Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.
Hackers, Crackers,
AND
Network Intruders
OUTLINE
 Hackers and Their vocabulary.
Types of hackers
Threats and risks.
Top intrusion justification.
Gaining acces...
HACKER TERMS
 Hacking -Showing computer expertise.
Cracking – violate security on software or
systems.
Phreaking- crack...
SUFFERING THREATS
Denial of Service (Yahoo, eBay, CNN, MS)
Loss of data (destruction, theft)
Defacing, Graffiti, Slande...
VARIOUS TYPES OF HACKERS
Professional hackers
1.Black Hats – the Bad Guys
2.White Hats – professional Security Expert
Sc...
VARIOUS TYPES OF HACKERS
Criminal Hackers
1. Real criminals are in it for whatever they can get no matter
whom it hurts
...
TOP INTRUSION JUSTIFICATIONS
 I am doing a favor pointing out your vulnerabilities
I am making a political statement
Be...
WAY OF ACCESSING
 Front door
Password guessing
Default or null passwords
Password same as user name
Password/key steali...
ONCE GET INSIDE, THE HACKER CAN
DO LOTS OF CHANGES
 Modify logs
To cover their tracks
To mesh with you
Steal Files
Somet...
INTRUSION DETECTION SYSTEMS (IDS)
A lot or research going on at universities
Doug Somerville-EE Dept, Viktor Skorman – EE...
INTRUSION DETECTION SYSTEMS (IDS)
Host-based IDS
Monitors logs, events, files , and packets sent to the host
Installed on...
INTRUSION PREVENTION
Patches and upgrades (hardening)
Disabling unnecessary software
Firewalls and Intrusion Detection ...
LEGAL AND ETHICAL QUESTIONS
‘Ethical’ hacking?
How to react to mischief or nuisances?
Is scanning for vulnerabilities l...
COMPUTER CRIMES
Financial Fraud
Credit Card Theft
Identity Theft
Computer specific crimes
Denial of service
Denial of ...
LEGAL RECOURSE
Average armed robber will get $2500-$7500 and risk being
shot or killed; 50-60% will get caught, convicted...
Thanks
for
Watching
Prochain SlideShare
Chargement dans…5
×

Clean Your Windows System from Spyware and Malware – best guide for removal of Spyware

Spyware and malware is a great threat for your PC. It totally disturb your PC as it slow down your system processing, change the default settings of your Computer and its browsers and steal your personnel data and irritates you always during surfing and also redirects you to the unwanted sites which is full of malicious. That’s why be in touch with us by visiting our site for complete removal of PC Issues.

  • Identifiez-vous pour voir les commentaires

  • Soyez le premier à aimer ceci

Clean Your Windows System from Spyware and Malware – best guide for removal of Spyware

  1. 1. Hackers, Crackers, AND Network Intruders
  2. 2. OUTLINE  Hackers and Their vocabulary. Types of hackers Threats and risks. Top intrusion justification. Gaining access Legal and decent issues.
  3. 3. HACKER TERMS  Hacking -Showing computer expertise. Cracking – violate security on software or systems. Phreaking- cracking telecom networks. Spoofing – faking the originating IP address in a datagram. Port Scanning – Searching for vulnerabilities. Denial of Service(DOS) – flooding in host with sufficient network traffic so that it can’t respond anymore.
  4. 4. SUFFERING THREATS Denial of Service (Yahoo, eBay, CNN, MS) Loss of data (destruction, theft) Defacing, Graffiti, Slander, Reputation Divulging private information (Air Miles, corporate espionage, personal financial) Loss of financial assets (Citibank)
  5. 5. VARIOUS TYPES OF HACKERS Professional hackers 1.Black Hats – the Bad Guys 2.White Hats – professional Security Expert Script kiddies 1.Mostly kids/ students a)Use tools created by black hats, To get free stuff Impress their peers Not to get caught Underemployed Adult Hackers 1.Former script Kiddies Can’t get employment in the field Want recognition in the hacker community Big in eastern European countries Ideological Hackers Hack as a mechanism to promote some political or ideological purpose Usually coincide with politically events.
  6. 6. VARIOUS TYPES OF HACKERS Criminal Hackers 1. Real criminals are in it for whatever they can get no matter whom it hurts Corporate Spies 1.Are relatively rare Disgruntled Employees 1.Most dangerous to an enterprise as they are “insiders” 2.Since many companies subcontract their network services a disgruntled 3. vendor could be very dangerous to the host enterprise
  7. 7. TOP INTRUSION JUSTIFICATIONS  I am doing a favor pointing out your vulnerabilities I am making a political statement Because I can  Because I am paid to do it
  8. 8. WAY OF ACCESSING  Front door Password guessing Default or null passwords Password same as user name Password/key stealing Back doors Often left by original developers as debug and/ or diagnostic tools Forget to remove before release Trojan Horses Usually hidden inside of software that we download and install from the net(remember nothing is free) Manu install backdoors Software vulnerability exploitation Often advertised on the OEMs web site along with security patches Fertile ground for script kiddies looking for something to do  BACK DOORS & TROJANS e.g. whack-a-mole/NetBus cable modems/DSL very vulnerable protect with Virus Scanners, Port Scanners, Personal firewalls
  9. 9. ONCE GET INSIDE, THE HACKER CAN DO LOTS OF CHANGES  Modify logs To cover their tracks To mesh with you Steal Files Sometimes destroy after stealing A pro would steal and cover their tracks so to be undetected Modify Files To let you know they were there To cause mischief Install back doors So they can get in again Attack other systems
  10. 10. INTRUSION DETECTION SYSTEMS (IDS) A lot or research going on at universities Doug Somerville-EE Dept, Viktor Skorman – EE Dept Big money available due to 9/11 and Dept of Homeland Security Vulnerability scanners Pro-actively identifies risks User use pattern matching When pattern deviates from norm should be investigated. Network- based IDS Examine packets for suspicious activity Can integrate with firewall Require one dedicated IDS server per segment
  11. 11. INTRUSION DETECTION SYSTEMS (IDS) Host-based IDS Monitors logs, events, files , and packets sent to the host Installed on each host on network Honeypot Decoy server Collects evidence and alerts admin
  12. 12. INTRUSION PREVENTION Patches and upgrades (hardening) Disabling unnecessary software Firewalls and Intrusion Detection Systems ‘Honeypots’ Recognizing and reacting to port scanning
  13. 13. LEGAL AND ETHICAL QUESTIONS ‘Ethical’ hacking? How to react to mischief or nuisances? Is scanning for vulnerabilities legal? Some hackers are trying to use this as a business model Here are your vulnerabilities, let us help you Can private property laws be applied on the internet?
  14. 14. COMPUTER CRIMES Financial Fraud Credit Card Theft Identity Theft Computer specific crimes Denial of service Denial of access to information Viruses Melissa virus cost New Jersey man 20 months in jail Melissa caused in excess of $80 Million Intellectual Property Offenses Information theft Trafficking in pirated information Storing pirated information Compromising information Destroying information Content related Offenses Hate Crimes Harassment Cyber stalking Child privacy
  15. 15. LEGAL RECOURSE Average armed robber will get $2500-$7500 and risk being shot or killed; 50-60% will get caught, convicted and spent an average of 5 years of hard time. Average computer criminal will net $50k-$500k with a risk of being fired or going to jail; only 10% are caught, of those only 15% will be turned into authorities; less than 50% of them will do jail times. Prosecution Many institutions fail to prosecute for fear of advertising Many banks absorb the losses fearing that they would lose more if their customers find out and took their business elsewhere Fix the vulnerability and continue on with business as usual http://pcspywareremoval.org/
  16. 16. Thanks for Watching

×