this month in cyber security - peters & associates … · 11-11-2019 · classified as...
TRANSCRIPT
![Page 1: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/1.jpg)
Classified as Confidential
Helping you grow your business with
scalable IT services & solutionsfor today’s challenges & tomorrow’s vision.
© 2019 Peters & Associates, Inc. All rights reserved.
This Month in Cyber Security
November 2019
Bruce Ward, Vice President
![Page 2: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/2.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsNIST’s CyberSecurity Framework (CSF)
![Page 3: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/3.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
In the news…
1.Phishing2.Patching3.Ransomware4.Solution Reviews
![Page 4: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/4.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutions
Topic Stories
Phishing • Cybercriminals use Analytics and AI to improve phishing campaigns• Speed up Time to Detect / Respond to a Compromised User
Patching • BlueKeep is an old vulnerability but becoming increasingly dangerousand exploits Windows OS moving past End of Support dates soon
• Windows 7 to 10 migration projects not finished before Jan? Options?• Windows 2003 – No support, no security?• November Patch Tuesday – Overview from Krebs
Ransomware • Ginsu Knives and paralleling that with Ransomware as a Service (RaaS)!• Purelocker is going after servers – Windows, Linux, and more• Web hosting provider ASP.NET hit with ransomware
Solution Reviews (to protect AD)
Protect Active Directory:• Azure ATP• Azure Password Protection• Azure MFA
![Page 5: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/5.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsIssue: Phishing
“…the best defense against analytics is more analytics."
![Page 6: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/6.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsSolution: Phishing
“…the best defense against analytics is more analytics."
![Page 7: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/7.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsPatching - Overview
![Page 8: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/8.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsPatching - BlueKeep
![Page 9: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/9.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsPatching – Windows 7
October 2018:1 Year Ago
![Page 10: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/10.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsPatching - Solution
Extended Service Updates (ESU) = Windows 7 patches
Buy Subscribe Move
![Page 11: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/11.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsPatching - Solution
Today Windows 10 Pro
Windows 10 Ent (E3)
No ownership $203 $326* (incl 2 years SA)
Own Win7 or 8 $181 $326* (incl 2 years SA)
Subscription N/A $7/mo$11/mo (E5, includes ESU)
![Page 12: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/12.jpg)
© 2018 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsWindows 10 - Design Questions
UEFI
Disk Encryption
AAD Join / Co-Manage
Windows Defender
Bitlocker / MBAM
ManagementNew
Hardware
Telemetry
Secure / Lockdown
![Page 13: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/13.jpg)
© 2018 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsWindows 10 – Deployment Options
![Page 14: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/14.jpg)
© 2018 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsPatching W2K3 – Security by Obscurity?
![Page 15: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/15.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsRansomware – SmarterASP.NET
![Page 16: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/16.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsRansomware – Customer Story
![Page 17: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/17.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsRansomware – PureLocker
![Page 18: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/18.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsRansomware – R as a Service (RaaS)
Creators
Deployers
Customers
![Page 19: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/19.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsRansomware – Solution Review
![Page 20: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/20.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsSolution Review
![Page 21: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/21.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsSolution Review
APT = Advanced Persistent Threat
ATP = Advanced Threat Protection
![Page 22: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/22.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsAzure ATP
✓ Lateral Movement✓ Account Compromise✓ DNS Enumeration✓ Analogous Behavior✓ Domain Join/Removal✓ Admin anomalies✓ RDP port usage✓ Pass-the-Hash✓ Certificate misuse
![Page 23: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/23.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsAzure Password Protection
P@ssw0rd1
Global banned password list
Custom banned password list
Good Passwords!
![Page 24: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/24.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutions+ One Day MFA
![Page 25: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/25.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutions
http://www.peters.com/blog/
Events, Webinars & Blogs
![Page 26: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/26.jpg)
Classified as Confidential© 2019 Peters & Associates, Inc. All rights reserved.
IT SecuritySolutionsReady to engage?
Free 14-Day
Trial
Free One-Time Phishing
Test
Free One-Time External V-Scan
Free Coffee
![Page 27: This Month in Cyber Security - Peters & Associates … · 11-11-2019 · Classified as Confidential © 2019 Peters & Associates, Inc. All rights reserved. In the news… 1.Phishing](https://reader034.vdocuments.mx/reader034/viewer/2022050215/5f611233c49f12440e747dc5/html5/thumbnails/27.jpg)
Classified as Confidential
1801 S. Meyers Road, Suite 120Oakbrook Terrace, IL 60181
(630) 832-0075
Thank you!
© 2016 Peters & Associates, Inc. All rights reserved.
Bruce Ward