Security threats and countermeasures in daily life - Symantec

Security @WorkMathan Kasilingam, CISSP

Principal Solution Architect

Four Key Trends

Internet Security Threat Report, Vol. 17

Malware Attacks81% ↑

Targeted Attacks Expand

Mobile Threats

Expose All

Data Breaches on Rise

Security never sleeps

Threat & Risk Visibility

Information Protection

Identity Protection

Systems Management

Infrastructure Protection

Security Intelligence

Reconn

Incursion

Discovery

Capture

Exfiltrate

Portrait of a Cyber-Crime

Smith Inc Small company – BIG ideas

Attack #1: Port Scan

Attack methodology: Company target identified

The target Company

The Hacker – individual, organisation or Government

Port Scan – probe for vulnerabilities

Look for an entry

Weak points

Defence alignments

System vulnerabilities

Open doors

No entry

Security Incident & Event Management

Identity Protection

Systems Management

Reconn

Incursion

Discovery

Capture

Exfiltrate

Attack #2: Social Engineering

Company employee target identified

Simon: The target employee

Social Engineering

Simon: The target employee

Facebookprofile

Home address

Workinghours

Mobile Devices

Passwords

Tracking the target

Capturing the device

No entry

Device Encryption Technology

Identity Protection

Systems Management

Reconn

Incursion

Discovery

Capture

Exfiltrate

Attack #3: Spear Phishing

Desktop targeted via Malicious email

Even if Desktop Protection fails

DLP (Data Loss Prevention) can prevent the data from leaving the network

No entry

Data Loss Prevention

Identity Protection

Systems Management

Reconn

Incursion

Discovery

Capture

Exfiltrate

Attack #4: Buffer Overflow Attack

Buffer Overflow Attack

Detecting system vulnerabilities and apply patches

Identify areas of concern

No entry

Automated Compliance Management SolutionCritical System Protection (Host FW / IPS / Sys

Baseline)

Identity Protection

Systems Management

Reconn

Incursion

Discovery

Capture

Exfiltrate

Attack #5: Password Hacking Attack

Advanced Persistent Threat

Simon’s mumMrs LeeL E E

No entry

Identity & Access Management Solution

Identity Protection

Systems Management

Reconn

Incursion

Discovery

Capture

Exfiltrate

Attack #6: Attacking mobile devices

Anti theft – Mobility solutions (Device Management Solution)

No entry

Mobile Device Security

Identity Protection

Systems Management

Reconn

Incursion

Discovery

Capture

Exfiltrate

Defence against threats

Multiple layers of Security

Complete Protection

Security Incident & Event Management

Encryption Technology

Data Loss Prevention

Automated Compliance Management

Critical System Protection

Identity & Access Management

Mobile Device Security

Where should you go from here

Symantec’s Information-Centric Approach

INFORMATION

Intelligence

Governance

InfrastructureStoreManageDedupeProtectRecover

DiscoverClassifyOwnershipAssess

RemediateCompliance

IdentifyAuthenticatePolicy RISK

COST VALUE

MobileVirtualisation

Physical

Stay Informed - Internet Security Threat Report

www.symantec.com/threatreport

Security Response Website

Twitter.com/threatintel

Stay Informed

Internet Security Threat Report, Vol. 17

www.symantec.com/threatreport

Security Response Website

Twitter.com/threatintel

Copyright © 2012 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.

This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.

Thank You

Security threats and countermeasures in daily life - Symantec

Technology

A Survey on Security Threats and Countermeasures in IEEE

Threats and Countermeasures in Cyberspace - …aseanregionalforum.asean.org/files/Archive/20th/ARF Seminar on CBMs...Jan 25, 2003 · Threats and Countermeasures in Cyberspace Intaek

Threats and Countermeasures Guide: Security Settings …rdmills.aurorak12.org/.../174/2014/10/ThreatsAndCounterMeasures.pdf · Threats and Countermeasures Guide: Security Settings

Privacy in Content Oriented Networking: Threats and countermeasures

Threats and countermeasures for information system

GSM Security Threats and Countermeasures

Networked Medical Devices: Security and Privacy Threats - Symantec

Designing Countermeasures For Tomorrows Threats : Documentation

IT Security: Threats, Vulnerabilities and Countermeasures # 3

Threats and Countermeasures for Network Security … · Threats and Countermeasures for Network Security ... Threats and Countermeasures for Network Security ... Computer Recreations

KEIJO HAATAJA Security Threats and Countermeasures in … · 2009-02-03 · KEIJO HAATAJA Security Threats and Countermeasures in Bluetooth-Enabled Systems JOKA KUOPIO 2009 KUOPION

Top 10 Threats and Countermeasures 2016

Product Roadmap Symantec Endpoint Protectionvox.veritas.com/legacyfs/online/veritasdata/2.15pm_1541...Symantec Endpoint Protection Product Roadmap 9 Monitors Threats in 157+ countries

Workplace Security threats and countermeasures Fujitsu Siemens Computers Yiannis Koukoutsis October 2007

Tackle Unknown Threats with Symantec Endpoint Protection 14 Machine Learning

Designing Countermeasures For Tomorrows Threats

Security Threats,Vulnerabilities and Countermeasures

KEIJO HAATAJA Security Threats and Countermeasures in ... · Security Threats and Countermeasures in Bluetooth-Enabled Systems ... FHSS Frequency Hopping Spread Spectrum ... PDA Personal

WHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team

Supply Chain Threats and Countermeasures: From Elicitation