This document discusses cyber security and enterprise security. It provides an overview of topics like information security frameworks, security threats at different levels (e.g. physical, human, network), examples of malware and ransomware attacks, and security issues related to technologies like Intel ME, WhatsApp, Angry Birds and the darknet. The document also presents security cases, references career and certification opportunities, and discusses bug bounty programs.

1. Hizmete Özel / Restricted
Enterprise Security &
Cyber Security Cases
Hakan YUKSEL @yukselistwit

2. Hizmete Özel / Restricted
Agenda
• Cyber Security
• Enterprise Security
• Information Security
• Framework, Landscape, Reference Architecture
• Security Threat
• Cases
• Career, Certification

3. Hizmete Özel / Restricted
3
What is Cyber
With an increasing amount of people, things getting
connected to Internet, the security threats that cause massive
harm are increasing also.
The term cyber security is used to refer to the security offered
through on-line services to protect your information.
cyber
relating to or characteristic of the culture of computers, information technology,
and virtual reality
cybernetics
the science of communications and automatic control systems in both machines and
living things.

4. Hizmete Özel / Restricted
4
Information
information
facts provided or learned about something
or someone.
information assets
data as processed, stored, or transmitted
by information presence.

5. Hizmete Özel / Restricted
5
Information Security
Uluslararası Bilgi Güvenliği
Standardı – ISO 27001
BDDK - Bankalarda
Bilgi Sistemleri
Yönetiminde Esas
Alınacak İlkelere
İlişkin Tebliğ
COBIT – Bilgi ve
İlgili Teknolojiler
İçin Kontrol
Hedefleri
Uluslararası Payment Card
Industry Data Security
Standard

6. Hizmete Özel / Restricted
6
Security Threat
• Breach of confidentiality (Gizlilik)
• Unauthorized reading of data
• Breach of integrity (Bütünlük)
• Unauthorized modification of data
• Breach of availability (Kullanılabilirlik)
• Unauthorized destruction of data

7. Hizmete Özel / Restricted
7
Security Threat
• Internal
• Application, Process, Hardware, People, ..
• External
• Attack, Theft, DDOS, Malware, ..
• Natural and Physical
• Earthquake, Flood, Terror, ..
Internal
External
% 80
%20
Security is as weak as the weakest link in the chain

8. Hizmete Özel / Restricted
8
Security Level
Security must occur at four levels to be
effective:
Physical
Data centers, servers, connected terminals
Human
Avoid social engineering, phishing,
dumpster diving
Operating System
Protection mechanisms, debugging
Network
Intercepted communications, interruption,
DOS

9. Hizmete Özel / Restricted
9
Why do Hackers Hack ?

10. Hizmete Özel / Restricted
10
Why Hackers Hack Me !
• Same Password Usage
• Drop Bank Account
• Trust Relationship

11. Hizmete Özel / Restricted
11
Enterprise Security Framework
https://www.nist.gov/sites/default/files/documents////draft-cybersecurity-framework-v1.11.pdf

12. Hizmete Özel / Restricted
12
Cybersecurity Landscape

13. Hizmete Özel / Restricted
13
Reference Architecture

14. Hizmete Özel / Restricted
Cyber Security Investment

15. Hizmete Özel / Restricted
15
Attack Map

16. Hizmete Özel / Restricted
16
Biometric Authentication

17. Hizmete Özel / Restricted
17
Malware
• The word "malware" comes from the
term "MALicious softWARE."
• Malware is any software that infects
and damages a computer system
without the owner's knowledge or
permission.

18. Hizmete Özel / Restricted
https://cicbuai.gdn/panel2/
Malware Analysis

19. Hizmete Özel / Restricted
Ransomwares
• A software based attack on your network with
the goal of extortion.
• Ransomware is typically delivered through an
exploit kit or phishing attack
• Code created to take advantage of an
unpatched or unknown system vulnerability.
Example: Windows® OS, JavaScript® or Adobe Reader®
• Wanna Cry (MS17-00)
• Petya

20. Hizmete Özel / Restricted
20
Software Security

21. Hizmete Özel / Restricted
Software Security
Most developers today test after the software is built.

22. Hizmete Özel / Restricted
Enigma
• The Enigma machine is invented by
a German during World War Two.
• British tried to break the German
Enigma Machine.
• The American, Russians, French and
Germans too, think that Enigma is
unbreakable.

23. Hizmete Özel / Restricted
Stuxnet
• July, 2010: Stuxnet worm was discovered
attacking Siemens PCS7 S7 PLC and WIN
Siemens PCS7, S7 PLC and WIN-CC systems CC
systems around the world
• Most sophisticated malware ever seen in
public
• Uses up to 6 Vulnerabilities (5 in Win and 1
in Siemens)
• Its code is 500 KB
• Spreads via USB Flash Memory and Network
Shares
• Infects SCADA Systems

24. Hizmete Özel / Restricted
24
WhatsApp

25. Hizmete Özel / Restricted
25
Angry Birds
The National Security Agency has
targeted popular smartphone-based
social games like "Candy Crush" and
"Angry Birds" to pilfer personal
information, including phone numbers,
e-mails and codes that identify the
user's device, according to documents
leaked by former NSA
contractor Edward Snowden.

26. Hizmete Özel / Restricted
26
Intel ME
Concerns over the Intel Management Engine (ME)
have been ongoing for years. In May, Intel patched a
critical vulnerability that dated back nine years in the
company’s Active Management Technology, which is
based on Intel ME. That vulnerability could allow an
attacker to gain remote access to AMT services such
as the keyboard, video and mouse (KVM), IDE
Redirection, Serial over LAN, and BIOS setup and
editing.
Suspicions date back to 2012 over Intel’s
implementation of Active Management
Technology (AMT) with some labeling it a
“backdoor enabled by default.” A reported flaw
identified in June 2016

27. Hizmete Özel / Restricted
27
AirHopper
AirHopper — Hacking Into an
Isolated Computer Using FM Radio
Signals
The technology works by using the
FM radio receiver included in some
mobile phones. AirHopper is able to
capture keystrokes by intercepting
certain radio emissions from the
monitor or display unit of the
isolated computer.

28. Hizmete Özel / Restricted
28
Black Friday

29. Hizmete Özel / Restricted
29
Cases

30. Hizmete Özel / Restricted
30
Darknet: The Underground for the “Underground”

31. Hizmete Özel / Restricted
31
Cybercrime Price List

32. Hizmete Özel / Restricted
32
Career - Certification
• Black Hat, White Hat
• Pentest
• Forensic
• Security Information and
Even Management (SIEM)
• Security Administration
• Audit

33. Hizmete Özel / Restricted
Bug Bounty

34. Hizmete Özel / Restricted
THANKS