watch guard aec electronic a amenazas de seguridad en la nube

5/13/2018 Watch Guard Aec Electronic A Amenazas de Seguridad en La Nube - slidepdf.com

http://slidepdf.com/reader/full/watch-guard-aec-electronic-a-amenazas-de-seguridad-en-la-nube 1/18 © 2009 WatchGuard Technologies

Combating email threatsin the cloud

Juan Munoz – Sales Director, Latin America [email protected]


http://slidepdf.com/reader/full/watch-guard-aec-electronic-a-amenazas-de-seguridad-en-la-nube 2/18

Combating Email threats in the Cloud

Email importance

How does email work?

Most common Email threats

Current defense methodologies

Using the cloud to protect email



Why is Email important?



How does Email work?



Anatomy of a Mail Transport System

Internet

Router/gateway

External DNS server

Internal DNS server

Internal email server

Firewall

port 25

Forward port 25 traffic tointernal mail serverSending SMTP Server To: [email protected]

Lookup MX record for example.com

example.com MX record = 50.50.50.25

50.50.50.25



Most common email threats



• Most common email threats

Spam: more than 85% of all email is unsolicited

Viruses

Phishing

Code execution: HTML

Dangerous attachments

Also:

Data leakage



Why Doesn’t Someone Stop Them?

Legal: convictions require time and money

Example of the resources it takes to catch

one spammer:

• 2003, first Microsoft suit against spam emailFive million accounts sent 18 million spam emails

• Kornblum subpoenas “John Doe” times 150

• Custom “link analysis” tool shows where

source addresses converge

• MS forms a coalition: AOL, Yahoo, Earthlink,Amazon, Pfizer, various Attorneys General in

US, Interpol• Leads to Robert Soloway, convicted December

2003

Took nine months and all this effort to

catch and convict one spammer.



Why Doesn’t Someone Stop Them?

Financial: convictions require MORE time and money

Arrest and conviction did not stop Soloway:

• June 2004 – April 2005, Soloway’s company sends millions of emails

Uses legal dodge to claim recipients had “opted in”

• 2005, appeals end and Soloway must pay Microsoft $7.8 millionNever does: his bank accounts remain elusive

• 2006, Soloway moves his email server to China

• May 2007, arrested, indicted on 35 chargesMail fraud, email fraud, identity theft, money laundering…

• July 2008, sentenced to 47 months in federal prison

It took five years of legal process to stop this spammer.




Anti-spam:

Blacklists

Heuristics

IP Reputation

Anti-virus:

Signature-based

Some heuristics



What happens if email is SPAM?

Internet

Router/gateway

External DNS server

Internal DNS server

Internal email server

Firewall

Sending SMTP Server

Antispam solution



Let’s zoom in…

13 WatchGuard Training

Internet

Internet link

Firewall

Anti-spam

Quarantine

Email Server



How can we improve the current model?Using the cloud!!!


Internet

Internet link

Firewall

Anti-spam

Quarantine

Email Server



Some ReputationAuthority.org Statistics


• Only 6.6% of email and web traffic is legitimate• “In-the-cloud” defenses can reject up to 98% of such traffic at the perimeter



Questions?

[email protected]@watchguard.com

mailto:[email protected]






Visítenos en el stand

de AEC Electrónica yregístrese para la rifa

de un iPod Shuffle.

watch guard aec electronic a amenazas de seguridad en la nube

Documents