Cyber Resiliency Engineering Aid - Cyber Resiliency Techniques
Ntxissacsc5 gold 1 mimecast e mail resiliency
-
Upload
north-texas-chapter-of-the-issa -
Category
Internet
-
view
30 -
download
4
Transcript of Ntxissacsc5 gold 1 mimecast e mail resiliency
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Email Security – Growing in threats, quickening in pace
Erez Haimowicz
Enablement and Security
Mimecast
11-10-17
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Email: The Ultimate App
With demanding business and user requirements
24 X 7 Email Availability
ContinuousMission-critical Mobile
.2
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Cyber Resilience
The technology that provides the best possible multi-layered
protection
MULTILAYERED SECURITY
A solution that allows you to continue to work while the issue
is resolved
CONTINUITY
The knowledge that no matter what, you can get back to the
last known good state
REMEDIATION
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Countdown to a breach
Verizon 2016 Data Breach Investigations Report (DBIR)
100 Seconds average time-to-first-click
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
91% of all incidents start with a phish
Wired
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
You can no longer stand in front of your board and say that you won’t have an attack.
As we all know, it’s now a case of when.
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
What those attacking look like
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Your company
is at risk if
you.. • You have certain letters in your domain name
• You accept resumes on your website
• You have a team of people in finance
• You have a profile
• Your life is deemed interesting enough to be on
• Your company is at RISK if you…
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Do You Have a Page Like This On Your Website?
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Real life examples with email
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Imagine being able to stop EVERY malicious file
We all know the risks
Trust your users not to click?
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Who Says Attacks Need to Involve Malware?
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Compromised AccountsStolen User Credentials
Utilize Corp Web mail to spread attack internally or externally to partners/customers
Careless UsersSending sensitive data internally such as projects and PII
“Oops, sent it to the wrong Michael…”
Malicious InsidersPurposely distributing malware or malicious URLs
Internal threats!
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Flawed - The technology23% open the phish & click
Confidetial |
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
• To run an attack…
• You don’t even need to know how to code
Source: Forbes.com - "Ransomware As A Service Being Offered For
$39 On The Dark Net" 7/15/16
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
AND to bypass sandboxes….
FUD (Fully Undetectable) Crypting Services to avoid AV detection
• AND to bypass sandboxes…
• FUD (Fully Undetectable) Crypting Services to avoid AV Detection
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Confidential |
At Risk - The human firewall11% open the phish & run the attachment
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
“HEY STRANGERS - Please send me files”
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
‘Click to View’ Dupe
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
You can’t fix stupid
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
• Whatever we do, they’re still around and getting ‘creative’
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
Your business
needs a cyber resilience strategy
ARCHIVING
SECURITY
CONTINUITY
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
29
Thank you