Slideshare

S
Written By Threat NG Staff

Slideshare is a popular platform for sharing presentations created with tools like Microsoft PowerPoint or Google Slides. It allows users to:

  • Upload and Share Presentations: Professionals and educators use Slideshare to share presentations publicly or privately for collaboration or educational purposes.

  • View and Download Presentations: Users can access and download a vast library of presentations on various topics.

  • Embed Presentations: Slideshare presentations can be embedded on websites or blogs for wider reach.

Associated Risks:

  • Malware Distribution: Malicious actors might upload presentations containing malware disguised as legitimate content (e.g., business presentations and research reports). Downloading and opening such presentations can compromise user devices.

  • Phishing Attacks: Presentations can be used for phishing attempts. They might trick users into revealing sensitive information or clicking on malicious links.

  • Copyright Infringement: Uploading presentations containing copyrighted material without permission violates copyright laws.

  • Outdated Information: Downloaded presentations might contain outdated or inaccurate information, leading to confusion or misleading decisions.

Security Best Practices:

  • Verify Source: Check the uploader's identity and reputation before downloading a presentation. Look for verified accounts or established organizations.

  • Preview Before Download: Utilize Slideshare's preview feature to assess the presentation's content before downloading. This helps avoid downloading potentially harmful files.

  • Scan Downloaded Files: Use antivirus software to scan downloaded presentations for malware before opening them on your device.

  • Beware of Phishing Tactics: Don't click on suspicious links or enter sensitive information within presentations, especially if they seem out of place or request unexpected actions.

  • Review Copyright Notices: Consider copyright notices within presentations before downloading or embedding them on your website.

Remember: While Slideshare offers a valuable presentation resource, prioritize security by being cautious about the content you download and the information you share within the presentations you upload.

ThreatNG: Uncovering Slideshare Risks

ThreatNG offers a unique approach to security management by identifying mentions of an organization on Slideshare. This functionality resides within its Online Sharing Exposure Investigation Module, configurable through the Policy Manager's Dynamic Entity Management capability. Here's how it bolsters security and risk management:

Threat Discovery Through Slideshare Monitoring:

  • Dynamic Entity Management: The Policy Manager allows defining the investigation scope using Dynamic Entity Management. This enables ThreatNG to scan for mentions of the organization and expand the search to include third-party vendors, partners, and other entities within the supply chain (nth party).

  • Slideshare Scans: ThreatNG continuously scans publicly available presentations on Slideshare for matches with these defined entities. This focuses on identifying the presence of the organization or related parties' names, domains, or trademarks within the presentation titles, descriptions, or even user comments, not the content itself.

Security and Risk Management Benefits:

  • Early Warning System: ThreatNG provides an early warning system for potential security threats by identifying mentions on Slideshare. Leaked credentials, exposed configurations, or even discussions about vulnerabilities within presentations can be flagged for investigation before exploitation occurs.

  • Supply Chain Risk Assessment: ThreatNG extends security assessments beyond the organization itself. Including the supply chain in the scan enables a more comprehensive understanding of potential risks associated with third-party vendors or partners sharing presentations on Slideshare.

  • Actionable Threat Intelligence: Discovered Slideshare mentions offer valuable threat intelligence. These mentions can trigger further investigation and proactive security measures to mitigate potential risks.

Complementary Solutions and Handoff:

  • Security Automation and Orchestration (SOAR): ThreatNG can integrate with SOAR platforms. Upon discovering a Slideshare mention, ThreatNG can trigger automated workflows within SOAR to initiate investigations, notify security teams, or isolate potentially compromised systems based on the context of the mention.

  • Incident Response (IR) Tools: ThreatNG can pass Slideshare mentions to IR tools. This can enrich existing incidents with the context of the Slideshare discovery, helping IR teams prioritize and respond effectively.

Example:

  • ThreatNG's Online Sharing Exposure Investigation Module identifies a Slideshare presentation with the organization's name in the title.

  • The presentation title is "[Organization Name] Internal Security Procedures".

  • This discovery raises a red flag, as it could indicate a data breach or an employee accidentally uploading sensitive information within the presentation.

  • ThreatNG triggers an alert in SOAR, which initiates an automated workflow.

  • The workflow notifies the security team and initiates an investigation to determine the source of the presentation and its content.

  • The IR team is also notified and can use the information to assess the potential impact and take appropriate actions, such as requesting the presentation be taken down or contacting the uploader to understand their intent.

By leveraging ThreatNG's focus on mentions without content analysis, organizations gain a valuable solution for proactive security management. They can identify potential risks associated with presentations shared on Slideshare and trigger actions to ensure the security of the organization's confidential information and overall security posture.

Threat NG Staff
Previous

SOAP API
Next

Social Engineering