preparing to fail
play

Preparing to Fail Changing the way we think about cyber threats Oil - PowerPoint PPT Presentation

Apr 06, 2024 •191 likes •388 views

Preparing to Fail Changing the way we think about cyber threats Oil Rig Pic Flaming Oil Rig picture The asymmetric nature of the Internet The current state of cyber underground Our current approach UNCLASSIFIED 7 Software Integrity Denial

  1. Preparing to Fail Changing the way we think about cyber threats

  2. Oil Rig Pic

  3. Flaming Oil Rig picture

  4. The asymmetric nature of the Internet

  5. The current state of cyber underground

  6. Our current approach

  7. UNCLASSIFIED 7

  8. Software Integrity Denial of Service UNCLASSIFIED 8

  9. Specific threats to the Packaging Industry • Ransomware

  10. Ransomware

  11. Business Email Compromise

  12. Primary Schemes Name Scheme Supplier The “supplier” changes receiving bank Swindle accounts CEO Fraud The “CEO” requests an payment for an acquisition or service Shipping The “receiver” requests a change in Switch-up shipping destination 3 rd Party The “3 rd Party” service requests payment for services rendered Data theft Important data is requested for use in tax fraud UNCLASSIFIED 12

  13. BEC examples UNCLASSIFIED 13

  14. We must… • Understand the threats to our company • Design specific mitigation and recovery controls into our business process

  15. Ransomware 1.Implement the technical controls within email 2.Un-flatten our networks – everyone does not need access to everything in your network 3.Back up, virtualize, and TEST recovery 4.Don’t immediately destroy the infected system 5.Explore the payment mechanism

  16. Business email compromise 1. Implement technical controls in email such as [external] tags, webmail auditing 2. Two-factor authentication / Password re-use*** 3. Educate the specific departments that are often targeted – C-Level, Finance, Human Resources, Sales, Shipping 4. Design controls that allow for failure –Processes for shipping, payments, acquisitions, employee information 5. Engage your 3 rd parties, such as banks, consultants, law firms 6. Know who to call when failure happens, have a team in place

  17. Other considerations • Cyber insurance • 3 rd parties –Processes –Communication –Responsibilities • Managed services • Incident Response on retainer • Practice responding to incidents with the entire team UNCLASSIFIED 17

  18. Key Take Aways • If you only remember two things from my presentation, they should be… 1. Failure will happen 2. Failure doesn’t equal disaster, mishandling failure most likely will. • When you get back to your office, the two things you should do are… 1. Design your processes and relationships to mitigate failure 2. Practice your response

Recommend

FOR AS/A2 Fail to prepare Prepare to fail We can learn anything! Walt Disney was afraid of

FOR AS/A2 Fail to prepare Prepare to fail We can learn anything! Walt Disney was afraid of

PREPARING FOR AS/A2 Fail to prepare Prepare to fail We can learn anything! Walt Disney was afraid of mice Turtles breathe through their bottoms Venus is the only planet that rotates clockwise You burn more calories sleeping

724 views • 26 slides
Just for fun: too smart to fail Just for fun: too smart to fail Francesco P. Lovergine

Just for fun: too smart to fail Just for fun: too smart to fail Francesco P. Lovergine

Just for fun: too smart to fail Just for fun: too smart to fail Francesco P. Lovergine <frankie@fsfe.org> Free Software Foundation Europe Fellowship Group Bari http://creativecommons.org/licenses/by-nc-nd/3.0/legalcode 2 7 O t t o

355 views • 17 slides
Too big to fail or Too non-traditional to fail? The determinants of banks systemic

Too big to fail or Too non-traditional to fail? The determinants of banks systemic

Too big to fail or Too non-traditional to fail? The determinants of banks systemic importance Kyle Moore 1 Chen Zhou 2 , 1 1 Erasmus University Rotterdam 2 De Nederlandsche Bank Aug 9, 2013 Moore and Zhou TBTF or TNTTF? Why we

196 views • 17 slides
Calls-to-Action that Fail: The most common causes for why CTAs fail (and how you can achieve

Calls-to-Action that Fail: The most common causes for why CTAs fail (and how you can achieve

Calls-to-Action that Fail: The most common causes for why CTAs fail (and how you can achieve quick wins with small changes) Experiment: Background Experiment ID : TP1785 Record Location : MECLABS Research Library Research Partner : [Protected]

1.19k views • 99 slides
Preparing Your Structure Production Runs Why? Structures from PDB are not perfect Rosetta

Preparing Your Structure Production Runs Why? Structures from PDB are not perfect Rosetta

Preparing Your Structure Production Runs Why? Structures from PDB are not perfect Rosetta may fail Garbage in garbage out Wrong answer Benefits Less time spent on paths spent on re relaxing the same errors of the input

341 views • 6 slides
mndag 13 maj 13 OVERVIEW Fail-recovery Precedence (1,N) Logged register Byzantine (1,N)

mndag 13 maj 13 OVERVIEW Fail-recovery Precedence (1,N) Logged register Byzantine (1,N)

FAIL-RECOVERY & BYZANTINE REGISTERS mndag 13 maj 13 OVERVIEW Fail-recovery Precedence (1,N) Logged register Byzantine (1,N) Safe (1,N) Regular x2 (1,N) Atomic mndag 13 maj 13 FAIL-RECOVERY Process can fail before completion. o

554 views • 23 slides
Why bids fail? Why bids fail? Research by McIlhiney & Goldring 2010 For Pathways 21 [ UK]

Why bids fail? Why bids fail? Research by McIlhiney & Goldring 2010 For Pathways 21 [ UK]

Why bids fail? Why bids fail? Research by McIlhiney & Goldring 2010 For Pathways 21 [ UK] Ltd How has the current economic climate affected your funding levels? y g Has that affected your preference for smaller or larger contracts?

456 views • 23 slides
Non-Instagrammable Urbanism Tactical Urbanism Wins + Fails place creative. FAIL 1 FAIL 2

Non-Instagrammable Urbanism Tactical Urbanism Wins + Fails place creative. FAIL 1 FAIL 2

Non-Instagrammable Urbanism Tactical Urbanism Wins + Fails place creative. FAIL 1 FAIL 2 SUCCESS 1 SUCCESS 2 Process Over People Ponsonby Park Auckland Council. - Waitemat Local Board - 254 Ponsonby Road Volunteer CLD Group Dr. Amanda

620 views • 21 slides
Cut Not and Fail Cut, Not, and Fail York University CSE 3401 Vida Movahedi 1 York University

Cut Not and Fail Cut, Not, and Fail York University CSE 3401 Vida Movahedi 1 York University

Cut Not and Fail Cut, Not, and Fail York University CSE 3401 Vida Movahedi 1 York University CSE 3401 V. Movahedi 07_CutNotFail Overview Overview Multiple solutions p Cut Examples p 3 reasons to use Not Fail

601 views • 27 slides
WHY MOST ONLINE COMMUNITIES FAIL ...and how you can help them succeed Most online communities

WHY MOST ONLINE COMMUNITIES FAIL ...and how you can help them succeed Most online communities

WHY MOST ONLINE COMMUNITIES FAIL ...and how you can help them succeed Most online communities fail GENERATION BENZ MetroTwin British Airways Virgin Media Pioneers Walmart Sainsburys What do these examples tell us? What do these

514 views • 24 slides
Fail to Plan, Plan to Fail: Zoning and Land Use Case Review Koontz v. St. Johns River Water Mgmt.

Fail to Plan, Plan to Fail: Zoning and Land Use Case Review Koontz v. St. Johns River Water Mgmt.

12/7/2015 SC Municipal Attorneys Association Annual Meeting and Continuing Legal Education Seminar Fail to Plan, Plan to Fail: Zoning and Land Use Case Review Koontz v. St. Johns River Water Mgmt. Dist . (2013) 5-4 Decision In Favor of

167 views • 4 slides
Nearness Gone Wrong: When Leaders Fail Steve Midgley When leaders fail... An imaginary

Nearness Gone Wrong: When Leaders Fail Steve Midgley When leaders fail... An imaginary

Nearness Gone Wrong: When Leaders Fail Steve Midgley When leaders fail... An imaginary example? The past three years... A pastor and his affairs Discipleship and pastoral beatings Discipleship and bullying Pastoral

318 views • 31 slides
Registers Shared Memory Fail-crash, fail-silent BJRN A. JOHNSSON Introduction Analogy

Registers Shared Memory Fail-crash, fail-silent BJRN A. JOHNSSON Introduction Analogy

Registers Shared Memory Fail-crash, fail-silent BJRN A. JOHNSSON Introduction Analogy from multi-CPU computers. Over network: emulation of shared-memory . Benefit: use shared-memory where there really is none. Considered

626 views • 35 slides
BUDGETING & SAVING Schell Stubbs, MBA, LLM 21 th March, 2019 Budgeting If you fail

BUDGETING & SAVING Schell Stubbs, MBA, LLM 21 th March, 2019 Budgeting If you fail

FINANCIAL SERVICES LITERACY PROGRAM BUDGETING & SAVING Schell Stubbs, MBA, LLM 21 th March, 2019 Budgeting If you fail to plan, you are planning to fail. Benjamin Franklin www.cfasociety.org/bahamas Why is Budgeting

339 views • 17 slides
TOO BIG TO FAIL BANKS: CAN THEY BE RESOLVED? Prepared for the Brookings Conference on dealing

TOO BIG TO FAIL BANKS: CAN THEY BE RESOLVED? Prepared for the Brookings Conference on dealing

TOO BIG TO FAIL BANKS: CAN THEY BE RESOLVED? Prepared for the Brookings Conference on dealing with too important to fail banks June 14, 2013 Martin Neil Baily(mbaily@brookings.edu) The Brookings Institution 1 Resolving Large Institutions and

126 views • 11 slides
Preparing for Cascadia 9.0 Preparing for Cascadia 9.0 Individual, Household, and Community

Preparing for Cascadia 9.0 Preparing for Cascadia 9.0 Individual, Household, and Community

Preparing for Cascadia 9.0 Preparing for Cascadia 9.0 Individual, Household, and Community Preparedness Bill Hasan Hillsdale Neighborhood Emergency Team members hillsdaleornet@gmail.com March 10, 2019 | Portland Bureau of Emergency

352 views • 31 slides
How to Make a Formal Presentation Contents Preparing Content ( Written ) Theory

How to Make a Formal Presentation Contents Preparing Content ( Written ) Theory

How to Make a Formal Presentation Contents Preparing Content ( Written ) Theory Practice Preparing Content ( Visual ) Preparing Yourself Body Language Preparing for your Presentation Video Preparing Written

233 views • 8 slides
#failability How to not Fail on Launch http://adammalone.net Adam Malone @adammalone

#failability How to not Fail on Launch http://adammalone.net Adam Malone @adammalone

#failability How to not Fail on Launch http://adammalone.net Adam Malone @adammalone drupal.org/user/1295980 aka typhonius Adam Malone | How to not Fail on Launch about:me Client Advisory - Acquia APJ Created my first HTML site: 2009

574 views • 24 slides
Preparing IRB Submissions for Human Subjects Research Tips for Preparing IRB Protocols IRB

Preparing IRB Submissions for Human Subjects Research Tips for Preparing IRB Protocols IRB

Preparing IRB Submissions for Human Subjects Research Tips for Preparing IRB Protocols IRB Educational Session-Psychological Sciences September 15, 2017 Post Approval Monitor-Joan Levine, MPH, CIP Research Compliance Services Objectives You

386 views • 25 slides
Data backup Way to many copies is just about right I have never had a drive fail Said

Data backup Way to many copies is just about right I have never had a drive fail Said

Data backup Way to many copies is just about right I have never had a drive fail Said photographer with no backups All drives fail It is not a matter if, it is a matter of when Multiple copies is your best protection Drives

499 views • 17 slides
Solid Type System vs Runtime Checks and Unit Tests Vladimir Pavkin Plan Fail Fast concept

Solid Type System vs Runtime Checks and Unit Tests Vladimir Pavkin Plan Fail Fast concept

Solid Type System vs Runtime Checks and Unit Tests Vladimir Pavkin Plan Fail Fast concept Type Safe Patterns Fail Fast Immediate and visible failure Where can it fail? Handled runtime exceptions & assertions Unhandled runtime failure

1.2k views • 62 slides
How to Fail: a Subjective Disaster Gerhard Weikum http://www.mpi-inf.mpg.de/~weikum/ How to

How to Fail: a Subjective Disaster Gerhard Weikum http://www.mpi-inf.mpg.de/~weikum/ How to

How to Fail: a Subjective Disaster Gerhard Weikum http://www.mpi-inf.mpg.de/~weikum/ How to Fail: 5 Golden Rules Not So Rule 1: Start with list of 10 topics and hire 10+ students Rule 2: If you dont make progress hire more students

311 views • 12 slides
ENDING TOO BIG TO FAIL: REASONS FOR OPTIMISM MAY 16, 2016 John F. Bovenzi Introduction:

ENDING TOO BIG TO FAIL: REASONS FOR OPTIMISM MAY 16, 2016 John F. Bovenzi Introduction:

ENDING TOO BIG TO FAIL: REASONS FOR OPTIMISM MAY 16, 2016 John F. Bovenzi Introduction: Too-Big-to-Fail (TBTF) How far have we come? What remains to be done? Can we get there? Significant progress, but most important work remains

131 views • 10 slides
CPD Why gutters fail and the options to repair, replace and refurbish: A specifiers guide

CPD Why gutters fail and the options to repair, replace and refurbish: A specifiers guide

CPD Why gutters fail and the options to repair, replace and refurbish: A specifiers guide Josh Hamer Technical Services Manager Agenda Introduction Why gutters fail Decision to repair, replace or refurbish System comparisons

813 views • 58 slides

More recommend