Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Security Session October 24, 2005

Published bySharyl Washington Modified over 5 years ago

Similar presentations

Presentation on theme: "Information Security Session October 24, 2005"— Presentation transcript:

1 Information Security Session October 24, 2005
11/10/2018 Information Security Session October 24, 2005 Bill Eaheart Network Security Coordinator DePaul University NIDS with Snort

2 What is spam? Email advertising for some product or service
Unsolicited Commercial (UCE) Electronic version of junk mail Not necessarily virus or malware 11/10/2018 Information Security

3 How do ‘spammers’ get my email?
11/10/2018 How do ‘spammers’ get my ? Harvesting WebPages Harvesting Newsgroups Guessing Buying lists from other spammers or companies From a mailing list By people themselves Other ways 11/10/2018 Information Security NIDS with Snort

4 Can you limit the amount of spam?
Don't give your address out arbitrarily Check privacy policies Be aware of options selected by default. Use filters Don't follow links in spam messages Disable the automatic downloading of graphics in HTML mail Consider opening an additional account. Don't spam other people 11/10/2018 Information Security

5 What is ‘Phishing’? Scam to steal valuable information – Online Fraud
Attacks use ‘spoofed’ s and fraudulent websites Designed to fool users into divulging personal data – credit card numbers, user ID’s, passwords and social security numbers. Hijack trusted brands of well-known banks, retailers and credit card companies Anti-Phishing Working Group – Up to 5% success rate 11/10/2018 Information Security

6 Why is ‘Phishing’ so popular?
Effective Social Engineering Technique for manipulating people to disclose sensitive information People trust information in s or websites Simple for people to disguise addresses and location of websites 11/10/2018 Information Security

7 Gartner Study STAMFORD, Conn., June 23, 2005 — Increasing reports of lost consumer data files and disclosures of unauthorized access to sensitive personal data are taking a toll on consumers' confidence in online commerce, according to Gartner Inc., the world's largest technology research and advisory firm. A Gartner survey of 5,000 U.S. adults showed that phishing attacks grew at double-digit rates last year in the United States. In the twelve months ending in May 2005, an estimated 73 million U.S. adults who use the Internet said they definitely, or think, they received an average of more than 50 phishing s in the past year. 2.4 million online consumers report losing money directly because of the phishing attacks. Of these, approximately 1.2 million consumers lost $929 million during the year preceding the survey. Survey participants indicated most of the money stolen was repaid by banks and credit cards. 11/10/2018 Information Security

8 How do I spot a Phishing scam?
Attempt to grab your attention Suspicious Can be difficult to tell without research Closely resembles website – same graphics 11/10/2018 Information Security

9 Examples 11/10/2018 Information Security

10 Examples – Bank of America Phish
Target: Bank of America customers Spoofed Sender: Online Banking Goal: Bank Username/Password and ATM card information Visible Link: ‘Sign in to Online Banking’ : Phish site IP Address: 11/10/2018 Information Security

11 Recommended Steps Use Caution/Common Sense - Be suspicious of s asking for sensitive information Reputable organizations will not request information through Never respond to an for personal information Never follow the links in an you suspect might be phishing Use a browser to type in the site mentioned in the Check to see if the site has an announcement about phishing attacks targeting it. Check to see if the privacy policy of the website has a policy about collecting private data. If you determine that a website is legitimate, make sure it encrypts your data by using SSL. 11/10/2018 Information Security

12 How do I report Phishing scams
Federal Trade Commission FBI's Internet Fraud Complaint Center Attacks targeting DePaul University 11/10/2018 Information Security

13 Additional Information
If you think you are a victim to a phishing scam: Anti-Phishing Work group Microsoft Video: Phishing and Identity Theft 11/10/2018 Information Security

14 The End! Thank you Any questions weaheart@depaul.edu 11/10/2018
Information Security

Download ppt "Information Security Session October 24, 2005"

Similar presentations

Cyber Stalking Cyber Stalking Phishing Hacker 1. Never reveal your home address !!! This rule is especially important for women who are business professionals.

Cyber Stalking Cyber Stalking Phishing Hacker 1. Never reveal your home address !!! This rule is especially important for women who are business professionals.
Phishing Scams use spoofed emails and websites as lures to prompt people to voluntarily hand over sensitive information Phishing emails may contain.

Phishing Scams use spoofed s and websites as lures to prompt people to voluntarily hand over sensitive information Phishing s may contain.
The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.
1 Identity Theft and Phishing: What You Need to Know.

1 Identity Theft and Phishing: What You Need to Know.
Protect Yourself Against Phishing. The good news: The number of US adult victims of identity fraud decreased from 9.3 million in 2005, to 8.4 million.

Protect Yourself Against Phishing. The good news: The number of US adult victims of identity fraud decreased from 9.3 million in 2005, to 8.4 million.
Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.

Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.
How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.

How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.
What is identity theft, and how can you protect yourself from it?

What is identity theft, and how can you protect yourself from it?
1.3.1.G1 © Family Economics & Financial Education – Revised October 2004 – Consumer Protection Unit – Identity Theft Funded by a grant from Take Charge.

1.3.1.G1 © Family Economics & Financial Education – Revised October 2004 – Consumer Protection Unit – Identity Theft Funded by a grant from Take Charge.
Hacker’s tricks for online users to reveal their sensitive information such as credit card, bank account, and social security. Phishing emails are designed.

Hacker’s tricks for online users to reveal their sensitive information such as credit card, bank account, and social security. Phishing s are designed.
1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.

1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.
Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.

Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.
Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.

Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.

Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.
BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 

BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 
DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?

DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?
Security Liaisons Information Presentation. Introduction  What’s the big deal with computer security? Don’t we have an IT security department to take.

Security Liaisons Information Presentation. Introduction  What’s the big deal with computer security? Don’t we have an IT security department to take.
How It Applies In A Virtual World

How It Applies In A Virtual World
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.

Similar presentations

Ads by Google