ABOUT THE SPEAKER

Caleb Barlow - Cybercrime fighter
IBM's Caleb Barlow is focused on how we solve the cyber security problem by changing the economics for the bad guys.

Why you should listen

As a vice president at IBM Security, Caleb Barlow has insight into to one of the largest security intelligence operations in the world. His team stands watch protecting the information security of thousands of customers in more than a hundred countries. On a busy day they can process upwards of 35 billion potential security events across their global operations centers.

Barlow has been advising chief information security officers, boards of directors and government officials on security practices, frameworks and strategies for risk mitigation on a global basis. He is a sought-after speaker on the subject of security and regularly appears in both print and broadcast media, including NBC News, CNBC, BBC World Service, NPR, the Wall Street Journal and the Washington Post. His opinions have been solicited by members of Congress, the NSA, and NATO, and he was invited by the President of the UN General Assembly to discuss his views at the United Nations.

Most recently, Barlow is focusing on building a large-scale simulation environment to educate C-level executives on how to better prevent and respond to a cyber attack so they can maintain business resiliency in the face of crisis.

More profile about the speaker
Caleb Barlow | Speaker | TED.com

TED@IBM

Caleb Barlow: Where is cybercrime really coming from?

Kejleb Barlou: Odakle zaista dolazi sajber kriminal?

Filmed: 2016-11-15

Readability: 4.3

1,639,157 views

Sajber kriminalom je prošle godine generisan ogroman profit od 450 milijarde dolara, uz 2 milijarde podataka koji su izgubljeni ili ukradeni širom svijeta. Ekspert za bezbjednost Kejleb Barlou ukazuje na nedovoljnu mogućnost naših trenutnih strategija da se zaštite naši podaci. Njegovo rješenje? Moramo da odgovorimo na sajber kriminal istim kolektivnim naporom koji ulažemo za krizu zdravstvenog sistema, dijeleći pravovremene informacije o tome ko je zaražen i kako se širi zaraza. Ukoliko ne dijelimo, kaže on, onda smo dio problema.

Caleb Barlow - Cybercrime fighter
IBM's Caleb Barlow is focused on how we solve the cyber security problem by changing the economics for the bad guys. Full bio

Double-click the English transcript below to play the video.

00:13

Cybercrime is out of control.

0

1012

4217

Sajber kriminal je van kontrole.

00:18

It's everywhere.

1

6186

1365

Ima ga svuda.

00:19

We hear about it every single day.

2

7575

4288

Slušamo o tome svakog dana.

Ove godine, preko dvije milijarde podataka
je izgubljeno ili ukradeno.

00:24

This year,

3

12771

1214

00:26

over two billion records lost or stolen.

4

14009

5134

00:32

And last year, 100 million of us,
mostly Americans,

5

20050

5635

A prošle godine, za 100 miliona ljudi,
uglavnom Amerikanaca - uključujući i mene,

00:37

lost our health insurance data
to thieves -- myself included.

6

25709

5134

ukradeni su podaci
o zdravstvenom osiguranju.

Ono što posebno zabrinjava je to
što se u većini slučajeva to desilo

00:44

What's particularly concerning about this
is that in most cases,

7

32303

5448

00:49

it was months before anyone even
reported that these records were stolen.

8

37775

5911

mjesecima prije nego što je bilo ko
prijavio krađu ovih podataka.

00:57

So if you watch the evening news,

9

45164

3043

Zato, ako gledate večernje vijesti,
pomislili bi da se

01:00

you would think that most of this
is espionage or nation-state activity.

10

48231

5206

u većini ovih slučajeva radi o špijunaži
ili aktivnosti protiv bezbjednosti države.

01:05

And, well, some of it is.

11

53993

2093

Pa, nešto od toga to zaista i jeste.

01:08

Espionage, you see, is an accepted
international practice.

12

56694

4438

Vidite, špijunaža je prihvaćena
međunarodna praksa.

01:13

But in this case,

13

61793

1483

Ali u ovom slučaju, to je samo mali dio
problema sa kojim se suočavamo.

01:15

it is only a small portion
of the problem that we're dealing with.

14

63300

5453

01:21

How often do we hear about a breach

15

69639

3335

Koliko često čujemo o kršenju uz riječi

01:24

followed by, "... it was the result
of a sophisticated nation-state attack?"

16

72998

4851

''...to je bio rezultat sofisticiranog
napada na državu''?

01:30

Well, often that is companies
not being willing to own up

17

78661

4861

Zapravo, često se radi o tome
da kompanije ne žele

da priznaju svoje mutne
bezbjednosne prakse.

01:35

to their own lackluster
security practices.

18

83546

2980

01:39

There is also a widely held belief

19

87065

2500

Takođe postoji i široko
rasprostranjeno uvjerenje

01:42

that by blaming an attack
on a nation-state,

20

90355

3851

da time što krivicu svaljujete
na napad na državnu bezbjednost,

01:46

you are putting regulators at bay --

21

94230

2681

držite na odstojanju regulatore,
makar za određeni vremenski period.

01:48

at least for a period of time.

22

96935

2034

01:51

So where is all of this coming from?

23

99837

4483

Pa otkud sve ovo potiče?

01:56

The United Nations estimates
that 80 percent of it

24

104997

5493

Ujedinjene nacije procjenjuju
da se u 80% slučajeva

02:02

is from highly organized
and ultrasophisticated criminal gangs.

25

110514

5770

radi o veoma organizovanim
i ultrasofisticiranim kriminalnim bandama.

02:09

To date,

26

117254

1719

Do sada, ovo predstavlja jednu od
najvećih ilegalnih ekonomija na svijetu,

02:10

this represents one of the largest
illegal economies in the world,

27

118997

6600

02:17

topping out at, now get this,

28

125621

3120

prevazilazeći - pazite sada -

02:20

445 billion dollars.

29

128765

4316

445 milijardi dolara.

02:25

Let me put that in perspective
for all of you:

30

133539

2912

Da vam to približim:

02:28

445 billion dollars is larger than the GDP

31

136475

6104

445 milijardi dolara je više od
bruto društvenog proizvoda 160 zemalja,

02:34

of 160 nations,

32

142603

2666

02:37

including Ireland, Finland,
Denmark and Portugal,

33

145293

4545

uključujući Irsku, Finsku, Dansku
i Portugal, da navedemo nekoliko.

02:41

to name a few.

34

149862

1230

02:44

So how does this work?

35

152293

2004

Pa kako to funkcioniše?

02:46

How do these criminals operate?

36

154321

1906

Kako ovi kriminalci rade?

02:48

Well, let me tell you a little story.

37

156701

2856

Pa, ispričaću vam malu priču.

02:52

About a year ago,

38

160531

1194

Prije oko godinu dana, naši bezbjednosni
istražitelji su ušli u trag

02:53

our security researchers were tracking

39

161749

3310

donekle običnom,

02:57

a somewhat ordinary but sophisticated
banking Trojan called the Dyre Wolf.

40

165083

6046

ali sofisticiranom bankarskom Trojancu
koji se naziva Dire Wolf.

03:03

The Dyre Wolf would get on your computer

41

171925

2221

Dyre Wolf bi ušao u vaš kompjuter

03:06

via you clicking on a link
in a phishing email

42

174170

3000

kada kliknete na link iz mejla
koji vjerovatno nije ni trebalo da imate.

03:09

that you probably shouldn't have.

43

177194

1952

03:11

It would then sit and wait.

44

179170

1997

Zatim bi sjedio i čekao.

03:13

It would wait until you logged
into your bank account.

45

181755

3011

Čekao bi sve dok se ne ulogujete
na svoj bankovni račun.

03:17

And when you did,
the bad guys would reach in,

46

185299

3343

A kada to učinite,
loši momci bi dobili pristup,

03:20

steal your credentials,

47

188666

1653

ukrali vaše podatke i šifre,

03:22

and then use that to steal your money.

48

190343

1901

a zatim ih koristili da ukradu vaš novac.

03:25

This sounds terrible,

49

193023

1920

Ovo zvuči užasno,

03:26

but the reality is,
in the security industry,

50

194967

2793

ali u stvarnosti,
u bezbjednosnoj industriji,

03:29

this form of attack
is somewhat commonplace.

51

197784

3682

ovaj oblik napada je donekle uobičajen.

03:36

However, the Dyre Wolf had
two distinctly different personalities --

52

204002

6164

Međutim, Dyre Wolf je imao
dva veoma različita modaliteta -

03:42

one for these small transactions,

53

210659

2341

jedan za ove male transakcije,
ali je poprimao potpuno drugačiji oblik

03:45

but it took on an entirely
different persona

54

213024

3040

03:48

if you were in the business of moving
large-scale wire transfers.

55

216088

3815

ukoliko ste u poslu u okviru kojeg
vršite velike elektronske transfere novca.

03:51

Here's what would happen.

56

219927

1699

Evo šta bi se desilo.

03:53

You start the process
of issuing a wire transfer,

57

221650

2800

Započnete proces izdavanja naloga
za elektronski prenos novca,

03:56

and up in your browser would pop
a screen from your bank,

58

224474

3008

a u browser-u se pojavi ekran
sa obavještenjem vaše banke

03:59

indicating that there's a problem
with your account,

59

227506

2597

da postoji problem sa vašim računom
i da morate odmah da pozovete banku,

04:02

and that you need to call
the bank immediately,

60

230127

3191

04:05

along with the number
to the bank's fraud department.

61

233342

2742

kao i broj odjeljenja banke
koje se bavi prevarama.

04:08

So you pick up the phone and you call.

62

236835

2170

I tako vi podignete slušalicu i pozovete.

04:11

And after going through
the normal voice prompts,

63

239029

3011

I nakon što prođete kroz uobičajena
glasovna uputstva,

04:14

you're met with
an English-speaking operator.

64

242064

2117

spajaju vas sa operaterom
koji govori engleski.

04:16

"Hello, Altoro Mutual Bank.
How can I help you?"

65

244205

2868

''Dobar dan, Altoro Mutual banka.
Kako mogu da vam pomognem?''

04:20

And you go through the process
like you do every time you call your bank,

66

248033

3653

I prolazite kroz isti proces
kao i svaki put kad pozovete vašu banku,

04:23

of giving them your name
and your account number,

67

251710

2791

govoreći im svoje ime i broj računa
i prolazeći sigurnosne provjere,

04:26

going through the security checks
to verify you are who you said you are.

68

254525

3923

kako bi se utvrdilo da ste vi onaj
za koga se predstavljate.

04:31

Most of us may not know this,

69

259809

1488

Većina nas to ne zna, ali za mnoge
velike elektronske transfere novca

04:33

but in many large-scale wire transfers,

70

261321

2229

04:35

it requires two people to sign off
on the wire transfer,

71

263574

3111

potrebno je da dvoje ljudi potpišu
elektronski prenos novca,

04:38

so the operator then asks you
to get the second person on the line,

72

266709

3199

pa vas tako operater pita da u vezu
uključite i tu drugu osobu,

04:41

and goes through the same set
of verifications and checks.

73

269932

2801

sa kojom se prolazi kroz isti
niz provjera.

04:45

Sounds normal, right?

74

273960

1346

Ovo zvuči normalno, zar ne?

04:47

Only one problem:

75

275909

1442

Postoji samo jedan problem:

04:49

you're not talking to the bank.

76

277375

1825

ne razgovarate sa bankom.

04:51

You're talking to the criminals.

77

279224

1586

Razgovarate sa kriminalcima.

04:52

They had built
an English-speaking help desk,

78

280834

2198

Oni su otvorili službu za pomoć
na engleskom jeziku,

04:55

fake overlays to the banking website.

79

283056

2065

lažirajući podatke na web strani banke.

04:57

And this was so flawlessly executed

80

285145

3100

I ovo je tako besprekorno izvedeno,
da su u svoje kriminalne kofere

05:00

that they were moving
between a half a million

81

288269

2143

prebacivali između pola miliona
i 1,5 milion dolara po pokušaju.

05:02

and a million and a half
dollars per attempt

82

290436

3087

05:05

into their criminal coffers.

83

293547

1558

05:08

These criminal organizations operate

84

296140

2615

Ove kriminalne organizacije funkcionišu

05:10

like highly regimented,
legitimate businesses.

85

298779

3025

kao veoma disciplinovani,
zakoniti biznisi.

05:14

Their employees work
Monday through Friday.

86

302345

2483

Njihovi zaposleni rade
od ponedjeljka do petka.

05:17

They take the weekends off.

87

305309

1536

Slobodni su vikendima.

05:18

How do we know this?

88

306869

1383

Kako ovo znamo?

05:20

We know this because
our security researchers see

89

308276

3133

Ovo znamo zato što
naši bezbjednosni istražitelji

05:23

repeated spikes of malware
on a Friday afternoon.

90

311433

3066

primjećuju upade zlonamjernih programa
petkom popodne.

05:27

The bad guys, after a long weekend
with the wife and kids,

91

315254

3215

Loši momci se, nakon dugog vikenda
sa ženom i djecom,

05:30

come back in to see how well things went.

92

318493

2240

vraćaju da provjere
koliko dobro stoje stvari.

05:35

The Dark Web is where
they spend their time.

93

323701

2674

Dark Web je mjesto gdje
provode svoje vrijeme.

05:39

That is a term used to describe
the anonymous underbelly of the internet,

94

327295

5789

To je naziv koji se koristi da se opišu
anonimne osjetljive tačke interneta,

05:45

where thieves can operate with anonymity

95

333108

2925

gdje kradljivci mogu
da funkcionišu anonimno

05:48

and without detection.

96

336057

1445

i da ne budu primijećeni.

05:50

Here they peddle their attack software

97

338209

3027

Ovdje planiraju svoje softverske napade

05:53

and share information
on new attack techniques.

98

341260

3456

i dijele informacije
o novim tehnikama napada.

05:57

You can buy everything there,

99

345571

1850

Ovdje možete da kupite sve,

05:59

from a base-level attack
to a much more advanced version.

100

347445

3656

od osnovnog napada
do mnogo naprednije verzije.

06:03

In fact, in many cases, you even see

101

351842

2292

Zapravo, u mnogim slučajevima čak vidite
i zlatne, srebrne i bronzane nivoe usluga.

06:06

gold, silver and bronze levels of service.

102

354158

3172

06:09

You can check references.

103

357903

1671

Možete da provjerite reference.

06:11

You can even buy attacks

104

359977

2560

Možete čak i da kupite napade koji dolaze
sa garancijom o povraćaju novca -

06:14

that come with a money-back guarantee --

105

362561

3328

06:17

(Laughter)

106

365913

1045

(Smijeh)

06:18

if you're not successful.

107

366982

1655

ukoliko nijeste uspješni.

06:21

Now, these environments,
these marketplaces --

108

369931

3091

Ova okruženja, ova mjesta za trgovinu -

06:25

they look like an Amazon or an eBay.

109

373046

3347

ona liče na Amazon ili eBay.

06:28

You see products, prices,
ratings and reviews.

110

376417

3956

Vidite proizvode, cijene,
ocjene i komentare.

06:32

Of course, if you're going
to buy an attack,

111

380397

2254

Naravno, ukoliko hoćete da kupite napad,

06:34

you're going to buy from a reputable
criminal with good ratings, right?

112

382675

3449

kupićete ga od poštovanog kriminalca
sa dobrim ocjenama, zar ne?

06:38

(Laughter)

113

386148

1004

(Smijeh)

06:39

This isn't any different

114

387176

1201

Ovo se ne razlikuje od provjere
na Yelp ili TripAdvisor

06:40

than checking on Yelp or TripAdvisor
before going to a new restaurant.

115

388401

5190

prije nego što odete u novi restoran.

06:46

So, here is an example.

116

394503

2093

Evo jednog primjera.

06:48

This is an actual screenshot
of a vendor selling malware.

117

396620

5421

Ovo je pravi screenshot prodavca
koji prodaje zlonamjerne programe.

06:54

Notice they're a vendor level four,

118

402065

1815

Vidite da je prodavac četvrtog nivoa
i da ima stepen povjerenja šest.

06:55

they have a trust level of six.

119

403904

1841

06:57

They've had 400 positive reviews
in the last year,

120

405769

2335

Imali su 400 pozitivnih kritika
u protekloj godini

07:00

and only two negative reviews
in the last month.

121

408128

2380

i samo dvije negativne kritike
prethodnog mjeseca.

07:03

We even see things like licensing terms.

122

411072

3357

Čak vidimo stvari kao što su
uslovi za davanje dozvole.

07:06

Here's an example of a site you can go to

123

414762

2004

Evo primjer sajta na koji možete da odete

07:08

if you want to change your identity.

124

416790

1757

ukoliko želite da promijenite
svoj identitet.

07:10

They will sell you a fake ID,

125

418571

1857

Oni će vam prodati lažnu ličnu kartu,
lažne pasoše.

07:12

fake passports.

126

420452

1594

07:14

But note the legally binding terms
for purchasing your fake ID.

127

422603

5049

Ali obratite pažnju na zakonski
obavezujuće uslove

za kupovinu lažne lične karte.

07:20

Give me a break.

128

428518

1521

Molim vas.

07:22

What are they going to do --
sue you if you violate them?

129

430063

2858

Šta će da urade -
da vas tuže ukoliko ih prekršite?

07:24

(Laughter)

130

432945

1150

(Smijeh)

07:27

This occurred a couple of months ago.

131

435458

2423

Ovo se dogodilo prije nekoliko mjeseci.

07:29

One of our security
researchers was looking

132

437905

3615

Jedan od naših bezbjednosnih istražitelja
se raspitivao

07:33

at a new Android malware application
that we had discovered.

133

441544

4998

o novoj Android aplikaciji
za zlonamjerni program koji smo otkrili.

07:38

It was called Bilal Bot.

134

446566

1920

Zvao se Bilal Bot.

07:41

In a blog post,

135

449514

1926

U komentaru na blogu,
ona je opisala Bilal Bot

07:43

she positioned Bilal Bot
as a new, inexpensive and beta alternative

136

451464

6805

kao novu, ne mnogo skupu i beta
alternativu mnogo naprednijem GM Botu,

07:50

to the much more advanced GM Bot

137

458870

3338

07:54

that was commonplace
in the criminal underground.

138

462232

2815

koji je uobičajen u kriminalnom podzemlju.

07:58

This review did not sit well
with the authors of Bilal Bot.

139

466658

4010

Ova kritika se nije dopala
autorima Bilal Bota.

08:03

So they wrote her this very email,

140

471237

2580

Zato su joj napisali ovaj imejl,

08:07

pleading their case
and making the argument

141

475028

2757

izlažući svoje argumente

i tvrdeći da imaju osjećaj
da je evaluirala stariju verziju.

08:09

that they felt she had evaluated
an older version.

142

477809

5429

08:16

They asked her to please update
her blog with more accurate information

143

484198

4709

Molili su je da ažurira svoj blog
tačnijim informacijama

08:20

and even offered to do an interview

144

488931

3412

i čak su joj ponudili da uradi intervju,
kako bi joj detaljno opisali

08:24

to describe to her in detail

145

492367

2221

08:26

how their attack software was now
far better than the competition.

146

494612

4599

kako je njihov softver za napad sada
mnogo bolji od konkurencije.

08:32

So look,

147

500365

1325

Vidite, ne mora da vam se sviđa
ono što oni rade,

08:33

you don't have to like what they do,

148

501714

3864

08:37

but you do have to respect
the entrepreneurial nature

149

505602

4919

ali morate da poštujete
preduzetničku prirodu njihovih poduhvata.

08:42

of their endeavors.

150

510545

1207

08:43

(Laughter)

151

511776

1150

(Smijeh)

08:46

So how are we going to stop this?

152

514476

3855

Pa kako ćemo ovo da prekinemo?

08:51

It's not like we're going to be able
to identify who's responsible --

153

519714

5564

Nije da ćemo biti u mogućnosti
da utvrdimo ko je odgovoran -

08:57

remember, they operate with anonymity

154

525302

2962

zapamtite, oni posluju anonimno
i van obima zakona.

09:00

and outside the reach of the law.

155

528288

1985

09:03

We're certainly not going to be able
to prosecute the offenders.

156

531217

3284

Sigurno nećemo moći
da krivično gonimo prestupnike.

09:07

I would propose that we need
a completely new approach.

157

535156

5545

Predložio bih da nam je potreban
potpuno novi pristup.

09:13

And that approach needs
to be centered on the idea

158

541763

3906

A taj pristup zahtijeva
da se fokusiramo na ideju

09:17

that we need to change
the economics for the bad guys.

159

545693

3895

da moramo da promijenimo
ekonomiju za loše momke.

09:22

And to give you a perspective
on how this can work,

160

550245

3101

A kako bih vam bliže predstavio
kako ovo može da funkcioniše,

09:25

let's think of the response we see
to a healthcare pandemic:

161

553370

4988

hajde da razmislimo o odgovoru koji vidimo
na zdravstvene pandemije:

09:30

SARS, Ebola, bird flu, Zika.

162

558382

3003

SARS, Ebola, ptičji grip, Zika.

09:34

What is the top priority?

163

562036

1921

Šta je glavni prioritet?

09:35

It's knowing who is infected
and how the disease is spreading.

164

563981

5293

Znati ko je zaražen i kako se zaraza širi.

09:44

Now, governments, private institutions,
hospitals, physicians --

165

572015

6147

Vlade, privatne institucije,
bolnice, ljekari -

09:51

everyone responds openly and quickly.

166

579061

3720

svako odgovara otvoreno i brzo.

09:55

This is a collective and altruistic effort

167

583334

3971

Ovo je kolektivni i altruistički napor
kako bi se zaustavilo širenje

09:59

to stop the spread in its tracks

168

587329

3900

10:03

and to inform anyone not infected

169

591253

2877

i kako bi se informisao bilo ko
ko nije zaražen

10:06

how to protect or inoculate themselves.

170

594154

2380

o tome kako da se zaštiti
ili da se vakciniše.

10:10

Unfortunately, this is not at all
what we see in response to a cyber attack.

171

598900

5694

Nažalost, ovo nije sve što vidimo
kao odgovor na sajber napade.

10:17

Organizations are far more likely
to keep information on that attack

172

605850

4451

Organizacije su mnogo sklonije da
informacije o tom napadu čuvaju za sebe.

10:22

to themselves.

173

610325

1625

10:25

Why?

174

613082

1156

Zašto?

10:26

Because they're worried
about competitive advantage,

175

614262

2970

Zato što su zabrinuti za prednost
konkurencije, parnicu ili propis.

10:30

litigation

176

618043

1571

10:31

or regulation.

177

619638

1306

10:33

We need to effectively democratize
threat intelligence data.

178

621827

5770

Moramo da efektivno demokratizujemo
obavještajne podatke o prijetnji.

10:39

We need to get all of these organizations
to open up and share

179

627975

5476

Moramo da natjeramo
sve ove organizacije da se otvore

i podijele ono što je u njihovom
privatnom arsenalu informacija.

10:45

what is in their private arsenal
of information.

180

633475

3622

10:51

The bad guys are moving fast;

181

639010

2794

Loši momci brzo djeluju:

10:53

we've got to move faster.

182

641828

2117

mi moramo da djelujemo još brže.

10:56

And the best way to do that is to open up

183

644750

3722

A najbolji način da to učinimo
je da se otvorimo

11:00

and share data on what's happening.

184

648496

2347

i podijelimo podatke o tome šta se dešava.

11:03

Let's think about this in the construct
of security professionals.

185

651304

4326

Razmislimo o ovome u konstrukciji
bezbjednosnih profesionalaca.

11:08

Remember, they're programmed right
into their DNA to keep secrets.

186

656164

4976

Zapamtite, u njihovoj DNK je programirano
da čuvaju tajne.

11:13

We've got to turn
that thinking on its head.

187

661164

3024

Moramo potpuno da promijenimo
takvo razmišljanje.

11:16

We've got to get governments,
private institutions

188

664212

3281

Moramo da navedemo vlade, privatne
institucije i bezbjednosne kompanije

11:19

and security companies

189

667517

1443

11:20

willing to share information at speed.

190

668984

2731

da žele da dijele informacije i to brzo.

11:23

And here's why:

191

671739

1676

Evo zašto:

11:25

because if you share the information,

192

673439

1877

zato što ukoliko dijelite informacije,
to je jednako vakcinaciji.

11:27

it's equivalent to inoculation.

193

675340

2017

11:30

And if you're not sharing,

194

678663

1547

A ukoliko ih ne dijelite,
ustvari ste dio problema,

11:32

you're actually part of the problem,

195

680234

2101

11:34

because you're increasing the odds
that other people could be impacted

196

682359

5768

zato što povećavate šanse
da drugi ljudi mogu da budu pogođeni

11:40

by the same attack techniques.

197

688151

2630

istim tehnikama napada.

11:43

But there's an even bigger benefit.

198

691986

2049

Ali postoji jedna još veća korist.

11:47

By destroying criminals' devices
closer to real time,

199

695198

4746

Uništavanjem kriminalnih naprava
što je moguće više u realnom vremenu,

11:51

we break their plans.

200

699968

1753

mi kvarimo njihove planove.

11:55

We inform the people they aim to hurt

201

703462

3240

Informišemo ljude koje oni
žele da povrijede

11:58

far sooner than they had ever anticipated.

202

706726

2645

mnogo ranije nego što
su to ikada predvidjeli.

12:02

We ruin their reputations,

203

710520

2201

Uništavamo njihovu reputaciju,

12:04

we crush their ratings and reviews.

204

712745

3092

rušimo njihove ocjene i kritike.

12:08

We make cybercrime not pay.

205

716305

3832

Činimo sajber kriminal neisplativim.

12:12

We change the economics for the bad guys.

206

720931

3768

Mijenjamo ekonomiju za loše momke.

12:18

But to do this,
a first mover was required --

207

726315

3972

Ali kako bismo ovo uradili,
neophodan je prvi korak -

12:22

someone to change the thinking
in the security industry overall.

208

730311

4601

neko mora promijeniti razmišljanje
u cjelokupnoj bezbjednosnoj industriji.

12:28

About a year ago,

209

736067

1270

Prije oko godinu dana,

12:29

my colleagues and I had a radical idea.

210

737361

2506

moje kolege i ja smo došli
na radikalnu ideju.

12:32

What if IBM were to take our data --

211

740624

4584

Šta ako bi IBM uzeo naše podatke -

12:37

we had one of the largest threat
intelligence databases in the world --

212

745987

3988

imali smo jednu od najvećih obavještajnih
baza podataka na svijetu o prijetnjama -

12:41

and open it up?

213

749999

1359

i učinio ih dostupnim?

12:43

It had information not just
on what had happened in the past,

214

751757

3461

Sadržala je informacije ne samo o tome
šta se desilo u prošlosti,

12:47

but what was happening in near-real time.

215

755242

2475

već i o tome šta se dešava
u skoro realnom vremenu.

12:49

What if we were to publish it all
openly on the internet?

216

757741

3897

Šta ako bismo sve to javno objavili
na internetu?

12:54

As you can imagine,
this got quite a reaction.

217

762463

2494

I možete zamisliti,
ovo je izazvalo burnu reakciju.

12:56

First came the lawyers:

218

764981

1364

Prvo su nastupili advokati:
Koje su pravne posljedice tog postupka?

12:58

What are the legal
implications of doing that?

219

766369

2315

13:01

Then came the business:

220

769385

1335

Zatim su na red došli biznisi:
Koje su poslovne posljedice tog postupka?

13:02

What are the business
implications of doing that?

221

770744

2400

13:05

And this was also met with a good dose

222

773622

2173

A sve ovo je bilo praćeno
velikim brojem ljudi

13:07

of a lot of people just asking
if we were completely crazy.

223

775819

3108

koji su samo pitali
da li smo potpuno poludjeli.

13:11

But there was one conversation
that kept floating to the surface

224

779928

3786

Ali bio je jedan razgovor
koji je stalno isplivavao

13:15

in every dialogue that we would have:

225

783738

2051

u svakom dijalogu koji bismo vodili:

13:18

the realization that if we didn't do this,

226

786400

3547

saznanje da ukoliko ovo ne učinimo,
da smo onda dio problema.

13:21

then we were part of the problem.

227

789971

2631

13:25

So we did something unheard of
in the security industry.

228

793514

2860

Zato smo uradili nešto nezapamćeno
u svijetu bezbjednosne industrije.

13:29

We started publishing.

229

797045

1673

Počeli smo da objavljujemo.

13:30

Over 700 terabytes of actionable
threat intelligence data,

230

798742

4410

Preko 700 terabajta obavještajnih podataka
o prijetnjama

koji su mogli biti korišćeni na suđenju,

13:35

including information on real-time attacks

231

803176

3005

uključujući i informacije o napadima
u realnom vremenu,

13:38

that can be used to stop
cybercrime in its tracks.

232

806205

2863

koje se mogu koristiti da se u korijenima
zaustavi sajber kriminal.

13:41

And to date,

233

809813

1370

Do sada, preko 4000 organizacija
koristi ove podatke,

13:43

over 4,000 organizations
are leveraging this data,

234

811207

4044

13:47

including half of the Fortune 100.

235

815275

1879

uključujući i polovinu Fortune 100.

13:50

And our hope as a next step
is to get all of those organizations

236

818599

4017

Kao sljedeći korak, nadamo se da ćemo
ubijediti sve ove organizacije

13:54

to join us in the fight,

237

822640

1961

da nam se pridruže u borbi,
i da urade isto

13:56

and do the same thing

238

824625

1551

13:58

and share their information

239

826200

2088

i podijele sa drugima svoje informacije
o tome kada i kako su bili napadnuti.

14:00

on when and how
they're being attacked as well.

240

828312

2534

14:03

We all have the opportunity to stop it,

241

831552

3018

Svi imamo priliku da to zaustavimo,
a već svi znamo i kako.

14:06

and we already all know how.

242

834594

2161

14:09

All we have to do is look
to the response that we see

243

837372

4370

Sve što treba da uradimo
je da pogledamo odgovor koji postoji

14:13

in the world of health care,

244

841766

1506

u svijetu zdravstvene zaštite,

14:15

and how they respond to a pandemic.

245

843296

1903

i to kakav je njihov odgovor na pandemije.

14:17

Simply put,

246

845623

1379

Jednostavno rečeno,

14:19

we need to be open and collaborative.

247

847026

2276

moramo da budemo otvoreni i da sarađujemo.

14:21

Thank you.

248

849876

1151

Hvala vam.

14:23

(Applause)

249

851051

3792

(Aplauz)

Translated by Marija Maras
Reviewed by Ivana Korom

ABOUT THE SPEAKER

Caleb Barlow - Cybercrime fighter
IBM's Caleb Barlow is focused on how we solve the cyber security problem by changing the economics for the bad guys.

Why you should listen

As a vice president at IBM Security, Caleb Barlow has insight into to one of the largest security intelligence operations in the world. His team stands watch protecting the information security of thousands of customers in more than a hundred countries. On a busy day they can process upwards of 35 billion potential security events across their global operations centers.

Barlow has been advising chief information security officers, boards of directors and government officials on security practices, frameworks and strategies for risk mitigation on a global basis. He is a sought-after speaker on the subject of security and regularly appears in both print and broadcast media, including NBC News, CNBC, BBC World Service, NPR, the Wall Street Journal and the Washington Post. His opinions have been solicited by members of Congress, the NSA, and NATO, and he was invited by the President of the UN General Assembly to discuss his views at the United Nations.

Most recently, Barlow is focusing on building a large-scale simulation environment to educate C-level executives on how to better prevent and respond to a cyber attack so they can maintain business resiliency in the face of crisis.

More profile about the speaker
Caleb Barlow | Speaker | TED.com

THE ORIGINAL VIDEO ON TED.COM

Kejleb Barlou: Odakle zaista dolazi sajber kriminal? | TED Talk | TED.com