Cloud Security VS Cybercrime Economy: The Kaspersky Vision. Eugene Kaspersky Co-founder & CEO, Kaspersky Lab

Transcription

1 Cloud Security VS Cybercrime Economy: The Kaspersky Vision Eugene Kaspersky Co-founder & CEO, Kaspersky Lab

2 The Digital World is Under Attack The last five years have become the Golden Age of Cybercrime Cybercrime 000 on the is an internet integral every part 2 minutes of the Digital 000 World Cybercrime 000 is an organized underground 000 industry : 5 malware samples emerge 2010: One malware sample every 2 seconds Number of new malicious programs found by Kaspersky Lab every year PAGE 2

3 Why is it happening? It s profitable More online services that are easy to prey on High demand for criminal services (spam, botnets) Easy to do It s simple technically speaking No physical contact with victims Low risk business International crime vs. national legislation Difficult to trace anonymous international professionals PAGE 3

4 Main types of malware businesses There are many different malware businesses: Common: banking, ransom, botnets, etc. Targeted attacks Aurora, Stuxnet, Night Dragon Exclusive: Sumitomo 229mln., NYSE Trojan attacks Mobile attacks: Spyware, SMS-Trojans, Backdoors Some criminal businesses are born ATM malware, mobile attacks Some criminal businesses vanish Dial-up, online game malware PAGE 4

5 Examples of malware businesses Trojan-Dialers vanished completely due to the proliferation of broadband internet in mid-2000s PAGE 5

6 Examples of malware businesses Online Game Fraud once a very profitable criminal business PAGE 6

7 Examples of malware businesses But today it goes down due to the inflation on the black market of online game characters and artifacts PAGE 7

8 Money makes the crime go round ERGO The main motivation for cybercrime growth is its economical profitability Profit decline decreases malware of that type PAGE 8

9 A standard malware business scenario Malware lifetime Development and placement (usually on Web) Distribution (spam, Web-site infection) Injection and infection AV products updated the end DETECT UPDATE PAGE 9

10 A standard malware business scenario Malware lifetime Development and placement (usually on Web) Distribution (spam, Web-site infection) Injection and infection AV products updated the end AV Signature Update ROI Threshold Infected Users PAGE 10

11 The Era of Happy Cybercriminals Is there anything that can stop it? PAGE 11

12 Modern technologies do respond to cybercrime How Internet-based ("cloud") technologies work now Development and placement (usually on Web) Cloud Update Distribution (spam, Web-site infection) "Cloud" AV products updated No more Injection and infection the end ROI Threshold Infected Users PAGE 12

13 No more food for the beast Instead of making a lot of cash, cybercriminals earn much less, or ever lose money Cloud security becomes an industrial standard KLoud Security Network (Kaspersky) Quorum (Symantec) Global Threat Intelligence (McAfee) Smart Protection Network (Trend Micro) Others are joining the team. PAGE 13

14 Silver bullet? Ways to bypass the cloud : Non-executable malware Server-side polymorphic malware File infectors New behavior Targeted attacks Hard to develop Entrance ticket to Cybercrime becomes more expensive PAGE 14

15 Conclusion Non-technical approaches need intergovernment cooperation, thus take time Ways to Fight Cybercrime: Traditional AV technologies, products and services Not enough any more, but still a must Latest technology innovations are a quick solution to suppress cyber crime Internet-Interpol Internet-Interpol will take a decade or two to establish Cloud technologies are one of them Internet Passports Thus they are promising to make this world cleaner Internet-Passports will take a decade or two to introduce User education Happy End! Everyone cannot become an expert, threats constantly change and become more complex PAGE 15

16 Thank You Cloud Security VS Cybercrime Economy: The Kaspersky Vision Eugene Kaspersky Co-founder & CEO, Kaspersky Lab