Professional Documents
Culture Documents
Webinar 1532 Slides
Webinar 1532 Slides
Made possible by
Thanks to
1
12/6/2018
2
12/6/2018
3
12/6/2018
Learned
Backup AD for crying out loud
Segment your network
Stop using Windows 2000
Patch
NotPetya What changed in the security world with NotPetya?
Software supply chain
Seconds count
Major Ukrainian bank – 45 seconds
Ukrainian transit company – 16 seconds
Collateral damage by malware that gets out of control can be
devastating
Maersk, Merck, TNT Express, Saint-Gobain, Mondelez, Reckitt Benckiser
and back to Russia’s Rosneft
4
12/6/2018
What we learn
from patch
releases
5
12/6/2018
What we learn 5
from patch 3
2
releases 1
0
Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
0 20 40 60 80 100 120
6
12/6/2018
2017
Elevation of
Tampering Privilege
Spoofing
Arbitrary Code
Execution
Information
Disclosure
Denial of
Service
Cross Site
Security
What we learn Feature
Bypass
Remote Code
Execution
from patch
releases
Arbitrary
Cross Site
2018
Arbitrary
Take Folder
Information
Request
over
Session
Defense in ofFileElevation of
Overwrite
Creation
Modification
Forgery
Java
Hijacking
Depth
File Deletion
Tampering SE Privilege
Spoofing
Arbitrary
Code
Execution
Information
Disclosure Denial of
Service
Cross Site
Security Scripting
Feature Remote Code
Bypass Execution
7
12/6/2018
Bryan Patton
Strategic Systems Consultant, Quest
8
12/6/2018
• Granular, online
recovery
• Full-forest disaster
recovery from central
console
18 Confidential
9
12/6/2018
10
12/6/2018
Live Demo
22 quest.com | confidential
11
12/6/2018
Learn more
www.quest.com/StopHank to learn www.quest.com/ThreatDetection for
more about AD security info on new Change Auditor module
23 quest.com | confidential
Questions?
12