Asia-Pacific Information Security Leadership Achievements - ISC
Asia-Pacific Information Security Leadership Achievements - ISC
Asia-Pacific Information Security Leadership Achievements - ISC
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
The Changing Threat Landscape: Criminals Leveraging Both Broad-based and Targeted Attacks<strong>Security</strong> FundamentalsUse Strong PasswordsApply Updates RegularlyUse Anti-Virus SoftwareConsider the CloudInvest in Newer ProductsHolistic Approach12 3 41234PreventionEnsure you have implemented thesecurity fundamentals.DetectionRegularly monitor and conductadvanced analysis within yourorganization to identify threats.ContainmentIf the attacker is successful atbreaching, contain the threat so thatit does not spread.RecoveryHave a well-conceived recovery plansupported by suitably skilled responsecapability.Conficker Worm• The #1 threat facingbusinesses over the past2.5 years.• Detected almost 220 milliontimes worldwide since 2009.• 92% of Conficker infections inorganizations were the resultof weak or stolen passwords.• 8% of Conficker infections inorganizations were the resultof vulnerabilities for which anupdate exists.Targeted AttacksFocus on individuals or organizations. A specific target in mind.Attack MotivesTargets are chosen because of whothey are or what they represent.Common TacticsWeak PasswordsBroad-based AttacksBroad-based attacks reach a large number of people in hopes ofcompromising as many systems as possible.Attack MotivesTypically this tactic is used to stealidentities and money.Common TacticsWeak PasswordsMajority of people areunlikely to encountersuch a threat.Unpatched VulnerabilitiesSocial EngineeringMajority of cybercriminal activity istaking place.Unpatched VulnerabilitiesSocial Engineering| <strong>Security</strong> Intelligence Report www.microsoft.com/sir
Change language