A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia...
Transcript of A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia...
![Page 1: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/1.jpg)
A Study of Malicious Attacks on FacebookMaria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch VirusLabwww.commtouch.com
![Page 2: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/2.jpg)
Overview
Problem: Facebook Social Engineering Attacks
Preventive Measures
Defensive Measures
Challenges on protecting users
Conclusions
2
![Page 3: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/3.jpg)
Problem: Social Engineering Attacks
Emotion, thought and human desire come together to trick users
In a social networking environment, a user wouldn’t normally suspect that a friend deliberately added to his list would send harmful content
Users are compelled to action by “friends” to follow messages, links or invites
3
![Page 4: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/4.jpg)
Worms: Koobface
4
![Page 5: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/5.jpg)
Worms: Palevo
5
![Page 6: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/6.jpg)
Clickjacking
Tricks a user into performing undesired actions (e.g. downloading malware) by clicking on a concealed link
Facebook functionalities:
Publish
Like
Comment
6
![Page 7: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/7.jpg)
Clickjacking
7
![Page 8: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/8.jpg)
Clickjacking
8
![Page 9: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/9.jpg)
Clickjacking
9
![Page 10: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/10.jpg)
Clickjacking
10
![Page 11: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/11.jpg)
Clickjacking
11
![Page 12: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/12.jpg)
Scam and Spam messages on Facebook
Subjects:
500 free Facebook credits
Official App: See who has viewed your Profile?
Video of Osama Bin Laden’s assasination
12
![Page 13: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/13.jpg)
Scam and Spam messages on Facebook
13
![Page 14: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/14.jpg)
Scam and Spam messages (self-xss attack)
14
![Page 15: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/15.jpg)
Scam and Spam messages on Facebook
15
![Page 16: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/16.jpg)
Money-mule and credit card scams
16
![Page 17: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/17.jpg)
Money-mule and credit card scams
17
![Page 18: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/18.jpg)
Money-mule and credit card scams
18
![Page 19: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/19.jpg)
Money-mule and credit card scams
19
![Page 20: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/20.jpg)
Money-mule and credit card scams
Complaintsboard.com complaints comments:
20
![Page 21: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/21.jpg)
Fake email notification – more spam and scam
21
![Page 22: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/22.jpg)
Fake email notification – more spam and scam
22
![Page 23: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/23.jpg)
Fake email notification – Oficla
23
![Page 24: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/24.jpg)
Phishing
24
![Page 25: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/25.jpg)
Phishing
25
![Page 26: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/26.jpg)
Preventive Measures
26
![Page 27: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/27.jpg)
Preventive Measures
27
![Page 28: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/28.jpg)
Preventive Measures
28
![Page 29: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/29.jpg)
Preventive Measures
Partnership with Web of Trust
29
![Page 30: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/30.jpg)
Preventive Measures
Self-XSS Protection
30
![Page 31: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/31.jpg)
Preventive Measures
Login Approvals
31
![Page 32: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/32.jpg)
Preventive Measures
Facebook Security Settings
32
![Page 33: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/33.jpg)
Preventive Measures
33
![Page 34: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/34.jpg)
Preventive Measures
Facebook Security and Safety Page
How to protect a user account
Threats that a user may encounter on Facebook
How to report possible security vulnerabilities
Insight for parents, teens, and teachers - shared responsibility of keeping Facebook a safe environment
34
![Page 35: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/35.jpg)
Preventive Measures
Security Blogs
Warn customers on threats that are found on the social network
Tips on strengthening security and account settings.
35
![Page 36: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/36.jpg)
Defensive Measures
Facebook Reporting Mark as Spam
Report/Block this Person/Application
Security Products Locally installed AV, URL filtering and anti-spam
product
Facebook Security Apps
36
![Page 37: A Study of Malicious Attacks on Facebook · A Study of Malicious Attacks on Facebook Maria Patricia Revilla, Anti-Malware Analyst Commtouch VirusLab Robert Sandilands, Director Commtouch](https://reader036.fdocuments.net/reader036/viewer/2022081406/5f191b18757ff70e0214b45e/html5/thumbnails/37.jpg)
Conclusions
Facebook has been increasingly used for malicious purposes
Facebook security group has taken some steps to protect users
Security Industry working to keep pace with cybercriminals
Attackers employ numerous social engineering tactics
Education of users is a key part of enhancing security
37