2019/06/11 – 2019/06/11

141 Catherine St.

View MapMap and Directions | Register

Description:

What information and law, you should be aware of and what to expect and prepare for, when the police are involved in a cyber incident – Private and Government.

Biography

Sgt. Alex Baron is a member of the Royal Canadian Mounted Police since 1998. He is currently a Senior Cybercrime Instructor at the Canadian Police College. He developed and teaches the Cybercrime Investigator Course and also teaches on the Computer Forensic Course.  He started his RCMP career in Nova Scotia doing General Duty, Drug section, Major Crimes and Technological Crime in various units across the province. In 2007, he continued his career in Technological Crime in Ottawa, mostly supporting National Security Investigations. Following this, he was primary investigator and team leader for various Cybercrime incidents.  He has been declared a computer forensics expert in both Ontario and Quebec Superior Courts.

Agenda

  • 5:30 – 6:00 PM Registration, Networking, Cash Bar and Grill
  • 6:00 – 6:05 PM Introduction of Speaker
  • 6:05 – 7:20 PM Presentation
  • 7:20 – 7:30 PM Question Period
  • 7:30 PM Closing remarks

Cost

Members: free, included in your annual dues

Non-Members: $15.00

Register

2019/05/14 – 2019/05/14

141 Catherine St.

View MapMap and Directions | Register

Description:

Due to presenter unavailability, we have changed the original May event.

Cyber Essentials is a simple but effective, UK Government backed scheme that will help you to protect your organization, whatever its size, against a whole range of the most common cyber attacks. There is a proposal for the Canadian Government to adopt this as an assurance standard throughout the government. Come out and discover what this is all about.

Biography

Our presenter, Earl Wyllie has earned a Certificate in Digital Forensics from Ryerson University and is currently working with Cyber Security Canada designing and implementing security control structures.

Over the past four decades, Earl has been involved in almost every aspect of practical IT design and implementation – including programming, database and web site design, business system implementation, building specialized hardware, software and networks for graphics processing, business analytics and information security.

Agenda

  • 5:30 – 6:00 PM Registration, Networking, Cash Bar and Grill
  • 6:00 – 6:05 PM Introduction of Speaker
  • 6:05 – 7:20 PM Presentation
  • 7:20 – 7:30 PM Question Period
  • 7:30 PM Closing remarks

Cost

Members: free, included in your annual dues

Non-Members: $15.00

Register

2019/04/10 – 2019/04/10

141 Catherine St.

View MapMap and Directions | Register

Description:


Please note the next Chapter Meeting is on WEDNESDAY, 10 April 2019.  (The venue was not available on Tuesday.)


Gleb Esman will discuss his experiences and current challenges in fraud detection, data analytics and incident investigations. He will demonstrate a new investigation focused dashboard built on the Splunk analytic platform to better visualize and drill down into large data sets gathered though multi-channel collection methods.

The demonstration will focus on examining WiFi data collected over a wide geographic area with Airbud – a portable wireless monitoring appliance developed by Ottawa’s own Alftel Systems. By combining the data collecting power of a multi-radio receiver, and the power of large data set analytics, investigators can quickly pinpoint and isolate targets of interest to support their work.

Biography

Gleb Esman is a Senior Product Manager for Fraud Analytics and Research at Splunk.

With a background in security research, e-commerce and data loss prevention, Gleb helps to guide product planning and development efforts in the areas of fraud analytics, detection and investigations. Currently managing development of a number of large scale healthcare solutions: Healthcare privacy monitoring and Medication Security Analytics platforms. Before joining Splunk in San Francisco, CA, Gleb worked at Morgan Stanley spearheading efforts to build Splunk based fraud analytics platform to detect and investigate fraud in retail banking.

He is the author of several patent applications in Data analytics, Deep Learning, Security and behavior bio metrics.

Agenda

  • 5:30 – 6:00 PM Registration, Networking, Cash Bar and Grill
  • 6:00 – 6:05 PM Introduction of Speaker
  • 6:05 – 7:20 PM Presentation
  • 7:20 – 7:30 PM Question Period
  • 7:30 PM Closing remarks

Cost

Members: free, included in your annual dues

Non-Members: $15.00

Register

2019/03/12 – 2019/03/12

141 Catherine St.

View MapMap and Directions | Register

Description:

Rescheduled from February.

How do bad actors conduct reconnaissance, initial exploitation, establish persistence, install tools, move laterally, and then collect, exfiltrate and exploit data? Most people think nation states, hostile foreign intelligence agencies and criminals are running their covert operations using zero days, but it’s not that common.

Gaining access to corporate networks and maintaining persistence is almost always done without a zero day; there are so many more vectors that are easier, less risky, and more productive. In a man-on-the-side (MotS) attack the malicious actor can read the traffic and insert new packets, but not to modify or delete packets sent by other participants. The attacker relies on a timing advantage to make sure that the response he sends to the request of a victim arrives before the legitimate response.

This type of attack can be used to disrupt existing communications by sending a perfectly forged TCP packet (correct peer, port, and sequence numbering) with the RST (reset) flag set. This packet is obeyed by the network stack or operating system which drops the connection. Or it could be used to place malware on the victim’s computer.

Biography

Patrick Malcolm, President of NetRunner is a trusted educator to clients like: the Department of National Defence, Canadian Security Establishment, IBM, The Royal Bank of Canada, the RCMP High Tech Crime Unit, Canadian Police College. An entertaining and knowledgeable storyteller, Patrick combines compelling storytelling with technical facts that engage and give participants a memorable experience..

Agenda

  • 5:30 – 6:00 PM Registration, Networking, Cash Bar and Grill
  • 6:00 – 6:05 PM Introduction of Speaker
  • 6:05 – 7:20 PM Presentation
  • 7:20 – 7:30 PM Question Period
  • 7:30 PM Closing remarks

Cost

Members: free, included in your annual dues

Non-Members: $15.00

We will have a look at these malicious actors perform a packet injection attack, known as a man-on-the-side attack during our live demonstration.

Register