment Limited, we're committed to helping you find the right job in a safe and secure environment. On these pages, you can
More information