Waterhole Attack

1

TAGS:

Transcript of Waterhole Attack

Page 1: Waterhole Attack

Attacker profiles victims and the kind of websites they go to.

Attacker then tests these websites for vulnerabilities.

When the attacker finds a website that he can compromise he then injects the JavaScript or HTML redirecting the victim to a separate site hosting the exploit code for the chosen vulnerability.

The compromised website is now “waiting” to infect the profiled victim with a zero-day exploit, just like a lion waiting at a watering hole.

JavaScript/HTML

<body class="home">

id="header"

ad.js"></script>CSS/layout.css"

<script type="text”

WATERING HOLE ATTACKS1.1.

2.2.

3.3.

4.4.

Site hosting exploit code

Side-Channel Attack: timing attack

Side-Channel Attack: timing attack

ATRIA.SK · Nástenný elektrický kotol / Wall hung electric boiler typ / type ATTACK ELECTRIC EASY 8, ATTACK ELECTRIC EXCELLENT 8, ATTACK ELECTRIC EXCELLENT 15, ATTACK ELECTRIC

ATRIA.SK · Nástenný elektrický kotol / Wall hung electric boiler typ / type ATTACK ELECTRIC EASY 8, ATTACK ELECTRIC EXCELLENT 8, ATTACK ELECTRIC EXCELLENT 15, ATTACK ELECTRIC

Story About A Waterhole

Story About A Waterhole

Popular Protocol attack Smurf Attack Introduction: … Protocol attack!Smurf Attack!SYN attack!UDP Attack, ICMP Attack!CGI request attack!Authentication server attack!Attack using

Popular Protocol attack Smurf Attack Introduction: … Protocol attack!Smurf Attack!SYN attack!UDP Attack, ICMP Attack!CGI request attack!Authentication server attack!Attack using

SA 37-8 )2985 A3716 ED. NO 0102€¦ · not/ seasonal marsh 226± GL2 275 waterhole 0030 DABADERA 290. 29 Ivagh watezöole o Danta For seasonal waterhole 319 seasonal terpq'll Turgilda

SA 37-8 )2985 A3716 ED. NO 0102€¦ · not/ seasonal marsh 226± GL2 275 waterhole 0030 DABADERA 290. 29 Ivagh watezöole o Danta For seasonal waterhole 319 seasonal terpq'll Turgilda

Section 3.4: Buffer Overflow Attack: Attack Techniques 1.

Section 3.4: Buffer Overflow Attack: Attack Techniques 1.

Myponga to Waterhole Business Case

Myponga to Waterhole Business Case

Ceramics from Lovejoy Springs, a Western Mojave Desert Waterhole · 2013. 5. 18. · Ceramics from Lovejoy Springs, a Western Mojave Desert Waterhole 3 would have been drawn of the

Ceramics from Lovejoy Springs, a Western Mojave Desert Waterhole · 2013. 5. 18. · Ceramics from Lovejoy Springs, a Western Mojave Desert Waterhole 3 would have been drawn of the

PowerPoint Presentation - thandasafari.co.za fileTHANDA SAFARI PRIVATE GAME RESERVE Whirl Pool Outside Waterhole Observation Deck Lounge Area Outside Dining Area Kiddies Pool Pool

PowerPoint Presentation - thandasafari.co.za fileTHANDA SAFARI PRIVATE GAME RESERVE Whirl Pool Outside Waterhole Observation Deck Lounge Area Outside Dining Area Kiddies Pool Pool

Side-Channel Attack: timing attack Hiroki Morimoto.

Side-Channel Attack: timing attack Hiroki Morimoto.

Attack under Disguise: An Intelligent Data Poisoning Attack …cmiao/papers/ · Attack under Disguise: An Intelligent Data Poisoning Attack Mechanism in Crowdsourcing Chenglin Miao

Attack under Disguise: An Intelligent Data Poisoning Attack …cmiao/papers/ · Attack under Disguise: An Intelligent Data Poisoning Attack Mechanism in Crowdsourcing Chenglin Miao

C. S. Dubey - mpforest.gov.in Forensic.pdf · Oleander (Yellow one). 3. Abrus precatorius, (Gomchi or Ratti). ... (Insecticide/ pesticides) etc. 13. Fishing poison (waterhole poisoning

C. S. Dubey - mpforest.gov.in Forensic.pdf · Oleander (Yellow one). 3. Abrus precatorius, (Gomchi or Ratti). ... (Insecticide/ pesticides) etc. 13. Fishing poison (waterhole poisoning

Attack Nysius (wheat bug) · Herbicide only Herbicide1 Attack + Herbicide + 2 Attack Herbicide + 3 Attack Leaves Bulbs Total Dry Matter Yields (kg/ha) Application Apply Attack in

Attack Nysius (wheat bug) · Herbicide only Herbicide1 Attack + Herbicide + 2 Attack Herbicide + 3 Attack Leaves Bulbs Total Dry Matter Yields (kg/ha) Application Apply Attack in

Leading the horse to water: 10 ways to get academics and students to drink from the technology waterhole

Leading the horse to water: 10 ways to get academics and students to drink from the technology waterhole

Attack and Counter-Attack in Chess 1966

Attack and Counter-Attack in Chess 1966

Waterhole Creek - West Gippsland · 2016. 12. 12. · West Gippsland Catchment Management Authority 7 Management goals and targets for Waterhole Creek 23 7.1 Goals 23 7.2 Management

Waterhole Creek - West Gippsland · 2016. 12. 12. · West Gippsland Catchment Management Authority 7 Management goals and targets for Waterhole Creek 23 7.1 Goals 23 7.2 Management

Beyond attack trees: Attack and defense modeling with …satoss.uni.lu/seminars/srm/pdfs/2011-Ludovic-Pietre-Cambacedes.pdf · Beyond attack trees: Attack and defense modeling with

Beyond attack trees: Attack and defense modeling with …satoss.uni.lu/seminars/srm/pdfs/2011-Ludovic-Pietre-Cambacedes.pdf · Beyond attack trees: Attack and defense modeling with

Security Attack Analysis Using Attack Patterns · Security Attack Analysis Using Attack Patterns Tong Li, Elda Paja, John Mylopoulos University of Trento, Italy ... Acme network)

Security Attack Analysis Using Attack Patterns · Security Attack Analysis Using Attack Patterns Tong Li, Elda Paja, John Mylopoulos University of Trento, Italy ... Acme network)

Popular Protocol attack Smurf Attack Introduction: …jeffay/courses/nidsS05/slides/5-Protocol-Attacks.pdf · Popular Protocol attack!Smurf Attack!SYN attack!UDP Attack, ... Features

Popular Protocol attack Smurf Attack Introduction: …jeffay/courses/nidsS05/slides/5-Protocol-Attacks.pdf · Popular Protocol attack!Smurf Attack!SYN attack!UDP Attack, ... Features

Confronting the Threat - Disaster Recovery Journal · 2019-11-26 · xChemical Attack xBiological Attack xNuclear/Radiological Attack xAircraftAttackAircraft Attack. Taj Mahal Hotel

Confronting the Threat - Disaster Recovery Journal · 2019-11-26 · xChemical Attack xBiological Attack xNuclear/Radiological Attack xAircraftAttackAircraft Attack. Taj Mahal Hotel