1. Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level Cât valorezi?
Prețul datelor tale pe piața neagră
Ștefan Tănase
Senior Security Researcher
y
Global Research and Analysis Team
Kaspersky Lab
June 10th, 2009 AGORA Securitate – Bucuresti, Hotel Intercontinental, 14 Aprilie 2010 (title, place)
Event details
2. Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
Introducere
De ce ai valora ceva?
June 10th, 2009 Event details (title, place)
3. Oricine are ceva valoros
Click to edit Master title style
Ce inseamna internetul pentru tine?
• Click to edit Master text styles
•C
– Comunicare i
Second level
• Third level
• Informare
– Fourth level
• Lucru
» Fifth level
• Cumparaturi
June 10th, 2009 Event details (title, place)
4. Informatia are valoare
Click to edit Master title style
Ai un Card editcredit? textAi un Computer?
• Click to de Master styles
– Second level
Tranzactionezi pe Forex?
• Third level Ai cont pe Facebook?
– Fourth level
Ai »o Fifth level d A tiVi
li
licenta de AntiVirus?
t ?
Ai un cont pe Twitter?
Folosesti online banking?
Ai un cont de email?
Ai cont pe Hi5?
Esti user sau moderator pe vreun forum?
Joci jocuri online?
J ij i li ?
Stai pe Yahoo Messenger?
Ai un cont de Paypal?
Vorbesti pe S
Skype?
?
June 10th, 2009 Event details (title, place)
5. Crestere uriasa a malware-ului
Click to edit Master title style
creat pentru furtul de informatie
Semnaturi
80000
• Click to edit Master text styles
70000
– Second level
60000
• Third level
50000
– Fourth level
» Fifth level
40000
30000
20000
10000
0
2005 2006 2007 2008 2009
Sursa: Kaspersky Lab Bankers PSW Spy
June 10th, 2009 Event details (title, place)
6. Carduri de credit pe piata neagra, 2009
Click to edit Master title style
• Click to edit Master text styles
9%
– Second level
• Third level
34%
– Fourth level
» Fifth level MasterCard
27%
American Express
VISA
Discover
30%
Sursa: Kaspersky Lab
June 10th, 2009 Event details (title, place)
7. Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
Cum iti sunt furate informatiile?
Cele mai populare metode de atac
June 10th, 2009 Event details (title, place)
8. Furtul de date: vectori de atac
Click to edit Master title style
Phishing to edit Master text styles
• Click
Infectii malware
– Second level
• Third level
– Fourth level
» Fifth level
• Exploit-uri
Exploit uri
• iFrame
• Web 2.0 (social engineering)
• XSS
• USB sticks
June 10th, 2009 Event details (title, place)
9. Carduri de credit
Click to edit Master title style
Pretul depinde de tara de origina si de tipul cardului
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
10. Servicii de online payment
Click to edit Master title style
Banci: pretul depinde de balanta contului
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
Online payment: pretul depinde de balanta contului si
de istoricul tranzactiilor
June 10th, 2009 Event details (title, place)
11. Cine creeaza Trojan-Bankers? Top 10 tari:
Click to edit Master title style
• Click to edit Master text styles
3% 3%
4%
– Second level
4% Brazil
• Third level China
6%
– Fourth level Brazil; 36% Spain
» Fifth level Russia
7%
Mexico
Portugal
8% Turkey
India
UK
8%
China; 21% Ukraine
Sursa: Kaspersky Lab
June 10th, 2009 Event details (title, place)
12. Phishing: Top 20 branduri targetate, 2009
Click to edit Master title style
1%
1% PayPal
1%1% 2%
• Click to edit Master text styles
2%
1%
1% eBay
Bank of America
2%
– Second level
2% CHASE
3% IRS
• Third level HSBC
3%
– Fourth level Abbey
3%
PayPal:
P P l 41%
» Fifth level Ally Bank
AllianceLeicester
5%
HALIFAX
NatWest
7% MSN
Google
U
UBI
7% eBay: 16%
Fifth Third Bank
Facebook
Cahoot
Poste It li
P t Italiane
Sursa: Kaspersky Lab
June 10th, 2009 Event details (title, place)
13. Email si retele sociale
Click to edit Master title style
Preturi in to edit Master text styles
• Click functie de domeniile folosite:
– Second level
•Domenii globale (Gmail, Yahoo!, Hotmail, etc.)
• Third level
– Fourth level
» Fifth level
•Domenii locale (Mail.ru, Yandex.ru, etc.)
June 10th, 2009 Event details (title, place)
14. Click to edit Master title style
Oferte pentru conturi de Facebook:
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
15. Click to edit Master title style
Costul depinde de cati follower-i ai si de cat de
comercial este Master text styles
• Click to edit username-ul tau:
– Second level
• Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
16. Malware pe retele sociale:
Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
Sursa: Kaspersky Lab
June 10th, 2009 Event details (title, place)
17. Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
Ce altceva mai poate fi furat?
Servicii de comunicare si file-sharing
June 10th, 2009 Event details (title, place)
18. Sisteme de file-sharing
Click to edit Master title style
Rapidshare
• Click to edit Master text styles
– Spalare level
• Second de bani
•• Conturi furate
Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
19. Skype
Click to edit Master title style
Pretul depinde de balanta contului
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
20. Instant Messaging (IM)
Click to edit Master title style
Pretul depinde de cat de scurt sau cat de real arata contul:
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
21. Cine creeaza Trojan-PSW? Top 10 tari:
Click to edit Master title style
• Click to edit Master text styles
3% 2%
3% China
– Second level
3%
3%
Russia
• Third level
3% Germany
– Fourth level
4% India
» Fifth level Turkey
4%
Egypt
Russia; 12% US
China; 63% Ukraine
Mexico
France
Sursa: Kaspersky Lab
June 10th, 2009 Event details (title, place)
22. Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
Si daca nu am bani?
Nu-i nimic…
June 10th, 2009 Event details (title, place)
23. “Nu am decat un calculator…”
Click to edit Master title style
Sunt oferite servicii catre alti criminali informatici:
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
24. Puterea unui botnet
Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
– Fourth level
» Fifth level
June 10th, 2009 Event details (title, place)
25. Click to edit Master title style
• Click to edit Master text styles
– Second level
• Third level
Vă mul umesc! Întrebări?
– Fourth level
» Fifth level
stefant@kaspersky.ro
stefant@kaspersky ro
twitter.com/stefant
Ștefan Tănase
Senior Security Researcher
Global Research and Analysis Team
Kaspersky Lab
p y
AGORA Securitate – Bucuresti, Hotel Intercontinental, 14 Aprilie 2010
June 10th, 2009 Event details (title, place)