Web Attacks Take Over

hotbroodSecurity

Nov 3, 2013 (3 years and 9 months ago)

79 views



D
r. Paul Judge

Chief Research Officer

Barracuda Networks

The State of Internet Security:


Web Attacks Take Over

Half of The Spam Disappeared

3

20
25
30
35
40
45
50
55
1
2
3
4
5
6
7
8
9
10
11
12
Billions

52 Billion

26 Billion

2010

5 Innovations That Caused Security Gaps




Habits of Effective Hackers



Five Innovations That

Created Security Risks

Rich site
-
to
-
browser
interaction


Browser is the new
operating system


Browser is active in the
application, not simply a
passive display tool

2. Dynamic Web Apps: AJAX

Smartphone and tablet computing
blur the line between personal
and business computing


Companies must reconsider
policies for devices that are not
owned by the company


5. New Devices

Habits Of Effective Hackers

1. Malicious Javascript

(Four
Habits Of Effective Hackers)


Exploited Site (1 of 4)

Exploited Site (3 of 4)


hxxp://qxfcuc.info/f.cgi?jzo


The above URL serves exploits that target a variety of software
vulnerabilities, including those in Acrobat Reader (CVE
-
2008
-
2992, CVE
-
2009
-
0927, and CVE
-
2007
-
5659), AOL Radio AmpX (CVE
-
2007
-
6250),
AOL SuperBuddy (CVE
-
2006
-
5820) and Apple QuickTime (CVE
-
2007
-
0015).


The domain qxfcuc.info is part of a malware campaign that includes tens of
similar websites hosted off of a handful of common IP addresses. Similar
exploit code was served from most of these domains, although a handful
(e.g., yyoqny.info) display a message that suggests the criminal behind this
campaign is compromising systems to build a botnet he will likely later
lease. Translated from Russian, that message tells prospective leasers to
"Send a message to ICQ #559156803; stats available under ststst02."




Exploited Site (4 of 4)

2. Search Engine Malware

(Four
Habits Of Effective Hackers)

Data Set

4

Search Engines

(Bing, Google, Twitter, Yahoo)

153

Days


157,154

Popular Topics


36,972,206

Search Results


Total Malware by Search Engine

Google

38%

Yahoo

30%

Bing

24%

Twitter

8%

Lebron James

Search Engine Malware (1 of 4)

26

Search Engine Malware (2 of 4)

27

Search Engine Malware (3 of 4)

Search Engine Malware (4 of 4)

3. Social Attacks

(Four
Habits Of Effective Hackers)

Facebook Social Attacks

Photo ‘Tags’ Up To 50 People

Website Selling Fake Illegal Shoes

Automated Social Engineering

Malicious Facebook Apps

Likejacking



Twitter


Trending Topics
(Step 1 of 3
)

Twitter


Trending Topics
(Step 2 of 3
)

hxxp://securityland.cn/?uid=144&pid=3&ttl=31c48520c54


which acts as a traffic distribution system for a Rogue AV operation; the chain of
redirections ends at one of the following Rogue AV distribution points:


hxxp://my
-
systemscan.com/?p=WKmimHVlbG2HjsbIo22EhHV8ipnVbWiMnNah2qeNm
6nZwombm5h2lpd9fXCHodjSbmRelWZxmV6SZGbLU9bYxKWspXOL1dZ2Y2Zu
Z2tnaWyVYYrJlG0%3D

hxxp://my
-
newprotection.net/?p=WKmimHVlbG2HjsbIo22EhHV8ipnVbWiMnNah2qeNm
6nZwombm5h2lpd9fXCHodjSbmRelWZxmV6SZGbLU9bYxKWspXOL1dZ2Y2Zu
Z2tnaWyVYYrJlG0%3D

hxxp://trustsystem
-
protection.com/?p=WKmimHVlbG2HjsbIo22EhHV8ipnVbWiMnNah2
qeNm6nZwombm5h2lpd9fXCHodjSbmRelWZxmV6SZGbLU9bYxKWspXOL1dZ2
Y2ZuZ2tnaWyVYYrJlG0%3D

Twitter


Trending Topics
(step 3 of 3)

4. Web Exploit Kits

(Four
Habits Of Effective Hackers)

Summary

Who Is Behind This?

The Worlds Greatest Spammers:

Where are they now?

Alan Ralsky

Scott Richter

‘Godfather of Spam’

‘King of Spam’

70 million emails per day

100 millions email per day

#1 of top spammers list

#2 and #9 of top spammers list

$3 Million profit summer 2005 in pump
and dump Chinese penny stocks

Over 40,000 ‘Iraq Most Wanted’ card decks
sold before printed

2005 FBI raid and investigation

2003 New York Attorney General lawsuit

2006 Microsoft lawsuit

2008 Myspace lawsuit

The Worlds Greatest Spammers:

Where are they now?

Alan Ralsky

Scott Richter

‘Godfather of Spam’

‘King of Spam’

70 million emails per day

100 millions email per day

#1 of top spammers list

#2 and #9 of top spammers list

$3 Million profit summer 2005 in pump
and dump Chinese penny stocks

Over 40,000 ‘Iraq Most Wanted’ card decks
sold before printed

2005 FBI raid and investigation

2003 New York Attorney General lawsuit

2006 Microsoft lawsuit

2008 Myspace lawsuit

2009: Sentenced to 51 months in
Federal prison

The Worlds Greatest Spammers:

Where are they now?

Alan Ralsky

Scott Richter

‘Godfather of Spam’

‘King of Spam’

70 million emails per day

100 millions email per day

#1 of top spammers list

#2 and #9 of top spammers list

$3 Million profit summer 2005 in pump
and dump Chinese penny stocks

Over 40,000 ‘Iraq Most Wanted’ card decks
sold before printed

2005 FBI raid and investigation

2003 New York Attorney General lawsuit

2006 Microsoft lawsuit

2008 Myspace lawsuit

2009: Sentenced to 51 months in
Federal prison

2009: Founded “Lunatic Games”
-
a
social gaming company

Barracuda Labs Threat Intelligence

Servers

Barracuda Web Application Firewall

Barracuda Web
Application Firewalls

SSL Acceleration

Pipelining

Caching

Compression

Load Balancing

OWASP protection

Virus scanning

Data leakage

Cloaking

XML Firewall

Remote
Users

Teleworkers