• Home

  • Documents

  • Addressing Insider Threats, Cyber Attacks & Data Security · Addressing Insider Threats, Cyber...
1
Like all financial institutions, the reality of insider threats represents a serious security concern to credit unions. Whether it’s an employee who unknowingly opens a phishing email or a contractor with access to privileged areas of a corporate network, insider threats are particularly insidious because they often remain undetected for an extended period of time. Credit unions of course represent a highly attractive target given the significant amount of highly sensitive data that they house. And consequently, they have invested heavily in their security infrastructure over the years to ensure the integri- ty of their member’s data. In response to a more hardened perimeter, hackers have resorted to more sophisticated and targeted attacks such as spear phishing. Last year, in fact, the US Secret Service issued a warning in which they noted that they were seeing a “significant increase in the frequency, sophistication, and fraud losses” associated with these new attacks. For financial institutions in particular, many spear phishing attacks take the form of Business E-mail Compromises, or BEC scams, in which the attacker attempts to impersonate a legitimate, usually high-level employee in an attempt to extort the user credentials from another employee. While these scams are nothing new, they have grown in sophistica- tion, with hackers leveraging social media and professional networking sites such as LinkedIn, to identify those insiders that are to become targets. BEC scams can run the gamut from simple email spoofing of an email address to more com- plicated malware attacks in which they attempt to take con- trol of a credit union’s entire email system. One emerging standard that is proving highly effective against spear phishing is adding Domain-based Message Authentication, Reporting, and Conformance (DMARC) to your e-mail delivery systems. The DMARC standard is designed to help with spear phish- ing by identifying and blocking, based on policy, the treat- ment of these types of e-mails that appear to be from trusted and even internal e-mail delivery domains. The most valu- able aspect of DMARC is the feedback and the visibility it provides into both your authorized e-mail systems as well as all the failure reports generated by those campaigns initiating and trying to deliver spoofed e-mails. With this knowledge, you can improve your understanding and subsequent block- ing of spoofed emails, reducing the chance of their success. At Easy Solutions, we believe that a layered approach to security is the most effective way to identify and mitigate these and other types of threats. To this end, we have devel- oped a full portfolio of products and services oriented to help- ing customers identify fraud at the earliest stages – from mobile fraud protection and authentication to transaction risk monitoring to our DMARC Compass solution, which allows organizations to identify different authentication failures in their email platform, proactively detecting targeted attacks and preventing these attacks from spreading so that attempts to compromise corporate ‘insiders’ are recognized at the earliest point in the fraud lifecycle. Addressing Insider Threats, Cyber Attacks & Data Security Daniel Ingevaldson is Easy Solutions’ Chief Technology Officer. With over 15 years of experience protecting some of the world’s biggest organizations from next-generation threats, Daniel is our guru when it comes to developing fresh approaches to online security and fraud. As our CTO, he defines and exe- cutes the strategies for researching and creating the next phase of Total Fraud Protection® products. Daniel was co- founder of Endgame Systems, Inc., a startup focused on building advanced network security technology for United States government clients.Easy Solutions is a security provider focused on the comprehensive detection and pre- vention of electronic fraud across all devices, channels and clouds. Our products range from fraud intelligence and secure browsing to multi-factor authentication and transac- tion anomaly detection, offering a one-stop shop for end-to- end fraud protection. The online activities of more than 75 million customers at 280 leading financial services compa- nies, security firms, retailers, airlines and other entities in the US and abroad are protected by Easy Solutions Total Fraud Protection® platform. Contact Info www.easysol.net Daniel Ingevaldson Chief Technology Officer

Addressing Insider Threats, Cyber Attacks & Data Security · Addressing Insider Threats, Cyber Attacks & Data Security ... cutes the strategies for researching and creating ... building

  • Upload
    lytuyen

  • View
    213

  • Download
    1

Embed Size (px)

Citation preview

Page 1: Addressing Insider Threats, Cyber Attacks & Data Security · Addressing Insider Threats, Cyber Attacks & Data Security ... cutes the strategies for researching and creating ... building

Like all financial institutions, the reality of insider threats represents a serious security concern to credit unions. Whetherit’s an employee who unknowingly opens a phishing email or a contractor with access to privileged areas of a corporatenetwork, insider threats are particularly insidious because they often remain undetected for an extended period of time.

Credit unions of course represent a highly attractive target given the significant amount of highly sensitive data that theyhouse. And consequently, they have invested heavily in their security infrastructure over the years to ensure the integri-ty of their member’s data. In response to a more hardened perimeter, hackers have resorted to more sophisticated andtargeted attacks such as spear phishing. Last year, in fact, the US Secret Service issued a warning in which they notedthat they were seeing a “significant increase in the frequency, sophistication, and fraud losses” associated with these newattacks.

For financial institutions in particular, many spear phishing attacks take the form of Business E-mail Compromises, orBEC scams, in which the attacker attempts to impersonate a legitimate, usually high-level employee in an attempt toextort the user credentials from another employee. While these scams are nothing new, they have grown in sophistica-tion, with hackers leveraging social media and professional networking sites such as LinkedIn, to identify those insidersthat are to become targets. BEC scams can run the gamutfrom simple email spoofing of an email address to more com-plicated malware attacks in which they attempt to take con-trol of a credit union’s entire email system.

One emerging standard that is proving highly effectiveagainst spear phishing is adding Domain-based MessageAuthentication, Reporting, and Conformance (DMARC) toyour e-mail delivery systems.

The DMARC standard is designed to help with spear phish-ing by identifying and blocking, based on policy, the treat-ment of these types of e-mails that appear to be from trustedand even internal e-mail delivery domains. The most valu-able aspect of DMARC is the feedback and the visibility itprovides into both your authorized e-mail systems as well asall the failure reports generated by those campaigns initiatingand trying to deliver spoofed e-mails. With this knowledge,you can improve your understanding and subsequent block-ing of spoofed emails, reducing the chance of their success.

At Easy Solutions, we believe that a layered approach tosecurity is the most effective way to identify and mitigatethese and other types of threats. To this end, we have devel-oped a full portfolio of products and services oriented to help-ing customers identify fraud at the earliest stages – frommobile fraud protection and authentication to transaction riskmonitoring to our DMARC Compass solution, which allowsorganizations to identify different authentication failures intheir email platform, proactively detecting targeted attacksand preventing these attacks from spreading so thatattempts to compromise corporate ‘insiders’ are recognizedat the earliest point in the fraud lifecycle.

Addressing Insider Threats, Cyber Attacks & Data Security

Daniel Ingevaldson is Easy Solutions’ ChiefTechnology Officer. With over 15years of experience protectingsome of the world’s biggest

organizations from next-generation threats, Daniel is ourguru when it comes to developing fresh approaches toonline security and fraud. As our CTO, he defines and exe-cutes the strategies for researching and creating the nextphase of Total Fraud Protection® products. Daniel was co-founder of Endgame Systems, Inc., a startup focused onbuilding advanced network security technology for UnitedStates government clients.Easy Solutions is a securityprovider focused on the comprehensive detection and pre-vention of electronic fraud across all devices, channels andclouds. Our products range from fraud intelligence andsecure browsing to multi-factor authentication and transac-tion anomaly detection, offering a one-stop shop for end-to-end fraud protection. The online activities of more than 75million customers at 280 leading financial services compa-nies, security firms, retailers, airlines and other entities in theUS and abroad are protected by Easy Solutions Total FraudProtection® platform.

Contact Info

www.easysol.net

Daniel Ingevaldson Chief Technology Officer

Insider Threats: Actual Attacks by Current and Former and

Insider Threats: Actual Attacks by Current and Former and

Documents
Falcongaze SecureTower: effective protection against insider threats

Falcongaze SecureTower: effective protection against insider threats

Documents
Protecting Information Insider Threats

Protecting Information Insider Threats

Documents
3 (IMP) Security Threats(Attacks)

3 (IMP) Security Threats(Attacks)

Documents
Common Sense Guide to Mitigating Insider Threats, … Threat - CERT...REV-04.06.2018.0 Common Sense Guide to Mitigating Insider Threats, Sixth Edition CERT National Insider Threat

Common Sense Guide to Mitigating Insider Threats, … Threat - CERT...REV-04.06.2018.0 Common Sense Guide to Mitigating Insider Threats, Sixth Edition CERT National Insider Threat

Documents
TM- Insider Threats Brochure

TM- Insider Threats Brochure

Documents
Insider Threats (RIMS 2012)

Insider Threats (RIMS 2012)

Documents
Insider Threats nov

Insider Threats nov

Documents
Insider threats webinar 01.28.15

Insider threats webinar 01.28.15

Technology
Insider Cloud Threats

Insider Cloud Threats

Technology
Threats and Attacks

Threats and Attacks

Documents
Counter-Attacks for Cybersecurity Threats

Counter-Attacks for Cybersecurity Threats

Documents
Prevent Insider Threats with User Activity Monitoring

Prevent Insider Threats with User Activity Monitoring

Technology
Preventing Lunchtime Attacks: Fighting Insider Threats

Preventing Lunchtime Attacks: Fighting Insider Threats

Documents
Detecting Insider Threats with User Behavior Analytics

Detecting Insider Threats with User Behavior Analytics

Technology
Monitoring Technologies for Mitigating Insider Threats

Monitoring Technologies for Mitigating Insider Threats

Documents
Addressing Insider Threats with ArcSight ESM - Bitpipeviewer.media.bitpipe.com/1120682139_877/1297107228... · Whitepaper: Addressing Insider Threats with ArcSight ESM ArcSight 1

Addressing Insider Threats with ArcSight ESM - Bitpipeviewer.media.bitpipe.com/1120682139_877/1297107228... · Whitepaper: Addressing Insider Threats with ArcSight ESM ArcSight 1

Documents
Tier 3 Huntsman - Insider Threats

Tier 3 Huntsman - Insider Threats

Technology
Cyber SeCurity inCident reSponSe - ponemon.org › local › upload › file › Lancope... · • Distributed denial-of-service (DDoS) attacks • Insider threats • Advanced persistent

Cyber SeCurity inCident reSponSe - ponemon.org › local › upload › file › Lancope... · • Distributed denial-of-service (DDoS) attacks • Insider threats • Advanced persistent

Documents
Insider Threats Survey

Insider Threats Survey

Documents
Insider Threats: Insider The Danger Within Threats...defines insider threats as any “current or former employee, contractor, or other business partner who has or had access to an

Insider Threats: Insider The Danger Within Threats...defines insider threats as any “current or former employee, contractor, or other business partner who has or had access to an

Documents
Analysis and Detection of Insider Threats

Analysis and Detection of Insider Threats

Documents
Insider threats and countermeasures

Insider threats and countermeasures

Technology
Building a Threat Intelligence Program...Insider Threats 55% Business Email Compromise 49% Supply Chain Attacks sales@htreacotnnecomc. t 1.800.965.2708 ThreatConnect.com 3865 Wilson

Building a Threat Intelligence Program...Insider Threats 55% Business Email Compromise 49% Supply Chain Attacks sales@htreacotnnecomc. t 1.800.965.2708 ThreatConnect.com 3865 Wilson

Documents
Managing Insider Threats

Managing Insider Threats

Documents
How Dangerous are Insider Threats?

How Dangerous are Insider Threats?

Business
7 social engineering and insider threats

7 social engineering and insider threats

Education
Detecting Insider Threats - Splunk

Detecting Insider Threats - Splunk

Documents
Preventing and Profiling Malicious Insider Attacks · Preventing and Profiling Malicious Insider Attacks . Executive Summary . Insider threat presents an ever increasing problem within

Preventing and Profiling Malicious Insider Attacks · Preventing and Profiling Malicious Insider Attacks . Executive Summary . Insider threat presents an ever increasing problem within

Documents
Threats, Vulnerabilities, and Attacks

Threats, Vulnerabilities, and Attacks

Documents