1 / 8

Hacker Update

Hacker Update. Rick Shaw – President,CorpNet Security, Inc. Mick Johannes – CTO, CorpNet Security, Inc. Hacker Update - Topics. What are they after? Why should I be concerned? Where am I vulnerable? How will they do it? What can I do about it?. Hacker Update – What are they after?.

gratia
Download Presentation

Hacker Update

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Hacker Update Rick Shaw – President,CorpNet Security, Inc. Mick Johannes – CTO, CorpNet Security, Inc.

  2. Hacker Update - Topics • What are they after? • Why should I be concerned? • Where am I vulnerable? • How will they do it? • What can I do about it?

  3. Hacker Update – What are they after? • Malicious Mischief – Deface your site. Make your services/resources unavailable. • Information Vandalism – Intentional destruction of data/availability. May occur with/without reasons/provocation. • Information Espionage – Theft or destruction of information for profit. Maybe motivated/associated with competitive corporate environments.

  4. Why Should I Be Concerned? The threat is real. Hackers/Crackers are well informed/equipped. Maintain a competitive advantage. Protect data/electronic corporate assets. Protect customer data. Protect reputation.

  5. Where am I vulnerable? Email Servers Web Servers FTP Servers Backdoor Modems Mis-configured hardware/operating systems Out of box configured hardware/operating systems Software/Firmware without current revisions/patches Lack of knowledge/understanding of security issues by employees

  6. How will they do it? Port Scanning Port Re-direction Spoofing Denial of Service Attacks Operating System Vulnerabilities Trojan-Horse Attack Password Cracking Back Doors Packet Sniffing

  7. What can I do about it? Close your ports! (Design before you deploy) Patch your software/firmware! Implement strong password controls! Strong/current enterprise anti-virus controls! Enable and review your logs! Implement intrusion detection solutions! Have policies and escalation procedures! Educate your users!!!

  8. Questions?

More Related