Upload
sucuri
View
908
Download
3
Embed Size (px)
Citation preview
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR
Tony Perez | @perezbox #AskSucuri
TONY PEREZ@perezbox
Tony Perez | @perezbox
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
THANK YOU!
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR
Tony Perez | @perezbox #AskSucuri
#AskSucuri
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR
Tony Perez | @perezbox #AskSucuri
TONY PEREZ@perezbox
Tony Perez | @perezbox
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
WHO IS THIS TALK FOR?
• Currently infected
• Have experienced an infection
• Curious what nefarious things hackers can do with your website
• Weighing the risks and trying to figure out if security is a thing to worry about
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
What’s the Motivation? Why do hackers hack?
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
REVENUE• Make money off your website or
it’s resources
• Earning potential could be based on stealing information (i.e., data exfiltration)
• Impression based affiliate marketing schemes
• Criminal enterprises
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
AUDIENCE
• Make money off your audience
• Extremely valuable to attackers
• Ability to take advantage of the trust you’ve built with your followers / customers
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
RESOURCES
• Make money off your resources
• Abuse of the infrastructure supporting your website
• Integrated into larger criminal networks (a.k.a botnets)
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
LULZ
• Not about making money (Finally!!)
• Bored, why not?
• If it allows me to access it, why wouldn’t I?
• Badge of honor amongst peers!
• Likely one of our kids!!!
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Things they do! Understanding the tactics
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Various Attack Types
Malware Distribution Search Engine Poisoning Spam EmailPhishing Lures
Defacement DDoS/Bot Scripts Ransomware
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Type Description Motivation Association
Malware Distribution Drive-by-DownloadsEnd-points are the target
RevenueAudience
Search Engine Poisoning (SEP) Search Engine Result Pages (SERP)Pharma / Casino / Luxury Goods
RevenueAudience
Phishing Lures Email / Social Phishing campaignsFinancial / Credential Theft
Spam Email Email spam campaignsLeverage your server / ip / domain
ResourceAudienceResource
Defacement Hacktivism Lulz
DDoS/Bot Scripts DDoSMailer Scripts
RevenueResource
Ransomware Hold you hostageHow your audience hostage
RevenuAudience
Data Exfiltration Steal data from your environmentE-Commerce / PII
ResourceAudience
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
THE IMPACTS OF COMPROMISE
Brand Website Blacklisting
Emotional Distress
Economic
Business
Visitor Compromise
Technical
SEO Impacts
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Brand Reputation• Your brand is made up of the unique user experience you offer through
your design, content, product offering and service
• Your website, and the experience your audience has plays a critical part in the reputation of that brand
• Tolerance is the highest it’s ever been around website compromises, so reputation is recoverable
• Loss of trust in your brand can drive your audience to look for alternatives to your brand
Business ImpactsEconomicBrand Emotional Distress
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Economic Impacts• Our research has shown a little over 90% drop in traffic immediately
following a compromise, that number goes up if a website gets blacklisted
• Whether your website leverages ads, static content, or sells product, it directly or indirectly helps your business generate some form of revenue / exposure
• Costs associated with post-compromise services, to include time / money spent on tools, education and consultation
Business ImpactsEconomicBrand Emotional Distress
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Emotional Distress• Anxiety – nothing ever goes fast enough
• Confusion – unclear what steps to take, who to talk to, where to start
• Anger – you want to reach across the matrix and shake someone
• Sadness – a general feeling of feeling overwhelmed, exhausted..
• Distrust – an erosion of trust in technology, internet, people
Business ImpactsEconomicBrand Emotional Distress
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Website Blacklisting• The most impactful in that it has the ability deter people from reaching
your website and it’s content / product / services
• Blacklists extend beyond search engines like Google and Bing, but can be found in end-point AntiVirus Solutions like Malwarebytes, Norton, EST, McAfee and so many others.
• This can lead to your website being flagged globally in large networks (i.e., cisco, websense, etc… )
Technical ImpactsSEOBlacklisting Visitor Compromise
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Seo Impact• The most impactful in that it has the ability deter people from reaching
your website and it’s content / product / services
• Blacklists extend beyond search engines like Google and Bing, but can be found in end-point AntiVirus Solutions like Malwarebytes, Norton, EST, McAfee and so many others.
• This can lead to your website being flagged globally in large networks (i.e., cisco, websense, etc… )
Technical ImpactsSEOBlacklisting Visitor Compromise
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Visitor Compromise• The most impactful in that it has the ability deter people from reaching
your website and it’s content / product / services
• Blacklists extend beyond search engines like Google and Bing, but can be found in end-point AntiVirus Solutions like Malwarebytes, Norton, EST, McAfee and so many others.
• This can lead to your website being flagged globally in large networks (i.e., cisco, websense, etc… )
Technical ImpactsSEOBlacklisting Visitor Compromise
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Thinking Website SecurityHow to improve your website security posture
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Security is not a static state, it’s a continuous process.
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Technology will never replace your responsibility as a website owner.
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Security is not a Do It Yourself (DIY) project.
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Impacts of a WEBSITE COMPROMISEWEBINAR
Tony Perez | @perezbox #AskSucuri
WEBINAR Impacts of a WEBSITE COMPROMISE
Tony Perez | @perezbox #AskSucuri
Q & A Tweet us @SucuriSecurity using #AskSucuri