The Evolution of Secure Networks

Mark Bullen

Sr Systems Engineer

Juniper Networks

RANSOMWARE

Average Ransomware Payment $ 1xBitcoin ($420 USD)

Data provided by www.smartdatacollective.com/

Ransomware by the Numbers

Yearly Earnings $393M

Infection Rate 70,000/day

Average Payouts/Day 2600 (3.5%)

Daily Earnings $1.01M

Propagation

The Exploit Kit….

A history of the Exploit Kit Blackhole 2012 Nuclear 2012 Angler 2014-2016 Neutrino 2014- Active RIG 2014 -Active

Exploit Kit Drive-by Circulations July-August 2016

Data provided by malware.dontneedcoffee.com

Mitigation

Deploy New Detection Mechanisms Static & Dynamic File Analysis

Examples of Static Analysis Traits Examples of Dynamic Analysis Actions

Machine Learning

Known Bad Traits

Known Good Traits

Evasive Behaviors

Removing the Silo’s Exchange and Consume Global Threat Information

Enforce Collect Share

Software-Defined Secure Network (SDSN)

Leverage entire network and ecosystem for threat intelligence and detection

Utilize any point of the network as a point of enforcement

Dynamically execute policy across all network elements including third party devices

Your Enterprise Network

Threat Intelligence

Enforcement

Detection

Enforcement

Detection

Cloud-based Threat Defense

Dynamic and Adaptive Policy Engine

Policy

Campus

&

Branch

DC Public

Cloud Private

Cloud

Merci / thank You!

References

forums.juniper.net/t5/Security-Now www.krebsonsecurity.com www.malwarebytes.com malware.dontneedcoffee.com www.smartdatacollective.com www.symantec.com www.trendmicro.com www.verizonenterprise.com/verizon-insights-lab/dbir/ cyboxproject.github.io stixproject.github.io taxiiproject.github.io