Automated Targeted Attacks
description
Transcript of Automated Targeted Attacks
![Page 1: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/1.jpg)
Durban, South Africa, 8 July 2013
Automated Targeted Attacks
Alexandru Catalin Cosoi,Chief Security Strategist,
Bitdefender [email protected]
ITU Workshop on “Countering and Combating Spam”
(Durban, South Africa, 8 July 2013)
![Page 2: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/2.jpg)
Spam Breakdown by Type
Durban, South Africa, 8 July 2013 2
![Page 3: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/3.jpg)
Attachments Breakdown by Type
Durban, South Africa, 8 July 2013 3
![Page 4: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/4.jpg)
MiniDuke attack
Durban, South Africa, 8 July 2013 4
![Page 5: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/5.jpg)
Antispam Tech Maturity
Durban, South Africa, 8 July 2013 5
![Page 6: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/6.jpg)
Questions
What is your name or nickname?What are your interests?Who do you work for?Who are your friends/colleagues?What is you job title? Who is you manager/CEO/director?Who are your family members?Are you married? With whom?
Durban, South Africa, 8 July 2013 6
![Page 7: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/7.jpg)
Our Online Identity
Durban, South Africa, 8 July 2013 7
![Page 8: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/8.jpg)
Google Search
Durban, South Africa, 8 July 2013 8
![Page 9: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/9.jpg)
123people.com search
Durban, South Africa, 8 July 2013 9
![Page 10: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/10.jpg)
Pipl.com search
Durban, South Africa, 8 July 2013 10
![Page 11: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/11.jpg)
After 3 searches
Name: Alexandru Catalin CosoiCompany: BitdefenderJob Title: Chief Security StrategistEmail: [email protected] media accounts: all, including LinkedIn profile and foursquare checkinsWife’s email address
Durban, South Africa, 8 July 2013 11
![Page 12: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/12.jpg)
Example
Dear Alexandru Cosoi,
We tried contacting your wife Carmen in regard to participation to the 19th Annual Conference of [whatever]. Is [wife’s email] her correct email address?
Can you please forward the attached PDF with the official invite?
Durban, South Africa, 8 July 2013 12
![Page 13: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/13.jpg)
Conclusions
Social engineering works. Social engineering can be automated We need to understand the addiction to social networks and the fact that users will post information about themselves onlineEducation can work. It’s our duty to educate both users and employees about social engineering and how their own data can turn against them.
Durban, South Africa, 8 July 2013 13
![Page 14: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/14.jpg)
More Conclusions
Spam content will become personal and uniqueContent filtering technologies will start having a hard time detecting all samplesUsers might consider antispam filters when detecting highly social engineered spam messages
Durban, South Africa, 8 July 2013 14
![Page 15: Automated Targeted Attacks](https://reader036.fdocuments.in/reader036/viewer/2022062322/56814624550346895db32e6d/html5/thumbnails/15.jpg)
Questions?
Durban, South Africa, 8 July 2013 15