ICFS Instituto de Ciencias Forenses y de la Seguridad. Alvaro Ortigosa. Transatlantic Network Security Initiative. Combining Technical Analysis with Social Network Analysis for an Early Warning System for Cyber Attacks. IP: Sanjay Goel. SCADA Systems Infrastructure Risk.
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
Combining Technical Analysis with Social Network Analysis for an Early Warning System for Cyber Attacks
IP: Sanjay Goel
1:58 pm Eastlake Ohio plant shuts down
4:10 pm Transmission lines start tripping in Michigan and Ohio blocking flow of power East. Due to deficit Generators shut down. Causing blackout in the East
4:09 pm Voltage sags as Ohio draws 2GW from Michigan
3:06 pm A First Energy 345-KV transmission line fails south of Cleveland Ohio
4:05 pm Sustained power surge on Ohio lines
3:41& 3:46 pm
2 breakers connecting First Energy’s grid with American Electric Power tripped
3:17 pm Voltage dips temporarily on Ohio portion of grid causing power to shift to another transmission line which fails
Hackers Victimize Cal-ISO
Dan Morain, June 09, 2001
For at least 17 days at the height of the energy crisis, hackers mounted an attack on a computer system that is integral to the movement of electricity throughout California… The hackers' success, though apparently limited, brought to light lapses in computer security at the target of the cyber-attack, the California ISO, which oversees most of the state's massive electricity transmission grid.
12 NOV; ONS, Brazil
Operador nacional do Sistema Eletrico (ONS) is Brazil's national system operator responsible for controlling the transmission of electricity as well as the operation of generation facilities throughout the nation. On November 12th, a hacker gained access to its corporate network but stopped short of accessing its operational network.
Several prominent intelligence sources confirmed that there were a series of cyber attacks in Brazil: one north of Rio de Janeiro in January 2005 that affected three cities and tens of thousands of people, and another, much larger event beginning on Sept. 26, 2007. The attack in the state of Espirito Santo affected more than three million people in dozens of cities over a two-day period, causing major disruptions. In Vitoria, the world's largest iron ore producer had seven plants knocked offline, costing the company $7 million. It is not clear who did it or what the motive was.
Sanjay Goel, School of Business, UAlbany
Russia & Georgia
'Cyberwar' Emerges Amid Russia-Georgia Conflict
Georgia's recent conflict with Russia over the fate of two separatist provinces brought with it a first in international cyber-warfare, as Georgia faced a slew of Internet attacks.
Georgian government Web sites -- including the president's office, the parliament, and the foreign ministry -- were defaced with anti-Georgian or pro-Russian images. And Georgia's Internet system was crippled, as hackers manipulated computers to flood government, news, and information Web sites in a way that renders them useless.
Chinese Espionage on Tibetan Exiles
Munk Center in Canada shows that in less than 2 years, an electronic spying operation in China infiltrated at least 1,295 computers in 103 countries, including many belonging to embassies, foreign ministries and other government offices, as well as the Dalai Lama’s Tibetan exile centers in India, Brussels, London and New York.
“Looking for a Needle in a Haystack”
We failed to stop 9/11 despite having critical intelligence
Attribution: Anonymity of the Internet
Has anonymity gone too far?
Image Source: UMBC
HACKER NETWORK ANALYSIS ?
A 12 Member Terrorist Cell --- connected with the Ali Baba Network plans to “bake a cake” (build a bomb) which will be targeted to blow up a water treatment facility near London. The plot takes place from April to September of 2003
Robert Savell, School of Engineering, Dartmouith