Presentation is loading. Please wait.

Presentation is loading. Please wait.

Phishing with Worms Twenty Years of Digital Threats—What Have We Learned and Where Are We Now?

Published byAmice Bethany Poole Modified over 8 years ago

Similar presentations

Presentation on theme: "Phishing with Worms Twenty Years of Digital Threats—What Have We Learned and Where Are We Now?"— Presentation transcript:

1 Phishing with Worms Twenty Years of Digital Threats—What Have We Learned and Where Are We Now?

2 WORMS The worst and the worser

3 Is it a worm, virus, or trojan? Malware is a general term. Trojans hide as another program.  Trojan disguises itself as another program with value.  Might disguise itself as a free tool for editing photos. Virus hides within another program.  Infected program may or may not still operate after the attack. Worms hide without disguise.  Worm is the entity.  It self-installs.

4 Back “in the day” Worms travelled by floppy. Transmission rates were slow. Still some worms became widespread.

5 Assimulation Worm infected machines assemble themselves into collective “botnets” capable of sending spam, and crunching passwords.

6 The Collectives BotnetCollective Spam rate Name Machines (billions/day)‏ Conficker20 million 10 Kraken500,000 9 Srizbi450,000 60 Bobax185,000 9 Rustock150,000 30 Cutwail125,000 16 Storm85,000 (peak 1.5 million) 3

7 What to do with a botnet Spam engine Password/Encryption hacking Bank fraud, identity theft Criminal computing enterprises Decentralized computing Huge bandwidth potential More computing cycles than top ten mainframes

8 Storm botnet Evades tracking, morphs Takes defensive measures – known to launch denial of service attack against suspected investigators Summer of 2007, Storm forces Estonia “off the web.” Key servers for the baltic nation moved offline for extended period included government, banking, media, and police sites. Once involved 1.5 million computers

9 Conficker : new guy on the block DateEstimated Infections Dec 1, 2008500,000 Dec 2, 2008less than million Dec 4, 20081.2 million Dec 5, 20083.5 million................................ Jan 17, 2009 9 million Jan 23, 200910 million Jan 26, 200915 million

10 Conficker Payload Delivery FlashDrive  Auto run  Default action Autorun / AutoPlay  Hard to turn off  Registry editing Network  Password guessing  Weak passwords

11 Microsoft's Part Announced a fix in October Apparently not everyone installed the update Malicious Software Removal Tool Worm may block  access to MS Update  antivirus from updates  Windows Defender or turn it off

12 What does the worm do? We don't know It seems to be waiting for orders

13 What can you do? Update Windows Regularly Apply MS08-067 Disable Autoplay / AutoRun Run the Malicious Software Removal tool available from www.update.microsoft.com

14 You might have conficker if... You cannot connect to websites or online services that contain the following strings: virus spyware malware rootkit defender microsoft symantec norton mcafee trendmicro sophos panda etrust networkassociates computerassociates f- secure kaspersky jotti f-prot nod32 eset grisoft drweb centralcommand ahnlab esafe avast avira quickheal comodo clamav ewido fortinet gdata hacksoft hauri ikarus k7computing norman pctools prevx rising securecomputing sunbelt emsisoft arcabit cpsecure spamhaus castlecops threatexpert wilderssecurity windowsupdate

15 You might have conficker if... The following services are disabled or fail to run: Windows Security Center Service Windows Update Auto Update Service Background Intelligence Transfer Service Windows Defender Error Reporting Service Windows Error Reporting Service

Download ppt "Phishing with Worms Twenty Years of Digital Threats—What Have We Learned and Where Are We Now?"

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Primary Threats to Computer Security

Primary Threats to Computer Security
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
SECURITY CHECK Protecting Your System and Yourself Source:

SECURITY CHECK Protecting Your System and Yourself Source:
7 Effective Habits when using the Internet Philip O’Kane 1.

7 Effective Habits when using the Internet Philip O’Kane 1.
Warren Toomey North Coast TAFE Port Macquarie campus

Warren Toomey North Coast TAFE Port Macquarie campus
Starting up a Security Class for Students Created by: Beth Byrnes Larry James Zac Reimer For Information Services University of Nebraska-Lincoln.

Starting up a Security Class for Students Created by: Beth Byrnes Larry James Zac Reimer For Information Services University of Nebraska-Lincoln.
1 Protecting Your Computer Internet Annoyances (Already done in Chapter 3) Spam Pop-ups Identity theft phishing hoaxes Spyware.

1 Protecting Your Computer Internet Annoyances (Already done in Chapter 3) Spam Pop-ups Identity theft phishing hoaxes Spyware.
Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.

Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.
By Joshua T. I. Towers. 13.3 $13.3 billion was the direct cost of malware for business in 2006 “direct costs are defined as labor costs to analyze, repair.

By Joshua T. I. Towers $13.3 billion was the direct cost of malware for business in 2006 “direct costs are defined as labor costs to analyze, repair.
Protecting Yourself Online. VIRUSES, TROJANS, & WORMS Computer viruses are the common cold of modern technology. One e-mail in every 200 containing.

Protecting Yourself Online. VIRUSES, TROJANS, & WORMS Computer viruses are the "common cold" of modern technology. One in every 200 containing.
What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:

What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:
Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware.

Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware.
Use computer and internet safely Dave Dai 2008. Computer security Malware Virus: a program that copies itself and infect a computer without permission.

Use computer and internet safely Dave Dai Computer security Malware Virus: a program that copies itself and infect a computer without permission.
Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.

Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.
INTERNET THREATS AND HOW TO PROTECT YOUR COMPUTER -BRIAN ARENDT.

INTERNET THREATS AND HOW TO PROTECT YOUR COMPUTER -BRIAN ARENDT.
Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.

Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.
EICAR 2009, 12 May 2009 Checkvir Realtime Anti-Malware Testing and Certification Dr. Ferenc Leitold, Veszprog Ltd.

EICAR 2009, 12 May 2009 Checkvir Realtime Anti-Malware Testing and Certification Dr. Ferenc Leitold, Veszprog Ltd.
Chapter Nine Maintaining a Computer Part III: Malware.

Chapter Nine Maintaining a Computer Part III: Malware.
Threats and ways you can protect your computer. There are a number of security risks that computer users face, some include; Trojans Conficker worms Key.

Threats and ways you can protect your computer. There are a number of security risks that computer users face, some include; Trojans Conficker worms Key.

Similar presentations

Ads by Google