Presentation is loading. Please wait.

Presentation is loading. Please wait.

Pablo Garaizar Sagarminaga Jaime Devesa Esteban Dr. Igor Santos.

Published byKennedy Cordingley Modified over 9 years ago

Similar presentations

Presentation on theme: "Pablo Garaizar Sagarminaga Jaime Devesa Esteban Dr. Igor Santos."— Presentation transcript:

1 Pablo Garaizar Sagarminaga Jaime Devesa Esteban Dr. Igor Santos

2  Malware detection  Mobile Security  Spam Filtering 2

3  PORTADA Definición ¿What is malware? 3

4  Malware  Any executable explicitally designed to harm computers or computer networks 4

5  Malware  There are several types of malware ▪ Viruses ▪ Worms ▪ Spyware ▪ Trojan horses ▪ Botnets 5

6

7

8

9

10

11  Malware has changed 11

12

13

14  In the begining, fame and glory  Now.. 14

15

16

17  In the begining, fame and glory  Now, they seek money 17

18  In the begining, fame and glory  Now, they seek money  Implies Changes ▪ A better hiding capability ▪ More and more malware 18

19  Malware detection  Based on signatures 19

20 E8 0000000 call 0h 5B pop ebx 8D 4B 42 lea ecx, [ebx + 42h ] 51 push ecx 50 push eax 0F01 4C 24 FE sidt [esp - 02h] 5B pop ebx 83 C3 1C add ebx 1Ch FA cli 8B 2B mov ebp, [ebx]

21 E800 0000 005B 8D4B 4251 5050 0F01 4C24 FE5B 83C3 ACFA 8B2B

22  Malware detection  Based on signatures  Signatures are stored in order to detect known malware 22

23 SIGNATURE DATABASE Signature1 Original Malware Implementation 1Implementation 2 New Implementation NO DETECTION! Signature 2

24 E8 0000000 call 0h 5B pop ebx 8D 4B 42 lea ecx, [ebx + 42h ] 51 push ecx 50 push eax 90nop 0F01 4C 24 FE sidt [esp - 02h] 5B pop ebx 83 C3 1C add ebx 1Ch FA cli 8B 2B mov ebp, [ebx]

25 E800 0000 005B 8D4B 4251 5050 9090 0F01 4C24 FE5B 83C3 ACFA 8B2B E800 0000 005B 8D4B 4251 5050 0F01 4C24 FE5B 83C3 ACFA 8B2B 9090 is not in the signature 9090

26  Malware detection  Based on signatures  Signatures are stored in order to detect known malware  Unable to handle obfuscation! 26

27 27 Malware Detection Knowledge-based malware variant detection Unknown malware detection Anomaly-based Machine-learning- based StaticDynamicHybrid StaticDynamicHybrid StaticDynamicHybrid

28  PORTADA Definición ¿What is spam? 28

29

30 Monty Python Flying Circus

31 WHAT YOU GOT, THEN ? SPAM, EGG, SPAM, SPAM, BACON AND SPAM. SPAM, SPAM, SPAM, BAKED BEANS AND SPAM. ANYTHING WITHOUT SPAM? I DON’T LIKE SPAM!! UGH!

32

33

34 Identity Theft

35

36

37 1. Training of the model 2. Classification of the new e- mails

38 t1t1 t2t2 t3t3 D1D1 D2D2 D 10 D3D3 D9D9 D4D4 D7D7 D8D8 D5D5 D 11 D6D6 Vector Space Model

39  PORTADA Definición ¿What is malware in Android? 39

40 Mobile phones have evolved

41 In fact, now they call them smartphones

42

43 1 millon of activations a day

44 Nokia 3410 Samsung Galaxy Nexus Cámara de fotos GPS Brújula digital WiFi Bluetooth microUSB NFC Aceleremeter Proximity Sensor Baromeer Giroscope Light Sensor

45 How do they manage security? and privacy?

46 Android Malware

47 “Andromaly”: a behavioral malware detection framework for android devices. Shabtai, A., Kanonov, U., Elovici, Y., Glezer, C., & Weiss, Y. (2012). Journal of Intelligent Information Systems, 1- 30.

48 TaintDroid: an information- flow tracking system for realtime privacy monitoring on smartphones Enck, W., Gilbert, P., Chun, B. G., Cox, L. P., Jung, J., McDaniel, P., & Sheth, A. N. (2010, October). In Proceedings of the 9th USENIX conference on Operating systems design and implementation (pp. 1-6).

49 Dissecting Android Malware: Characterization and Evolution Zhou, Y., & Jiang, X. In Security and Privacy (SP), 2012 IEEE Symposium on (pp. 95-109). IEEE.

50 “ So it is said that if you know your enemies and know yourself, you can win a hundred battles without a single loss.” Sun Tzu 孫子 – The Art of War

Download ppt "Pablo Garaizar Sagarminaga Jaime Devesa Esteban Dr. Igor Santos."

Similar presentations

Primary Threats to Computer Security

Primary Threats to Computer Security
15-213 Recitation 8 – 3/25/02 Outline Dynamic Linking Review prior test questions 213 Course Staff Office Hours: See Posting.

Recitation 8 – 3/25/02 Outline Dynamic Linking Review prior test questions 213 Course Staff Office Hours: See Posting.
Mobile Security: Android Amir Houmansadr CS660: Advanced Information Assurance Spring 2015 Content may be borrowed from other resources. See the last slide.

Mobile Security: Android Amir Houmansadr CS660: Advanced Information Assurance Spring 2015 Content may be borrowed from other resources. See the last slide.
William Enck, Peter Gilbert, Byung-Gon Chun, Landon P

William Enck, Peter Gilbert, Byung-Gon Chun, Landon P
Cyber check Do you work safely and responsibly online? Do you know about the risks to your cyber security? What are your online responsibilities ? How.

Cyber check Do you work safely and responsibly online? Do you know about the risks to your cyber security? What are your online responsibilities ? How.
Chapter 8 Chapter 8 Digital Defense: Securing Your Data and Privacy

Chapter 8 Chapter 8 Digital Defense: Securing Your Data and Privacy
Windows Defender Next Generation Anti-malware

Windows Defender Next Generation Anti-malware
MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.

MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.
Beyond Anti-Virus by Dan Keller 1987- Fred Cohen- Computer Scientist “there is no algorithm that can perfectly detect all possible computer viruses”

Beyond Anti-Virus by Dan Keller Fred Cohen- Computer Scientist “there is no algorithm that can perfectly detect all possible computer viruses”
IT-security in the Ubiquitous Computing World Chris Kuo, CISSP, CISA Acer eDC (e-Enabling Data Center) Acer Inc. 2007/3/27.

IT-security in the Ubiquitous Computing World Chris Kuo, CISSP, CISA Acer eDC (e-Enabling Data Center) Acer Inc. 2007/3/27.
A METHODOLOGY FOR EMPIRICAL ANALYSIS OF PERMISSION-BASED SECURITY MODELS AND ITS APPLICATION TO ANDROID.

A METHODOLOGY FOR EMPIRICAL ANALYSIS OF PERMISSION-BASED SECURITY MODELS AND ITS APPLICATION TO ANDROID.
Mobile Operating System Security A PRESENTATION BY DANIEL ADAMS CSC 345 DR. BOX.

Mobile Operating System Security A PRESENTATION BY DANIEL ADAMS CSC 345 DR. BOX.
Networks and Security. Types of Attacks/Security Issues  Malware  Viruses  Worms  Trojan Horse  Rootkit  Phishing  Spyware  Denial of Service.

Networks and Security. Types of Attacks/Security Issues  Malware  Viruses  Worms  Trojan Horse  Rootkit  Phishing  Spyware  Denial of Service.
THREATS TO MOBILE NETWORK SECURITY

THREATS TO MOBILE NETWORK SECURITY
MOBILE DEVICE SECURITY. WHAT IS MOBILE DEVICE SECURITY? Mobile Devices  Smartphones  Laptops  Tablets  USB Memory  Portable Media Player  Handheld.

MOBILE DEVICE SECURITY. WHAT IS MOBILE DEVICE SECURITY? Mobile Devices  Smartphones  Laptops  Tablets  USB Memory  Portable Media Player  Handheld.
TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones Presented By: Steven Zittrower William Enck ( Penn St) (Duke)

TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones Presented By: Steven Zittrower William Enck ( Penn St) (Duke)
Authors: William Enck The Pennsylvania State University Peter Gilbert Duke University Byung-Gon Chun Intel Labs Landon P. Cox Duke University Jaeyeon Jung.

Authors: William Enck The Pennsylvania State University Peter Gilbert Duke University Byung-Gon Chun Intel Labs Landon P. Cox Duke University Jaeyeon Jung.
BotNet Detection Techniques By Shreyas Sali

BotNet Detection Techniques By Shreyas Sali
IT security Sherana Kousar 11a/ib1  A virus is a file written with the intention of doing harm, or for criminal activity  Example of viruses are: 

IT security Sherana Kousar 11a/ib1  A virus is a file written with the intention of doing harm, or for criminal activity  Example of viruses are: 
Malware  Viruses  E-mail Virus  Worms  Trojan Horses  Spyware –Keystroke Loggers  Adware.

Malware  Viruses  Virus  Worms  Trojan Horses  Spyware –Keystroke Loggers  Adware.

Similar presentations

Ads by Google