3 sep 2019 to 24 feb 2020
play

3 Sep 2019 to 24 Feb 2020 Colin Strutt Dave Piscitello ECAINA - PowerPoint PPT Presentation

Dec 20, 2023 •275 likes •431 views

Exposing Criminal Abuse of Internet Names and Addresses Proof of Concept 3 Sep 2019 to 24 Feb 2020 Colin Strutt Dave Piscitello ECAINA Proof of Concept Feasibility study begun 3 September 2019 Gathering daily blocklist data for 23

  1. Exposing Criminal Abuse of Internet Names and Addresses – Proof of Concept 3 Sep 2019 to 24 Feb 2020 Colin Strutt Dave Piscitello

  2. ECAINA Proof of Concept ◼ Feasibility study begun 3 September 2019 ⧫ Gathering daily blocklist data for 23 TLDs ⧫ Identifying the associated registrar from available domain name registration data ◼ Augmenting with data from other sources (where available) ⧫ Whois, RDAP, Team Cymru, dns.coffee, etc. ◼ Analysis of blocklist and Whois data for each TLD on each day: # domain names on blocklist; “sponsoring” registrar 1. # domain names added to blocklist each day; “sponsoring” registrar 2. 3. # domain names removed from the blocklist each day ◼ Demonstrating the value and viability of ECAINA ⧫ Observed relationships between turnover, bulk registration, and blocklisting “spikes” and well -recognized patterns of criminal behavior 2

  3. 10,000 15,000 20,000 25,000 Number of Names on Each TLD’s Blocklist 5,000 0 9/3/2019 9/6/2019 9/9/2019 9/12/2019 9/15/2019 9/18/2019 9/21/2019 9/24/2019 9/27/2019 9/30/2019 10/3/2019 10/6/2019 10/9/2019 10/12/2019 10/15/2019 10/18/2019 10/21/2019 10/24/2019 10/27/2019 10/30/2019 11/2/2019 11/6/2019 11/9/2019 11/12/2019 11/15/2019 11/18/2019 11/21/2019 11/24/2019 11/27/2019 11/30/2019 12/3/2019 12/6/2019 12/9/2019 12/12/2019 12/15/2019 12/18/2019 12/21/2019 12/24/2019 12/27/2019 12/30/2019 1/2/2020 1/5/2020 1/8/2020 1/11/2020 1/14/2020 1/17/2020 1/20/2020 1/23/2020 1/26/2020 1/29/2020 2/1/2020 2/4/2020 2/7/2020 2/10/2020 2/13/2020 2/16/2020 2/19/2020 2/22/2020 xyz world work us top tokyo site ru pet org net monster live life info icu gdn fit com co.kr cloud biz agency 4

  4. 10,000 12,000 Number of Names Added to Each TLD’s Blocklist 2,000 4,000 6,000 8,000 0 9/3/2019 9/6/2019 9/9/2019 9/12/2019 9/15/2019 9/18/2019 9/21/2019 9/24/2019 9/27/2019 9/30/2019 10/3/2019 10/6/2019 10/9/2019 10/12/2019 10/15/2019 10/18/2019 10/21/2019 10/24/2019 10/27/2019 10/30/2019 11/2/2019 11/6/2019 11/9/2019 10,516 names .us, 14 Oct 11/12/2019 11/15/2019 11/18/2019 11/21/2019 11/24/2019 11/27/2019 11/30/2019 12/3/2019 7,426 & 8,779 names .icu, 6 & 9 Feb 12/6/2019 12/9/2019 12/12/2019 12/15/2019 12/18/2019 12/21/2019 12/24/2019 12/27/2019 12/30/2019 1/2/2020 1/5/2020 1/8/2020 1/11/2020 1/14/2020 1/17/2020 1/20/2020 1/23/2020 1/26/2020 1/29/2020 2/1/2020 2/4/2020 2/7/2020 2/10/2020 2/13/2020 2/16/2020 2/19/2020 2/22/2020 xyz world work us top tokyo site ru pet org net monster live life info icu gdn fit co.kr cloud biz agency 5

  5. Registrars with High Proportion of Blocked Domains ◼ 18 Feb shows ⧫ 4,386 names added to .icu ⧫ 1,132 added to .site ◼ Many names exhibit a common pattern – 6 random alpha characters ◼ These registrars account for names added that day for all 23 TLDs: Registrar Count ERANET INTERNATIONAL LIMITED 5,448 GMO Internet, Inc. d/b/a Onamae.com 164 NameCheap, Inc. 48 GoDaddy.com, LLC 25 NameSilo, LLC 12 ... and 28 other registrars 53 6

  6. 18 Feb: 6- α Names Added to Blocklists 4,355 to .icu & 1,094 to .site aaddxs acjxve afenbl ahjmvb ajztcm anhepl apxhcy arqpsv auhlwj awcyxn aygirf baxrkc bdfnxr bfypmv bhwlrk ysiulw aaeazr aclopd affkvc ahmpzq akkkjh anjgbm apyqvw artfwb auirig awerag aygmbp bbaqrb bdkdqm bgbent bhwuhc ysswen aagylz acmmpr affqvn ahowhq akmjpw annxce apzjbs arusmo aujfxz awmavn ayildl bbawbl bdpkni bgcfhv bhxveb ytnbdq aahhad acqaac afgzfj ahyiod akoayb anrlsc aqbcjg arvgqx auketk awmelo aymfxf bbgbix bdtecx bgcypm bibwru yumpyw aaiqwi acqieb afhcwg aiaeph aktfrq anucgh aqbsvg arwcmw aumnok awmxce aymski bbgwph bdtlvi bgfbrw bicefi yvrmld aaiyzp acrsnr afkmij aibpow akttyd anvbjn aqciuf aslhlt auohsz awpxjg ayqjuu bbjtgm bdtvuf bggdrk bicmih yxipbq aakmvx actdyc afnley aicgkm akvvlj anwebe aqdexk asmwav aupavf awsheu ayrobe bbjvcr bdyldw bgjmbq bidlzt yyilti aaleol acxouq afqdmc aidepv akztdv anykhs aqevbd asodms auqfxh awsmyq ayyaat bbmghs bebedl bgllaz bihhga yzeeqw aaniox acyzev afqorj aiditm akzuto anyysh aqeytv asoxxw aurfyu awumhn azbtqh bbmrqs bedzuj bgnjmf biiipg yzxcsn aapbev adcxhj afszyl aidscm alaoev anzqke aqgudh aspbtg aussrx awunxy azidjm bbqfqu befnwy bgpsen biobnk yzxlft aapvyh adimin afxrng aielok alekxl aocmvq aqhbpw asphih ausvgn awuvmk aziwmc bbtekl begqrp bgqusr bisemi yzzrko aasxxy adkvim afxxag aiidbe algsge aocucv aqhcgz assoja autfkn awuyjt azlsrx bbutcv bekzot bgqzbq biuegl zaevyr aavzgg adltcj afyabs aijftc alhglk aodiwx aqhhfe asvmih autupx awwkot azmewz bbwzad bemcwh bgreym biuitb zbsman aazosu admrrl afyauc aikkbu alnaou aofpiw aqjmwz asxqds auuavb awycmi azsyml bbxemq bemzfm bgrrcl bizrww zbtqbj abehgh adntvf afyvwn aikzdb alntim aogyuq aqklbl asyndx auwzri axcxww azthqg bbxjsm bencps bgruax bjattw zcvszl abewbu adoocl agengu ailxqy alpmxm aojznw aqpqht atbasu auxksf axfbnt azttxy bbyfpx benwpb bgsmqk bjdwnz zgpqpu abezzk adrcwt aggdvb ainmwx alpqsy aoosqk aqqpcs atblcz avdfth axihki azyikh bcajyy berypo bgsvsq bjecgi zhcxfo abfzvj aducad aggxet aipdgm alqywg aoumuh aqrzxv atizrx avitoo axiyzt azzeze bcarug bewkyy bgvwfn bjelth ··· zhimqb abhpnd adxibm agilsk aiqpla alrcox aounto aqtbra atjatn avkdop axjsyi baabzz bcbpmb bezdsf bgzfcv bjgxsx zifxpn abiuya adzeia agjzbq airzbh alsqcc aouwts aqubae atjrif avkwlo axkozd babjsw bccmbf bfahxs bhalpb bjhqur zkpuwk abiuzm adzzos agkqsq aisbsq alusju aovcws aqvaof atjygy avmbdj axlpji babwli bcdglj bfbhmx bhdgfg bjjxfi zmmbtm abnupx aeadab agpjqn aitxww alwqyf aowpnt ararwj atnvan avrdra axmnof baeobz bckqwy bfcbqk bhdtbd bjooct zmyjlg abpbwg aeaqow agrhbk aiuzrs alzamo apajtd arclkg atqnnl avribs axnxkw bafvpb bckscs bfcpiy bhegrf bjpotv zphdph abqgug aecivq agsdgl aivvhr amgqss apiavv arejzp atquau avrnvo axpboa baianr bclmll bfgcap bheueq bjpynl zqxllw aburmd aeerue agsqcw aixfou amhakd apimyw arfjwa atrrhy avrtrx axqreb baithl bcsqon bfibzw bhgone bjrwtg zrhnck abuwbb aehzxs agwzau aizrni amhdaz apjioo arfqgt atrsps avsbqn axqruc bajnun bctjtc bfkaoi bhjgrs bjumaz zrwvbe abvbpc aekcyw agypig ajgtzv amjopa apjotn arfspu atsjxf avskdw axsmim bajumm bcuajz bfolhp bhjsvk bjvual zsqsms abwbmz aeogvx agyuko ajhsos amjzbx apkmlj arhdbn atvrii avuggm axtpkv bakfez bculmt bfpldp bhmbhk bkaybs ztpgre abwvhz aeovcf ahbtdu ajhukr amnlca aplagx arhwfh atvsai avuqnw axtxvy balddt bcvdli bfuiyh bhphpk bkbnwv zuodtj abyriu aerhzk ahcmoe ajkgep amqqqy apnzjn arihga atvvvw avwmrq axurvr banaxp bcxvve bfuwfd bhqwpr bkdovs zvfwsn acbhsz aesors ahcvhq ajkjau amrbkz apokor arivkj atywzv avwvgp axzhuo batkpr bdanan bfvqde bhrbik bkdpim zwbcux acctdq aetqfo ahetga ajqsix amwcxz apsgxn arjhmz atyziy avxmmd ayahun batvkf bdbgzf bfvzbp bhsmsi bkjghe zwyoyq acejkm aevbir ahewyq ajrudr amzwsm aptglv arlexz atzbub avxtll aybrux batyfk bddfnh bfwjew bhtqhq bkkvsc zyrrys acfdza afakbv ahhhbc ajtkva anajaw apufvc armidr auezwq awbypc ayczsy bavbrv bddtgi bfyebl bhuaqp bklhwk zyxiff acgbsh afaofy ahiaky ajwaqx anesyt apxbwm arnxoz aufbhe awcpmq ayddla bawubh bdfbom bfygva bhwcgp bkpjuc zzbavz 7

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

2020 2020-2021 2021 MEDICAL PLAN RECOMMENDATIONS April 13, 2020 2019 2019-2020 PLAN YEAR

2020 2020-2021 2021 MEDICAL PLAN RECOMMENDATIONS April 13, 2020 2019 2019-2020 PLAN YEAR

2020 2020-2021 2021 MEDICAL PLAN RECOMMENDATIONS April 13, 2020 2019 2019-2020 PLAN YEAR REVIEW SEPTE TEMBER 1, , 2019 - AUGUST 31, , 2020 Plan changes implemented 2019-2020 Increased district contribution to $350/month

434 views • 9 slides
2020 2021 Proposed Final Budget May 11, 2020 A Look at 2019-2020 2019-2020 Budget had

2020 2021 Proposed Final Budget May 11, 2020 A Look at 2019-2020 2019-2020 Budget had

2020 2021 Proposed Final Budget May 11, 2020 A Look at 2019-2020 2019-2020 Budget had projected use of Fund Balance of $830,792 Expenditures Changes should produce savings Right??? Substitutes Salaries &

251 views • 10 slides
H1 2020 CHAIRMAN & CEO FIT SOP 2019 SOP 2019 SOP 2019 New X1.3 X1.6 X2.9 customer in

H1 2020 CHAIRMAN & CEO FIT SOP 2019 SOP 2019 SOP 2019 New X1.3 X1.6 X2.9 customer in

H1 2020 CHAIRMAN & CEO FIT SOP 2019 SOP 2019 SOP 2019 New X1.3 X1.6 X2.9 customer in ADAS GOLF 8 ID.3** SOP 2019 SOP 2019 We have invested in 12 new key technological platforms to create a unique product portfolio. X4.5 X3.4 In

1.33k views • 55 slides
2020 UNIFIED TRANSPORTATION PROGRAM (UTP) Texas Transportation Commission 8/29/2019 2020 UTP

2020 UNIFIED TRANSPORTATION PROGRAM (UTP) Texas Transportation Commission 8/29/2019 2020 UTP

2020 UNIFIED TRANSPORTATION PROGRAM (UTP) Texas Transportation Commission 8/29/2019 2020 UTP 8/29/2019 2020 UTP 8/29/2019 2 2020 UTP Development Timeline January February March April August May June July TTC Workshop TTC

306 views • 18 slides
H1 2020 results July 28, 2020 Market context was challenging over Q2 2020 Avg. spot power

H1 2020 results July 28, 2020 Market context was challenging over Q2 2020 Avg. spot power

Enel Russia H1 2020 results July 28, 2020 Market context was challenging over Q2 2020 Avg. spot power prices Electricity demand Q2 2020 vs Q2 2019 Q2 2020 vs Q2 2019 H1 2020 vs H1 2020 vs H1 2019 H1 2019 Center Center -2% -18% -13%

456 views • 16 slides
SNAT DE BELGIQUE BELGISCHE SENAAT SESSION DE 2019-2020 ZITTING 2019-2020 8 OCTOBRE 2019 8

SNAT DE BELGIQUE BELGISCHE SENAAT SESSION DE 2019-2020 ZITTING 2019-2020 8 OCTOBRE 2019 8

7-95/1 7-95/1 SNAT DE BELGIQUE BELGISCHE SENAAT SESSION DE 2019-2020 ZITTING 2019-2020 8 OCTOBRE 2019 8 OKTOBER 2019 Proposition de rsolution visant tablir Voorstel van resolutie met het oog op een un cadre lgal relatif la

92 views • 5 slides
0 PLANS FOR 2020 0 PLANS FOR 2020 19-12-2019 0 S IN 2019 Truth utilities linking

0 PLANS FOR 2020 0 PLANS FOR 2020 19-12-2019 0 S IN 2019 Truth utilities linking

MILO VERMEULEN 19-12-2019 0 PLANS FOR 2020 0 PLANS FOR 2020 19-12-2019 0 S IN 2019 Truth utilities linking MC to reco and vice versa General purpose 0 information extraction module

593 views • 9 slides
Finishing Strong Class of 2019, 2020, 2021 A-F: Mrs. Smith Class of 2019, 2020, 2021 P-Z: Mrs.

Finishing Strong Class of 2019, 2020, 2021 A-F: Mrs. Smith Class of 2019, 2020, 2021 P-Z: Mrs.

Finishing Strong Class of 2019, 2020, 2021 A-F: Mrs. Smith Class of 2019, 2020, 2021 P-Z: Mrs. Salazar Class of 2022: Mr. Mancuso Class of 2019, 2020, 2021 G-O: Mr. Sabato PRIDES PEAK: Mrs. Cassutt At-Risk/Group Counselor: Ms. Ronneseth

379 views • 13 slides
2019/2020 Budget Update Board of Education Meeting September 5, 2019 AGENDA 2019/2020

2019/2020 Budget Update Board of Education Meeting September 5, 2019 AGENDA 2019/2020

2019/2020 Budget Update Board of Education Meeting September 5, 2019 AGENDA 2019/2020 Adopted Budget Summer Activity Pending Budget Items Proposed Revisions to the 2019/2020 Adopted Budget 2019/2020 Adopted Budget Adopted on

628 views • 17 slides
RenMac 2020 Outlook Call ll 12/19/2019 1 Overall Less policy risk in 2020 than 2019.

RenMac 2020 Outlook Call ll 12/19/2019 1 Overall Less policy risk in 2020 than 2019.

RenMac 2020 Outlook Call ll 12/19/2019 1 Overall Less policy risk in 2020 than 2019. Trump needs strong economy. Lawmakers are risk-averse. Shortened-legislative calendar. Trade will continue to be a headwind but

615 views • 43 slides
Umicore FY 2019 performance 7 February 2020 Overview Highlights 2019 2020 outlook 2019

Umicore FY 2019 performance 7 February 2020 Overview Highlights 2019 2020 outlook 2019

Umicore FY 2019 performance 7 February 2020 Overview Highlights 2019 2020 outlook 2019 business review 2019 financial review Wrap up Q&A Umicore 2019 performance 2 Highlights 2019 Strong performance in challenging environment ENERGY

637 views • 28 slides
Board of Education Meeting 2019-2020 Budget March 18, 2019 First Hurdles 2019-2020 Estimated

Board of Education Meeting 2019-2020 Budget March 18, 2019 First Hurdles 2019-2020 Estimated

Board of Education Meeting 2019-2020 Budget March 18, 2019 First Hurdles 2019-2020 Estimated Expenditure Increases Salaries/Fringes Increases $ 570,584 Debt Service 173,801 All other district expenses 325,438 Total

437 views • 10 slides
7/9/2020 2020-21 Guidelines and Policies: Updates July 9, 2020 7/9/2020 1 1 2019-20 data

7/9/2020 2020-21 Guidelines and Policies: Updates July 9, 2020 7/9/2020 1 1 2019-20 data

7/9/2020 2020-21 Guidelines and Policies: Updates July 9, 2020 7/9/2020 1 1 2019-20 data entry Corrections ed: Double check data entry 20 adults with reason for leaving adult ed is release from incarceration/not in community ed but

184 views • 5 slides
Horizon 2020 EIC pilot programmes 2019-2020 Hasan Burak TIFTIK Horizon 2020 SME Instrument

Horizon 2020 EIC pilot programmes 2019-2020 Hasan Burak TIFTIK Horizon 2020 SME Instrument

Horizon 2020 EIC pilot programmes 2019-2020 Hasan Burak TIFTIK Horizon 2020 SME Instrument National Contact Point Istanbul 03 May 2019 Contents Horizon 2020 in General EIC Instruments Pathfinder FET Open FET Proactive

494 views • 28 slides
2019-2020 BUDGET PRESENTATION May 14, 2019 Enrollment & Staffing Trends Proposition I:

2019-2020 BUDGET PRESENTATION May 14, 2019 Enrollment & Staffing Trends Proposition I:

2019-2020 BUDGET PRESENTATION May 14, 2019 Enrollment & Staffing Trends Proposition I: 2019-2020 Budget Proposition I Shall the annual budget of the Avoca Central School District for the fiscal year 2019-2020 in the amount of

720 views • 37 slides
Icelandic Salmon Q3 2020 Q3 2019 YTD 2020 YTD 2019 1 As previously stated, weak results in Q3

Icelandic Salmon Q3 2020 Q3 2019 YTD 2020 YTD 2019 1 As previously stated, weak results in Q3

Icelandic Salmon Q3 2020 Q3 2019 YTD 2020 YTD 2019 1 As previously stated, weak results in Q3 2020 Operating income (NOKm) 110 152 489 462 Operational EBIT (NOKm) -22 22 -31 73 Result is impacted by high costs and weak price

202 views • 8 slides
1. Webinar Instructions 2. Overview of Chesapeake Bay Stewardship Fund 3. Intro to 2017

1. Webinar Instructions 2. Overview of Chesapeake Bay Stewardship Fund 3. Intro to 2017

1. Webinar Instructions 2. Overview of Chesapeake Bay Stewardship Fund 3. Intro to 2017 Chesapeake Bay Stewardship Fund RFP - Special opportunities for PA Ag conservation partners - Corodination with NRCS CIG program Fine Print and

519 views • 23 slides
1 Active recharge (not talking about passive) Talking about recharge (not direct use for now) 2 3

1 Active recharge (not talking about passive) Talking about recharge (not direct use for now) 2 3

1 Active recharge (not talking about passive) Talking about recharge (not direct use for now) 2 3 **Statement about unit cost may contradict the next slide on the costs** Variable hydrology and limited storage? Army Corps dams, etc. Peak flows

584 views • 13 slides
Dissecting QNX Analyzing & Breaking Exploit Mitigations and PRNGs on QNX 6 and 7 Jos Wetzels,

Dissecting QNX Analyzing & Breaking Exploit Mitigations and PRNGs on QNX 6 and 7 Jos Wetzels,

Dissecting QNX Analyzing & Breaking Exploit Mitigations and PRNGs on QNX 6 and 7 Jos Wetzels, Ali Abbasi Who are we? Jos Wetzels Ali Abbasi Independent Security Researcher @ Midnight Blue Ph.D. Candidate @ TU/e (Previously) Security

714 views • 69 slides
Evolving Cyber Risks for Small Businesses Sponsored By: Evolving Cyber Risks for Small

Evolving Cyber Risks for Small Businesses Sponsored By: Evolving Cyber Risks for Small

Evolving Cyber Risks for Small Businesses Sponsored By: Evolving Cyber Risks for Small Businesses Visit www.advisenltd.com at the end of this webinar to download: Copy of these slides Recording of todays webinar Corresponding

515 views • 19 slides
CSE543 - Introduction to Computer and Network Security Module: Botnets Professor Patrick

CSE543 - Introduction to Computer and Network Security Module: Botnets Professor Patrick

287 views • 25 slides
How to be a paranoid Dates of birth or just think like one Exposure to identity theft

How to be a paranoid Dates of birth or just think like one Exposure to identity theft

Leaking information Stealing 26.5 million veteran s data Pro rotection a and S d Securi rity Data on laptop stolen from employee s home (5/06) Veterans names Social Security numbers How to be a paranoid Dates of birth or

337 views • 5 slides
Cashing out the Great Cannon? On Browser-based DDoS Attacks and Economics G. Pellegrino (1) , C.

Cashing out the Great Cannon? On Browser-based DDoS Attacks and Economics G. Pellegrino (1) , C.

Cashing out the Great Cannon? On Browser-based DDoS Attacks and Economics G. Pellegrino (1) , C. Rossow (1) , F. J. Ryba (2) , T. C. Schmidt (3) , M. Whlisch (2) (1) CISPA / MMCI, Saarland University (2) Freie Universitt Berlin (3) HAW Hamburg

520 views • 36 slides
Dawn Song dawnsong@cs.berkeley.edu 1 Introduction MW 1-2:30pm (starts at 1:10pm)

Dawn Song dawnsong@cs.berkeley.edu 1 Introduction MW 1-2:30pm (starts at 1:10pm)

294-24 Privacy and Security Enhancing Technologies Dawn Song dawnsong@cs.berkeley.edu 1 Introduction MW 1-2:30pm (starts at 1:10pm) Website: http://www.cs.berkeley.edu/~dawnsong/teaching/f07 Prerequisite: Grad students: none

499 views • 6 slides

More recommend