1 of 15

Slide Notes

DownloadGo Live

CEO fraud - Kneip 24.11.2016

Published on Nov 18, 2015

No Description

View Outline

MORE DECKS TO EXPLORE

PRESENTATION OUTLINE

1.

Cyber Risks

The Good, The Bad and the Ugly
Photo by wiredforlego
2.

Vulnerability

e.g. greed, love, sorrow, buffer overflow, unpatched system, CSRF...
Photo by misterbisson
3.

Threat

e.g. script kiddie, "hacker", cyber-activist, cyber-criminal, state...
Photo by umezy12
4.

Impact

e.g. money loss, data loss, fraud, service loss, reputation loss...
Photo by Domiriel
5.

RISK = VULNERABILITY * THREAT * IMPACT

Photo by GotCredit
6.

JOsef W. - CHAIRMAN, OCTOPUS GROUP

slowly recovers from a heart attack
Photo by fotos paGoda (http://ppinacho.me) Pedro Pinacho D.
7.

discover what happened!

LIVE DEMO
8.

CYBER Threat Landscape

Luxembourg
Photo by Furryscaly
9.

Statistics 2014 (CIRCL)

10.

Motivations

11.

banking/presidential fraud

  • malware, phishing or social engineering (via phone) to access mailboxes
  • banking details changed / transactions executed
  • extreme cases: dedicated malware targeting corporate banking systems
  • targets: mainly huge invoice processing organisations
Photo by epSos.de
12.

PREVENTION...

  • PEOPLE (awareness, training, competences...)
  • TECHNOLOGY (AV, WAF, IPS, SIEM, SUS...)
  • ORGANISATION (policies, procedures, responsabilities...)
  • COMPLIANCE (privacy, IP...)
Photo by Bods
13.

...IS NOT ENOUGH

  • be organised, have a CISO
  • you are already compromised
  • be proactive, detect and handle (CERT)
  • prepare for a crisis
  • get an insurance
Photo by Reiterlied
14.

DON'T SUFFER IN SILENCE

Photo by Tree Leaf Clover
15.

Pascal Steichen
SECURITY
MADEIN.LU

Photo by woodleywonderworks

Pascal Steichen

https://lhc.lu/