ISSN 2055-6950 (Print) ISSN 2055-6969 (Online)
Cyber Security Review Autumn 2016
STRATEGIC INSIGHTS: CYBER (IN)SECURITY, THE AMERICAS AND U.S. NATIONAL SECURITY STAYING IN THE GAME – EMPOWERING SOC PROFESSIONALS THROUGH A METHODOLOGY DRIVEN, TECHNOLOGICAL APPROACH TO INCIDENT ANALYSIS AND ATTRIBUTION WHO’S WATCHING YOU? CYBER INSIDER RISK MITIGATION MATURITY MATRIX THE RAPID EVOLUTION OF THE RANSOMWARE INDUSTRY ACCOUNT HACKS: THE USER OR THE COMPANY – WHO’S TO BLAME? LAZARUS: DATA LEAKAGE WITH PGP AND RESURRECTION OF THE REVOKED USER JUSTIFIED PHYSICAL RESPONSE TO CYBER ATTACKS
INCORPORATING
The UK’s Flagship Event for a Global End-User Security Audience • • • •
8000+ visitors from the public and private sector 250+ exhibitors showcasing the latest security solutions Live response demonstrations and technology workshops 6 CPD certified free to attend conferences GLOBAL COUNTER TERRORISM CONFERENCE
TRANSPORT SECURITY CONFERENCE
MAJOR EVENTS CONFERENCE
Cyber Security Highlights Include: • Cyber in the boardroom • Cyber securing the built environment • Mitigating the cyber risk to aviation • The cyber threat for business
CNI CONFERENCE
DESIGNING OUT TERRORISM CONFERENCE
PROTECTING CROWDED PLACES CONFERENCE
• Collaboration and information sharing for effective cybersecurity • Cyber securing the maritime environment • Why current approaches to managing cyber risk are not enough
Plus don’t miss the demonstration of cyber security systems In association with
DESIGN | SECURE | RESPOND FREE TO ATTEND REGISTER NOW www.uksecurityexpo.com/csr
EDITORIAL CONTRIBUTORS
Cyber Security Review
Published by Delta Business Media Limited 3rd floor, 207 Regent Street London W1B 3HH United Kingdom Tel: +44 (0) 20 7193 2303 Fax: +44 (0) 20 3014 7659 info@deltabusinessmedia.com www.deltabusinessmedia.com www.cybersecurity-review.com
ISSN 2055-6950 (Print) ISSN 2055-6969 (Online)
MEDIA PARTNERS
The opinions and views expressed in the editorial content in this publication are those of the authors alone and do not necessarily represent the views of any organisation with which they may be associated. Material in advertisements and promotional features may be considered to represent the views of the advertisers and promoters. The views and opinions expressed in this publication do not necessarily express the views of the publisher. While every care has been taken in the preparation of this edition, the publisher is not responsible for such opinions and views or for any inaccuracies in the articles. Š 2016. The entire contents of this publication are protected by copyright. Full details are available from the publisher. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical photocopying, recording or otherwise, without the prior permission of the copyright owner. cybersecurity-review.com
3
CONTENTS
CONTENTS IFC UK SECURITY EXPO 2016 5
CDANS - CYBER DEFENCE & NETWORK SECURITY CONFERENCE
6
ISDEF 2017 – 8TH INTERNATIONAL DEFENCE & HLS EXPO
7
9TH INTERNATIONAL CYBERSECURITY FORUM
8
WORLD CYBERSECURITY CONGRESS 2017
9
STRATEGIC INSIGHTS: CYBER (IN)SECURITY, THE AMERICAS AND U.S. NATIONAL SECURITY
16
CYBER INTELLIGENCE ASIA 2017
By Dr. Jose de Arimateia da Cruz, Professor of International Relations/Comparative Politics at Armstrong State University
17 STAYING IN THE GAME – EMPOWERING SOC PROFESSIONALS THROUGH A METHODOLOGY DRIVEN, TECHNOLOGICAL APPROACH TO INCIDENT ANALYSIS AND ATTRIBUTION
By Aaron (Ronnie) Eilat, General Manager, Custodio Pte Ltd, IAI’s cyber early warning R&D Center in Singapore
20
COMEX EXHIBITION AND CONFERENCE 2017
21 WHO’S WATCHING YOU?
By Dominic Lyons, a Senior Technical Pre-Sales Network Architect at Tellemachus
26
CONNECT:ID 2017
27 CYBER INSIDER RISK MITIGATION MATURITY MATRIX
By Chris Hurran, OBE, Senior Associate Fellow of the Institute for Security and Resilience Studies, UCL
34
MILSIM ASIA 2017
35 THE RAPID EVOLUTION OF THE RANSOMWARE INDUSTRY
By Patrick Vibert, Senior Consultant, Cyber Threat Intelligence, Control Risks
41
INTERPOL WORLD 2017
4
CYBER SECURITY REVIEW, Autumn 2016
CYBER
Proudly presents
Pre-conference workshop: 24th January 2017 | Main Conference Dates: 25th – 26th January 2017 Prospero House, London, UK
Improving national resilience to cyber threats 150+ Attendees 20+ Senior Cyber Security Speakers 14+ Hours Reserved For Networking Insight from across government, law enforcement and military
The CDANS event was valuable as I was able to meet several key personnel that face the very same problems as I do, their experience is a great reach back. The topics were all interesting and valued the discussions Branch Chief, DoD
Register online at www.cdans.org Key Speakers for 2017 include:
Major General Jim Hockenhull DCI3 UK MoD
Don Davidson Deputy Director, CS Implementation & Acquisition Integration Chief, CS Lifecycle Risk Management DoD CIO’s Office
Sherill Nicely CISO CIA
Deborah Petterson Head of Energy Cyber Security, Department of Business Energy & Industrial Strategy
Philip Quade Chief of Cyber Task Force NSA
CONTENTS
42
EUROPEAN SMART GRID CYBER SECURITY 2017
43 ACCOUNT HACKS: THE USER OR THE COMPANY – WHO’S TO BLAME?
46
By Mike Milner, CTO and Co-founder, IMMUNIO
IDEF 2017 – 13TH INTERNATIONAL DEFENCE INDUSTRY FAIR
47 LAZARUS: DATA LEAKAGE WITH PGP AND RESURRECTION OF THE REVOKED USER
By Rodrigo Ruiz, CTI Renato Archer and Rogério Winter, Brazilian Army, Campinas, Brazil
54
ISDEF 2017 – 8TH INTERNATIONAL DEFENCE & HLS EXPO
55
JUSTIFIED PHYSICAL RESPONSE TO CYBER ATTACKS
67
BIDEC 2017 - BAHRAIN’S PREMIER INTERNATIONAL TRI-SERVICE DEFENCE SHOW
By Joseph W. Smotherman, Commander in the United States Navy
OBC ISRAEL AEROSPACE INDUSTRIES - IAI
THE RIGHT place THE RIGHT time THE RIGHT people JUNE 6-8
2017 TEL- AVIV
THE 8TH INTERNATIONAL DEFENSE & HLS EXPO
VISIT OUR WEBSITE
WWW.ISDEFEXPO.COM
6
CYBER SECURITY REVIEW, Autumn 2016
Contact us now for more details Exhibition & Sponsorship Opportunities: Sales@isdefexpo.com General Information: expoaffairs@isdefexpo.com Tel. +972 3 691 4564 | Fax. +972 3 691 4567
To receive a full version of the Cyber Security Review, please complete the Request Form Here. Please provide a valid corporate, government or academic email address. We reserve the right to refuse to accept any application at our discretion. If you have any queries please email to: editorial@deltabusinessmedia.com
REQUEST YOUR COPY OF THE CYBER SECURITY REVIEW
www.cybersecurity-review.com
Published by Delta Business Media 3rd floor, 207 Regent Street, London, W1B 3HH, United Kingdom Tel: +44 (0) 20 7193 2303 Fax: +44 (0) 20 3014 7659 info@deltabusinessmedia.com www.deltabusinessmedia.com