Internet Security Fernando

8/12/2019 Internet Security Fernando

1/46

In touch with your needs

Internet Security

Fernando Martirez III

VP & Chief Security Officer


2/46

FarmOut Central Intouch Inc. In touch with your needs

AgendaAgenda

Before you connect a computer to the

internet Passwords

Spam

Phising

Pharming

Virus Worms


3/46


AgendaAgenda

Spyware & Adware

Rootkits P2P Filesharing

Instant Messaging Identity Theft


4/46


Before You Connect

a New Computer

to the Internet


5/46


Take note thatTake note that

Many computers' default configurations

are insecure.

New security vulnerabilities may havebeen discovered between the time thecomputer was built and configured by themanufacturer and the user setting up thecomputer for the first time.


6/46



When upgrading software from

commercially packaged media newvulnerabilities may have been discoveredsince the disc was manufactured.

Attackers know the common broadbandand dial-up IP address ranges, and scanthem regularly.


7/46



Numerous worms are already circulatingon the Internet continuously scanning for

new computers to exploit.


8/46


Things to doThings to do

Turn on the software firewall included

with the computer, if available.

Install antivirus, anti-spyware andfirewall, if available.

Connect the new computer behind afirewall router.


9/46


Things to doThings to do

Disable nonessential services, such asfile and print sharing.

Download and install software patches

as needed.


10/46


Staying SecureStaying Secure

Install and use security software and

keep them up to date Enable automatic software updates ifavailable (windows update > microsoft

update) Follow the principle of least privilege

don't enable it if you don't need it. Avoid unsafe behavior


11/46



12/46


PasswordsPasswords

The single most important aspect ofinformation security is strong passwords.

Likewise, the single greatest securityfailure is weak passwords.


13/46


Wordlist WordsWordlist Words

love

San Miguel MichaelJordan

cupcake honey


14/46


Wordlist Words with NumbersWordlist Words with Numbers

Alpha8

Beverly90210 26Subway

Air21 5thAve


15/46


Wordlist Words with Simple ObfuscationWordlist Words with Simple Obfuscation

p@$$w0rd

$3cur1ty @dm1n1str@t0r

0bfu$c@t10n


16/46


Wordlist Words DoubledWordlist Words Doubled

alphaalpha

linuxlinux passwordpassword

adminadmin powerpower


17/46


Garbled RandomnessGarbled Randomness

9uxg$t5C

Bn2#sz63j &fM3tc8b


18/46


Patterns or SequencesPatterns or Sequences

asdfghjkl

1234567890 0987654321

qwertyuiop asdf1234


19/46


Common Password AttacksCommon Password Attacks

Smart Guesses

Dictionary Attacks Brute-Force Attacks

Social Engineering Rainbow Tables

Sniffing Keyloggers


20/46


15+ Char Passwords15+ Char Passwords

14 character password

Char set:ABCDEFGHIJKLMNOPQRSTUVWXYZabcdef

ghijklmnopqrstuvwxyz0123456789!@#$%^&*()-_+=~`[]{}|\:;"',.?/ "

Can be cracked in a few minutes with asuccess rate of 99.9%.


21/46


Password TipsPassword Tips

Easy to remember

Easy to type Not in the dictionary

At least 15 characters long Use a combination of uppercase,

lowercase, numbers and characters Use pass phrases if supported


22/46


Password TipsPassword Tips

Use multi factored authentication

What you know password What you have tokens

What you are biometrics

Make sure authentication process is encrypted Always logout

Lock workstation when not in use Use password protected screensavers


23/46



24/46


SpamSpam

Use Spam Filters

Be careful where you post your emailaddress online

Opt out from public directories if possible Use images

Use disposable email address Create multiple email accounts


25/46


PhishingPhishing

Involves the receipt of an e-mail

message that appears to come from alegitimate source


26/46


Phishing - ProtectionPhishing - Protection

Scrutinize URLs: verify link targets

Go to the site directly Maintain a pop-up blocker

Use Software/Toolbars with anti-phisingfeatures


27/46


Phishing - ProtectionPhishing - Protection

Phishing IQ Testhttp://survey.mailfrontier.com/survey/quiztest.html
http://survey.mailfrontier.com/survey/quiztest.htmlhttp://survey.mailfrontier.com/survey/quiztest.html


28/46


Phishing aftermathPhishing aftermath

What to do if you fell for it?

Inform the impersonated company/body To monitor any activity re your account

Close your account and open a new one

Change passwords, update account infoand security questions


29/46


PharmingPharming

Attacks compromise at the DNS server

level, re-directing you to a hacker's sitewhen you type in a company's Webaddress.


30/46



31/46


FirewallsFirewalls

Same functions as a physical firewall

Packet Filtering Proxy Service

Stateful Packet Inspection

Available in software & hardware Protects you from port scans/random

scans & known attacks IDS & IPS


32/46


RootkitsRootkits

Rootkits attack deep within operating

systems and make themselves invisibleto the anti-spyware and anti-virussoftware sent out to detect them.

Sony DRM

Kaspersky Antivirus

Symantec/Norton Systemworks 2006

R tkit P t ti


33/46


Rootkits ProtectionRootkits Protection

Use Rootkit Revealer

Use Antispyware with rootkit scanning

capabilities

Use tripwire

P2P Fil h iP2P Fil h i


34/46


P2P FilesharingP2P Filesharing

Set up and configure the file-sharing softwarevery carefully.

Check proper settings so that other users

wont have access to your private files.

You may want to adjust the file-sharing

programs controls so that it is not connectedto the P2P network all the time.

I t t M iI t t M i


35/46


Instant MessagingInstant Messaging

Public IMs are insecure by default

Use IM privacy tools such as SecWaySimp and ZoneAlarm IM

Avoid using automatic sign-in Be careful in accepting files

Be careful in clicking on URLs inmessages

S & Ad P t tiS & Ad P t ti


36/46


Spyware & Adware ProtectionSpyware & Adware Protection

Download programs only from Web sites

you trust.

Dont be tricked into clicking: You dont have to click OK, Agree, orCancel to close a window.

S & Ad P t tiSpyware & Adware Protection


37/46


Spyware & Adware ProtectionSpyware & Adware Protection

Be especially careful with certain types

of free programs.

Use available tools to detect and deletespyware.

Use pop-up blockers to block ads

Virus & WormsVirus & Worms


38/46


Virus & WormsVirus & Worms

Be careful in opening attachments

Keep your software updated Antivirus updated virus

definitions/engines Firewall


39/46


Identity TheftIdentity Theft


40/46


Identity TheftIdentity Theft

Is not yet rampant in PH

Be wary of telemarketers

Social Engineering

Photocopy everything your walletcontains

WirelessWireless


41/46


WirelessWireless

WiFi WPA2

Configure not to broadcast SSID

Use MAC address filtering

Use VPN (iPig Wifi Security Software) Bluetooth

Use long passphrases if supported

Be careful when & where you pair your devices

Careers in InfosecCareers in Infosec


42/46


Careers in InfosecCareers in Infosec

Start with the basics

Tech Support Systems and Network Administrator

Programming/Coding is a definite + Accounting Background also a +

Network

Infosec CertificationsInfosec Certifications


43/46


Infosec CertificationsInfosec Certifications

CompTIA Security+

MCSA/MCSE:Security (ISC)2 SSCP/CISSP

ISACA CISA/CISM SANS GIAC

CIA

Infosec OrganizationsInfosec Organizations


44/46


Infosec OrganizationsInfosec Organizations

Open Web Application Security Project(OWASP) Manila Local Chapter

Information Security Society of the Philippines(ISSSP)

Philippine Linux Users Group (PLUG)

Philippine Computer Emergency ResponseTeam (PH-CERT)

ISACA Manila Institute of Internal Auditors (IIA) Philippines

Questions?Questions?


45/46


Questions?Questions?

Thank You!Thank You!


46/46


Thank You!Thank You!

boxph [at] farmout.ph

http://www.farmout.ph

http://blog.box.com.ph

http://infosec.box.com.ph

Documents

Internet Security Fernando