税务管理中的网络弹性.pdf

《税务管理中的网络弹性.pdf》由会员分享，可在线阅读，更多相关《税务管理中的网络弹性.pdf（17页珍藏版）》请在三个皮匠报告上搜索。

1、Cyber Resilience in Tax AdministrationDefending Trust,Data,and RevenuePresented byLysandra Capella20 February 2025Secure tomorrow,todayLets Talk.Email:InfoCheckmateCyberCPhone:+599 9 5100902Principal Consultant:Lysandra E C Founder Checkmate Cyber Consultancy Over 10 Years experience working in cybe

2、rsecurity in Dutch Caribbean,Europe,Middle East and US.SME for SANS Institute Research focused on Cloud security,Incident Response,Cybersecurity Posture improvement Passion for continuous learning:40+Certifications in Cybersecurity,Forensics,Incident Response,Cloud Security,Pentest,Cyber Defense 343

3、434If Criminals Can Hack a Museum,They Can Hack Your Tax SystemMovie clip:Oceans 834What happens when Hollywood fiction becomes reality?$100 MillionCost Cyberattack MGM Resorts34Now imagine this wasnt a movie but real world1Collect information on MGM Resorts and its employees2Look for employees on L

4、inkedIn who may have high privileged accounts.Call the MGM IT helpdesk and pretend to be the user.Requesting for the password and MFA to be reset.3Attack the privileged accounts and later on the other accounts4Extract confidential information from MGM servers.56Encrypt more than 100 servers,causing

5、mass service interruption34Why Are Tax Administrations Prime Targets?Massive Data HoldingsLarge Financial TransactionsLegacy IT SystemsTax System Trust Dependency1234341.Visit https:/ in your Personal or Business email3.Look at the resultWas Your Information In A Breach?341Gathered personal informat

6、ion about taxpayers from various sources outside the IRS(like social media,public records and previous breaches)Exploiting IRS Get Transcript Service(Weak Authentication)2Use stolen data to answer the identity verification questions correctly3View and download complete tax transcripts and use for us