NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio |...
8
Transcript of NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio |...
![Page 1: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/1.jpg)
![Page 2: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/2.jpg)
Suspicious Activity Reporting
July 2020
![Page 3: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/3.jpg)
Cyber Security is a Team Sport• Threat Intelligence Sharing is Highly Valuable• Sharing is caring• Who all receives our report
• US Department of Homeland Security (CISA and I&A)
• EI-ISAC
• State of Ohio Fusion Center/State Highway Patrol
• Ohio National Guard
• Private Sector Cyber Security Partners
![Page 4: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/4.jpg)
Cyber Security is a Team Sport
Detailed Internal Cyber Reporting
Local Board of Election Reporting
Ohio SOS Analysis Ohio SOS SAR
RAW Reporting from Board of Elections
![Page 5: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/5.jpg)
What we report• Anything “suspicious” • Phishing Campaigns• SQL Injection Attempts• Network traffic that isn’t “normal”• Include as much information as possible!• Look beyond your election related systems
![Page 6: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/6.jpg)
Specific example of it making a difference• Late in 2019, the Ohio Secretary of State filed a Suspicious Activity Report
showing a high volume of scans against our Online Voter Registration System.
• Early in 2020, the Ohio Secretary of State received information from a trusted third party that the same addresses listed in the Suspicious Activity Report was also performing additional scans of another Secretary of State’s network.
• The affected State was contacted, and scanning was remediated.
![Page 7: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/7.jpg)
Phishing Suspicious Activity Report Example
![Page 8: NASS 2020 Summer - Ohio Suspicious Activity Reporting [Read-Only] 2020... · 2020-07-21 · Ohio | 377.7676446 OhioSoSgov . Secr . Title: Microsoft PowerPoint - NASS 2020 Summer -](https://reader033.fdocuments.net/reader033/viewer/2022050410/5f870d63fb2fe908c865eb0f/html5/thumbnails/8.jpg)
Questions
