third Cyber Security Assessment Netherlands - NCSC

More documents

Recommendations

Info

Actor Intentions Skills Targets States Geopolitical or improve (internal) position of power High Public authorities, non-governmental organisations, the business community, scientists, individuals with relevant knowledge, dissidents and opposition groups Terrorists Bring about social change, incite serious fear among the population or influence political decision-making Little to moderate Targets with high, ideological symbols Professional criminals Financial gain (direct or indirect) Moderate to high Financial products and services, IT and citizens’ identity <strong>Cyber</strong> vandals and script kiddies Highlight vulnerabilities Hack because it’s possible Prank, looking for a challenge Little to high Varied Hacktivists Ideology Average Varied Internal actors Revenge, financial gain or ideological (possibly ‘controlled’) Little to high Current or former work environment <strong>Cyber</strong> researchers Highlight weaknesses, improve own profile Moderate to high Varied Private organisations Obtain valuable information Little to high Competitors, citizens, customers Citizens n/a n/a n/a Table 2. Actors that pose a threat, intentions, skills and targets 26
Core assessment » 3 Threats: tools 3 Threats: tools The previous chapter described why digital attacks happen and the actors involved in them. To carry out attacks, development and maintenance of operating systems. It may also be that suppliers and anyone else who discovers them keep exploits to themselves and only share them with security companies. [36] actors use (technical) tools to exploit and/or increase vulnerabilities. Tools may refer to both technical means and to methods of attack. The most notable development in the area of exploit kits was the high number of Java vulnerabilities that were abused. [37][38][39] Research carried out by Websense indicates that 5 per cent of the 3.1 Technical tools Java systems are using the latest version. Because systems are often not patched for long periods, the malware in exploit kits is often highly effective. 3.1.1 Exploits An exploit is a means of abusing a vulnerability. It may consist of 3.1.2 Tools becoming increasingly easy to use software, data or a sequence of commands that exploit a vulnerability in software and/or hardware to bring about undesirable behaviour. The number of published exploits decreased over the reporting period (see Figure 1). The long-term trend since 2005 has shown a slight increase. The exploits are directed primarily at web platforms and Microsoft Windows. The decline in the number of exploits can be explained in part by measures integrated into the Just as in the previous year, exploit kits are more readily available on several IT platforms and the ease of use is increasing. One example of a well-known exploit kit is BlackHole. Other tools too, for example for launching DDoS attacks and for SQL injection, are also becoming easier to use, enabling even script kiddies with little knowledge to carry out increasingly sophisticated attacks. DDoS tools are also offered as a service. [40] Tutorials on YouTube help to Number of exploits published 2005 - 2013Q1 1500 1200 900 600 300 0 Total Trend 2005Q1 2005Q2 2005Q3 2005Q4 2006Q1 2006Q2 2006Q3 2006Q4 2007Q1 2007Q2 2007Q3 2007Q4 2008Q1 2008Q2 2008Q3 2008Q4 2009Q1 2009Q2 2009Q3 2009Q4 2010Q1 2010Q2 2010Q3 2010Q4 2011Q1 2011Q2 2011Q3 2011Q4 2012Q1 2012Q2 2012Q3 2012Q4 2013Q1 »»»»» 36 http://www.Exploit-db.com 37 http://community.websense.com/blogs/securitylabs/archive/2013/03/22/how-are-javaattacks-getting-through.aspx 38 http://community.websense.com/blogs/securitylabs/archive/2013/01/10/new-java-zero-dayused-in-exploit-kits.aspx 39 http://krebsonsecurity.com/2012/03/new-java-attack-rolled-into-exploit-packs/ 40 http://krebsonsecurity.com/2012/08/booter-shells-turn-web-sites-into-weapons/ 27
Page 1: Cyber Security Assessment Netherlan
Page 4 and 5: National Cyber Security Centre The
Page 7: Contents Foreword 3 Summary 7 Intro
Page 10 and 11: on governmental organisations and b
Page 12 and 13: However, it is assumed that they ar
Page 15 and 16: Introduction Information Technology
Page 17: Core assessment 1 Interests 17 2 Th
Page 20 and 21: 1.2 Dependency IT dependency contin
Page 22 and 23: Increased IT dependency in electric
Page 24 and 25: on the internet such as an electric
Page 26 and 27: approached or incited by states for
Page 30 and 31: get the script kiddies started. One
Page 32 and 33: location’, there is no one single
Page 34 and 35: Furthermore, business information c
Page 36 and 37: environments often arise from the i
Page 38 and 39: not only smart phones, tablets or c
Page 40 and 41: 5.3 Technology Norms, guidelines an
Page 42 and 43: ACM seeks active collaboration with
Page 45 and 46: Core assessment » 6 Manifestations
Page 53: Core assessment » 6 Manifestations
Page 57 and 58: Detailed section » 1 Cyber crime
Page 59: Detailed section » 1 Cyber crime
Page 62 and 63: magnitude of digital espionage inci
Page 65 and 66: Detailed section » 3 Botnets 3 Bot
Page 67 and 68: Detailed section » 3 Botnets » Do
Page 69 and 70: Detailed section » 4 DDoS 4 DDoS
Page 71: Detailed section » 4 DDoS 4.3 Resi
Page 74 and 75: An attacker can abuse devices linke
Page 77 and 78: Detailed section » 6 Grip on infor
Page 79 and 80:
Detailed section » 6 Grip on infor
Page 81 and 82:
Detailed section » 7 Vulnerability
Page 83 and 84:
Page 85 and 86:
Page 87 and 88:
Page 89 and 90:
Page 91:
Page 94 and 95:
Leak in the Humannet website belong
Page 96 and 97:
In 2012, ACM received a total of 14
Page 98 and 99:
car park will not open. It is annoy
Page 100 and 101:
9.6 The resilience of ICS Security
Page 102 and 103:
100 [22: McAfee 2013-2] McAfee: Thr
Page 104 and 105:
102
Page 106 and 107:
Incidents Types of government incid
Page 108 and 109:
Classification Classified data Clou
Page 110 and 111:
Information Information security In
Page 112 and 113:
Spoofing/IP spoofing SQL injection
Page 114:
112
show all

third Cyber Security Assessment Netherlands - NCSC

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?