Andrew Horbury Product Marketing Manager
Andrew ShepherdEMEA Marketing Manager
WEBSITE SECURITY THREATS:NOVEMBER UPDATE
Thursday 7th November 2013
Agenda
Website Security Threats: November 2013 Update
1
2
3
4
5
6
7
Month in Numbers
Ransomware
Phishing
Attack toolkits and the Internet of Things
Stranger than Fiction
Follow-up on previous stories
Good news
The Month in Numbers
Website Security Threats: November 2013 Update
The global price tag of consumer cybercrime• $113BN enough to host the 2012 London Olympics nearly 10 times
over• 212 million (11,000 malicious network requests a second) cyber
attacks on the official website during 2012 Olympic and Para-Olympic Games
• $298 - average cost per victim (represents a 50 percent increase over 2012)
The scale of consumer cybercrime• 378 million victims per year - nearly 2.8 times as many babies born
each year• 1 million+ victims per day - enough to fill Wembley football stadium
(London, England) more than 10 times over
The month in numbers continued…..
Website Security Threats: November 2013 Update
22 hours Average time for malware distributors to exploit news events
8 out of 10 malware infections involve Trojans
46% of firms believe they are “very vulnerable” or “vulnerable” to an insider attack.
Ransomware
Website Security Threats: November 2013 Update
• New variant encrypts data files• Uses strong encryption algorithms• Demands payment in
Bitcoins/MoneyPak• Pay €300 or keys destroyed• No guarantee – so don’t pay!
Phishing• Campaign to harvest Apple IDs
– “Your Apple ID has been frozen temporarily”
– Links to a website where accounts can be ‘re-accessed’
– Email sent just after latest OS download
• “Ghost Brokers” – Taking advantage of high insurance
prices for young drivers
– Advertised online and offline
– Victims often don’t realise
Website Security Threats: November 2013 Update
Hacking the internet of things• Electricity substations – targeted• Lack physical and infrastructure
hardening makes for a soft target
Website Security Threats: November 2013 Update
• Carmel Tunnel toll road targeted in Israel• Road closed for 20 mins one day, 8 hours the next
Stranger than Fiction
• Could Dick Cheney have been hacked?– Feared terrorists might hack his implanted
medical device
– Dr turned off wireless capabilities
– Hard-coded password flaw in 300 medical devices from 40 vendors
• Beware of your Kettle!– Kettles and irons found in customs with
spyware chips
– Can exploit Wi-Fi without passwords
– Sends data to foreign servers
Website Security Threats: November 2013 Update
Toolkits: Try before you buy…
Website Security Threats: November 2013 Update
• Trial software for free• Basic license costs $500• Full license costs $950.• Discounts are offered to
owners of other DDoS toolkits such as Dirt Jumper
Updates from previous webinars
• WordPress 3.7 (aka Basie)– Attempts to improve security
– “Updates while you sleep”
– Remains to be seen if this helps with plugin issues
• Criminals Hit the ATM Jackpot– Technical characteristics of
Backdoor.Ploutus
– Actions performed
– Interactions through keypad and GUI
Website Security Threats: November 2013 Update
Good News• Silk Road “Mastermind” not so Smart
– Five stupid things Dread Pirate Roberts did to get arrested
• TorRAT– Dutch police arrest four men involved in large-
scale digital fraud and money laundering
– 150 fraudulent transactions worth €1 million
– Spear phishing was used to install malicious TorRAT malware onto victims' computers
• Blackhole and Cool malware exploit kit suspect arrested– Alias Paunch
– “If it’s true…it’s a very big deal”
Website Security Threats: November 2013 Update
Link Glossary (Press Print screen now)• BT Cyber Attacks:
– http://www.computerweekly.com/news/2240208217/Olympic-cyber-security-down-to-design-and-testing-says-BT
• Norton Cybercrime Report 2013– http
://www.symantec.com/about/news/release/article.jsp?prid=20131001_01
• Vulnerabilities in Power stations– http://www.wired.com/threatlevel/2013/10/ics/
• Guardian Article - Five stupid things Dread Pirate Roberts did– http://
www.theguardian.com/technology/2013/oct/03/five-stupid-things-dread-pirate-roberts-did-to-get-arrested
• Mexican ATM blog post– http://www.symantec.com/connect/blogs/criminals-hit-atm-jackpotWebsite Security Threats: November 2013 Update
Thank you!
Copyright © 2012 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.
This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.
Andrew [email protected] / +44 7912 552896Andrew [email protected] / +44 7703 468966
Website Security Threats: November 2013 Update
Next webinar: Wednesday 4th December 2013 9.30am UK / 10.30am CET
Top Related