Doxxing, Dissidents, And. Digital Extortion. Fortify Your Digital Risk Defenses. Nick Hayes, Senior Analyst

Transcription

1 Doxxing, Dissidents, And Digital Extortion Fortify Your Digital Risk Defenses Nick Hayes, Senior Analyst

2 A different type of threat Snippets From Mueller Indictment Of Russian Operatives 2018 Forrester Research, Inc. Reproduction Prohibited 2

3 Ex: Social media botnet clustering Source: Screenshot from Zignal Labs visual botnet dashboard 3

4 4

5 Digital risk Exposure to malicious and inadvertent events online that directly link to and affect your business, brand, or people. 5

6 Our attack surface keeps growing IT 6

7 Our attack surface keeps growing Shadow IT 7

8 Our attack surface keeps growing Mobile Shadow IT 8

9 Our attack surface keeps growing Social Mobile Shadow IT 9

10 Our attack surface keeps growing Web Social Mobile Shadow IT 10

11 Our attack surface keeps growing IoT, IPv6,?? Web Social Mobile Shadow IT 11

12 Our attack surface keeps growing 3 rd parties 3 rd parties IoT, IPv6,?? Web Social Mobile Shadow IT 12

13 Our attack surface keeps growing 4 th parties 4 th parties 3 rd parties 3 rd parties IoT, IPv6,?? Web Social Mobile Shadow IT 13

14 Active threats to your organization: Data and IP exposure Brand hijacking, account takeovers Executive/VIP safety Stock sabotage, crisis amplification Digital extortion 14

15 Example: Angler phishing Which one is real? 2018 Forrester Research, Inc. Reproduction Prohibited 15

16 Example: Angler phishing Which one is real? 2018 Forrester Research, Inc. Reproduction Prohibited 16

17 Tactics are effective and often sophisticated 2018 Forrester Research, Inc. Reproduction Prohibited 17

18 Customers will even use the dark web 2018 Forrester Research, Inc. Reproduction Prohibited 18

19 We have less control 19

20 We have less control Inability to control 20

21 We have less control Inability to control Known assets, corporatecontrolled digital footprint 21

22 We have less control Unsanctioned activity, rogue accounts Inability to control 22

23 We have less control Spoofing, impersonations, fraud Inability to control 23

24 We have less control Coordinated botnets, criminal marketplaces Inability to control 24

25 Defend your digital footprint with active risk recon and response. 25

26 Risk impact Unprepared Risk threshold Responsive Preventive Potential Emerging Crisis Event stage Recovery 26

27 Develop active digital risk protection. 27

28 The three-step process of DRP Map Monitor Mitigate Catalog your entire digital footprint. Apply business and asset context for targeted scanning and detection. Streamline controls and remediation action to curb risk impact. 28

29 Catalog your digital assets & attributes Map Points of presence Actors Affinities Assets 29

30 Catalog your digital assets & attributes Map Web sites and infrastructure Social media, apps Points of presence Actors Affinities Assets 30

31 Catalog your digital assets & attributes Map Actors Employees, execs, third-parties Threat actors, bots Affinities Assets 31

32 Catalog your digital assets & attributes Map Affinities Assets Brands, logos, products PII, PHI, SSNs 32

33 Catalog your digital assets & attributes Map Affinities Demographics, psychographics Relationships 33

34 Establish consistent visibility Monitor 1. Data collection techniques Access: APIs, pay-for-access data, other security intel feeds Harvesting: Data crawlers, bots, sensors, etc. HUMINT: analyst-curated, in-depth investigations 2. Breadth and depth of risk analytics Scope: number of assets, entities, regions, data types Frequency: rate of scans weekly, daily, real-time Sophistication: risk scoring, alert options, data visualization 34

35 Prepare your response 1. Digital risk scenario analysis Mitigate 2. Technical controls and contingencies Account and asset protection Takedowns and event remediation Integration with security tools: firewalls, ESGs, etc 3. Response teams and plans Decision trees, crisis communications Key external stakeholders, regional support 35

36 Forrester s digital risk framework Oversight Strategy & Performance Management Digital risk & compliance mgmt Digital assurance People Process Technology DRD leadership & expertise Marketing, security, & risk collaboration Digital footprint discovery & mapping Digital governance Social risk monitoring & mitigation Mobile risk monitoring & mitigation Digital risk advocacy, training & awareness Event review & escalation Digital risk remediation Web & Dark Web monitoring & mitigation Malvertising & digital marketing security Digital risk analytics 36

37 Simplified capabilities assessment Map Monitor Mitigate Social media Mobile app stores Surface web Dark web Third-parties 37

38 Digital distortion is only just beginning 38

39 Key takeaways 1. Digital footprints are vast and valuable. 2. Detection and remediation supersede prevention. 3. DRP requires both data analytics and integration. 4. CISOs must prioritize brand security initiatives. 39

40 Nick Thank you FORRESTER.COM