State of the Hack: It’s the End of the Year As We Know It

Presented as a webinar on December 10, 2009.

This State of the Hack session provided attendees with an end of the year review – MANDIANT style.

In the last year MANDIANT has responded to over 50 compromises in both commercial and government environments.  Throughout the year we’ve been able to break the attackers into two major categories – those stealing money and those stealing intelligence.

CEO Kevin Mandia was joined by Michael J. Graven to discuss the world of information security and compromise as we have lived it.

We looked at how financial organizations have been targeted by highly organized groups to steal cardholder data, PIN numbers and large amounts of money.

We talked about the advanced persistent threat and how they are expanding their reach beyond the defense industrial base into commercial America.  We also shared intelligence we’ve gathered that gives a view into their motivation, the organizations they target and the data they aim to collect.

And, just for fun, we put Kevin on the spot and asked him to make some predictions about the future of incident response as we head into the next decade.

In the webinar, we referred to several resources:

 
• MANDIANT Intelligent Response is the industry’s first enterprise-grade incident response solution. It makes incident responders faster, less disruptive and less expensive — and makes your investigations more comprehensive and accurate.
 
• Our blog, M-unition, contains information from our consulting and research operations. We welcome feedback and comment.
 
• We offer a number of free tools for incident responders and malware analysts in the Software section of our website.

About the speakers

Kevin Mandia is the President and CEO at MANDIANT.  He is an internationally recognized expert in the field of information security and has assisted attorneys, corporations, and government organizations with matters involving information security compliance, complex litigation support, computer forensics, expert testimony, network attack and penetration testing. He is coauthor of Incident Response: Performing Computer Forensics (McGraw-Hill, 2003) and Incident Response: Investigating Computer Crime (McGraw-Hill, 2001). Mr. Mandia holds a Master of Science in Forensic Science from The George Washington University. He is a Certified Information Systems Security Professional, and has held government security clearances at the Top Secret and higher levels.

Michael J. Graven is a director at MANDIANT. Like all MANDIANT consultants, he chases network bad guys through Fortune 500 companies, governments, and financial institutions. Michael earned degrees at Northwestern University and Stanford University. He has worked on internetworks and system security since 1989, working in environments as large as AT&T and Netscape to as small as twenty-person startups. He is a native Californian and a snowboarder, but he does not surf.