Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

30
Cyber Cyber Fraud Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

TAGS:

Transcript of Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 1: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Cyber Cyber FraudFraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 2: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Pioneer in AI based website protection

First business-logic security solution

Website misuse detection

User behavior profiling

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 3: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Hybrid Leak Sensor

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 4: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

About Me

Founder: Hybrid Security

Blogger: Chapters In Web Security

Hacker: MultInjector

WebTuff

R.U.D.Y

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 5: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Cyber Fraud

Identity and CC fraud

Automated bot activities

Business logic abuse

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 6: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Citibank

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 7: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Sony

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 8: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

AT&T

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 9: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

AT&T

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 10: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Exponential growth Geographic clusters Mutual website-client infection

Bot Epidemic

Infections - McAfee Distribution - Microsoft

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 11: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Man-In-The-Browser

“…Automated transaction monitoring or anomaly detection and response could have prevented many of the frauds…” FFIEC

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 12: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Business Logic Flows

Login

Register

Main Page

RegistrationDetails

Item Search Results

VerifyEmail

LandAdd To

Shopping Cart

Payment &Checkout

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 13: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Missing / additional parametersVulnerable password recoveryFalse registrationInvalid parametersInvalid business workflowsGuessable session identifiersForceful browsing

Business Logic Flaws

Highly Illogical

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 14: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Target Victims

GovernmentAirlines

FinancialGaming

E-CommerceSubscription Services

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 15: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Commission manipulationSpread tamperingTransaction time lingeringLogic fuzzing

Forex Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 16: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

0.01 ₪ ~ 0.00168144044 £

Forex Fraud

Normal business logic:

After 2 digit currency rounding:

Kosher

500% more satisfaction for the buck!!

1,000,000 transactions * 0.00168144044 £ = 1681.44044 £ ~ 10,000 ₪

1,000,000 transactions * 0.01 £ =10,000 £ ~ 60,000 ₪

( , April 8 2012 )

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 17: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Client-side logic flaws: Flash / JS / Java / SilverlightDigital goods theftPoker botsPlayer collusionScreen scraping

Online Gaming Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 18: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Online Gaming Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 19: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Using GHDB / Shodan to hack into open PBXAuthentication bypass / unpaid content downloadSubscriber PII scraping

Telecom Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 20: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Browser “Helper” ObjectsParameter injectionEvil BankersPump & DumpAccount traversal

E-Banking Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 21: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Concerts, sports, flights, moviesTicket scalping botsLower vendor marginsSeat locking & defacement

Ticket Order Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 22: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Web 2.0 spam botsSocial scrapersPredators & impostersPhishingLikejacking

Social Network Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 23: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Card-Not-PresenteWallet Pick-pocketing(Google, PayPal)Auction botsAffiliate click fraudStolen goods

E-Commerce Fraud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 24: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Data mining / Industrial Espionage / Email harvestingBrowser COM API + JavaScript injectionScrape-As-A-Service:ScraperWiki

Spiders & Scrapers

Kosher

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

https://scraperwiki.com/
Page 25: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Black & white lists

Dynamic web page profiling

Heuristic behavior analysis

Technology Evolution

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 26: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

HybridAppliance

Hybrid Telepath

Hybrid Cloud

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 27: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Behavior Analysis

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 28: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Hybrid Architecture

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 29: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Reverse Proxies (F5, Zeus, Cisco) SIM/SOC (HP, IBM, Symantec) Firewalls (Juniper, Checkpoint, Cisco, Fortinet) Analytics (Clicktale, GhostRec, LivePerson) Sniffers (Radware, Metronome, Sourcefire) Authentication (SafeNet, Microsoft, Oracle)

3rd Party Integration

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Page 30: Cyber Fraud Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.

Web: www.hybridsec.comEmail: [email protected]: +1 (650) 319-7389

Copyright © Hybrid Application Security Ltd. (2010-2012). All Rights Reserved.


Cyber Awareness, Scams & Fraud · Cyber Awareness, Scams & Fraud Cyber Protect Officer - Samantha HANCOCK (FHQ) ... • Ransomware generally occurs when a link in an email or an email

Cyber Awareness, Scams & Fraud · Cyber Awareness, Scams & Fraud Cyber Protect Officer - Samantha HANCOCK (FHQ) ... • Ransomware generally occurs when a link in an email or an email

Legal connect - fighting cyber fraud

Legal connect - fighting cyber fraud

Cyber fraud in banks

Cyber fraud in banks

Cyber Threats and Cyber Deception in Hybrid Warfare

Cyber Threats and Cyber Deception in Hybrid Warfare

Cyber Fraud and Risk Management By Bolaji Bankole

Cyber Fraud and Risk Management By Bolaji Bankole

Fraud Protections, Cyber-Theft and Controls

Fraud Protections, Cyber-Theft and Controls

Cyber Crime, FinanCial Fraud and money launderingacceluscdn.thomsonreuters.com/accelus-pdf/GRC00331-Cybercrime-P… · Cyber Crime, FinanCial Fraud and money laundering: understanding

Cyber Crime, FinanCial Fraud and money launderingacceluscdn.thomsonreuters.com/accelus-pdf/GRC00331-Cybercrime-P… · Cyber Crime, FinanCial Fraud and money laundering: understanding

Digital Security Cyber Security and Fraud Prevention · Digital Security – Cyber Security and Fraud Prevention Citi Online Academy ... Elizabeth Petrie . Director Strategic Analysis

Digital Security Cyber Security and Fraud Prevention · Digital Security – Cyber Security and Fraud Prevention Citi Online Academy ... Elizabeth Petrie . Director Strategic Analysis

9 – Fighting Cyber Fraud with Hadoop

9 – Fighting Cyber Fraud with Hadoop

Cyber fraud a threat to E commerce

Cyber fraud a threat to E commerce

FRAUD & CYBER AWARENESS - FinPro

FRAUD & CYBER AWARENESS - FinPro

Cyber security and fraud - county...CYBER SECURITY AND FRAUD. Major considerations for a proper defense: Local governments don’t have unlimited resources to defend against all cyber

Cyber security and fraud - county...CYBER SECURITY AND FRAUD. Major considerations for a proper defense: Local governments don’t have unlimited resources to defend against all cyber

AGAINST CYBER FRAUD

AGAINST CYBER FRAUD

Fighting cyber fraud with hadoop v2

Fighting cyber fraud with hadoop v2

Cyber security and fraud

Cyber security and fraud

Chapter 5 Cyber Crime: Computer and Internet Fraud.

Chapter 5 Cyber Crime: Computer and Internet Fraud.

Preempting Cyber Fraud: SWIFT Threat Indicator Sharing … · Preempting Cyber Fraud: SWIFT Threat Indicator Sharing Tool ... National Cyber-Forensics & Training Alliance ... Preempting

Preempting Cyber Fraud: SWIFT Threat Indicator Sharing … · Preempting Cyber Fraud: SWIFT Threat Indicator Sharing Tool ... National Cyber-Forensics & Training Alliance ... Preempting

Cyber Fraud Trends Authentication - FIRST · Cyber Fraud Disruptors Antivirus − Stopped static malware − Packers and scrambling is now common practice Windows XP SP2 Firewall

Cyber Fraud Trends Authentication - FIRST · Cyber Fraud Disruptors Antivirus − Stopped static malware − Packers and scrambling is now common practice Windows XP SP2 Firewall

Identifying and Mitigating Cyber Fraud Presentation - FDIC

Identifying and Mitigating Cyber Fraud Presentation - FDIC

Cyber Fraud & Social Engineering - caacm · A History of fraud –In 300 B.C., when a Greek merchant name Hegestratos took out a large insurance policy ... Cyber Fraud Source: Cyber

Cyber Fraud & Social Engineering - caacm · A History of fraud –In 300 B.C., when a Greek merchant name Hegestratos took out a large insurance policy ... Cyber Fraud Source: Cyber