Automated Targeted Attacks

15
Durban, South Africa, 8 July 2013 Automated Targeted Attacks Alexandru Catalin Cosoi, Chief Security Strategist, Bitdefender [email protected] ITU Workshop on “Countering and Combating Spam” (Durban, South Africa, 8 July 2013)

description

ITU Workshop on “ Countering and Combating Spam ” (Durban, South Africa, 8 July 2013). Automated Targeted Attacks. Alexandru Catalin Cosoi, Chief Security Strategist, Bitdefender [email protected]. Spam Breakdown by Type. Attachments Breakdown by Type. MiniDuke attack. - PowerPoint PPT Presentation

Transcript of Automated Targeted Attacks

Page 1: Automated Targeted Attacks

Durban, South Africa, 8 July 2013

Automated Targeted Attacks

Alexandru Catalin Cosoi,Chief Security Strategist,

Bitdefender [email protected]

ITU Workshop on “Countering and Combating Spam”

(Durban, South Africa, 8 July 2013)

Page 2: Automated Targeted Attacks

Spam Breakdown by Type

Durban, South Africa, 8 July 2013 2

Page 3: Automated Targeted Attacks

Attachments Breakdown by Type

Durban, South Africa, 8 July 2013 3

Page 4: Automated Targeted Attacks

MiniDuke attack

Durban, South Africa, 8 July 2013 4

Page 5: Automated Targeted Attacks

Antispam Tech Maturity

Durban, South Africa, 8 July 2013 5

Page 6: Automated Targeted Attacks

Questions

What is your name or nickname?What are your interests?Who do you work for?Who are your friends/colleagues?What is you job title? Who is you manager/CEO/director?Who are your family members?Are you married? With whom?

Durban, South Africa, 8 July 2013 6

Page 7: Automated Targeted Attacks

Our Online Identity

Durban, South Africa, 8 July 2013 7

Page 8: Automated Targeted Attacks

Google Search

Durban, South Africa, 8 July 2013 8

Page 9: Automated Targeted Attacks

123people.com search

Durban, South Africa, 8 July 2013 9

Page 10: Automated Targeted Attacks

Pipl.com search

Durban, South Africa, 8 July 2013 10

Page 11: Automated Targeted Attacks

After 3 searches

Name: Alexandru Catalin CosoiCompany: BitdefenderJob Title: Chief Security StrategistEmail: [email protected] media accounts: all, including LinkedIn profile and foursquare checkinsWife’s email address

Durban, South Africa, 8 July 2013 11

Page 12: Automated Targeted Attacks

Example

Dear Alexandru Cosoi,

We tried contacting your wife Carmen in regard to participation to the 19th Annual Conference of [whatever]. Is [wife’s email] her correct email address?

Can you please forward the attached PDF with the official invite?

Durban, South Africa, 8 July 2013 12

Page 13: Automated Targeted Attacks

Conclusions

Social engineering works. Social engineering can be automated We need to understand the addiction to social networks and the fact that users will post information about themselves onlineEducation can work. It’s our duty to educate both users and employees about social engineering and how their own data can turn against them.

Durban, South Africa, 8 July 2013 13

Page 14: Automated Targeted Attacks

More Conclusions

Spam content will become personal and uniqueContent filtering technologies will start having a hard time detecting all samplesUsers might consider antispam filters when detecting highly social engineered spam messages

Durban, South Africa, 8 July 2013 14

Page 15: Automated Targeted Attacks

Questions?

[email protected]

Durban, South Africa, 8 July 2013 15