Presentation is loading. Please wait.

Presentation is loading. Please wait.

PHISHING AND ANTI-PHISHING TECHNIQUES Sumanth, Sanath and Anil CpSc 620.

Published byRachelle Beals Modified over 9 years ago

Similar presentations

Presentation on theme: "PHISHING AND ANTI-PHISHING TECHNIQUES Sumanth, Sanath and Anil CpSc 620."— Presentation transcript:

1 PHISHING AND ANTI-PHISHING TECHNIQUES Sumanth, Sanath and Anil CpSc 620

2 Email Message Subject: CONFIRM YOUR ACCOUNT Reply-To: “CLEMSON.EDU SUPPORT TEAM" From: "CLEMSON.EDU SUPPORT TEAM“ Date: Tue, 1 Dec 2009 17:42:05 -0400 To: Dear CLEMSON.EDU Webmail user, This mail is to inform all our {CLEMSON.EDU } webmail users that we will be maintaining and upgrading our website in a couple of days from now to a new link. As a Subscriber you are required to click on the link below and login to check if you have access to the new link. Click Here: www.webmail.clemson.eduwww.webmail.clemson.edu Failure to do this will immediately will render your email address deactivated. Thank you for using CLEMSON.EDU. CCIT SUPPORT TEAM

3 What is Phishing?  Phishing scams are typically fraudulent email messages or websites appearing as legitimate enterprises (e.g., your university, your Internet service provider, your bank).  These scams attempt to gather personal, financial and sensitive information.  Derivation of the word “phishing”.

4 How to phish?  Compromised Web servers – Email and IM  Port Redirection  Botnets  Key loggers

5 Compromised Web Servers Attacker Search for Vulnerable Web servers Install phishing websites Send Bulk Email Compromised Web Server Found!!

6 Port Redirection  Server is compromised and a program is loaded  All the port 80 ie., http requests are redirected to the attacker’s server  Software known as ‘redir’  Execute the software using: redir --lport=80 –l addr= -cport=80 -caddr=IP addr attacker

7 Using Botnets  Botnets are computers infected by worms or Trojans and taken over surreptitiously by hackers and brought into networks to send spam, more viruses, or launch denial of service attacks.  Remotely controlled by the attacker. SQL Injection attacks

8 Attacker Server http request with sql query Attack the server with some queries to drop the tables: http://localhost/products.asp?productId=0 or 1=1 SQL pattern matching: like '%admin%'

9 Keyloggers  Keyloggers are designed to monitor all the key strokes  Hardware  Software  Modified to extract personal information

10 Current Statistics Source: http://www.avira.com/

11 Anti-phishing  Ways:  Browser Capabilites  Desktop Agents  Token based  Digitally Signed Email  Domain Monitoring Client Level Server Level Enterprise Level

12 Browser Capabilites  Disable pop ups  Disable Java runtime support  Prevent the storage of non-secure cookies  Ensure that downloads are checked by anti-virus software  Eg: Mozilla Firefox Verification

13 Browser Capabilites

14 Desktop Agents  Install Anti-virus software which can prevent phishing  Personal IDS  Firewall  Toolbars – Google, Yahoo, NetCraft

15 Token based Authentication Token based Authentation

16 Digitally Signed Email SMTP Sender Mail Server Recipient Sender’s Cert CA Server Validate Sender’s Certificate

17 Gmail - Verification

18 Domain Monitoring  Monitor the registration of Internet domains relating to their organisation and the expiry of corporate domains  Google - Safe Browsing API  www.phishtank.com www.phishtank.com

19 References  Honeynet Projecy – http://www.honeynet.orghttp://www.honeynet.org  The Phishing Guide - Understanding and Preventing Phishing attacks  Justice Department - http://www.justice.gov/http://www.justice.gov/  Statistics - http://www.avira.com/http://www.avira.com/  Cross-site scripting attacks – http://www.wikipedia.org/http://www.wikipedia.org/  Images from PayPal, Gmail  Demo - Clemson Webmail – Only for Ethical Hacking  RSA Token Authentication - http://www.entrust.comhttp://www.entrust.com

20 Thank You !!!!

Download ppt "PHISHING AND ANTI-PHISHING TECHNIQUES Sumanth, Sanath and Anil CpSc 620."

Similar presentations

TrustPort Net Gateway Web traffic protection. WWW.TRUSTPORT.COM Keep It Secure Contents Latest security threats spam and malware Advantages of entry point.

TrustPort Net Gateway Web traffic protection. Keep It Secure Contents Latest security threats spam and malware Advantages of entry point.
What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via

What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via
By Hiranmayi Pai Neeraj Jain

By Hiranmayi Pai Neeraj Jain
7 Effective Habits when using the Internet Philip O’Kane 1.

7 Effective Habits when using the Internet Philip O’Kane 1.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Malicious Attacks By Chris Berg-Jones, Ethan Ungchusri, and Angela Wang.

Malicious Attacks By Chris Berg-Jones, Ethan Ungchusri, and Angela Wang.
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing Email that bites Paying for Privacy Pirates.

MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing that bites Paying for Privacy Pirates.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.

Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.
Phishing – Read Behind The Lines Veljko Pejović

Phishing – Read Behind The Lines Veljko Pejović
The OWASP Foundation OWASP Chennai 2007 Phishing.

The OWASP Foundation OWASP Chennai Phishing.
Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.

Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.
Quiz Review.

Quiz Review.
Practical PC, 7 th Edition Chapter 9: Sending E-mail and Attachments.

Practical PC, 7 th Edition Chapter 9: Sending and Attachments.
MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 LO1 Describe information technologies that could be used in computer.

MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 LO1 Describe information technologies that could be used in computer.
How It Applies In A Virtual World

How It Applies In A Virtual World
Norman SecureSurf Protect your users when surfing the Internet.

Norman SecureSurf Protect your users when surfing the Internet.
Technology ICT Option: Email. Email Electronic mail is the transmission of mainly text based messages across networks This can be within a particular.

Technology ICT Option: . Electronic mail is the transmission of mainly text based messages across networks This can be within a particular.
Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.

Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.

Similar presentations

Ads by Google