© 2010 Verizon. All Rights Reserved. PTE14626 07/10 2011 DBIR.

2011 DBIR

Data Breach Investigations Report series

http://verizonbusiness.com/databreachhttp://securityblog.verizonbusiness.com

2011 DBIR Contributors

VerizonUnited StatesSecret Service

Dutch National High Tech Crime Unit

Methodology: Collection and Analysis

• VERIS framework used to collect data after investigation

• Aggregate and anonymize the case data

• RISK Intelligence team provides analytics

• 630 threat events

VERIS: https://verisframework.wiki.zoho.com/

Overview – What’s New?

• Over 750 new breaches studied since the last report– Total for all years = 1700+

• Just under 4 million records confirmed compromised– Total for all years = 900+ million

• Euro-centric appendix from Dutch HTCU

Agents: Whose Actions Affected the Asset?

Agents: Who were the External Agents?

Agents: Who were the Internal Agents?

Actions: What Actions Affected the Asset?

Malware – What was the Infection Vector?

Malware – What was its Functionality?

Malware – How Often was it Customized?

Hacking – What was the Type Used?

Hacking – What Path did the Agent Take?

Patchable vulnerabilities: 5

Which Assets were Affected?

Which Data Types were Affected?

How Difficult were these Attacks?

How Long to Compromise, Discovery & Containment?

How did the Victim Discover the Breach?

Wrapping up

Conclusions & recommendations

Focus on essential controls.Focus on essential controls. Many organisations make the mistake of pursuing exceptionally high security in certain areas while almost completely neglecting others. Businesses are much better protected if they implement essential controls across the entire organization without exception.

Eliminate unnecessary data.Eliminate unnecessary data. If you do not need it, do not keep it. For sensitive data that must be kept, identify, monitor and securely store it.

Secure remote access services.Secure remote access services. Restrict these services to specific IP addresses and networks, minimising public access to them. Also, ensure that your organisation is limiting access to sensitive information within the network.

Filter outbound activity.Filter outbound activity. If the criminal cannot get the data out of your environment then the data has not been compromised.

Monitor and mine event logs.Monitor and mine event logs. Focus on the obvious issues that logs pick up, not the records. Reducing the compromise-to-discovery timeframe from weeks and months to days can pay huge dividends.

Look for unusual location.Look for unusual location. Criminals do not tend to attack from the same location as your usual business partner and staff traffic.

DBIR: www.verizonbusiness.com/databreachVERIS: https://verisframework.wiki.zoho.com/Blog: securityblog.verizonbusiness.comEmail: dbir@verizonbusiness.com

© 2010 Verizon. All Rights Reserved. PTE14626 07/10 2011 DBIR.

Documents

Transcript of © 2010 Verizon. All Rights Reserved. PTE14626 07/10 2011 DBIR.

Email Security for the Cloud Generation - IT klinika · Source: ISTR Report 2017, Email ISTR Report 2017, ISTR Report 2016, Verizon DBIR 2016, 2016 SANS Incident Response Survey 36%

1 Verizon Global Wholesale (c) 2011 Verizon Corporation - All rights reserved Verizon Global Wholesale Professional Services Order Management Service (ASR)

© 2011 Verizon. All Rights Reserved. Net Conferencing Cisco WebEx Platform Upgrade T28.12.2 EP6.

E-MAIL SECURITY MITIGATION€¦ · Source: Gartner Information Security, Worldwide Source: 2018 Verizon DBIR 2016 –2022, 1Q 2018 update (2018 forecast) Network 61% Endpoint 19%

Managing Risk and Staying Safe Online - University of Toronto › wp-content › ... · EDUCATION AND AWARENESS • The 2018 Verizon Data Breach Investigations Report (DBIR) found

Cyber Insurance: Global developments, claim examples and ...events.globalreinsurance.com/dwic/wp-content/uploads/2018/07/CLY… · Verizon DBIR (2016 data breach investigation report

2016 DBIR: Understand Your Cybersecurity Threats | Verizon ...

2018 Top 10 Cyber Threats Event... · 2020. 1. 11. · • Verizon 2017 DBIR, • Ponemon/IBM 2017 Cost of a Data Breach Report 2017 • Accenture/Ponemon Cost of Cyber crime Study

2017 Data Breach Investigations Report - Verizon EnterpriseWelcome to the 10th anniversary of the Data Breach Investigations Report (DBIR). We sincerely thank you for once again taking

© 2011 Verizon. All Rights Reserved. Reserved Net Conference for Cisco WebEx Event Center Presenter Name Presenter Title Month XX, 2013.

The Top 10 Cyberattacks - Arctic Wolf SOC-as-a …...1. Cisco Cybersecurity Special Report, 2018 2. Verizon Data Breach Investigations Report (DBIR), 2017 3. Check Point 2018 Security

DBIR INDUSTRY SNAPSHOT: HEALTHCARE€¦ · Verizon’s annual Data Breach Investigations Report (DBIR)1 analyzes forensic evidence to uncover how sensitive data is stolen from organizations,

Northwestern DBIR brown bag

Raid08 dbir

© 2009 Verizon. All Rights Reserved. PTEXXXXX XX/09 End to End Security on the Smart Grid Perry Jurancich Utilities Vertical Market Development Verizon.

© 2006. Verizon Business. All Rights Reserved. 00/00/06 Getting Started with Microsoft Office ® Live Meeting Verizon Net Conferencing.

AI in Cybersecurity: Applications, Open Problems, and ...- Exfiltration of sensitive information - Loss of intellectual property - Financial losses 2013 Source: Verizon DBIR 14. Defenses

© 2011 Verizon. All Rights Reserved. PTEXXXXX XX/11 AICC Overview November 21, 2011.

© 2009 Verizon. All Rights Reserved. PTEXXXXX XX/09 GLOBAL CAPABILITY. PERSONAL ACCOUNTABILITY. Information Dominance & Next Generation Networking Verizon.

BREAKING OUT OF THE SILO - Boston University · (Verizon DBIR 2016*) * 2015, 2014, 2013, 2012, 2011, 2010, 2009, and 2008 Staff shortage (Peninsula, Cisco) Industry Background & Status

BREAKING OUT OF THE SILO - Boston University · (Verizon DBIR 2016) 2015, 2014, 2013, 2012, 2011, 2010, 2009, and 2008 Staff shortage (Peninsula, Cisco) Industry Background & Status