Presentation is loading. Please wait.

Presentation is loading. Please wait.

Bots Used to Facilitate Spam Matt Ziemniak. Discuss Snort lab improvements Spam as a vehicle behind cyber threats Bots and botnets What can be done.

Published byFay Pearson Modified over 8 years ago

Similar presentations

Presentation on theme: "Bots Used to Facilitate Spam Matt Ziemniak. Discuss Snort lab improvements Spam as a vehicle behind cyber threats Bots and botnets What can be done."— Presentation transcript:

1 Bots Used to Facilitate Spam Matt Ziemniak

2 Discuss Snort lab improvements Spam as a vehicle behind cyber threats Bots and botnets What can be done

3 Build more complex rules Provide more interaction with snort.conf file and installation Explain how snort works in real-world setting Make both labs snort-related

4 Phishing Spyware Nigerian scams Child pornography

5 Loss of employee production Money spent on hardware/software Dissemination of viruses, spyware, and phishing schemes

6 Open relay mail servers Open HTTP proxies Worms/mass mailers

7 Find a way to automate the spamming process while remaining anonymous

8 Short for robot. A computer program that performs a function such as forwarding e-mail, responding to newsgroup messages, or searching for information. Source: http://www.computeruser.com/resources/dictionary

9 Web crawlers/search agents Interacting with online games Monitoring IRC channels Only limited by imagination

10 Keylogging Denial-of-Service Attacks Identity Theft (hosting spoofed websites) Spread malware GENERATE SPAM!

11 Internet Relay Chat (IRC) Hyper-Text Transfer Protocol (HTTP) P2P (Peer-to-Peer file sharing)

12 An online system that allows real-time communications Consists of an IRC server and an IRC client; the connection between the two is called a channel Members join chat rooms to discuss various topics (may be password protected) Can be used for file sharing

13 Program that interacts with an IRC server in an automated fashion Typically used to monitor a channel when an individual is away from the computer Can be modified by anyone with programming skills (C++, PERL, DELPHI ) IRC has its own scripting language

14 An individual gains control of many bots that reside on different users’ computers Controlled by a “bot master” who uses a command/control The bots connect to the IRC server and wait for commands from the bot master Bot Master Bot

15 Commonly used to generate spam User typically visits website and downloads a trojan or other piece of malware Connection is made to a web server operated by a bot master More software is downloaded onto user’s computer

16 Browser Exploit Trojan Download Bot Client Downloaded

17 Use compromised computer as spam proxy Use compromised computer as mail relay Obtain email addresses from compromised computer (harvesting)

18 HTTP redirects Path to actual site leads to IP’s across different countries (bouncing) Compromised proxies don’t log connections Tank farms act like middlemen by pushing the spam through proxies

19 "At the end of last year we knew of about 2,000 botnets. Towards the end of this year, we're looking at about 300,000,". Source: Jesse Villa, Frontbridge Technologies http://www.pcworldmalta.com/specials/yearend04/goodandbad.htm.

20 Gathering intelligence regarding botnet activity Use tools such as honeypots, intrusion detection systems, packet sniffers Perform trends analysis on data, source information, log files (firewall and IDS)

21 Educate employees Increase security measures Develop security products Share information and resources

22

Download ppt "Bots Used to Facilitate Spam Matt Ziemniak. Discuss Snort lab improvements Spam as a vehicle behind cyber threats Bots and botnets What can be done."

Similar presentations

Protect your PC virus, worm, Trojan horse, phishing, spam, botnet and zombies, spoofing, social engineering, identity theft, spyware, rootkits Click.

Protect your PC virus, worm, Trojan horse, phishing, spam, botnet and zombies, spoofing, social engineering, identity theft, spyware, rootkits Click.
A Software Keylogger Attack By Daniel Shapiro. Social Engineering Users follow “spoofed” emails to counterfeit sites Users “give up” personal financial.

A Software Keylogger Attack By Daniel Shapiro. Social Engineering Users follow “spoofed” s to counterfeit sites Users “give up” personal financial.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
Cyber check Do you work safely and responsibly online? Do you know about the risks to your cyber security? What are your online responsibilities ? How.

Cyber check Do you work safely and responsibly online? Do you know about the risks to your cyber security? What are your online responsibilities ? How.
Software programs that enable you to view world wide web documents. Internet Explorer and Firefox are examples. Browser.

Software programs that enable you to view world wide web documents. Internet Explorer and Firefox are examples. Browser.
Zombie or not to be: Trough the meshes of Botnets - Guillaume Lovet AVAR 2005 Tianjin, China.

Zombie or not to be: Trough the meshes of Botnets - Guillaume Lovet AVAR 2005 Tianjin, China.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Threat Overview: The Italian Job / HTML_IFRAME.CU June 18, 2007.

Threat Overview: The Italian Job / HTML_IFRAME.CU June 18, 2007.
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
 What is a botnet?  How are botnets created?  How are they controlled?  How are bots acquired?  What type of attacks are they responsible for? 

 What is a botnet?  How are botnets created?  How are they controlled?  How are bots acquired?  What type of attacks are they responsible for? 
Threats To A Computer Network

Threats To A Computer Network
BotMiner Guofei Gu, Roberto Perdisci, Junjie Zhang, and Wenke Lee College of Computing, Georgia Institute of Technology.

BotMiner Guofei Gu, Roberto Perdisci, Junjie Zhang, and Wenke Lee College of Computing, Georgia Institute of Technology.
BOTNETS/Cyber Criminals  How do we stop Cyber Criminals.

BOTNETS/Cyber Criminals  How do we stop Cyber Criminals.
1 Understanding Botnet Phenomenon MITP 458 - Kevin Lynch, Will Fiedler, Navin Johri, Sam Annor, Alex Roussev.

1 Understanding Botnet Phenomenon MITP Kevin Lynch, Will Fiedler, Navin Johri, Sam Annor, Alex Roussev.
Nasca 2007 200 400 600 800 1000 Internet Ch. 5Internet Ch. 8 Networking and Security Ch. 6 Networking and Security Ch. 8.

Nasca Internet Ch. 5Internet Ch. 8 Networking and Security Ch. 6 Networking and Security Ch. 8.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
Computers Going Online Internet Resources and Applications Finding information on the Web browsing: just looking around searching: trying to find specific.

Computers Going Online Internet Resources and Applications Finding information on the Web browsing: just looking around searching: trying to find specific.
Lesson 19 Internet Basics.

Lesson 19 Internet Basics.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
Internet Relay Chat Security Issues By Kelvin Lau and Ming Li.

Internet Relay Chat Security Issues By Kelvin Lau and Ming Li.

Similar presentations

Ads by Google