![Page 1: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/1.jpg)
Running with Bulls Cyber-crime threat landscape through the eyes of an ethical hacker
Charl Van der Walt Chief Ethical Hacker, SecureData
Thomas Gourgeon Head of International Business Development
![Page 2: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/2.jpg)
Unique positioning
Security across
the data journey
Operator DNA
Security Pure-Play
European with
Global Presence
European MSSP wave, Forrester
![Page 3: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/3.jpg)
Accelerating our international development
40 consultants/analysts
200 people
24/7 UK CyberSOC
with 50 engineers
12 talks at major conferences in last 2 years
Largest independent managed security services provider in the UK
![Page 4: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/4.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
Lions & Bulls*** in Cyberspace Charl van der Walt
@charlvdwalt
![Page 8: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/8.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
We need better technology.
We need smarter people.
We need more collaboration.
We need stricter regulation.
We suck.
We need better analogies.
![Page 9: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/9.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
You can outrun some of the bulls some of the time, but you can’t outrun all of the bulls all of the time.
![Page 10: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/10.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
![Page 11: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/11.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 12: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/12.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
“I think it is just a temporary trend until someone finds a better
idea to make money easier” eWeek 2012
• Ukash
• PaySafeCard
• MoneyPak
• CashU
• Gift Card
• iTunes Vouchers
![Page 15: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/15.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 18: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/18.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 20: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/20.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
A Cybercrime ecosystem hungry for new revenues
New types and levels of cybercrime are enabled by cryptocurrencies
Government hacking investment leak into the civilian space
Unprecedented new threats, attacks & compromises
![Page 21: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/21.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 22: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/22.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
“We see unstable airports, we see people who are unable to purchase their rye bread or fuel for their cars because NSA developed a cyber weapon, which is now being abused by criminals.”
![Page 23: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/23.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
to protect New Zealand’s most significant organizations, To protect their networks from the
types of threats which are typically beyond the capability of commercially available tools, and
from threats which could potentially impact on the effective functioning of government administration or key economic sectors.
![Page 24: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/24.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 26: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/26.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 27: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/27.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
“The level of risk associated with the GDPR has catapulted data protection into the boardroom”. Jane Finlayson-Brown – Allen & Overy
Fines for non-compliance and data breaches will soar under GDPR, reaching up to 4% of a company’s global turnover
Had the TalkTalk breach occurred under GDPR, the company could have faced fines of up to £90 million
Organisations will be required to inform regulators within 72 hours. When it’s in the interest of consumers, regulators will also release news of the breach publicly
4%
£90m
72h
![Page 29: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/29.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 32: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/32.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
GOVERNMENT
SPENDING ON
OFFENSIVE
CYBER
CRYPTO
CURRENCIES
INNOVATION
OF
MONETISATION
BY CRIMINALS
CALL FOR
GOVERNMENTS
TO PROTECT A
CIVILIAN
INTERNET
LEGISLATION,
REGULATION &
BEST PRACTICE
GUIDELINES
CYBER
BALKANISATION
CYBER
INSURANCE
RUNNING
WITH THE
BULLS
![Page 34: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/34.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
In a mature defense strategy detection has a place
![Page 35: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/35.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
WHY DETECTION
1 DEFENSE
Are we doing everything we
could to track contemporary threats and realities?
Any good
enterprise
strategy needs to cover
Assessment, Protection, Detection & Response.
2 COMPLIANCE
In the case of a breach can we claim
that we took all reasonable steps to
protect our assets?
Increasingly
being demanded
as a best practice
by standards and regulations.
3 READINESS
Are we in a position to rapidly perform triage in
the event of a compromise?
Data collection
and correlation
is as much about investigation as
it is about
detection.
![Page 36: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/36.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
Threat Detection in practice
![Page 37: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/37.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
• 25 year track record in information security
• Circa 230 employees
• UK SOC 24x7x365
• 3 UK Data Centres
• 120+ Cybersecurity & Analysts
• Largest and longest running training
provider to BlackHat Conferences
• On review board of BlackHat
• 7000+ managed devices
• ISO 27001 and ISO 9001 certified
• PCI Authorised scanning vendor
We look beyond point technologies to address cybersecurity as a
whole providing a range of integrated solutions that assess risks,
detect threats, protect our customer’s IT assets and respond to
security incidents.
SensePost, the consulting arm of SecureData includes some of
the world’s most preeminent cybersecurity experts.
1. Know your Enemy
2. Know your Self
3. People & Principles trump Technology
![Page 38: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/38.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
Know Your Enemy
![Page 39: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/39.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
Reconnaissance Weaponization Delivery Exploitation Installation Command &
Control Actions on Objectives
![Page 40: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/40.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
Know Your Self
![Page 41: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/41.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
MAYBE MORE OF THIS?
![Page 42: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/42.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
DECEPTION & TRAPS
![Page 43: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/43.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
People Platform
Process Projects
Log Data
Th
reat
Inte
l D
ata
Inventory Data
Vu
lnera
bility
Data
![Page 44: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/44.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
WHY MANAGED DETECTION
1 FOUR P’S
Do we want to spend our time and effort
doing the basics when modern security
needs to
be agile?
People, Process, Platform and Project
Management are tedious and
expensive if not core business.
2 SKILL
Do we have the resources, experience and environment to retain our own set
of capabilities?
Appropriate skills are incredibly
difficult to identify, hire, equip and
retain in a competitive
market.
3 AGILITY
Do we have the environment to
continuously extend and adapt our
detection capability?
Threat detection is not plug-and-play and continuous investment is required to
respond to new risks.
![Page 45: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/45.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
SELECTING A PARTNER
1 THE BASICS
Can we confidently say that we’ve addressed the
basics and know what we’re
getting?
Our mission is to
the basics right, focusing on
repeatable, managed processes and
proven technology.
2 SCOPE
Are we willing to trust any single technology or
system for any part of our defensive
strategy?
Our offering leverages the
best skills in the market but is also
honest about fallibility.
3 FIT
Who can we trust to be personally
available for all of our security
needs?
We are big enough to
compete globally but small enough to be a trusted extension of your team.
![Page 46: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/46.jpg)
For more information please contact us
T: +44 (0)1622 723400 E: [email protected] www.secdata.com
“Questions?”
Charl van der Walt
@charlvdwalt
![Page 47: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/47.jpg)
Demo booths:
Come and see us:
Partner Talks:
16:30 Balcony room
DiLAN
![Page 48: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/48.jpg)
Thank you… we’re listening
![Page 49: Running with Bulls Cyber-crime threat landscape through ... · Cyber-crime threat landscape through the eyes of an ethical hacker Charl Van der Walt Chief Ethical Hacker, SecureData](https://reader034.vdocuments.us/reader034/viewer/2022042711/5f79b763d12821383314d696/html5/thumbnails/49.jpg)
Companies thrive on innovation. We work to shape yours.