Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Akamai & John Lewis and Waitrose Roundtable: Ma...

Zoe Latchford
September 28, 2016
140

Akamai & John Lewis and Waitrose Roundtable: Making eCommerce Secure

Zoe Latchford

September 28, 2016
Tweet

Transcript

  1. ©2016 AKAMAI | FASTER FORWARDTM Welcome & Introductions Host /

    Presenter / Chair: • Koon-Kau “KK” Man – Akamai Major Account Executive (Retail & Ecommerce) • Tim Criddle – Akamai Security Specialist • Hernani “H” Correia – John Lewis Partnership IT Security Senior Manager
  2. ©2016 AKAMAI | FASTER FORWARDTM Agenda • Welcome & Introductions

    • Current Threat Landscape – Q2 2016 State of the Internet Security Report • Open Roundtable Discussion Lead by John Lewis Partnership • Summary & Close • Coffee & Networking
  3. ©2016 AKAMAI | FASTER FORWARDTM State of the Internet Security

    Report, Q2 2016 Tim Criddle Security Sales Specialist – UK&I
  4. ©2016 AKAMAI | FASTER FORWARDTM Akamai Sees Requests from the

    Most Heavily Trafficked Sites The Top 30 media and Entertainment companies All 20 top global e-commerce sites Ninety six of the Top 100 online US retailers 16 of the top 20 global banks 13 of the top 15 global insurers 18 of the top 20 asset managers 9 of the top 10 global pharmaceutical companies All of the top anti-virus companies All major US sports leagues
  5. ©2016 AKAMAI | FASTER FORWARDTM Grow revenue opportunities with fast,

    personalized web experiences and manage complexity from peak demand, mobile devices and data collection.
  6. ©2016 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

    4,919 attacks 363 Gbps DDoS Size and Frequency over time
  7. ©2016 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

    • Combination of vectors for mega-attacks: Hybrid Botnet • 1/3 of the times NTP is used in combination with other vectors • NTP: Malicious actors using NTP-APM attack tool. We expect NTP-APM attacks to grow faster than DNS attacks in the next few quarters • Multidomain DNS reflection attacks showed up for the first time ever • TFTP floods. Started slow last quarter but growing now. We expect to see more (amplification factor x35) Types of attacks. Why are they important
  8. ©2016 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

    Q2-2015 Q3-2015 Q4-2015 Q1-2016 Q2-2016 from 29% (AVG. last 4 quarters) Source of attacks
  9. ©2016 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

    50+% of customers are attacked within a year How frequently are companies attacked (if they are attacked) ?
  10. ©2016 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

    It is Not all Doom and Gloom! • Void Extortion were not successful • The value of NTP amplification attacks has been reduced. b/c ‘Monlist’ query patched • Hacker known as “Guccifer” was caught
  11. ©2016 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

    1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 • 11 attack events over 34 weeks • Attack vectors include: ACK flood, DNS flood, FIN flood, NTP flood, PUSH flood, SYN flood, TCP Anomaly, TCP flood, UDP flood, UDP fragment 32 Gbps • UDP fragment • DNS flood • NTP flood 7 Gbps • UDP fragment • DNS flood 7 Gbps • UDP fragment • DNS flood .3 Gbps • ACK flood .2 Gbps • SYN flood .2 Gbps • ACK flood • FIN flood • TCP Anomaly 7 Gbps • UDP fragment • DNS flood 2 Gbps • UDP fragment • NTP flood .4 Gbps • ACK flood .2 Gbps • UDP flood 1 Gbps • DNS flood 363 Gbps • SYN flood • UDP fragment • PUSH flood • TCP flood • DNS flood • UDP flood History: Attack Campaign
  12. ©2016 AKAMAI | FASTER FORWARDTM Grow revenue opportunities with fast,

    personalized web experiences and manage complexity from peak demand, mobile devices and data collection.
  13. ©2016 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

    Data about 5 attack vectors 23% HTTPS 77% HTTP
  14. ©2016 AKAMAI | FASTER FORWARDTM Summary & Close • Size,

    frequency & combination of Cyber security attacks / events is increasing especially in the ecommerce sector • Sharing knowledge & experience is fundamental to help combat these growing threats • Next Roundtable / Meet-up?
  15. ©2016 AKAMAI | FASTER FORWARDTM Contact details • Koon-Kau “KK”

    Man – Akamai Major Account Executive (Retail), [email protected] • Tim Criddle – Akamai Security Specialist, [email protected] • Hernani “H” Correia – John Lewis Partnership IT Security Senior Manager, [email protected] Next event enquiries: • Zoe Latchford – Akamai UK Field Marketing Manager, [email protected]
  16. ©2016 AKAMAI | FASTER FORWARDTM Threat Intel • For our

    latest attack trends and statistics visit our State of the Internet site: www.stateoftheinternet.com • Be aware of DDoS attacks extortion campaigns. Check our DD4BC operation profile: https://www.stateoftheinternet.com/resources-web-security-bulletin-2015-dd4bc- operation-profile-bitcoin-extortion-ransom.html • Wondering what the cost of a cybersecurity attack is? Use our DDoS Attack and Data Breach Cost Calculator: https://www.stateoftheinternet.com/resources-web-security- cost-of-ddos-attack-cyberattack-data-breach-calculator.html 23