Upload
salamajahnie
View
215
Download
0
Embed Size (px)
Citation preview
8/12/2019 Internet Security Fernando
1/46
In touch with your needs
Internet Security
Fernando Martirez III
VP & Chief Security Officer
8/12/2019 Internet Security Fernando
2/46
FarmOut Central Intouch Inc. In touch with your needs
AgendaAgenda
Before you connect a computer to the
internet Passwords
Spam
Phising
Pharming
Virus Worms
8/12/2019 Internet Security Fernando
3/46
FarmOut Central Intouch Inc. In touch with your needs
AgendaAgenda
Spyware & Adware
Rootkits P2P Filesharing
Instant Messaging Identity Theft
8/12/2019 Internet Security Fernando
4/46
FarmOut Central Intouch Inc. In touch with your needs
Before You Connect
a New Computer
to the Internet
8/12/2019 Internet Security Fernando
5/46
FarmOut Central Intouch Inc. In touch with your needs
Take note thatTake note that
Many computers' default configurations
are insecure.
New security vulnerabilities may havebeen discovered between the time thecomputer was built and configured by themanufacturer and the user setting up thecomputer for the first time.
8/12/2019 Internet Security Fernando
6/46
FarmOut Central Intouch Inc. In touch with your needs
Take note thatTake note that
When upgrading software from
commercially packaged media newvulnerabilities may have been discoveredsince the disc was manufactured.
Attackers know the common broadbandand dial-up IP address ranges, and scanthem regularly.
8/12/2019 Internet Security Fernando
7/46
FarmOut Central Intouch Inc. In touch with your needs
Take note thatTake note that
Numerous worms are already circulatingon the Internet continuously scanning for
new computers to exploit.
8/12/2019 Internet Security Fernando
8/46
FarmOut Central Intouch Inc. In touch with your needs
Things to doThings to do
Turn on the software firewall included
with the computer, if available.
Install antivirus, anti-spyware andfirewall, if available.
Connect the new computer behind afirewall router.
8/12/2019 Internet Security Fernando
9/46
FarmOut Central Intouch Inc. In touch with your needs
Things to doThings to do
Disable nonessential services, such asfile and print sharing.
Download and install software patches
as needed.
8/12/2019 Internet Security Fernando
10/46
FarmOut Central Intouch Inc. In touch with your needs
Staying SecureStaying Secure
Install and use security software and
keep them up to date Enable automatic software updates ifavailable (windows update > microsoft
update) Follow the principle of least privilege
don't enable it if you don't need it. Avoid unsafe behavior
8/12/2019 Internet Security Fernando
11/46
FarmOut Central Intouch Inc. In touch with your needs
8/12/2019 Internet Security Fernando
12/46
FarmOut Central Intouch Inc. In touch with your needs
PasswordsPasswords
The single most important aspect ofinformation security is strong passwords.
Likewise, the single greatest securityfailure is weak passwords.
8/12/2019 Internet Security Fernando
13/46
FarmOut Central Intouch Inc. In touch with your needs
Wordlist WordsWordlist Words
love
San Miguel MichaelJordan
cupcake honey
8/12/2019 Internet Security Fernando
14/46
FarmOut Central Intouch Inc. In touch with your needs
Wordlist Words with NumbersWordlist Words with Numbers
Alpha8
Beverly90210 26Subway
Air21 5thAve
8/12/2019 Internet Security Fernando
15/46
FarmOut Central Intouch Inc. In touch with your needs
Wordlist Words with Simple ObfuscationWordlist Words with Simple Obfuscation
p@$$w0rd
$3cur1ty @dm1n1str@t0r
0bfu$c@t10n
8/12/2019 Internet Security Fernando
16/46
FarmOut Central Intouch Inc. In touch with your needs
Wordlist Words DoubledWordlist Words Doubled
alphaalpha
linuxlinux passwordpassword
adminadmin powerpower
8/12/2019 Internet Security Fernando
17/46
FarmOut Central Intouch Inc. In touch with your needs
Garbled RandomnessGarbled Randomness
9uxg$t5C
Bn2#sz63j &fM3tc8b
8/12/2019 Internet Security Fernando
18/46
FarmOut Central Intouch Inc. In touch with your needs
Patterns or SequencesPatterns or Sequences
asdfghjkl
1234567890 0987654321
qwertyuiop asdf1234
8/12/2019 Internet Security Fernando
19/46
FarmOut Central Intouch Inc. In touch with your needs
Common Password AttacksCommon Password Attacks
Smart Guesses
Dictionary Attacks Brute-Force Attacks
Social Engineering Rainbow Tables
Sniffing Keyloggers
8/12/2019 Internet Security Fernando
20/46
FarmOut Central Intouch Inc. In touch with your needs
15+ Char Passwords15+ Char Passwords
14 character password
Char set:ABCDEFGHIJKLMNOPQRSTUVWXYZabcdef
ghijklmnopqrstuvwxyz0123456789!@#$%^&*()-_+=~`[]{}|\:;"',.?/ "
Can be cracked in a few minutes with asuccess rate of 99.9%.
8/12/2019 Internet Security Fernando
21/46
FarmOut Central Intouch Inc. In touch with your needs
Password TipsPassword Tips
Easy to remember
Easy to type Not in the dictionary
At least 15 characters long Use a combination of uppercase,
lowercase, numbers and characters Use pass phrases if supported
8/12/2019 Internet Security Fernando
22/46
FarmOut Central Intouch Inc. In touch with your needs
Password TipsPassword Tips
Use multi factored authentication
What you know password What you have tokens
What you are biometrics
Make sure authentication process is encrypted Always logout
Lock workstation when not in use Use password protected screensavers
8/12/2019 Internet Security Fernando
23/46
FarmOut Central Intouch Inc. In touch with your needs
8/12/2019 Internet Security Fernando
24/46
FarmOut Central Intouch Inc. In touch with your needs
SpamSpam
Use Spam Filters
Be careful where you post your emailaddress online
Opt out from public directories if possible Use images
Use disposable email address Create multiple email accounts
8/12/2019 Internet Security Fernando
25/46
FarmOut Central Intouch Inc. In touch with your needs
PhishingPhishing
Involves the receipt of an e-mail
message that appears to come from alegitimate source
8/12/2019 Internet Security Fernando
26/46
FarmOut Central Intouch Inc. In touch with your needs
Phishing - ProtectionPhishing - Protection
Scrutinize URLs: verify link targets
Go to the site directly Maintain a pop-up blocker
Use Software/Toolbars with anti-phisingfeatures
8/12/2019 Internet Security Fernando
27/46
FarmOut Central Intouch Inc. In touch with your needs
Phishing - ProtectionPhishing - Protection
Phishing IQ Testhttp://survey.mailfrontier.com/survey/quiztest.html
http://survey.mailfrontier.com/survey/quiztest.htmlhttp://survey.mailfrontier.com/survey/quiztest.html8/12/2019 Internet Security Fernando
28/46
FarmOut Central Intouch Inc. In touch with your needs
Phishing aftermathPhishing aftermath
What to do if you fell for it?
Inform the impersonated company/body To monitor any activity re your account
Close your account and open a new one
Change passwords, update account infoand security questions
8/12/2019 Internet Security Fernando
29/46
FarmOut Central Intouch Inc. In touch with your needs
PharmingPharming
Attacks compromise at the DNS server
level, re-directing you to a hacker's sitewhen you type in a company's Webaddress.
8/12/2019 Internet Security Fernando
30/46
FarmOut Central Intouch Inc. In touch with your needs
8/12/2019 Internet Security Fernando
31/46
FarmOut Central Intouch Inc. In touch with your needs
FirewallsFirewalls
Same functions as a physical firewall
Packet Filtering Proxy Service
Stateful Packet Inspection
Available in software & hardware Protects you from port scans/random
scans & known attacks IDS & IPS
8/12/2019 Internet Security Fernando
32/46
FarmOut Central Intouch Inc. In touch with your needs
RootkitsRootkits
Rootkits attack deep within operating
systems and make themselves invisibleto the anti-spyware and anti-virussoftware sent out to detect them.
Sony DRM
Kaspersky Antivirus
Symantec/Norton Systemworks 2006
R tkit P t ti
8/12/2019 Internet Security Fernando
33/46
FarmOut Central Intouch Inc. In touch with your needs
Rootkits ProtectionRootkits Protection
Use Rootkit Revealer
Use Antispyware with rootkit scanning
capabilities
Use tripwire
P2P Fil h iP2P Fil h i
8/12/2019 Internet Security Fernando
34/46
FarmOut Central Intouch Inc. In touch with your needs
P2P FilesharingP2P Filesharing
Set up and configure the file-sharing softwarevery carefully.
Check proper settings so that other users
wont have access to your private files.
You may want to adjust the file-sharing
programs controls so that it is not connectedto the P2P network all the time.
I t t M iI t t M i
8/12/2019 Internet Security Fernando
35/46
FarmOut Central Intouch Inc. In touch with your needs
Instant MessagingInstant Messaging
Public IMs are insecure by default
Use IM privacy tools such as SecWaySimp and ZoneAlarm IM
Avoid using automatic sign-in Be careful in accepting files
Be careful in clicking on URLs inmessages
S & Ad P t tiS & Ad P t ti
8/12/2019 Internet Security Fernando
36/46
FarmOut Central Intouch Inc. In touch with your needs
Spyware & Adware ProtectionSpyware & Adware Protection
Download programs only from Web sites
you trust.
Dont be tricked into clicking: You dont have to click OK, Agree, orCancel to close a window.
S & Ad P t tiSpyware & Adware Protection
8/12/2019 Internet Security Fernando
37/46
FarmOut Central Intouch Inc. In touch with your needs
Spyware & Adware ProtectionSpyware & Adware Protection
Be especially careful with certain types
of free programs.
Use available tools to detect and deletespyware.
Use pop-up blockers to block ads
Virus & WormsVirus & Worms
8/12/2019 Internet Security Fernando
38/46
FarmOut Central Intouch Inc. In touch with your needs
Virus & WormsVirus & Worms
Be careful in opening attachments
Keep your software updated Antivirus updated virus
definitions/engines Firewall
8/12/2019 Internet Security Fernando
39/46
FarmOut Central Intouch Inc. In touch with your needs
Identity TheftIdentity Theft
8/12/2019 Internet Security Fernando
40/46
FarmOut Central Intouch Inc. In touch with your needs
Identity TheftIdentity Theft
Is not yet rampant in PH
Be wary of telemarketers
Social Engineering
Photocopy everything your walletcontains
WirelessWireless
8/12/2019 Internet Security Fernando
41/46
FarmOut Central Intouch Inc. In touch with your needs
WirelessWireless
WiFi WPA2
Configure not to broadcast SSID
Use MAC address filtering
Use VPN (iPig Wifi Security Software) Bluetooth
Use long passphrases if supported
Be careful when & where you pair your devices
Careers in InfosecCareers in Infosec
8/12/2019 Internet Security Fernando
42/46
FarmOut Central Intouch Inc. In touch with your needs
Careers in InfosecCareers in Infosec
Start with the basics
Tech Support Systems and Network Administrator
Programming/Coding is a definite + Accounting Background also a +
Network
Infosec CertificationsInfosec Certifications
8/12/2019 Internet Security Fernando
43/46
FarmOut Central Intouch Inc. In touch with your needs
Infosec CertificationsInfosec Certifications
CompTIA Security+
MCSA/MCSE:Security (ISC)2 SSCP/CISSP
ISACA CISA/CISM SANS GIAC
CIA
Infosec OrganizationsInfosec Organizations
8/12/2019 Internet Security Fernando
44/46
FarmOut Central Intouch Inc. In touch with your needs
Infosec OrganizationsInfosec Organizations
Open Web Application Security Project(OWASP) Manila Local Chapter
Information Security Society of the Philippines(ISSSP)
Philippine Linux Users Group (PLUG)
Philippine Computer Emergency ResponseTeam (PH-CERT)
ISACA Manila Institute of Internal Auditors (IIA) Philippines
Questions?Questions?
8/12/2019 Internet Security Fernando
45/46
FarmOut Central Intouch Inc. In touch with your needs
Questions?Questions?
Thank You!Thank You!
8/12/2019 Internet Security Fernando
46/46
FarmOut Central Intouch Inc. In touch with your needs
Thank You!Thank You!
boxph [at] farmout.ph
http://www.farmout.ph
http://blog.box.com.ph
http://infosec.box.com.ph