Story image

Check Point takes Critical Infrastructure Roadshow to NZ's main centres

18 May 2017

Check Point’s Critical Infrastructure Roadshow gathering at Auckland’s Langham Hotel today brought together a dedicated of security partners to discuss problems, infrastructure weak points and partner alliances.

The event features presentations from Rob Waddell, Check Point’s global security architect Jeroen De Corel and chief strategist Tony Jarvis. Director of partner alliances Liron Yosefian also conducted an informal session with partners to further discuss security issues. 

Olympic gold rowing medalist and world record holder Rob Waddell took the stage and talked about his career how he and his team worked the Rio Olympics and underlining how preparation is the key ingredient for success. 

“There’s a couple of things that helped me cope with stress and pressure. It’s the hours and hours of preparation work beforehand. On the day, I was focusing on the only thing that mattered: Getting the boat from A to B in the fastest way possible.”

Talking about Team NZ’s America’s cup failure, Waddell said, "Find out what went wrong. From that solutions become obvious. When you find those solutions comes faith, belief and confidence".

His main message was that his team was able to find solutions to problems because they were the best planned and the best prepared.

Jeroen De Corel, global security architect, critical infrastructure, Check Point, talked about design and implementation recommendations in operational technology (OT). He mentioned a specific case study in the OT world, which had many security weak points.

The infrastructure was running old, outdated technology, no AV and blocked removable media in BIOS. In terms of the network, there was no encryption or authentication. In essence, there were many gaps.

"Physical security was built mainly on trust. There were no protections against unauthorised access or insider jobs. “People could walk in and out of the back door of the server room to smoke. That’s crazy.”

Tony Jarvis, chief strategist, threat protection for APAC, Middle East and Asia, talked extensively about the first major case of global ransomware against hospitals. 

“2016 was the year of ransomware. It was huge. 2017 is still a year of ransomware, IoT malware and many other things.”

He mentioned that the WannaCry ransomware had far-reaching consequences and are after information.

“The other reason somebody wants to go after you is the profit. They don’t care if you’re a multinational and paying hundreds of thousands of dollars of ransom or a mum and pop shop paying $200. It doesn’t matter to them.”

He spoke extensively about how the ransomware infected not only enterprises and personal computers, but everything from digital signage and mall kiosks. 

He mentioned that 86% of exploits use vulnerabilities that are more than 10 years old. 

He says that while other organisations may have experienced success with a particular solution, every organisation is unique and therefore the strategies must be unique as well.

What should organisations do about it? Focus on the known threats, the unknown threats, protect all endpoints and devices, devise a risk framework and understand the threat trends.

This week Check Point took its Critical Infrastructure Roadshow to Wellington and Auckland. The company will be taking the roadshow to Hamilton tomorrow.

New threat rears its head in new malware report
Check Point’s researchers view Speakup as a significant threat, as it can be used to download and spread any malware.
Oracle updates enterprise blockchain platform
Oracle’s enterprise blockchain has been updated to include more capabilities to enhance development, integration, and deployment of customers’ new blockchain applications.
Used device market held back by lack of data security regulations
Mobile device users are sceptical about trading in their old device because they are concerned that data on those devices may be accessed or compromised after they hand it over.
Gartner names ExtraHop leader in network performance monitoring
ExtraHop provides enterprise cyber analytics that deliver security and performance from the inside out.
Symantec acquires zero trust innovator Luminate Security
Luminate’s Secure Access Cloud is supposedly natively constructed for a cloud-oriented, perimeter-less world.
Palo Alto releases new, feature-rich firewall
Palo Alto is calling it the ‘fastest-ever next-generation firewall’ with integrated cloud-based DNS Security service to stop attacks.
The right to be forgotten online could soon be forgotten
Despite bolstering free speech and access to information, the internet can be a double-edged sword, because that access to information goes both ways.
Opinion: 4 Ransomware trends to watch in 2019
Recorded Future's Allan Liska looks at the past big ransomware attacks thus far to predict what's coming this year.