Sucuri Webinar: Impacts of a website compromise
Transcript of Sucuri Webinar: Impacts of a website compromise
![Page 1: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/1.jpg)
![Page 2: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/2.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR
Tony Perez | @perezbox #AskSucuri
TONY PEREZ@perezbox
Tony Perez | @perezbox
![Page 3: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/3.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
THANK YOU!
![Page 4: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/4.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR
Tony Perez | @perezbox #AskSucuri
#AskSucuri
![Page 5: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/5.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR
Tony Perez | @perezbox #AskSucuri
TONY PEREZ@perezbox
Tony Perez | @perezbox
![Page 6: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/6.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
WHO IS THIS TALK FOR?
• Currently infected
• Have experienced an infection
• Curious what nefarious things hackers can do with your website
• Weighing the risks and trying to figure out if security is a thing to worry about
![Page 7: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/7.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
What’s the Motivation? Why do hackers hack?
![Page 8: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/8.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
![Page 9: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/9.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
REVENUE• Make money off your website or
it’s resources
• Earning potential could be based on stealing information (i.e., data exfiltration)
• Impression based affiliate marketing schemes
• Criminal enterprises
![Page 10: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/10.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
AUDIENCE
• Make money off your audience
• Extremely valuable to attackers
• Ability to take advantage of the trust you’ve built with your followers / customers
![Page 11: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/11.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
RESOURCES
• Make money off your resources
• Abuse of the infrastructure supporting your website
• Integrated into larger criminal networks (a.k.a botnets)
![Page 12: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/12.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
LULZ
• Not about making money (Finally!!)
• Bored, why not?
• If it allows me to access it, why wouldn’t I?
• Badge of honor amongst peers!
• Likely one of our kids!!!
![Page 13: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/13.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Things they do! Understanding the tactics
![Page 14: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/14.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
![Page 15: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/15.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Various Attack Types
Malware Distribution Search Engine Poisoning Spam EmailPhishing Lures
Defacement DDoS/Bot Scripts Ransomware
![Page 16: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/16.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Type Description Motivation Association
Malware Distribution Drive-by-DownloadsEnd-points are the target
RevenueAudience
Search Engine Poisoning (SEP) Search Engine Result Pages (SERP)Pharma / Casino / Luxury Goods
RevenueAudience
Phishing Lures Email / Social Phishing campaignsFinancial / Credential Theft
Spam Email Email spam campaignsLeverage your server / ip / domain
ResourceAudienceResource
Defacement Hacktivism Lulz
DDoS/Bot Scripts DDoSMailer Scripts
RevenueResource
Ransomware Hold you hostageHow your audience hostage
RevenuAudience
Data Exfiltration Steal data from your environmentE-Commerce / PII
ResourceAudience
![Page 17: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/17.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
THE IMPACTS OF COMPROMISE
Brand Website Blacklisting
Emotional Distress
Economic
Business
Visitor Compromise
Technical
SEO Impacts
![Page 18: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/18.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Brand Reputation• Your brand is made up of the unique user experience you offer through
your design, content, product offering and service
• Your website, and the experience your audience has plays a critical part in the reputation of that brand
• Tolerance is the highest it’s ever been around website compromises, so reputation is recoverable
• Loss of trust in your brand can drive your audience to look for alternatives to your brand
Business ImpactsEconomicBrand Emotional Distress
![Page 19: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/19.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Economic Impacts• Our research has shown a little over 90% drop in traffic immediately
following a compromise, that number goes up if a website gets blacklisted
• Whether your website leverages ads, static content, or sells product, it directly or indirectly helps your business generate some form of revenue / exposure
• Costs associated with post-compromise services, to include time / money spent on tools, education and consultation
Business ImpactsEconomicBrand Emotional Distress
![Page 20: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/20.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Emotional Distress• Anxiety – nothing ever goes fast enough
• Confusion – unclear what steps to take, who to talk to, where to start
• Anger – you want to reach across the matrix and shake someone
• Sadness – a general feeling of feeling overwhelmed, exhausted..
• Distrust – an erosion of trust in technology, internet, people
Business ImpactsEconomicBrand Emotional Distress
![Page 21: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/21.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Website Blacklisting• The most impactful in that it has the ability deter people from reaching
your website and it’s content / product / services
• Blacklists extend beyond search engines like Google and Bing, but can be found in end-point AntiVirus Solutions like Malwarebytes, Norton, EST, McAfee and so many others.
• This can lead to your website being flagged globally in large networks (i.e., cisco, websense, etc… )
Technical ImpactsSEOBlacklisting Visitor Compromise
![Page 22: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/22.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Seo Impact• The most impactful in that it has the ability deter people from reaching
your website and it’s content / product / services
• Blacklists extend beyond search engines like Google and Bing, but can be found in end-point AntiVirus Solutions like Malwarebytes, Norton, EST, McAfee and so many others.
• This can lead to your website being flagged globally in large networks (i.e., cisco, websense, etc… )
Technical ImpactsSEOBlacklisting Visitor Compromise
![Page 23: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/23.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Visitor Compromise• The most impactful in that it has the ability deter people from reaching
your website and it’s content / product / services
• Blacklists extend beyond search engines like Google and Bing, but can be found in end-point AntiVirus Solutions like Malwarebytes, Norton, EST, McAfee and so many others.
• This can lead to your website being flagged globally in large networks (i.e., cisco, websense, etc… )
Technical ImpactsSEOBlacklisting Visitor Compromise
![Page 24: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/24.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Thinking Website SecurityHow to improve your website security posture
![Page 25: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/25.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Security is not a static state, it’s a continuous process.
![Page 26: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/26.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
![Page 27: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/27.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Technology will never replace your responsibility as a website owner.
![Page 28: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/28.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
![Page 29: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/29.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Security is not a Do It Yourself (DIY) project.
![Page 30: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/30.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
![Page 31: Sucuri Webinar: Impacts of a website compromise](https://reader031.fdocuments.us/reader031/viewer/2022022414/58773d0a1a28ab342e8b5ddd/html5/thumbnails/31.jpg)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Q & A Tweet us @SucuriSecurity using #AskSucuri