Upload File

christian van heurck cert.be coordinator cert.be...

  • Home
  • Documents
  • Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day
36
Mechelen - 06/02/2014 Telenet Security Day CYBER scrapings putting our 2 cents in .. Christian Van Heurck CERT.be coordinator CERT.be team

Upload: others

Post on 08-Oct-2020

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

Mechelen - 06/02/2014

Telenet Security Day

CYBER scrapingsputting our 2 cents in ..

Christian Van HeurckCERT.be coordinator

CERT.be team

Page 2: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

2Mechelen - 06/02/2014CERT.be

Telenet Security Day

goals

• the cyber threat is real

• also in .be

• everybody is a target

• we all are losing the battle

• this costs €

• lack of awareness at all levels

• be prepared

• act now!

2

Page 3: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

3Mechelen - 06/02/2014CERT.be

Telenet Security Day3

the cyber threat is real

Page 4: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

4Mechelen - 06/02/2014CERT.be

Telenet Security Day

types of cyber threats - historical

4

cyber security cyber crime

others

Page 5: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

5Mechelen - 06/02/2014CERT.be

Telenet Security Day

types of cyber threats – anno 2014

5

Page 6: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

6Mechelen - 06/02/2014CERT.be

Telenet Security Day6

almost all cyber security

issues lead to cyber crime

espionage included

reality 2013

Page 7: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

7Mechelen - 06/02/2014CERT.be

Telenet Security Day7

the cyber threat is

also real in .be

Page 8: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

8Mechelen - 06/02/2014CERT.be

Telenet Security Day

CERT.be anthology

• Belgacom

• DDoS on the rise

• open DNS resolvers abused for amplification attacks

• ntp servers abused

• phishing & spearphishing

• identity theft

• mobile targeted

• every (with an) OS targeted

8

Page 9: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

9Mechelen - 06/02/2014CERT.be

Telenet Security Day

CERT.be anthology

• hacktivism

• blackmail (Rex Mundi)

• botnet drones

• botnet C&C

• hacked servers abused for attacks and malware distribution

• waterhole attacks

• top level DNS compromise

• ransomware

9

Page 10: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

10Mechelen - 06/02/2014CERT.be

Telenet Security Day

CERT.be anthology

• mass compromise of vulnerable websites

• Diginotar

• abuse of forged and/or stolen certificates

• Bit9, RSA, Microsoft, Twitter, Facebook, Apple, Google, Adobe, ..

• IXP targeted

• hosters under daily attacks

10

Page 11: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

11Mechelen - 06/02/2014CERT.be

Telenet Security Day

CERT.be anthology

• citizens targeted

• big companies targeted

• intermediate companies targeted

• SME’s targeted

• Port of Antwerp

• Critical Infrastructure

• GOV targeted

• Banks targeted

• NMBS

11

Page 12: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

12Mechelen - 06/02/2014CERT.be

Telenet Security Day12

EU legislation

Privacycommission

BIPT-IBPT

and there’s more happening ..

Page 13: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

13Mechelen - 06/02/2014CERT.be

Telenet Security Day13

all the old school stuff is

still out there too

and one more thing ..

Page 14: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

14Mechelen - 06/02/2014CERT.be

Telenet Security Day14

everybody is a target

Page 15: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

15Mechelen - 06/02/2014CERT.be

Telenet Security Day15

time for some numbers

Page 16: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

16Mechelen - 06/02/2014CERT.be

Telenet Security Day16

# Reports & Incidents / Year

0

1000

2000

3000

4000

5000

6000

7000

8000

2010 2011 2012 2013

Reports/Year

Incidents/Year

Page 17: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

17Mechelen - 06/02/2014CERT.be

Telenet Security Day17

# Reports & Incidents / Month

00

100

200

300

400

500

600

2010 2011 2012 Q1-Q3 2013

Reports/Month

Incidents/Month

Page 18: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

18Mechelen - 06/02/2014CERT.be

Telenet Security Day

types of incidents in 2013

18

Page 19: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

19Mechelen - 06/02/2014CERT.be

Telenet Security Day19

# Zombies

500.000 in 2013

Page 20: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

20Mechelen - 06/02/2014CERT.be

Telenet Security Day20

Page 21: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

21Mechelen - 06/02/2014CERT.be

Telenet Security Day21

we are losing this battle

Page 22: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

22Mechelen - 06/02/2014CERT.be

Telenet Security Day22

this costs €

Page 23: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

23Mechelen - 06/02/2014CERT.be

Telenet Security Day23

WT .. ????

Page 24: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

24Mechelen - 06/02/2014CERT.be

Telenet Security Day24

lack of awareness at all

levels

Page 25: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

25Mechelen - 06/02/2014CERT.be

Telenet Security Day25

this is how we perceive it

Image courtesy of tropical.pete – Flickr.com

Page 26: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

26Mechelen - 06/02/2014CERT.be

Telenet Security Day26

this is how we perceive it

Image courtesy of tropical.pete – Flickr.com

Page 27: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

27Mechelen - 06/02/2014CERT.be

Telenet Security Day27

acknowledge

the cyber threat

Page 28: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

28Mechelen - 06/02/2014CERT.be

Telenet Security Day28

= create awareness

Page 29: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

29Mechelen - 06/02/2014CERT.be

Telenet Security Day29

then act efficiently

Page 30: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

30Mechelen - 06/02/2014CERT.be

Telenet Security Day30

NOW!

Page 31: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

31Mechelen - 06/02/2014CERT.be

Telenet Security Day31

please …

Page 32: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

32Mechelen - 06/02/2014CERT.be

Telenet Security Day32

report to

[email protected]

Page 33: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

33Mechelen - 06/02/2014CERT.be

Telenet Security Day33

contact

[email protected]

[email protected]

Page 34: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

Mechelen - 06/02/2014 34

Page 35: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

35Mechelen - 06/02/2014CERT.be

Telenet Security Day

brochure & 1-pager

35

Page 36: Christian Van Heurck CERT.be coordinator CERT.be teambusiness.telenet.be/sites/default/files/presentaties_security_day_cert... · Mechelen -06/02/2014 2 CERT.be Telenet Security Day

36Mechelen - 06/02/2014CERT.be

Telenet Security Day

download links

brochure:

https://www.cert.be/pro/files/Brochure_FRA.pdf

https://www.cert.be/pro/files/Brochure_NDL.pdf

https://www.cert.be/pro/files/Brochure_ENG.pdf

1-pager:

https://www.cert.be/pro/files/Onepager_FRA.pdf

https://www.cert.be/pro/files/Onepager_NDL.pdf

https://www.cert.be/pro/files/Onepager_ENG.pdf

36


Telenet Televisie

Telenet gebruikersgids

Telenet group

CASE STUDY TELENET - Crossjoin

Final Report 2 - Telenet

Fusie telenet & hostbasket

STIX Version 2Bret Jordan ([email protected]), Broadcom Rich Piazza ([email protected]), MITRE Corporation Trey Darley ([email protected]), CCB/CERT.be Related work: This

BASISAANBOD TELENET TV EXTRA ZENDERPAKKETTEN ......Met de Yelo Play-app/Telenet TV-app kijk je altijd en overal V.U.: Telenet BV, Liersesteenweg 4, 2800 Mechelen - Zendernummering

Telenet metro knelpuntberoepen

Presentatie: Telenet

INFO TELENET GROUP telenetholidays

Social (C) RM at Telenet - by Steven Degelaen, Online Conversation Manager at Telenet

AnnualReport Telenet

CERT.be white paper · 2020-02-28 · CERT.be a observé une tendance à la hausse pour tout ce qui concerne les ransomwares. Les cybercriminels l’utilisent afin d’extorquer des

Access Point Telenet

Crm telenet

Telenet Privacybeleid

Telenet Jardineria Privavera 2014

CERT.be / ENISA ENISA Incident Handling Training Workshop

Revista Telenet Feb 2013

Kristof Claes - Telenet

Home Gateway Telenet - pavele.bepavele.be/home gateway telenet.pdf · Telenet Home Gateway – Ignace - 2/02/2011 Blz.3 Home Gateway Telenet De nieuwe Home Gateway Docsis 3.0 van

Telenet GS Leveraged Finance Presentation

Telenet WiFi Home Network

Mechelen - 06/02/2014 Telenet Security Day CYBER scrapings putting our 2 cents in.. Christian Van Heurck CERT.be coordinator CERT.be team

CERT.be white paper · 2019-12-05 · nieuw, maar CERT.be krijgt steeds meer meldingen van pogingen tot CEO fraude. Gelukkig zijn medewerkers vaak alert genoeg om correct te reageren

Telenet Digicorder DC-AD1000 - jancoppens.be startgids_HL_DCAD1000.pdf · Telenet Digicorder DC-AD1000 STARTGIDS TELENET DIGITAL TV STC’s International Technical Publications Competition,

Telenet SocialCom Produktblatt

Jaarverslag 2009 Telenet Nl

Een kabel, buis of kast van Telenet beschadigd? …static.telenet.be/assets/netaanleg/pdf/Folder_Schade_NL.pdfEen kabel, buis of kast van Telenet beschadigd? Telenet Werfinfo Bel het

Telenet Interkabel presentatie

telenettv.ru · ТЕХНОЛОГИИ I Новости TELENET Подключайся с выгодой! 18 ноября стартовала специальная акция TELENET

telenet electronica

Zichtbaarheidsevaluatie BC Telenet Oostende

I C I - DE KAMER · het CERT.be. De heer Van Heurck stelt dat het aantal Belgische sites dat gehackt wordt heel snel toeneemt. Dat geldt zowel voor kleine websites van particulieren,