Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security...
Transcript of Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security...
![Page 1: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/1.jpg)
Security is a m indsetΓιάννης Παυλίδης
Presales & Tech Support M anager
![Page 2: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/2.jpg)
30 years of technology
![Page 3: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/3.jpg)
Cutting Edge-Technology
![Page 4: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/4.jpg)
UEFI Scanner
Network AttackProtection
Reputation & Cache
In-productSandbox
DNA Detections
AdvancedMemoryScanner
RansomwareShield
ExploitBlocker
BotnetProtection
Script Scanner(AMSI)
LiveGrid® Protection
CloudMalware Scan
MachineLearning
![Page 5: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/5.jpg)
![Page 6: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/6.jpg)
Security is a mindset
And then we get a call..
• Κολλήσαμε ransomware
• Το ransomware χτύπησε τον ERP Server
• Το Antivirus δεν έκανε τίποτα
• Το Antivirus δεν ήταν καν εκεί
• Ο server δεν λειτουργεί πλέον
![Page 7: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/7.jpg)
Security is a mindset
Let the search begin
• Ζητάμε logs από το μηχάνημα που δέχτηκε την επίθεση
• Ξεκινάμε την ανάλυση
• Η ανάλυση τελειώνει πολύ σύντομα
![Page 8: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/8.jpg)
Security is a mindset
Findings
• RDP 3389 on WAN - Firewall: Off• Shared "C:" with Everyone: Write• Critical MS Patches missing• Antivirus without password protection
![Page 9: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/9.jpg)
Security is a mindset
Isolated incidents?
![Page 10: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/10.jpg)
Security is a mindset
A weekend in a server’s life
But, nobody is going to target us!
![Page 11: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/11.jpg)
Security is a mindset
Think Security!
• Server has a “key”• Attackers have millions of keys• Attackers will find our key• Key is only one layer of security, what’s next?
![Page 12: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/12.jpg)
Security is a mindset
Find the balance, ask yourself
• I need RDP just for me, should I enable Firewall?
• Can I use a VPN connection?
• I have a Terminal Server, should I use MFA?
• Can I protect my Antivirus with a password?
• Does my Backup work?
• Should I pay ransom?
..but not only for RDP!
![Page 13: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/13.jpg)
COMPLIANCE
POLICY
CONTINUOUS MONITORING& ANALYSIS
Adapt ive Secur it y Archit ect ure
Harden Systems
Isolate Systems
Prevent Attacks
Detect Incidents
Confirm and prioritize risk
Contain Incidents
Remediate
Design / Model policy change
Investigate incidents / retrospective analysis
Baseline systems and security posture
Anticipate threats / attacks
Risk-prioritized exposure assesment
![Page 14: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/14.jpg)
COMPLIANCE
POLICY
CLOSINGTHE LOOP
ESET Endpoint Security
ESET Virtualization Security
ESET Security Management Center
ESET Secure Authentication
ESET Endpoint Encryption
ESET Endpoint Security
ESET Security Management Center
ESET Enterprise Inspector
ESET Dynamic Threat Defense
ESET Enterprise Inspector
ESET Security Management Center
ESET Virus Radar
ESET Threat Intelligence
ESET Dynamic Threat Defense
WeLive Security
NEW
NEW
NEW
NEW
H ow E SE T fit s in Adapt ive Secur it y Archit ect ure
![Page 15: Security is a mindset - Infocom Security · Security is a mindset ... Adaptive Security Architecture. HardenSystems. IsolateSystems. PreventAttacks. Detect Incidents. Confirm and](https://reader033.fdocument.org/reader033/viewer/2022052216/5f10704d7e708231d4491cb1/html5/thumbnails/15.jpg)
Thank you!
Γιάννης ΠαυλίδηςESET H ellas