00000nam 2200000zi 4500 9.921102 CaOODSP 20250507143435 m o d f cr cn||||||||| 230320s2023 onc ob f000 0 eng d 9780660480800 CaOODSP eng rda CaOODSP n-cn--- D97-4/40-110-2023E-PDF Defending against data exfiltration threats. [Ottawa] : Communications Security Establishment = Centre de la sécurité des telecommunications, 2023. 1 online resource (19 pages). text txt rdacontent computer c rdamedia online resource cr rdacarrier Management ; ITSM.40.110 Issued also in French under title: Défense contre les menaces d'exfiltration de données. Cover title. "Unclassified / Non classifié." "Canadian Centre for Cyber Security." "This publication takes effect on April 12, 2023." Includes bibliographical references (page 17). "According to National Institute of Standards and Technology (NIST), exfiltration is the unauthorized transfer of data from a network, system, or device. Data exfiltration is a tactic used by threat actors to accomplish their objectives, such as data theft, financial extortion and gain (e.g. ransomware or cultivating insider threats), and service disruption. Data exfiltration attacks occur in various forms, including data espionage, user or system credentials theft, financial data theft, digital identity compromise, and data de-anonymization. To protect against these attacks, your organizations should secure your data lifecycle processes (e.g. creation, operation, and destruction) from end to end. In this document, we discuss some known data exfiltration techniques and propose protection strategies that can be deployed to mitigate the impact from such threats"--Overview. Computer security Canada. Communications Security Establishment (Canada), issuing body. Canadian Centre for Cyber Security, issuing body. Défense contre les menaces d'exfiltration de données. (CaOODSP)9.921104 Management series (Communications Security Establishment (Canada)) ITSM.40.110. (CaOODSP)9.842856 PDF 700 KB https://publications.gc.ca/collections/collection_2023/cstc-csec/D97-4-40-110-2023-eng.pdf HTML N/A https://www.cyber.gc.ca/en/guidance/defending-against-data-exfiltration-threats-itsm40110