14
WELCOME

An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

  • Upload
    others

  • View
    2

  • Download
    0

Embed Size (px)

Citation preview

Page 1: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

WELCOME

Page 2: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Cybercrime: Transportation Tales & Tactics

Wade Anderson, CIO | CTOBay & Bay Transportation, Eagan, Minnesota

Page 3: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Company OverviewFounded in 1941, Family owned

Headquartered in Eagan, MN (St. Paul/Minneapolis area, terminals in Twin Cites and Dallas area)

Bay & Bay is a diversified organization with 3 distinct business units

❑ Tank & Dedicated Trucking

❑ Refrigerated Trucking – Top 15 largest refrigerated trucking companies in North America

❑ Logistics – Top 40 Brokers in NA; 3rd Largest among refrigerated trucking companies

Asset-based 300+ truck fleet, backed by a world class 3PL

Rated Best Fleets to Drive for by the TCA

Page 4: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

A little about me…Software & Systems Background – over 25 years

– Undergrad & Graduate (MBA) school IT related – Private MN Schools

– Half dozen tech/process certifications (does NOT include CISSP or like)

Wide variety of experience

– Size: 10-120,000+ employees

– Revenue: $2M to $40B+

– Industries: Government, Consulting/Systems Integrators, Retail, Manufacturing, Insurance (P&C), High Tech, & more.

– Companies: Accenture, Best Buy, Pillsbury, State of Minnesota, Two SaaS Startups, Lifetouch, & more.

Focus areas:

– Custom & Package Software Delivery

– IT Service Management / Infrastructure / Security

Missing – Transportation!

Page 5: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Any criminal activity involving a computer.

Spamming

Phishing

Ransomware

Hacking

Child Pornography

Copyright Infringement

Cybercrime Overview

Page 6: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Cybercrime Scary Stats

Computer hacked every 39 seconds!

Cybercrime 2nd most reported, worldwide.

Phishing over half of data breaches.

US breached most, by far.

Cybercrime damage costs to hit $6 trillion annually by 2021.

Cybersecurity spending to exceed $1 trillion from 2017 to 2021.

Unfilled cybersecurity jobs to reach 3.5 million by 2021.

An attacker resides within a network for an average 146 days before detection.

Most network intrusions—63 percent—are the result of compromised user passwords and usernames.

Page 7: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Transportation Is A TargetMaersk incident: $250-300M

‘Fictitious Pick-up’ (Company Spoofing)

Telematics hacks (SAE J1939 standard)

Top 5 most cyber-attacked in 2015 (Forbes)

Page 8: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Our “We Were Hacked” StoryJuly 9, 2018 – New CIO (Wade) starts

July 12, 2018 – Hit by “I Apologize” (SamSam) ransomware– 1:54 PM, 83 Systems (70 Servers, 13 Desktops) rendered unusable– Secured ‘low hanging fruit’ (Domain Admins, Access Controls)– Validated backups, Prioritized restores– 9:00 PM, Decided to NOT pay ransom; restore started on trucking system

July 13, 2018 – HACKED!– Restore stopped; Backups deleted– Realized we were “outgunned”; decided to PAY THE RANSOM.

– Contacted insurance company, FBI , legal firm, and cybersecurity experts– Wired money for Bitcoin purchase to cybersecurity firm– Initiated communication with cyber criminals/bad actors (6:03 PM)

July 14 (Saturday) - Recovery:– Attacker showed signs of life and provided proof of decryption (6:17 AM).– Bitcoin transferred, and 83 private keys received (10:06 AM).– Began long process of decryption/restoration: 36 hours = 95% recovered

NOTE: Bay & Bay did NOT have any data stolen or transferred off-site.

Page 9: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Our ResponseThough it was confirmed that NO DATA was transferred out of network, Bay & Bay did respond firmly and swiftly

Full forensic analysis by Cyber Security firm (Kivu – Awesome!).

Improved security posture through awareness, vendor relationships, community networking, and execution of best practices: Least privileges, Password policies, Usage policies, more…

Fortified perimeter / firewalls (Cisco ASA’s/Firepower Management Suite):

– Blocked all inbound non-North American traffic & outbound access to known malware and ‘sin’ sites

– Setup Intrusion Detection and Prevention on firewalls

Full review/audit of information security profile of company.

Systems Emergency Response Team (SERT) process created. Being evolved.

Creation of new Cyber Security Policies and Procedures (in progress).

Cyber Security compliance training for all staff (in progress).

NOTE: Bay & Bay did NOT have any data stolen or transferred off-site.

Page 10: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Recommendations:Cyber Security Awareness

Gain full commitment from senior leadership team (CEO, CFO, etc.).

Ensure an Information Security Policy exists; teach it, love it, live it!

Phishing and social engineering tests. “Caught in the act” / Gamify.

Create culture of data protectionism (data is sacred). Cultural reinforcement.

Invest nowExposure is great: “Cybercrime is the greatest threat to every profession, every industry, and every company in the world.” – IBM CEO Ginni Rometty

Preemptive investments in security can avoid costly losses.

Security audits (internal & external). Penetration tests, social tests.

Shop around…some firms may take advantage of desperation!

Commit

(Sr. Team)

Comply

(Policies/Tools)

Culture

(Reinforce)

Page 11: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Recommendations:Button down the hatches

1. Review firewall access control lists.

2. Change defaults (ports), and close all inbound RDP, immediately.

3. Eliminate unnecessary inbound traffic (think global).

4. Reduce outbound traffic (access to unnecessary websites, web-based email, etc.).

5. Use the principle of least privilege (PoLP) - Remove/reduce access levels for users.

6. Passphrase and systems usage policies.

7. Have a plan – Systems Emergency Response Team (SERT) - Run scenarios, Test, Re-run.

8. Continually review and improve.

“Companies spend millions of dollars on firewalls, encryption, and secure access devices, and it’s money wasted, because noneof these measures address the weakest link in the security chain.” – Kevin Mitnick

Page 12: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

UPDATE: SamSam Suspects Indicted!First name basis with FBI (Marlee Mukai – Lead Investigator).

Two Iranian suspects in Iran.

Indicted in both New Jersey and Georgia.

Three years cybercrime spree.

Tens of millions in damages – two guys!

SamSam is done…tip of the iceberg.

Page 13: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Thank you!Questions?

Bay & Bay TransportationWade Anderson – Chief Information Officer

651.346.2033 (o) | 612.242.2839 (m)[email protected]

Page 14: An overview & importance of the TIA Political Action Committee...Cybersecurity spending to exceed $1 trillion from 2017 to 2021. Unfilled cybersecurity jobs to reach 3.5 million by

A Conference Built Just for 3PLs

Referenceshttps://www.comparitech.com/vpn/cybersecurity-cyber-crime-statistics-facts-trends/

https://www.hackmageddon.com/2017/12/20/november-2017-cyber-attacks-statistics/

https://www.helpnetsecurity.com/2016/02/25/not-all-data-breaches-are-created-equal/

https://cybersecurityventures.com/hackerpocalypse-cybercrime-report-2016/

https://www.thesslstore.com/blog/2018-cybercrime-statistics/

https://www.nbins.com/blog/cyber-risk/cyber-crime-targets-transportation/

https://www.forbes.com/sites/stevemorgan/2016/05/13/list-of-the-5-most-cyber-attacked-industries/#43ac753c715e