Abstract image of a woman sitting on books and studying on a laptop

Cybersecurity in 2022

Gabriel Schuyler, profile picture
Gabriel Schuyler

The document discusses cybersecurity trends and challenges in 2022, covering topics such as remote work, cloud computing, automation, zero-day exploits, ransomware, and the role of nation-state actors. It highlights the vulnerabilities in technology, including the Internet of Things and supply chains, and emphasizes the importance of security measures like network segmentation and zero trust. The discussion includes insights into emerging threats and strategies for defense in the ever-evolving cyber landscape.

Internet
1 of 13
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
Cybersecurity in 2022 Gabe Schuyler The state of attack & defense Austin Forum on Technology and Society March 1, 2022
Agenda • Going remote • Cloud computing • Automation • Zero-days • Internet of things • Ransom • Supply chain • Nation-state actors • Armed Con fl ict • Q & A @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Gabe Schuyler • Enterprise Solutions Engineer at Wiz, Inc. • Long time operations person • Medium time cybersecurity professional • Also into wireless hacking, RFID tags, and 
 using technology for positive social change. @gabe_sky @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Going remote • Lock-down • Bring your own device • Borrow your work device 
 • Segment your networks • Protect all endpoints 
 • "I'm not a cat" @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Cloud computing • Cheap and remote • Unsecured resources • Crypto-mining 
 • Cloud security posture management • Inventory and monitoring 
 • Department of transportation @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Automation • Criminals are lazy • Brute force • Large-scale phishing 
 • Password managers and MFA • Automated response 
 • Honeypots @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Zero-day and zero-click exploits • No patch to stop it • Lucrative job, selling • Effective against well-defended 
 • Defense in depth • Incentivize updates and patches 
 • NSO group @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Internet of Things • Valuable data and orchestration • Firmware updates rare/never • Stepping stone inside 
 • Change default passwords • Segment networks 
 • Hacked by a fi sh tank @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Ransomware • Lucrative and automatable • Ransomware as a service • Double-ransom 
 • Backups • Insurance 
 • Colonial pipeline @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Supply Chain • Applications "borrow" code • Enterprises use diverse software • Often opaque to developers 
 • Automate security in development process • Defense in depth & zero trust 
 • SolarWinds @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Nation states • Rare but unstoppable • Disruption and misinformation • Espionage 
 • Listen to CISA (and NSA?) • Insurance ("Acts of War") 
 • Chinese warship on pause @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Armed Con fl ict • Conspicuously quiet • DDoS and defacement • Disinformation 
 • Trusted sources, veri fi ed information • Protect against splash damage 
 • Current insanity @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
Q & A Gabe Schuyler @gabe_sky @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler

More Related Content

PPT
software-security.ppt
PRALHAD MAGADUM
 
PDF
Cyber security training
Wilmington University
 
PDF
Computer Security Threats
Quick Heal Technologies Ltd.
 
PPT
Building An Information Security Awareness Program
Bill Gardner
 
PPTX
Cyber security
Rishav Sadhu
 
PPTX
cyber security presentation.pptx
kishore golla
 
ODP
Cyber security awareness
Jason Murray
 
PPTX
Network Security Risk
Dedi Dwianto
 
software-security.ppt
PRALHAD MAGADUM
 
Cyber security training
Wilmington University
 
Computer Security Threats
Quick Heal Technologies Ltd.
 
Building An Information Security Awareness Program
Bill Gardner
 
Cyber security
Rishav Sadhu
 
cyber security presentation.pptx
kishore golla
 
Cyber security awareness
Jason Murray
 
Network Security Risk
Dedi Dwianto
 

What's hot (20)

PDF
European Cybersecurity Context
Miguel A. Amutio
 
PPT
Ethical hacking
Monika Deswal
 
PPT
Social engineering and Phishing
thecorrosiveone
 
PPTX
Cyber Security in Society
Rubal Sagwal
 
PPTX
Cybercrime and Security
Noushad Hasan
 
PDF
OWASP Top Ten in Practice
Security Innovation
 
PPT
Hacking
Paidi Dinesh
 
PPTX
Cyber security
Harsh verma
 
PPT
Ethical Hacking Powerpoint
Ren Tuazon
 
ODP
OWASP Secure Coding
bilcorry
 
PPTX
Cybersecurity 1. intro to cybersecurity
sommerville-videos
 
PPTX
Ethical hacking
Goutham Shetty
 
PDF
Overview of Information Security & Privacy
Nawanan Theera-Ampornpunt
 
PDF
End-User Security Awareness
Surya Bathulapalli
 
PDF
Cyber security
Bhavin Shah
 
PPTX
Cyber Security A Challenges For Mankind
Saurabh Kheni
 
PPTX
Cybersecurity Awareness Training
Dave Monahan
 
PDF
Cybersecurity Fundamentals | Understanding Cybersecurity Basics | Cybersecuri...
Edureka!
 
PPTX
Cyber security presentation
sweetpeace1
 
PDF
Nat'l Cyber Security Awareness Month (NCSAM) Posters
NetLockSmith
 
European Cybersecurity Context
Miguel A. Amutio
 
Ethical hacking
Monika Deswal
 
Social engineering and Phishing
thecorrosiveone
 
Cyber Security in Society
Rubal Sagwal
 
Cybercrime and Security
Noushad Hasan
 
OWASP Top Ten in Practice
Security Innovation
 
Hacking
Paidi Dinesh
 
Cyber security
Harsh verma
 
Ethical Hacking Powerpoint
Ren Tuazon
 
OWASP Secure Coding
bilcorry
 
Cybersecurity 1. intro to cybersecurity
sommerville-videos
 
Ethical hacking
Goutham Shetty
 
Overview of Information Security & Privacy
Nawanan Theera-Ampornpunt
 
End-User Security Awareness
Surya Bathulapalli
 
Cyber security
Bhavin Shah
 
Cyber Security A Challenges For Mankind
Saurabh Kheni
 
Cybersecurity Awareness Training
Dave Monahan
 
Cybersecurity Fundamentals | Understanding Cybersecurity Basics | Cybersecuri...
Edureka!
 
Cyber security presentation
sweetpeace1
 
Nat'l Cyber Security Awareness Month (NCSAM) Posters
NetLockSmith
 
Ad

Similar to Cybersecurity in 2022 (20)

PDF
Texas Cyber Summit 2022: Challenges Securing Cloud-Native.pdf
Gabriel Schuyler
 
PDF
2023 BSides ATX Trending Attack and Defense.pdf
Gabriel Schuyler
 
PPTX
5G Networks - What's next for Broadband
paul young cpa, cga
 
PDF
2022 GrrCON Shifting Right with Policy as Code.pdf
Gabriel Schuyler
 
PDF
3rd International Conference on Soft Computing, Data mining and Data Science ...
ijscai
 
PDF
Call for Papers - 3rd International Conference on Soft Computing, Data mining...
ijsc
 
PDF
3rd International Conference on Computing and Information Technology (CITE 2025)
ijesajournal
 
PDF
3rd International Conference on Computing and Information Technology (CITE 2025)
GiselleginaGloria
 
PDF
3rd International Conference on Soft Computing, Data mining and Data Science ...
ijscai
 
PDF
5G overview for ISEM 2022_Maria Boura_A.pdf
Maria Boura
 
PDF
How to protect your data
DoKC
 
PDF
How to protect your data
DoKC
 
PPT
Have the Bad Guys Won the Cyber security War...
Andrew Hammond
 
PPT
Quant & Crypto Gold
Andrew Hammond
 
PDF
2nd International Conference on Computer Science and Information Technology A...
ijesajournal
 
PDF
2nd International Conference on Computer Science and Information Technology A...
ClaraZara1
 
PDF
International Conference on Blockchain, Cybersecurity and Internet of Things ...
ijwmn
 
PDF
International Conference on Blockchain, Cybersecurity and Internet of Things ...
ijwmn
 
PDF
International Conference on Blockchain, Cybersecurity and Internet of Things ...
ijpla
 
PDF
3rd International Conference on Computing and Information Technology (CITE 2025)
ClaraZara1
 
Texas Cyber Summit 2022: Challenges Securing Cloud-Native.pdf
Gabriel Schuyler
 
2023 BSides ATX Trending Attack and Defense.pdf
Gabriel Schuyler
 
5G Networks - What's next for Broadband
paul young cpa, cga
 
2022 GrrCON Shifting Right with Policy as Code.pdf
Gabriel Schuyler
 
3rd International Conference on Soft Computing, Data mining and Data Science ...
ijscai
 
Call for Papers - 3rd International Conference on Soft Computing, Data mining...
ijsc
 
3rd International Conference on Computing and Information Technology (CITE 2025)
ijesajournal
 
3rd International Conference on Computing and Information Technology (CITE 2025)
GiselleginaGloria
 
3rd International Conference on Soft Computing, Data mining and Data Science ...
ijscai
 
5G overview for ISEM 2022_Maria Boura_A.pdf
Maria Boura
 
How to protect your data
DoKC
 
How to protect your data
DoKC
 
Have the Bad Guys Won the Cyber security War...
Andrew Hammond
 
Quant & Crypto Gold
Andrew Hammond
 
2nd International Conference on Computer Science and Information Technology A...
ijesajournal
 
2nd International Conference on Computer Science and Information Technology A...
ClaraZara1
 
International Conference on Blockchain, Cybersecurity and Internet of Things ...
ijwmn
 
International Conference on Blockchain, Cybersecurity and Internet of Things ...
ijwmn
 
International Conference on Blockchain, Cybersecurity and Internet of Things ...
ijpla
 
3rd International Conference on Computing and Information Technology (CITE 2025)
ClaraZara1
 
Ad

More from Gabriel Schuyler (11)

PDF
2024 Kernelcon Attack and Defense of AI.pdf
Gabriel Schuyler
 
PDF
Trends in Cloud Security Attack & Defense
Gabriel Schuyler
 
PDF
Pancakes Con 4 Trends in Cloud Security & Fun Facts about Real Clouds
Gabriel Schuyler
 
PDF
Automating Security Tests in Development with Docker
Gabriel Schuyler
 
PDF
Dog Days of Devops 2022: Policy as Code
Gabriel Schuyler
 
PDF
fwd:cloudsec 2022: Shifting right with policy-as-code
Gabriel Schuyler
 
PDF
Hope 2022: Just Enough RFID Cloning to be Dangerous
Gabriel Schuyler
 
PDF
Kernel Con 2022: Securing Cloud Native Workloads
Gabriel Schuyler
 
PPTX
ShmooCon 2022: RFID Key Cloning for Angry Bikers
Gabriel Schuyler
 
PDF
Migrating Puppet 3 to 4 -- Code Changes
Gabriel Schuyler
 
PDF
IC3 -- Configuration Management 101
Gabriel Schuyler
 
2024 Kernelcon Attack and Defense of AI.pdf
Gabriel Schuyler
 
Trends in Cloud Security Attack & Defense
Gabriel Schuyler
 
Pancakes Con 4 Trends in Cloud Security & Fun Facts about Real Clouds
Gabriel Schuyler
 
Automating Security Tests in Development with Docker
Gabriel Schuyler
 
Dog Days of Devops 2022: Policy as Code
Gabriel Schuyler
 
fwd:cloudsec 2022: Shifting right with policy-as-code
Gabriel Schuyler
 
Hope 2022: Just Enough RFID Cloning to be Dangerous
Gabriel Schuyler
 
Kernel Con 2022: Securing Cloud Native Workloads
Gabriel Schuyler
 
ShmooCon 2022: RFID Key Cloning for Angry Bikers
Gabriel Schuyler
 
Migrating Puppet 3 to 4 -- Code Changes
Gabriel Schuyler
 
IC3 -- Configuration Management 101
Gabriel Schuyler
 

Recently uploaded (20)

PPTX
Mathew Digital SEO Checklist Guidlines 2025
Mathew Digital
 
PDF
Exploring VPS Hosting Trends for SMBs in 2025
Liquid Web
 
PDF
Exploring The Internet Of Things(IOT).ppt
rakeshk19831911
 
PPTX
AI_Cyberattack_Solutions AI AI AI AI .pptx
zayadeen2003
 
PPTX
Cyber Hygine IN organizations in MSME or
paramkiet
 
PDF
Alethe Consulting Corporate Profile and Solution Aproach
debashisrakshit2025
 
PPTX
module 1-Part 1.pptxdddddddddddddddddddddddddddddddddddd
KevinSeelu
 
PPTX
Introduction to cybersecurity and digital nettiquette
shanefrancisjavier21
 
PDF
BIOCHEM CH2 OVERVIEW OF MICROBIOLOGY.pdf
tbasharababneh
 
PPTX
IPCNA VIRTUAL CLASSES INTERMEDIATE 6 PROJECT.pptx
AldoCharaRojas
 
PDF
mera desh ae watn.(a source of motivation and patriotism to the youth of the ...
DtMalhonSharma
 
PDF
Understand the Gitlab_presentation_task.pdf
ruhinisiyara
 
PPT
12 Things That Make People Trust a Website Instantly
Shethil Ahammed
 
PPTX
TITLE DEFENSE entitle the impact of social media on education
AgustoJerizMarfil
 
PDF
Buy Cash App Verified Accounts Instantly – Secure Crypto Deal.pdf
pvaonit
 
PPTX
Reading as a good Form of Recreation
Raj Kumble
 
PPTX
Top Website Bugs That Hurt User Experience – And How Expert Web Design Fixes
e-Definers Technology
 
PPTX
Layers_of_the_Earth_Grade7.pptx class by
varadhanvara05
 
PDF
The Ikigai Template _ Recalibrate How You Spend Your Time.pdf
KinchitJain2
 
PDF
📍 LABUAN4D EXCLUSIVE SERVER STAR GAMING ASIA NO.1 TERPOPULER DI INDONESIA ! 🌟
alexiskandar061
 
Mathew Digital SEO Checklist Guidlines 2025
Mathew Digital
 
Exploring VPS Hosting Trends for SMBs in 2025
Liquid Web
 
Exploring The Internet Of Things(IOT).ppt
rakeshk19831911
 
AI_Cyberattack_Solutions AI AI AI AI .pptx
zayadeen2003
 
Cyber Hygine IN organizations in MSME or
paramkiet
 
Alethe Consulting Corporate Profile and Solution Aproach
debashisrakshit2025
 
module 1-Part 1.pptxdddddddddddddddddddddddddddddddddddd
KevinSeelu
 
Introduction to cybersecurity and digital nettiquette
shanefrancisjavier21
 
BIOCHEM CH2 OVERVIEW OF MICROBIOLOGY.pdf
tbasharababneh
 
IPCNA VIRTUAL CLASSES INTERMEDIATE 6 PROJECT.pptx
AldoCharaRojas
 
mera desh ae watn.(a source of motivation and patriotism to the youth of the ...
DtMalhonSharma
 
Understand the Gitlab_presentation_task.pdf
ruhinisiyara
 
12 Things That Make People Trust a Website Instantly
Shethil Ahammed
 
TITLE DEFENSE entitle the impact of social media on education
AgustoJerizMarfil
 
Buy Cash App Verified Accounts Instantly – Secure Crypto Deal.pdf
pvaonit
 
Reading as a good Form of Recreation
Raj Kumble
 
Top Website Bugs That Hurt User Experience – And How Expert Web Design Fixes
e-Definers Technology
 
Layers_of_the_Earth_Grade7.pptx class by
varadhanvara05
 
The Ikigai Template _ Recalibrate How You Spend Your Time.pdf
KinchitJain2
 
📍 LABUAN4D EXCLUSIVE SERVER STAR GAMING ASIA NO.1 TERPOPULER DI INDONESIA ! 🌟
alexiskandar061
 

Cybersecurity in 2022

  • 1. Cybersecurity in 2022 Gabe Schuyler The state of attack & defense Austin Forum on Technology and Society March 1, 2022
  • 2. Agenda • Going remote • Cloud computing • Automation • Zero-days • Internet of things • Ransom • Supply chain • Nation-state actors • Armed Con fl ict • Q & A @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 3. Gabe Schuyler • Enterprise Solutions Engineer at Wiz, Inc. • Long time operations person • Medium time cybersecurity professional • Also into wireless hacking, RFID tags, and 
 using technology for positive social change. @gabe_sky @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 4. Going remote • Lock-down • Bring your own device • Borrow your work device 
 • Segment your networks • Protect all endpoints 
 • "I'm not a cat" @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 5. Cloud computing • Cheap and remote • Unsecured resources • Crypto-mining 
 • Cloud security posture management • Inventory and monitoring 
 • Department of transportation @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 6. Automation • Criminals are lazy • Brute force • Large-scale phishing 
 • Password managers and MFA • Automated response 
 • Honeypots @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 7. Zero-day and zero-click exploits • No patch to stop it • Lucrative job, selling • Effective against well-defended 
 • Defense in depth • Incentivize updates and patches 
 • NSO group @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 8. Internet of Things • Valuable data and orchestration • Firmware updates rare/never • Stepping stone inside 
 • Change default passwords • Segment networks 
 • Hacked by a fi sh tank @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 9. Ransomware • Lucrative and automatable • Ransomware as a service • Double-ransom 
 • Backups • Insurance 
 • Colonial pipeline @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 10. Supply Chain • Applications "borrow" code • Enterprises use diverse software • Often opaque to developers 
 • Automate security in development process • Defense in depth & zero trust 
 • SolarWinds @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 11. Nation states • Rare but unstoppable • Disruption and misinformation • Espionage 
 • Listen to CISA (and NSA?) • Insurance ("Acts of War") 
 • Chinese warship on pause @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 12. Armed Con fl ict • Conspicuously quiet • DDoS and defacement • Disinformation 
 • Trusted sources, veri fi ed information • Protect against splash damage 
 • Current insanity @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler
  • 13. Q & A Gabe Schuyler @gabe_sky @gabe_sky Austin Forum on Technology and Society -- March 2022 Gabe Schuyler