Presentation is loading. Please wait.

Presentation is loading. Please wait.

Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title,

Similar presentations


Presentation on theme: "Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title,"— Presentation transcript:

1 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Why does the disaster always strike in your city? Evolution of social networking threats tefan Tănase Senior Regional Researcher, EEMEA Global Research and Analysis Team Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010

2 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Intro Evolution of social networks Evolution of social networking threats – The web as the main infection vector – What to expect from 2010? – Targeted attacks Questions and answers – You – Ryan Naraine Overview

3 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Intro – let’s stand up! “White”, “black”, “pink”… “not wearing any”

4 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Avatar Have you seen Avatar? In 3D? Twice? With both of your girlfriends? At the same time? What was the vulnerability presented in Avatar? Trusting technology to win against humans.

5 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Evolution of social networks In terms of traffic:

6 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Evolution of social networks In terms of money:

7 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Total number of malicious software samples that are targeting social networks: +100.000 Evolution of social networks

8 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 As social networks continue to grow, the threats associated with them will obviously escalate. – Old threats in old applications - it’s sooo 2009! – Old threats in new applications - predictable – New threats in old applications - more/less predictable – New threats in new applications - totally unpredictable What to expect from 2010?

9 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 What’s out there right now Infected websites out of a pool of 300K Source: Kaspersky Lab Analytical article - http://www.viruslist.com/en/analysis?pubid=204792089 http://www.viruslist.com/en/analysis?pubid=204792089

10 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 What’s out there right now

11 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 1 in 150 websites is currently spreading infections – Legitimate websites, with legitimate traffic – Breaches caused by compromised FTP accounts – Injected with iframes or javascripts that deliver exploits – Visitors not running the latest versions of plug-ins and browsers get infected – FTP passwords are extracted from the infected computers Everything that’s out there… is out there anyway. So let’s talk about the future. What’s out there right now

12 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 What to expect from 2010?

13 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Old threats, new applications Vulnerabilities in the applications themselves – Google Wave XSS is a very good example Unwanted content: spam, phishing Malicious programs: more space to spread them Koobface: development of new modules – to target the new applications once they become popular What to expect from 2010?

14 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 What to expect from 2010?

15 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 New threats, old applications Exploiting the new features as they are being added Evolution of Koobface: – Start attacking more experienced users – AV detection rates will really start to matter – Encrypted config files (plain text at the moment) – P2P architecture (server – client at the moment) – Use of drive-by downloads, not just social engineering What to expect from 2010?

16 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 New threats, new applications What to expect from 2010?

17 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 So much personal information becomes public on social networks right now Advertisers are already doing it: targeted ads – Age, gender, location, interests, work field, browsing habits, relationships Targeted ads? Targeted attacks are already out there But social networks are enabling the cybercriminals to start delivering automated targeted attacks The personal data is there. Next step? Automation. Geographical IP location has been around for a while Automatic language translation services are becoming better Personal interests & tastes are public (ie: trending topics) Targeted attacks become mainstream

18 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Geo targeting example

19 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Language targeting example

20 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Interests targeting example

21 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 Targeted attacks become mainstream

22 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010 What’s next? The number and complexity of threats that exploit web 2.0 platforms will continue to grow Social networks are opening up new ways for automated targeted attacks against individuals Localized, contextualized, personalized It will be very hard for social networks to do better: unfortunately, their business means usability, not security Attacks will also shift towards other platforms (Mac)

23 Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title, place) Thank you! Questions? stefant@kaspersky.ro twitter.com/stefant Stefan Tanase Senior Regional Researcher, EEMEA Global Research and Analysis Team Kaspersky Lab International Press Tour “Cyberthreat Landscape 2009: Outcomes, Trends and Forecasts”, Moscow, January 28-31, 2010


Download ppt "Click to edit Master title style Click to edit Master text styles –Second level Third level –Fourth level »Fifth level June 10 th, 2009Event details (title,"

Similar presentations


Ads by Google