Fighting cybercrime in 2009 - PowerPoint PPT Presentation

Loading...

PPT – Fighting cybercrime in 2009 PowerPoint presentation | free to download - id: 12edae-MjJiY



Loading


The Adobe Flash plugin is needed to view this content

Get the plugin now

View by Category
About This Presentation
Title:

Fighting cybercrime in 2009

Description:

ITU-T Workshop on 'New challenges for Telecommunication Security Standardizations' ... There will always be uncontrolled networks (with lots of malware) ... – PowerPoint PPT presentation

Number of Views:88
Avg rating:3.0/5.0
Slides: 20
Provided by: Pro127
Learn more at: http://www.itu.int
Category:

less

Write a Comment
User Comments (0)
Transcript and Presenter's Notes

Title: Fighting cybercrime in 2009


1
Fighting cybercrime in 2009
ITU-T Workshop on New challenges for
Telecommunication Security Standardizations"
Geneva, 9(pm)-10 February 2009
  • Magnus Kalkuhl,
  • Senior Virus Analyst Kaspersky Lab

2
Number of signatures 1998 - 2008
3
Cybercrime business
  • Malware is written for one goal Making money
  • Cybercrime business is organized, but more as
    crime that is organized rather than organized
    crime
  • There is no centralized control by a Dr no
    character

4
The dirty approach
5
The silent approach
  • After infection a computer is used for...
  • Sending spam mails
  • Performing DDoS attacks
  • Fast flux networks
  • Proxy computer
  • Stealing the owner's credit card data, bank
    account or World of Warcraft password

6
Example Drive by download
Browser
Exploit Small program that breaks the barriers
of a browser (or other program) and executes own
code
7
Example Drive by download
Several systems available MPack, Icepack
etc. Offered for 500 1.000 EUR
8
Example Drive by download
Several systems available MPack, Icepack
etc. Offered for 500 1.000 EUR
9
(No Transcript)
10
(No Transcript)
11
Shadow botnet
12
Botnet CPU performance
13
Botnet CPU performance
14
Botnet CPU performance
15
What can AV companies do?
  • Protecting servers and client computers against
    initial infection
  • Education Teaching security awareness
  • Monitoring botnets without touching them
  • Information exchange with CERTs, authoriries and
    other researchers

16
What else could be done
  • Separation of the internet into virtual islands
  • International cyberspace police who is able to
    act quickly in cases of emergency
  • New law that allows authorities to notifiy botnet
    victims after gaining control over a botnet
    control center

17
The limits of control
  • There will always be uncontrolled networks (with
    lots of malware)
  • Usage of savage nets will be prohibited by some
    governments but that won't stop its existence
  • The only place for people who have been banned
    from the official Internet

18
Conclusion
  • AV companies can prevent initial infections
  • International botnets require international
    cooperations
  • Virtual islands and more control will lead to a
    fragmenation of the internet as we know it today

19
Thank you very much!
About PowerShow.com