Presentation is loading. Please wait.

Presentation is loading. Please wait.

Personal Identity Theft in the Web-based Business World Presenter – Rick Weatherspoon Xtreme Computing, LLC.

Published byAdrian Cole Modified over 9 years ago

Similar presentations

Presentation on theme: "Personal Identity Theft in the Web-based Business World Presenter – Rick Weatherspoon Xtreme Computing, LLC."— Presentation transcript:

1 Personal Identity Theft in the Web-based Business World Presenter – Rick Weatherspoon Xtreme Computing, LLC

2 2 June 2006 Agenda Definition of ID Theft ID Theft Statistics Business Losses Types of Web-based ID Theft –Hacking & Attacking –Phishing –WarXing/War Driving ID Theft Reporting Questions

3 2 June 2006 Identity Theft Definition The Deliberate Assumption of Another Person's Identity, Usually to Gain Access to their Finances, or Frame Them for a Crime

4 2 June 2006 ID Theft Statistics (National) Fastest Growing Crime in US U.S. Identity Fraud Crimes now total $52.6 Billion Annually * Per-Victim Total of $5,686 Affects Roughly 9.3 Million Individuals in US Yearly * Source – 2005 Study by Javelin Strategy & Research

5 2 June 2006 ID Theft Statistics (State) 2,909 Complaints Filed in Oregon State (2004) Oregon State Ranks within the Top 10 (9 th ) Complaints Rose 20% More than in 2003

6 2 June 2006 ID Theft Statistics (County) * Source – Wallowa County Sheriff; May 2006

7 2 June 2006 Business Losses Due to ID Theft Between May 2004 and May 2005, 1.5 Million Computer Users Lost $929 Million on ONLY Phishing Scams US Businesses Lose an Estimated $2 Billion Per Year on Clients who are Victims Businesses Lose an Average of $4,800 per Victim * *Source – Washington State AGO Identity Theft Advisory Panel; January 2006

8 2 June 2006 Types of Web-based ID Theft Hacking & Attacking Phishing WarXing/War Driving

9 2 June 2006 Web-based Hacking & Attacking Authentication Hacking –Browsing –Cookie Theft –Session Hijacking –Network Sniffers –Password Cracking –Dictionary Attacks Google Hacking SQL Injection Directory Traversal

10 2 June 2006 Phishing Attempts to Fraudulently Acquire Sensitive Consumer Info Via False Web Pages, Emails, IMs, FAX, VOIP Term Arises from Using Sophisticated Lures to “Fish” for Consumer’s Financial Data & Passwords Recently Targeting Banks, Online Payment Services, IRS Letters Common Tricks Include Misspelled URLs, use of SubDomains, Altering Address Bars, Cross Site Scripting Recent Scam Left Voice Messages to Call Bank with Account & PIN Numbers over a VOIP Network

11 2 June 2006 Citibank Phishing Email Example

12 2 June 2006 Citibank Phishing Web Link

13 2 June 2006 Citibank Phishing – User Garbled URL

14 2 June 2006 Citibank Phishing – Invalid Credit Card Number

15 2 June 2006 Citibank Phishing Source Search with Whois Utility: IP : 219.148.0.0 - 219.148.159.255 netname: CHINATELECOM-he descr: CHINANET hebei province network descr: China Telecom descr: No.31,jingrong street descr: Beijing 100032 country: CN mnt-by: MAINT-CHINANET changed: hostmaster@ns.chinanet.cn.net 20030820 source: APNIC

16 2 June 2006 WarXing/War Driving Searching for Wireless Networks and Access Points by Moving Vehicle/Bike (WLAN, WiFi HotSpots) Captures Information Packets with WiFi-based equipment (Laptop/PDA) Software Freely Available to Monitor, Capture, and Analyze Clear Text and Encrypted Data (NetStumbler, AirSnort, WEPCracker, etc.) Majority of Wireless Networks Use Default Settings (SSIDs, Passwords, Encryption Keys, etc.) Legality of War Driving Not Clearly Defined in the US

17 2 June 2006 Wireless Network Diagram

18 2 June 2006 Reporting of ID Theft FBI/Internet Fraud Complaint Center –1.800.251.3221 –www.ifccfbi.gov Federal Trade Commission –1.877.438.4338 –www.consumer.gov/idtheft/ Internet Crime Complaint Center –www.ic3.gov/complaint Oregon State Department of Justice –http://www.doj.state.or.us/ Wallowa County Sheriff Department –541.426.3131

19 Questions? www.xtremecomputing.us/briefings.html

Download ppt "Personal Identity Theft in the Web-based Business World Presenter – Rick Weatherspoon Xtreme Computing, LLC."

Similar presentations

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.
BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.

BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.
PRIORITIES. AARP Tax-Aide Priorities BudgetsTraining E-Filing Reimbursements Security Accuracy Developing Leaders CertificationDonations Recruitment.

PRIORITIES. AARP Tax-Aide Priorities BudgetsTraining E-Filing Reimbursements Security Accuracy Developing Leaders CertificationDonations Recruitment.
Protect Yourself Against Phishing. The good news: The number of US adult victims of identity fraud decreased from 9.3 million in 2005, to 8.4 million.

Protect Yourself Against Phishing. The good news: The number of US adult victims of identity fraud decreased from 9.3 million in 2005, to 8.4 million.
Identity Theft Someone steals your personal information for his/her own gain It’s a crime!

Identity Theft Someone steals your personal information for his/her own gain It’s a crime!
Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.

Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.

How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.
Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.

Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.
Bsharah Presentation Threats to Information Security Protecting Your Personal Information from Phishing Scams.

Bsharah Presentation Threats to Information Security Protecting Your Personal Information from Phishing Scams.
By Ashlee Parton, Kimmy McCoy, & Labdhi Shah

By Ashlee Parton, Kimmy McCoy, & Labdhi Shah
Internet Phishing Not the kind of Fishing you are used to.

Internet Phishing Not the kind of Fishing you are used to.
Malicious Attacks By Chris Berg-Jones, Ethan Ungchusri, and Angela Wang.

Malicious Attacks By Chris Berg-Jones, Ethan Ungchusri, and Angela Wang.
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
Personal Identity Theft in the Web-based Business World Presenter – Rick Weatherspoon Xtreme Computing, LLC.

Personal Identity Theft in the Web-based Business World Presenter – Rick Weatherspoon Xtreme Computing, LLC.
Wardriving 7/29/2004 The “Bad Karma Gang”. Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake.

Wardriving 7/29/2004 The “Bad Karma Gang”. Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake.
October is National Cyber Security Month OIT and IT providers are launching an awareness campaign to provide tips and resources to help you stay safe online.

October is National Cyber Security Month OIT and IT providers are launching an awareness campaign to provide tips and resources to help you stay safe online.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Phishing, Pharming, and Spam Margaret StewartTuesday, Oct. 21, 2006.

Phishing, Pharming, and Spam Margaret StewartTuesday, Oct. 21, 2006.

Similar presentations

Ads by Google