EXPANDED

Recommendations

Info

LEGACY CYBER KILL CHAIN MODEL “Perimeter Breach Kill Chain” Reconnaissance Weaponization Delivery Exploitation Installation Command & Control (C2) Actions on Objectives • Harvesting email addresses, conference information, etc. • Coupling exploit with backdoor into deliverable payload • Delivering weaponized bundle to the victim via email, web, USB, etc. • Exploiting a vulnerability to execute code on victim’s system • Installing malware on the asset • Command channel for remote manipulation of victim • With “Hands on Keyboard” access, intruders accomplish their original goal GAME OVER ? 6
Example Target Manipulation Objectives: • Financial Theft ‒ Modify queued wire transfers to redirect payments • Reputation Impact and Loss of Market Share through DoS ‒ Disable all company workstations • Disable Infrastructure in Preparation for Kinetic Attack ‒ Quickly cycle smart electric meters to overload grid • Provide Propaganda Support for Coup Attempt ‒ Hijack television broadcast • Cause Terror in Regional Population ‒ Change concentration of chemicals added to water supply
Page 1 and 2: USING AN EXPANDED CYBER KILL CHAIN
Page 3 and 4: AGENDA • Legacy Cyber Kill Chain
Page 5: LEGACY CYBER KILL CHAIN MODEL “Th
Page 9 and 10: THE EXPANDED CYBER KILL CHAIN MODEL
Page 11 and 12: ALTERNATIVE: SPIRAL MODEL 11
Page 13 and 14: UNDERSTANDING THE STAGES OF A SOPHI
Page 15 and 16: INTERNAL EXPLOITATION INTERNAL KILL
Page 17 and 18: LATERAL MOVEMENT INTERNAL KILL CHAI
Page 19 and 20: TARGET EXPLOITATION TARGET MANIPULA
Page 21 and 22: INSTALLATION TARGET MANIPULATION KI
Page 23 and 24: BUILDING A RESILIENT ENTERPRISE 23
Page 25 and 26: THE CYBER DEFENSE THRESHOLD Thresho
Page 27: FINAL THOUGHTS, QUESTIONS, AND DISC

EXPANDED

Create successful ePaper yourself

Delete template?

Save as template?