Archived National Webcast Initiative Presentations

  • April 9, 2009
    Application Security


    Application security is a crucial layer in a multi-tiered cyber security strategy. Building security in at the beginning of development, as well as continued throughout the application life cycle, is important in minimizing potential vulnerabilities. For example, we’ve seen the results when vulnerabilities in web applications are exploited, leading to SQL injection attacks, cross-site scripting and other malicious activity.


    This webcast provided discussion of the current issues surrounding application security and the consequences of successful exploitation of vulnerabilities. The session also provided information about what can be done to address the issues, including use of the recently released 2009 CWE/SANS Top 25 Most Dangerous Programming Errors, procurement guidelines being made available, as well as other tools to help developers and security professionals minimize risks.


  • February 12, 2009
    Payment Card Industry (PCI)


    The webcast covered the PCI Data Security Standards, compliance guidelines, consequences of non-compliance, steps for PCI compliance validation, what organizations are doing now, and best practices and practical tips to help educate the entire PCI community.

  • December 17, 2009

    Securing a Multi-Tiered Environment

    With the increasing prevalence of fraudulent websites, application and database attacks, cyber warfare, botnets, and identity theft, to name a few, taking a holistic approach to securing a multi-tiered environment is an important and crucial component of an organization's cyber security strategy.

    This webcast focused on the current cyber security issues and provided practical, actionable information that organizations and end users can apply immediately to their own environments.

  • October 9, 2008

    Phishing

    • Phishing is an online scam in which an email message directs the email recipient to click on a link that takes them to a website where they are prompted for personal information such as a pin number, social security number, bank account number or credit card number. Both the link and website may closely resemble an authentic website, but they are not legitimate. If the phishing scam is successful, personal accounts may be accessed, money removed from bank accounts, or sensitive information accessed.

    These scams continue to proliferate at alarming rates and are becoming more and more difficult to detect. It's important for you to understand how to recognize a phishing attempt and what you can do to protect yourself.

    You will learn from the experts who will show you how to not get hooked in a phishing scam!

     

  • August 20, 2008

    Voice Over-IP

    • VoIP continues to grow in popularity, with some estimates predicting that the number of subscribers will increase in 2008 to nearly 17 million. While there can be many advantages of VoIP, including convenience, enhanced functionality and cost, there are also security concerns that must be addressed. Denial of Service attacks, vishing-which is a form of social engineering aimed at VoIP users-and other malicious attacks against VoIP networks and users are increasing challenges that we need to understand.

    This webcast focused on the security risks associated with VoIP - at both a user and enterprise level - and provided practical advice on how to defend against these risks.

     

  • June 18, 2008

    Security 101 for Your PC

    • Cyber security is everyone's responsibility and each of us should have an understanding of the basics of computer security and our role in securing the information and systems in our care. The presentation walked-through a variety of scenarios to help explain the basics of computer security, the threat landscape, and provided specific advice on what steps to take for both organizations and the end user.

     

  • April 23, 2008

    Application Security

    • Heightened application security is a crucial component of any organization's cyber security strategy - particularly as more web applications are being developed. Attackers are finding more creative ways to take advantage of potential vulnerabilities. In fact, experts predict an increase in web application attacks in 2008.

    Organizations, including application development staff, must have an understanding of the cyber security risks and threat environment to facilitate the implementation of strong cyber security at the development phase.

    The presentation walked-through a variety of scenarios to help explain these concepts and provided specific advice on what steps to take for both organizations and the end user.

     

  • February 14, 2008

    Emerging Trends and Threats for 2008

    • "As we move forward in this new year, the cyber security challenges facing us continue to evolve. For those of us in the cyber security profession, there is never a dull moment," said Pelgrin. "We are now seeing the emergence of more sophisticated web site attacks, increasing prevalence of botnets, including a new generation of identity theft being powered by botnets, along with increasingly malicious spyware, just to name a few issues."

    This webcast provided a broad look at some of those major issues and challenges we face regarding cyber security threats. The presentation included practical, timely advice on what we can do--in both the public and private sectors-to mitigate the risks and enhance our protection against these threats. Some of the topics discussed included botnets, online scams, identity theft, cyber crime and more.

  • December 19, 2007

    BotNets - The Invasion of the Bots (Part II)

    • Recent estimates indicate that out of 600 million computers that are connected to the Internet, up to 150 million are part of BotNets. A bot, short for robot, is an automated software program that can execute certain commands. A botnet, short for robot network, is an aggregation of computers compromised by bots that are connected to a central "controller." Botnet controllers are often controlled from chat rooms, and can be linked together to form even larger botnets. They are a growing source for staging denial of service attacks, identity theft, phishing attacks and SPAM mail relay services. Anyone can be a victim of a botnet; home users are especially vulnerable to incidents if the proper protections are not in place.

    This presentation provided useful guidance about the necessary steps to protecting computers, how to recognize when your machine has been comprised, and how to respond quickly to BotNet attacks.

  • October 17, 2007

    • Kids Safe Online – Cyber Citizens:  Defenders of Cyberspace

    The 3rd Annual “Kids Safe Online” National Webcast was held on October 17, 2007 which featured a Play entitled “Cyber Citizens:  Defenders of Cyberspace” geared for 4th and 5th graders.  Approximately 10,000 students, parents, educators, law enforcement, and adults representing 38 states viewed the broadcasts.  The play was held in recognition of October as National Cyber Security Awareness Month and featured interactive skits to help children learn more about cyber security and how to be safe when using computers and the Internet.

    Content included topics such as:

    • learning how cyberspace works
    • protecting personal information
    • keeping passwords safe
    • feeling comfortable communicating in cyberspace
    • recognizing and preventing cyberbullying
    • knowing what junk mail and viruses are 
    • practicing good cyber manners/etiquette
    • and more….
  • August 22, 2007

    • Keeping Your Broadband Internet Connection Secure

    Recent estimates indicate that the United States has more than 60 million broadband users.  Many are individual home users using the Internet for a variety of reasons including accessing e-mail, shopping, banking, taking online courses, and more.   The Internet has become an integral part of life for many of us. 

    High-speed connection is becoming more prevalent with this increased Internet usage.  Many individual home users are the most highly targeted sector for cyber attacks, as they are generally less likely to have well-established security measures and practices in place.  As such, they are much more vulnerable to identify theft, fraud or other cyber incidents.

    The webcast provided useful guidance to the non-technical user on the necessary steps to protect their “always-on” high-speed connection.  The following topics were discussed:

    • What does Broadband mean?
    • What are the computer security risks associated with broadband access?
    • Why must home users be concerned about computer security?
    • What can users do today to protect themselves and their computer?
  • June 20, 2007

    Security Policy Enforcement - Secure Network Access

    Securing your network environment against network intruders can be a challenge in today's cyber security world. This broadcast focused on the following topics:

    • Discussion on problems with "trolls", how they exist on our network, the risks and why network access controls are important;
    • Network security policy examples and the pros and cons of network security policy issues;
    • The benefits of Network Access Control (NAC) - securing network access and identifying network roles and responsibilities;
    • Case studies on Endpoint enforcement in the Insurance Industry, Inline enforcement in the Fortune 1000, and 802.1x in the Telecommunications Industry;
    • And, effective solutions that could help you manage the castle easier by allowing you to convert your policies into actionable events!
  • April 18, 2007

    • Mobile Security and Encryption

    As the use of mobile devices continues to increase, we must increase our vigilance in securing these devices and data therein. The webcast presentation provided a broad look at some of the major security threats and challenges we face in keeping mobile data secure and what we can do to protect that data. Some of the topics covered relating to Mobile Security and Encryption included the following:

    • What kind of security threats do you have to be concerned about with mobile devices?
    • What would be considered "mobile?"
    • What's more important: the technology or the policy?
    • Technology concepts
    • Policy examples

  • February 15, 2007
    • Digital Forensics for Organizations

    The webcast presentation provided a broad look at some of the major issues and challenges we face in relation to cyber security incidents and how to handle and preserve the evidence on your computers or network. This webcast focused on the non-law enforcement aspects of digital forensics topics including the following:

    • Recognizing methods of attack
    • Understanding how vulnerabilities are exploited; covert channels
    • How can one recognize if a cyber security incident has taken place?
    • Implementing sound procedures for incident response
    • In the event of a suspected cyber security incident, how best can the “evidence" be preserved?
    • What information must be gathered - how to conduct an event reconstruction to determine what happened during the cyber security incident?
    • What other steps must be taken to properly address the situation?

  • December 14, 2006

    Cyber Security: What Does the Future Hold?

    This webcast presentation provided a broad look at some of the major trends and challenges in securing computers, for home users as well as at the enterprise level. Some of the topics covered included the convergence of technology: as the convergence continues to increase, the capacity of devices, such as cell phones and other hand-helds is rivaling that of desktops. Do you know how to secure your cell phone/handheld to protect it from worms, viruses and other malicious activity?  Do you know how to properly dispose of your cell phone or handheld when you are ready to buy new?  Encryption technologies were also discussed, including a review of various options available and what the user should look for when analyzing options. This webcast also examined other new technologies and hot topics on the horizon for 2007 and what users need to know in order to be secure.

  • October 4, 2006

    "Kids Safe Online" - Cyber Citizens of the World Wide Web Interactive Play

    The 2nd Annual "Kids Safe Online" National Webcast was held on October 4, 2006 which featured a Play entitled "Cyber Citizens of the World Wide Web," geared for 4th and 5th graders.  Over 10,000 students, parents, educators and adults representing 40 states and 4 countries viewed the webcast.  The play was held in recognition of October as National Cyber Security Awareness Month and featured interactive skits to help children learn more about cyber security and how to be safe when using computers and the Internet.

  • August 16, 2006

    Instant Messaging

    The broadcast presentation raised awareness on instant messaging (IM) and how IM is being used today as a source of communication online – both at home and at work. While IM can be a convenient and quick way to chat with others or collaborate on business matters, there are security concerns that we must understand and address. This webcast provided attendees with accurate and up-to-date information so that each of us can take the necessary steps to help protect ourselves online.

  • June 28, 2006
    Remote Access

    The broadcast presentation raised awareness on popular secure remote access solutions in terms of business use cases, high level deployment scenarios, and security and operational considerations. Presentation topics included:

    • overview of remote access options (dial-up/dial-back to dedicated access to IPSEC VPN to SSL VPN and beyond)
    • the pros and cons of different types of remote access
    • secure remote access (the security ramifications of extending internal applications)
    • common best practices

  • April 13th, 2006
    Voice-Over IP - How secure is your network infrastructure for handling VoIP?

    VoIP is growing in popularity.   Two-thirds of the world’s 2,000 largest companies will be using VOIP systems in 2006 and by 2009, 27 million Americans will use Internet phones at home.  The presentation raised awareness on network security issues and challenges that arise in today’s network world.

  • February 16th, 2006
    Identity Theft - The crime that keeps on taking!

    The February 16th broadcast presentation focused on what ID Theft is, how to protect yourself, and what to do if you think you may have become a victim. The presenters walked through a variety of scenarios to help explain these concepts and provided specific advice on what steps to take.

  • December 15, 2005
    Cyber Security Tips During the Holiday Season
    Don’t let the Cyber Space Grinch Steal Your Holiday!

    The broadcast included such topics as online shopping transactions and the need to secure your private information online; understanding how to properly check your security settings on the new computer you just received as a gift; and what to look for when visiting legitimate web sites.

  • October 20, 2005
    Protecting Our Children on the Internet

    The National Webcast on Protecting Our Children on the Internet consisted of a play entitled Cyber Smart in Cyber Space geared toward the 4th and 5th grade age levels in which actors performed a cyber security-related skit interacting with the children. The play used content from CyberSmart(New Window) !, an organization dedicated to teaching secure, responsible and effective Internet and computer use, and acted out with members of the Plays for Living(New Window) organization, a nonprofit organization that utilizes live theater dramas to depict the real-life challenges and stresses many people face on a daily basis at work, at home and in the community.

  • July 20, 2005
    Wireless Security

    The webcast provided a non-technical presentation on Wireless Security. The webcast applied to all computer users – whether you are using your wireless-enabled laptop at the local coffee house or running a network that hosts sensitive customer data, you need to understand the issues and how to use wireless technology safely. Attendees walked away with a better understanding of the diversity of wireless devices that are used today, the security that can be applied behind the wireless network, and solutions of how you can be more secure.

  • May 18, 2005
    Botnets

    The webcast provided a non-technical presentation on BotNets. BotNets are becoming a significant problem across the Internet and are increasing at an alarming rate. They are a growing source for staging denial of service attacks, identity theft, phishing attacks and SPAM mail relay services. Please visit the archived presentation and learn about how to defend against BotNets, what to do when your machine has been compromised, and how to respond when your machine has been controlled by BotNets.

  • March 16, 2005
    Are You Secure?...Are You Sure?
    Vulnerability Management

    The webcast provided a "low/medium technical" discussion about what each of us should do on a daily basis to be more secure. The volume of malicious cyber activity continues on an upward curve.  The sophistication of hacker tools continues to grow while the expertise required to deploy them is decreasing. Phishing schemes are becoming increasingly difficult to discern from legitimate email.  Botnets are increasing at an alarming rate.  These facts require that your information systems are as secure as possible and that you have appropriate measures in place to decrease your vulnerability to these cyber threats.

  • February 9, 2005
    Adware/Spyware:
    How to Protect Yourself from Today's Most Dangerous Spyware Threats

    The webcast provided a non-technical discussion about what each of us should do on a daily basis to be more secure. This session will focus on an in-depth analysis of today’s most egregious spyware/adware programs. During this webcast you will learn about:

    • Today’s most dangerous spyware threats
    • What they do to your systems
    • Why they are so difficult to remove
    • How you can protect yourself

  • October 19 , 2004
    Are YOU the Weakest Link?

    The webcast provided a non-technical discussion about what each of us should do on a daily basis to be more secure. This session focused on the human elements of cyber security, which are just as important, if not more so, than the technical elements, and included examples of the various types of scams and pitfalls we need to watch out for, and how to protect ourselves.

  • August 26, 2004
    Performing a Cyber Security Risk Assessment:
    Why? When? and How?

    The webcast focused on the steps organizations should take in addressing risk and provided timely and practical advice that can be applied immediately.

  • June 22, 2004
     Cyber Security: The Three Things You Should Have Done Yesterday and The Three Things You Should Do Today

    The webcast included discussion of the biggest challenges to security, what you should have already been doing in your organization to address those challenges, and what you must do today.