Presentation is loading. Please wait.

Presentation is loading. Please wait.

SLAC Computer Security Annual Safety and Security Briefing 2006.

Published byIsmael Purnell Modified over 9 years ago

Similar presentations

Presentation on theme: "SLAC Computer Security Annual Safety and Security Briefing 2006."— Presentation transcript:

1 SLAC Computer Security Annual Safety and Security Briefing 2006

2 Presenters  Teresa Downey  Spear Phishing & Web Security Markers  Heather Larrieu  Everything Else…

3 Spear Phishing No dangerous pointy objects involved… No dangerous pointy objects involved… but they ARE hunting YOU! but they ARE hunting YOU!

4 Spear Phishing – Step by Step 1. A targeted company is researched by scammer 2. Emails and websites forged – easy to do!! 3. HTML emails sent 4. They need you to click on the fake URL 5. There goes your $$$ You cannot see true URL in HTML email

5 Plain Text Can Prevent Scam  Scammers don’t want us to use plain text True URL is normally displayed in plain text email

6 Spear Phishing – Last Step Security markers are missing… where is https ? where is lock in border? Just a useless picture of a lock to trick you Faking web sites is very easy! Not a SLAC website!

7 Secure Website Markers Internet ExplorerFirefox

8 What’s Behind That Lock?  Scammer can just create or buy a certificate  Look at URL closely, these are invalid:  http://www.slac.standford.edu  http://0x47763ae7/www.slac.stanford.edu  Might get error:

9 Avoiding Phishing Scams 1.Read ALL e-mail in plain text  Convert to HTML with one click if you trust the e- mail 2.Look for valid URL in e-mail and browser  Does it match where you intended to be? 3.Look for security markers in browser window 4.Stop if you get any Security Alerts 5.Do they REALLY need this information??

10 Regarding SLAC Websites…  SLAC HR wouldn’t ask for bank info via a web page  If you are suspicious of web site then call the SLAC Department directly

11 Everything else… Well, okay at least… scammer’s motivations PIIwireless perils of ordering pizza

12 Making Money - Method 1 Adware and Spyware Tracking cookies Spam usually touting counterfeit goods Sell Something

13 Adblock  Firefox: Tools -> Adblock -> Preferences  IE: Nothing built-in. “Adblock” for IE is actually adware so don’t go get it.

14 Browser Configuration  IE: Tools -> Internet Options  Firefox: Tools -> Options

15 Javascript for Profiling

16 Making Money - Method 2 Scams, Fraud, Identity Theft Nigerian 419 scams Click-through fraud Steal some Personally Identifiable Information

17 Personally Identifiable Information What people are doing with stolen PII ?  Credit card, Bank, Loan fraud  Phone or Utilities fraud  Applying for Government documents or benefits  Magazine subscription (~0.2 % each year!) Scope of the problem – FTC data (2003-2005)  10 million victims of identity theft in U.S.  Victims spend an average of $1,500 and 175 hours to recover  Not including losses by vendors, merchants, or financial institutions PII is essentially data that can be used to facilitate identity theft

18 Making Money - Method 3 Be the “Middleman”

19 Botnets 1.Herder deploys malware 2. Infected PCs log into an IRC server or other communications medium, forming a network with a central C&C structure 3. Spammer purchases access to botnet 4. Spammer sends instructions to the botnet 5. The infected PCs send the spam messages from Wikipedia on Botnets

20

21

22 POST http://www.XXXXXXXXXXXX.com:80/Software/ShoppingCart/CheckOut.asp?CatID=01&CatName=X XXXXXXX%20XXXXXX%20XX%20XXX%20XXXX&VisitorID=1 HTTP/1.1 Host: www.XXXXXXXXXXXXcom User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.6) Gecko/20060728 Firefox/1.5.0.6 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q =0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 300 Proxy-Connection: keep-alive Referer: http://www.XXXXXXXXXXX.com/Software/ShoppingCart/CheckOut.asp?CatID=01&CatName=XXXX XXXX%20XXXXXX%20XX%20XXX%20XXXX&VisitorID=1 Cookie: ASPSESSIONIDSCQDDCRC=IIBBDKKBCAOBKBIGABPBHNAI; ASPSESSIONIDCSDTABCC=KCGNNPKBABOIEJKIPBHEJHAH; ASPSESSIONIDSCTDADRC=OAOJABLBFFJKLGIDHPLLMDGM Content-Type: application/x-www-form-urlencoded Content-length: 268 LName=AAAAAAA&FName=AAAAAAA&TelePhone=888888888&ModeOfPayment=2&R em=IS+THIS+SECURE%3F+&CreditCardType=3&CreditCardNo=123456781234567& ExpiryMonth=6&ExpiryYear=2009&VisitorID=1&CatID=01&CatName=XXXXXXX+XXX XX+XX+XXX+XXXX&hLName=&hFName=&hTelephone=&hCreditCardNo=&hRem=

23 Wireless

24 Final Thoughts  Report all suspicious activity  Send email to: security@slac.stanford.edu security@slac.stanford.edu  Urgent: call HelpDesk at x4357  See Teresa, Heather, Bob Cowles, Gary Buhrmaster, John Halperin and Steffen Luitz at Computer Security table in breezeway for your questions

Download ppt "SLAC Computer Security Annual Safety and Security Briefing 2006."

Similar presentations

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
How to protect yourself, your computer, and others on the internet

How to protect yourself, your computer, and others on the internet
Joe Klemencic 2006. Spyware is a type of program that watches what users do with their computer and then sends that information over the internetprograminternet.

Joe Klemencic Spyware is a type of program that watches what users do with their computer and then sends that information over the internetprograminternet.
Working with the Internet

Working with the Internet
Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via

What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via
Internet Safety Gleneagles Computer Club February 16, 2015 by Deborah Benson.

Internet Safety Gleneagles Computer Club February 16, 2015 by Deborah Benson.
1 Identity Theft and Phishing: What You Need to Know.

1 Identity Theft and Phishing: What You Need to Know.
BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.

BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
What is identity theft, and how can you protect yourself from it?

What is identity theft, and how can you protect yourself from it?
1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.

1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.
Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.

Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
Chapter 7: The Web and E-mail1 The Web and E-mail Chapter 7.

Chapter 7: The Web and 1 The Web and Chapter 7.
Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.

Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.
SLAC Computer Security Annual Safety and Security Briefing 10/11/2007 Teresa Downey.

SLAC Computer Security Annual Safety and Security Briefing 10/11/2007 Teresa Downey.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Annual Safety & Security Briefing - 9/22/04 Teresa Downey – SLAC Computer Security Group & SCS Applications Group.

Annual Safety & Security Briefing - 9/22/04 Teresa Downey – SLAC Computer Security Group & SCS Applications Group.

Similar presentations

Ads by Google