The “Business” of Malware IT Security Presentation

Transcription

21/09/2012
www.eset.co.uk
we protect your digital worlds
The “Business” of Malware
IT Security Presentation
Secure South West – Plymouth University
Thursday 20th September 2012
Presented by:
Alan Thake – Head of Sales – ESET UK
www.eset.co.uk
Today’s Topics
•
The “Business” of malware
•
How is it being dealt with ?
•
ESET pedigree, our customers, our awards
•
Q & A and discussions
1
21/09/2012
www.eset.co.uk
The “Business” of malware
•
•
What’s changed ?
Who are they ?
•
What are they doing ?
•
Why are they doing it ?
•
Where do they come from ?
•
How do we combat it ?
•
What are the possible consequences of inadequate protection ?
www.eset.co.uk
2
21/09/2012
www.eset.co.uk
www.eset.co.uk
• Brazil & E Europe – Phishing – Banking specialists
• China – Military Espionage, Key logging
• Russian Mafia – Botnets and DOS
• West Africa – advanced fee fraud (“419” scams)
• Global forums and sites – Darkmarket
3
21/09/2012
www.eset.co.uk
www.eset.co.uk
4
21/09/2012
www.eset.co.uk
www.eset.co.uk
The virus, “ACAD/Medre.A”, has stolen tens of thousands of
blueprints from companies mostly based in Peru, said ESET, a
computer security firm.
It targeted software called AutoCAD, which is very widely used by
industrial designers and architects. The stolen drawings were
surreptitiously sent to email accounts provided by two Chinese
internet firms, 163.com and qq.com
5
21/09/2012
www.eset.co.uk
Why are they doing it?
• Mainly Financially driven (Data Theft)
• Politically driven (Russia/China/ME
• Intellectual Property Rights theft
•
Follow the money !
www.eset.co.uk
How is it combated ? J. Keith Mularski, Supervisory Special
Agent, Cyber Division went deep undercover and infiltrated
“DarkMarket”, an English speaking Cybercrime forum, under the
alias “Master Splyntr”, eventually leading to 60 arrests
worldwide
6
21/09/2012
www.eset.co.uk
How do we combat it ?
►
ESET vs the Russians in a game of futuristic “tennis”
www.eset.co.uk
ESET’s Virus Labs in Slovakia
Tens of thousands of new
“malware” samples daily
Employing top talent – So do the
malware producers !
7
21/09/2012
www.eset.co.uk
Possible consequences of inadequate protection
• Can you put a value on down time ? Here's a cost analysis with the sample cost impact of
network downtime.
Cost Type
No of
Users
Cost
per
hour
Downtime
Cost in HR
Estimated Annual Cost
Average
Personnel
500
£9
£4,500
£13,500
IT Technical
Support
5
£40
£200
£600
Total Company
505
N/A
£4,700
£14,100
3 hours downtime per year
• Additional hidden costs can also result from lost revenue when no orders placed during
downtime.
• If the network goes down once a year, the cost is high. If several times a year the cost can
escalate quickly.
www.eset.co.uk
St. Bartholomews (Barts) Hospital, together with The Royal
London Hospital and The London Chest Hospital, form this
trust. They were collectively hit by the MyTob Worm which
took down all three hospitals networks over a two day
period.
This was not an “unknown” threat !
8
21/09/2012
www.eset.co.uk
What can you do ?
Ensure you are using best of breed protection – Technology
will protect you, not “brand” names. Research a products
pedigree. Whilst they may shout “look how well we did in
this latest test”, how do they perform consistently ? Look at
awards and certifications – Price should not be a deciding
factor !
Be aware and be circumspect – Encourage it with your
employees as well.
www.eset.co.uk
ESET NOD32 ANTIVIRUS HAS RECEIVED MORE VB100 AWARDS THAN ANY
OTHER SINGLE PRODUCT
Virus Bulletin Test Results – May 1998 to June 2012
74
80
70
59
60
56
60
50
47
50
42
Tests Failed
33
40
VB100 Awards
30
19
22
16
21
22
17
20
10
10
8
5
3
1
1
0
ESET
NOD32
Symantec
Kaspersky
Sophos
Norman
McAfee
BitDefender
Trend
AVG
Panda
9
21/09/2012
www.eset.co.uk
Only product to never miss “In the Wild” Viruses
Viruses missed by other products – May 1998 to August 2012 – Virus Bulletin testing
www.eset.co.uk
The ESET pedigree – Company quick-facts











Over 20 years of experience in protecting digital worlds
ESET established in 1992 – ESET’s NOD32 “Flagship” product released 1998
Pioneered and continues to lead the industry in proactive threat detection
Global head quarters in Bratislava. Regional centres in San Diego, Singapore, Buenos Aires
R&D centres in Bratislava, Cracow, Moscow, Singapore, Prague, Montreal, San Diego, Buenos
Aires
Distribution presence in more than 180 countries worldwide
2860% growth over the past 5 years
Over 130 million users worldwide and rapidly increasing
Included in Gartner’s Magic Quadrant for Endpoint Protection Platforms
Recipient of the most Virus Bulletin 100 awards since May 1998 when first submitted for
testing
Received the highest number of ADVANCED+ AV-Comparatives awards in
retrospective/proactive detection testing over the last 7 years
 ESET NOD32 – The ONLY antivirus product to have never missed an “in the wild”
virus in the prestigious Virus Bulletin testing in over 14 years
10
21/09/2012
www.eset.co.uk
Trusted by Global customers
www.eset.co.uk
Trusted by UK customers
11
21/09/2012
www.eset.co.uk
ESET Awards/Certification
ICSA Labs 1st !
www.eset.co.uk
ESET Smart Security 5 was awarded "Best Usability"
from the AV-TEST Institute for its low false positives
ratio and low impact on system performance.
According to AV-Comparatives' Summary Report
2011, ESET Smart Security 5 was recognized as
"Top Rated Product 2011".
In Summary Report 2011 from AV-Comparatives,
ESET was rated as the product offering the best
overall performance with the lowest system
footprint.
ESET was voted as Winner of SC Magazine's
Reader Trust Award in the category of "Best AntiMalware Management".
12
21/09/2012
www.eset.co.uk
Commit Charge (Memory Consumption)
Source – PassMark (independent testing JUNE 2010)
ESET Smart Security combines small system footprint with exceptionally secure
configuration defaults.
www.eset.co.uk
Memory Consumption during System Idle
Source – PassMark (independent testing September 2011)
13
21/09/2012
www.eset.co.uk
Commit Charge (Memory Consumption)
Source – PassMark (independent testing AUGUST 2012)
www.eset.co.uk
Full System Scan
14
21/09/2012
www.eset.co.uk
Memory Usage During Full System Scan
www.eset.co.uk
Daily Network Traffic
15
21/09/2012
www.eset.co.uk
Server Memory Usage During System Idle
www.eset.co.uk
Server Memory Usage During On Demand Scan
16
21/09/2012
www.eset.co.uk
Slowdown caused by Antivirus solutions
Source – AV-Test.org May 2011
www.eset.co.uk
PassMark ratings in full
Source – PassMark Labs independent testing – June 2010
17
21/09/2012
www.eset.co.uk
PassMark ratings in full
Source – PassMark Labs independent testing – August 2012
www.eset.co.uk
Technical Support
• UK based Technical support available 7 days a week
• Mon-Fri 08:00-20:00
• Sat-Sun 09:00-17:00
18
21/09/2012
www.eset.co.uk
QUESTIONS & ANSWERS?
Q & A – General discussion
www.eset.co.uk
Thank You 
19

The “Business” of Malware IT Security Presentation

Transcription

Similar documents