Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source:...
-
Upload
fabiola-goacher -
Category
Documents
-
view
213 -
download
0
Transcript of Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source:...
![Page 1: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/1.jpg)
Joe Klemencic 2005
![Page 2: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/2.jpg)
80%+ Number of machines on the Internet infected with
Spyware
* source: TechNewsWorld
![Page 3: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/3.jpg)
28 Items
Number of Spyware items on average
* source: IntranetJournal
![Page 4: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/4.jpg)
![Page 5: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/5.jpg)
eTailor
Web Advertising Agency
eTailor eTailor
Order of 1 lamp for John Doe submitted.
Cookie:John Doe ordered 1 lamp
John Doe likes lamps
John Doe likes lamps
While searching for Star Wars items, we noticed that you also like lamps.
![Page 6: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/6.jpg)
![Page 7: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/7.jpg)
![Page 8: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/8.jpg)
=
![Page 9: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/9.jpg)
![Page 10: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/10.jpg)
if INSTALL_BUTTON is clicked{
install malware.exe
}
if NOTHANKS_BUTTON is clicked {
install malware.exe anyway // Bwhahaa!!!
}
If this is a REAL Windows dialog box, use the ‘X’ to close –OR- use
your browsers BACK button.
![Page 11: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/11.jpg)
In this case, the entire dialog box is really a Graphic image. No matter where you click, it will install malware.
if MOUSECLICK {
install malware.exe
}
![Page 12: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/12.jpg)
Phishing
![Page 13: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/13.jpg)
*Source: USA Today 01-14-2005
Identity Theft:
Not limited to relatives or physical theft of personal information (drivers license, credit cards). Most Identity Theft occurs NOT from your on-line transactions, but rather from locally installed software watching your computer OR from compromised machines at the various merchants and banks.
Just because a web site uses SSL or states it is a ‘Secure Server’ does NOT guarantee your data is safe. All it means is that the communications between your machine and the web site is encrypted (or at least is supposed to be).
Many banks will NOT honor their fraud policies if the ID theft was due to Phishing.
![Page 14: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/14.jpg)
![Page 15: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/15.jpg)
PHARMING(Hijacking Hosts/DNS)
c:\windows\system32\drivers\etc\hosts or /etc/hosts
206.65.183.18 www.microsoft.com206.65.183.18 www.google.com206.65.183.18 www.paypal.com206.65.183.18 www.ebay.com206.65.183.18 home.msn.com206.65.183.18 www.yahoo.com206.65.183.18 mail.yahoo.com206.65.183.18 www.cnn.com206.65.183.18 www.bankone.com206.65.183.18 www.citibank.com
![Page 16: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/16.jpg)
Cleanup and Prevention
![Page 17: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/17.jpg)
![Page 18: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/18.jpg)
![Page 19: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/19.jpg)
![Page 20: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/20.jpg)
Don’t click on everything that pops up in front of you and READ the messages!!!
If unsure, visit a different site.
![Page 21: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/21.jpg)
Hijack your own windows\system32\drivers\etc\hosts file:127.0.0.1 www.doubleclick.net127.0.0.1 ad.doubleclick.net127.0.0.1 ad.preferences.com127.0.0.1 ads.doubleclick.com127.0.0.1 ads.infospace.com127.0.0.1 ads.msn.com
Make your hosts file Read Only:
![Page 22: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/22.jpg)
Spyware and Phishing Resources
Current Phishing Scams:http://www.antiphishing.org/
Spyware Discussions:http://www.spywaremanagement.org/
E-mail Hoax:http://hoaxbusters.ciac.org/
![Page 23: Joe Klemencic 2005. 80%+ Number of machines on the Internet infected with Spyware * source: TechNewsWorld.](https://reader035.fdocuments.us/reader035/viewer/2022062620/5519e470550346443e8b50dc/html5/thumbnails/23.jpg)