Stock Exchanges in the Line of Fire-Morphology of Cyber Attacks

•Télécharger en tant que PPTX, PDF•

0 j'aime•1,356 vues

Stock exchanges are constantly targeted by cyber attacks. This presentation discusses several real life attacks cases studies discussing attack vectors, motivations, impacts and mitigation techniques.

Technologie

Session ID: HT-R33
Session Classification: Intermediate

Network Impact Sever
Business Impact Sever

Attack Confirmed Pipe FW Web
Vector Satur-
Measurement CPU Server
ation 100% Outage
UDP Flood 44 Mbps X X
HTTP Flood 40K Concurrent Con. X X
Empty Connection Flood 5.2K PPS X X
FIN+ACK 4 Mbps X X

“Stock exchange hit
by hackers”
“Attack on stock
exchange triggers
halt in trade”

“Stock exchange IT
have been working
intensively to resolve
all issues”
“Experts successfully
implemented a
protection against the
attacks”
“Additional measures
were taken such as a
redundant New Site”

Network Impact None
Business Impact None



Legitimate traffic monitoring

TCP connection flood detection
and mitigated immediately

Psychological
Impact
Static Content HTTP Flood

Trade Trade/Financial
Disruption Announcements
Firewall L3 Router Internet Pipe

Trading API

Psychological
Impact
Static Content UDP Flood

Trade Trade/Financial
Disruption Announcements
Firewall L3 Router Internet Pipe

Trading API

Psychological
Impact
Static Content SYN Flood

Trade Trade/Financial
Disruption Announcements
Firewall L3 Router Internet Pipe

Trading API

Protection

HTTP Flood

UDP Flood

SYN Flood

Stock Exchange

Protection

HTTP Flood
Attackers will
UDP Flood
eventually find
the weakest link! SYN Flood

Stock Exchange Slow Rate Flood

Image Download Flood

Political/Hacktivist’s Bull’s Eye (Realistic)

Attack
Heads Up Reconnaissance Test Fire
Begins

Service Service
Disruption Disruption
Automatic Manual New Attack Mitigation
Mitigation Mitigation Vectors Continued

Attack Ends Forensic

Attack Attack
Period Period
“Peace” “Peace”
Period Period

Time

Pre-attack Post-attack Phase Pre-attack Phase
Phase
Automatic Mitigation
(no time for human interaction)

THE SECURITY GAP
Attacker has time to bypass automatic mitigation.
Defenders have no skill/capacity to sustain it.
“Peace” Period “Peace” Period

Attack Period

Pre-attack Post-attack
Phase Phase

45%

40%

35%

30%
Procedures 25%

20%
Human skills
15%

Equipment 10%

5%

0%

Before During After

Radware 2012 Global Application and Network Security Report

Be prepared for prolonged attacks!

THE SECURITY GAP
Attacker has time to bypass automatic mitigation.
“Peace” Period Defenders have no skill/capacity to sustain it. “Peace” Period

Attack Period

Pre-attack Post-attack
Phase Phase

Counterattack
RT Intel
Active Mitigation

24x7x365
Trained
Experienced

Contenu connexe

Plus de Radware

What’s the Cost of a Cyber Attack (Infographic)

Radware

DDoS Threat Landscape - Ron Winward CHINOG16

Radware

Radware Cloud Security Services

Radware

Radware 2016 State of the Union: Multi Industry Web Performance (Desktop)

Radware

The enterprise perimeter is disappearing. Migration to the cloud means a more distributed network infrastructure. Transition of web based applications to the cloud renders on premise mitigation tools ineffective against web attacks and requires organizations to protect applications both on premise and in-the-cloud. Introducing Radware's Hybrid Cloud WAF Service - a fully-managed, always on service that integrates cloud-based with on premise protection against a broad range of attack vectors. Visit here http://www.radware.com/social/hybridcloudwaf/ to read "The Dawn of Hybrid Cloud WAF" and to learn how the industry's first hybrid cloud-based WAF service addresses today's most challenging web-based cyber-attacks.

Radware Hybrid Cloud WAF Service

Radware

When it Comes to ADCs, Perception is Not Reality. The Enterprise Strategy Group and Radware recently conducted a collaborative research project about the current use and future strategies of application delivery controllers (ADCs). Based on a survey of 243 IT professionals, the research reveals that the role of ADCs has expanded well beyond the historical perception of hardware-based load balancers. What’s most interesting is that ADCs are becoming a critical component of a defense-in-depth security strategy as enterprises fine-tune security policy and enforcement to align with their sensitive business applications. Organizations are also deploying ADCs as virtual appliances at an increasing rate and taking advantage of ADC functionality from the network through the application layer. There is a lesson to be learned here: enterprise organizations can get creative with ADC deployments for performance tuning, application-specific services, and critical system protection. Read this research http://www.radware.com/social/esg-adc-research/ to understand the benefits of applying ADCs in this fashion.

The Expanding Role and Importance of Application Delivery Controllers [Resear...

Radware

With cyber-attacks becoming a growing concern for organizations, availability-based attacks, also known as Denial of Service or Distributed Denial of Service attacks, have long moved from a form of cyber protest to a destructive weapon that is used by cyber criminals, hacktivists and even governments. In 2013 we saw a growing use of a new type of attack where attackers used legitimate transactions to saturate application servers’ resources. In this presentation, Security Expert Werner Thalmeier demonstrates how such an advanced attack can be created from a laptop running in an anonymous public WiFi network. He also evaluates the attack landscape and its impact on organizations as well as shares the best practices to protect against such cyber-attacks. Understand the current availability-based threat landscape and learn about new types of cyber-attacks that are being used to saturate resources. For more information on the state of Application and Network Security, please visit: http://www.radware.com/ert-report-2013/

The Art of Cyber War [From Black Hat Brazil 2014]

Radware

Eventually, every website fails. If it's a household-name site like Amazon, then news of that failure gets around faster than a rocket full of monkeys. That's because downtime hurts. As a for-instance, in 2013 Amazon suffered a 40-minute outage that allegedly cost the company $5 million in lost sales. That's a big number, and everybody loves big numbers. But when it comes to performance-related losses, is it the biggest number? In this presentation from the CMG Performance and Capacity 2014 conference, Radware Web Performance Expert Tammy Everts reviews real-world examples that compare the cost of site slowdowns versus outages. We also talk about how to overcome the challenges of creating as much urgency around the topic of slow time as there is around the topic of downtime.

The Real Cost of Slow Time vs Downtime

Radware

The Cyber Attack landscape is evolving with new attack vectors and dangerous trends that can affect the security of your business. Some attacks can take only minutes to complete, yet months to be discovered. Determine your attack risk and learn what to look for in a quality cyber attack defense. Please visit here: http://www.radware.com/social/amn/ for information on Radware's AMN (Attack Mitigation Network.

Cyber Attack Survival: Are You Ready?

Radware

An Important Notice About Shellshock Bash Protection Since the news about “Shellshock Bash” vulnerabilities came out, we have been working around the clock to ensure our customers and partners are getting the best solutions from us. We have published this Shellshock Security Advisory, which will help protect your business with: • Two IPS signatures that can be used by DefensePro to block the vulnerability • Recommendations provided by Radware’s Emergency Response Team (ERT) that can be applied immediately • Recommended reference sources and vendor information Radware's team of cyber-security experts is available to our customers, 24/7. Contact us if you require immediate support for this vulnerability. We assure you that we continue to closely monitor the situation in order to ensure we provide you with the best cyber-attack protection mechanisms.

Radware ERT Threat Alert: Shellshock Bash

Radware

Is the world in the midst of a cyber-war? If so, what are the implications? In this presentation Carl Herberger, Radware's VP of Security Solutions, explores some of the most notable recent cyber-attacks and how many of the findings correlate with the tenets of warfare as defined in The Art of War by Sun Tzu, the ancient military general, strategist and tactician. How should organizations be preparing for an information security landscape that is shaped by ideologically motivated cyber warfare rather than just opportunistic cyber-crime? Learn the techniques being employed to safeguard IT operations in a theatre that is witnessing ever more sophisticated attacks. For more on how to help detect, mitigate and win this cyber war battle, visit here: http://www.radware.com/ert-report-2013/ to download the 2013 Global Application and Network Security Report.

The Art of Cyber War: Cyber Security Strategies in a Rapidly Evolving Theatre

Radware

Slow pages hurt mobile user metrics, from bounce rate to online revenues and long-term user retention. At Radware, we wanted to understand the science behind this, so we engaged in the first documented study of the neurological impact of poor performance on mobile users. Your takeaway from this presentation is hard data that you can use to make a case for investing in mobile performance in your organization. Based on similar research performed on desktop users, our study involved using a groundbreaking combination of eyetracking and electroencephalography (EEG) technologies to monitor brain wave activity in a group of mobile users who were asked to perform a series of online transactions via mobile devices. In our study, participants were asked to complete standardized shopping tasks on four ecommerce sites while using a smartphone. We studied participants during these tasks, both at the normal speed over Wifi and also at a consistently slowed-down speed (using software that allowed us to create a 500ms network delay). The participants did not know that speed was a factor in the tests; rather, they believed that they were participating in a generic usability/brand perception study. From the data, we were able to extract measures of frustration and emotional engagement for the browsing and checkout stages of both the normal and slowed-down versions of all four sites. This presentation, shared by Radware Web Performance Evangelist Tammy Everts at the 2014 Velocity Conference and the CMG Performance and Capacity 2014 Conference, provides a deeper understanding of the impact of performance on mobile users. For even more on the research, you can also download it here: http://www.radware.com/mobile-eeg2013/

Mobile Web Stress: Understanding the Neurological Impact of Poor Performance

Radware

InfoSecurity Europe 2014: The Art Of Cyber War

Radware

Why would you want to have an open source driver? Samuel Bercovici, Radware's Director of Automation & Cloud Integration, answers this and offers an introduction to Drivers in Havana in this presentation from his recent appearance at OpenStack Israel. Read more in our Press Release: http://www.radware.com/NewsEvents/PressReleases/Radware-Alteon-Provides-Load-Balancing-for-OpenStack-Cloud-Applications/

OpenStack Networking: Developing and Delivering a Commercial Solution for Lo...

Radware

SecureWorld St. Louis: Survival in an Evolving Threat Landscape

Radware

In the Line of Fire - The Morphology of Cyber-Attacks

Radware

Survival in an Evolving Threat Landscape

Radware

In the Line of Fire-the Morphology of Cyber Attacks

Radware

In the Line of Fire-the Morphology of Cyber Attacks

Radware

Radware DefenseFlow-The SDN Application That Programs Networks for DoS Security

Radware

Plus de Radware (20)

What’s the Cost of a Cyber Attack (Infographic)

DDoS Threat Landscape - Ron Winward CHINOG16

Radware Cloud Security Services

Radware 2016 State of the Union: Multi Industry Web Performance (Desktop)

Radware Hybrid Cloud WAF Service

The Expanding Role and Importance of Application Delivery Controllers [Resear...

The Art of Cyber War [From Black Hat Brazil 2014]

The Real Cost of Slow Time vs Downtime

Cyber Attack Survival: Are You Ready?

Radware ERT Threat Alert: Shellshock Bash

The Art of Cyber War: Cyber Security Strategies in a Rapidly Evolving Theatre

Mobile Web Stress: Understanding the Neurological Impact of Poor Performance

InfoSecurity Europe 2014: The Art Of Cyber War

OpenStack Networking: Developing and Delivering a Commercial Solution for Lo...

SecureWorld St. Louis: Survival in an Evolving Threat Landscape

In the Line of Fire - The Morphology of Cyber-Attacks

Survival in an Evolving Threat Landscape

In the Line of Fire-the Morphology of Cyber Attacks

Radware DefenseFlow-The SDN Application That Programs Networks for DoS Security

Dernier

In this keynote, Asanka Abeysinghe, CTO,WSO2 will explore the shift towards platformless technology ecosystems and their importance in driving digital adaptability and innovation. We will discuss strategies for leveraging decentralized architectures and integrating diverse technologies, with a focus on building resilient, flexible, and future-ready IT infrastructures. We will also highlight WSO2's roadmap, emphasizing our commitment to supporting this transformative journey with our evolving product suite.

Platformless Horizons for Digital Adaptability

WSO2

The microservices honeymoon is over. When starting a new project or revamping a legacy monolith, teams started looking for alternatives to microservices. The Modular Monolith, or 'Modulith', is an architecture that reaps the benefits of (vertical) functional decoupling without the high costs associated with separate deployments. This talk will delve into the advantages and challenges of this progressive architecture, beginning with exploring the concept of a 'module', its internal structure, public API, and inter-module communication patterns. Supported by spring-modulith, the talk provides practical guidance on addressing the main challenges of a Modultith Architecture: finding and guarding module boundaries, data decoupling, and integration module-testing. You should not miss this talk if you are a software architect or tech lead seeking practical, scalable solutions. About the author With two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Victor Rentea

Vector Search -An Introduction in Oracle Database 23ai.pptx

Remote DBA Services

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

Tracing the root cause of a performance issue requires a lot of patience, experience, and focus. It’s so hard that we sometimes attempt to guess by trying out tentative fixes, but that usually results in frustration, messy code, and a considerable waste of time and money. This talk explains how to correctly zoom in on a performance bottleneck using three levels of profiling: distributed tracing, metrics, and method profiling. After we learn to read the JVM profiler output as a flame graph, we explore a series of bottlenecks typical for backend systems, like connection/thread pool starvation, invisible aspects, blocking code, hot CPU methods, lock contention, and Virtual Thread pinning, and we learn to trace them even if they occur in library code you are not familiar with. Attend this talk and prepare for the performance issues that will eventually hit any successful system. About authorWith two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

Victor Rentea

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

Exploring Multimodal Embeddings with Milvus

Zilliz

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

[BuildWithAI] Introduction to Gemini.pdf

Sandro Moreira

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

MS Copilot expands with MS Graph connectors

Nanddeep Nachan

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

Following the popularity of “Cloud Revolution: Exploring the New Wave of Serverless Spatial Data,” we’re thrilled to announce this much-anticipated encore webinar. In this sequel, we’ll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you’re building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

ICT role in 21st century education and its challenges

rafiqahmad00786416

Whatsapp Number Escorts Call girls 8617370543 Available 24x7 Mcleodganj Call Girls Service Offer Genuine VIP Model Escorts Call Girls in Your Budget. Mcleodganj Call Girls Service Provide Real Call Girls Number. Make Your Sexual Pleasure Memorable with Our Mcleodganj Call Girls at Affordable Price. Top VIP Escorts Call Girls, High Profile Independent Escorts Call Girls, Housewife Women Escorts Call Girl, College Girls Escorts Call Girls, Russian Escorts Call girls Service in Your Budget.

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Deepika Singh

Architecting Cloud Native Applications

WSO2

Retrieval augmented generation (RAG) is the most popular style of large language model application to emerge from 2023. The most basic style of RAG works by vectorizing your data and injecting it into a vector database like Milvus for retrieval to augment the text output generated by an LLM. This is just the beginning. One of the ways that we can extend RAG, and extend AI, is through multilingual use cases. Typical RAG is done in English using embedding models that are trained in English. In this talk, we’ll explore how RAG could work in languages other than English. We’ll explore French, Chinese, and Polish.

Introduction to Multilingual Retrieval Augmented Generation (RAG)

Zilliz

Dernier (20)

Platformless Horizons for Digital Adaptability

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Vector Search -An Introduction in Oracle Database 23ai.pptx

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

Exploring Multimodal Embeddings with Milvus

CNIC Information System with Pakdata Cf In Pakistan

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

[BuildWithAI] Introduction to Gemini.pdf

Boost Fertility New Invention Ups Success Rates.pdf

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

MS Copilot expands with MS Graph connectors

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

ICT role in 21st century education and its challenges

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Architecting Cloud Native Applications

Introduction to Multilingual Retrieval Augmented Generation (RAG)

Stock Exchanges in the Line of Fire-Morphology of Cyber Attacks

1. Session ID: HT-R33 Session Classification: Intermediate

2. ► ► ► ► ► ► ► ► ►

3. ► ► ►

5. Network Impact Sever Business Impact Sever

7. Attack Confirmed Pipe FW Web Vector Satur- Measurement CPU Server ation 100% Outage UDP Flood 44 Mbps X X HTTP Flood 40K Concurrent Con. X X Empty Connection Flood 5.2K PPS X X FIN+ACK 4 Mbps X X

8. “Stock exchange hit by hackers” “Attack on stock exchange triggers halt in trade”

10.

11. Network Impact Low Business Impact None

12. “Stock exchange IT have been working intensively to resolve all issues” “Experts successfully implemented a protection against the attacks” “Additional measures were taken such as a redundant New Site”

13.

14. Network Impact None Business Impact None 

15. Legitimate traffic monitoring TCP connection flood detection and mitigated immediately

16. Network Impact None Business Impact None

17. Attack begins but quickly mitigated

18.

19. ► ► ► ► ►

20.

21. Psychological Impact Static Content HTTP Flood Trade Trade/Financial Disruption Announcements Firewall L3 Router Internet Pipe Trading API

22. Psychological Impact Static Content UDP Flood Trade Trade/Financial Disruption Announcements Firewall L3 Router Internet Pipe Trading API

23. Psychological Impact Static Content SYN Flood Trade Trade/Financial Disruption Announcements Firewall L3 Router Internet Pipe Trading API

24. Protection HTTP Flood UDP Flood SYN Flood Stock Exchange

25. Protection HTTP Flood UDP Flood SYN Flood Stock Exchange

26. Protection HTTP Flood Attackers will UDP Flood eventually find the weakest link! SYN Flood Stock Exchange Slow Rate Flood Image Download Flood

27.

28. Political/Hacktivist’s Bull’s Eye (Realistic)

29.

30.

31. Legitimate Bypass CDN Attack Directly

32. ► ►

33. Pragma: no-cache

34. ► ► ► ► ►

35.

36. Attack Heads Up Reconnaissance Test Fire Begins Service Service Disruption Disruption Automatic Manual New Attack Mitigation Mitigation Mitigation Vectors Continued Attack Ends Forensic

37.

38. Attack Attack Period Period “Peace” “Peace” Period Period Time Pre-attack Post-attack Phase Pre-attack Phase Phase Automatic Mitigation (no time for human interaction)

39. THE SECURITY GAP Attacker has time to bypass automatic mitigation. Defenders have no skill/capacity to sustain it. “Peace” Period “Peace” Period Attack Period Pre-attack Post-attack Phase Phase

40. 45% 40% 35% 30% Procedures 25% 20% Human skills 15% Equipment 10% 5% 0% Before During After Radware 2012 Global Application and Network Security Report

41. Be prepared for prolonged attacks! THE SECURITY GAP Attacker has time to bypass automatic mitigation. “Peace” Period Defenders have no skill/capacity to sustain it. “Peace” Period Attack Period Pre-attack Post-attack Phase Phase

42. Counterattack RT Intel Active Mitigation 24x7x365 Trained Experienced

43.

44. ► ► ►

45.

46. ► ► ►

Stock Exchanges in the Line of Fire-Morphology of Cyber Attacks

Recommandé

Recommandé

Contenu connexe

Plus de Radware

Plus de Radware (20)

Dernier

Dernier (20)

Stock Exchanges in the Line of Fire-Morphology of Cyber Attacks