file hosting services
play

File Hosting Services Nick Nikiforakis Marco Balduzzi Steven Van - PowerPoint PPT Presentation

Sep 13, 2023 •475 likes •784 views

Exposing the Lack of Privacy in File Hosting Services Nick Nikiforakis Marco Balduzzi Steven Van Acker Wouter Joosen Davide Balzarotti LEET 2011 Sharing is caring Internet expanding More users More Web services More Web

  1. Exposing the Lack of Privacy in File Hosting Services Nick Nikiforakis Marco Balduzzi Steven Van Acker Wouter Joosen Davide Balzarotti LEET 2011

  2. Sharing is caring • Internet expanding – More users – More Web services – More Web technologies • Users need to share files – P2P is not always the answer – Emails? LEET 2011

  3. File Hosting Services • Cloud-storage for the masses • Share files with other users • Security through obscurity access-control • Sharing personal documents as well as pirated files [1] LEET 2011

  4. Lifecycle of a file • Alice decides to shares some digital content (file) through a FHS • FHS received the file, stores it on its Cloud and generates an identifier which it: i. binds with the uploaded file ii. returns to the user in a URI form • URI is shared depending on the nature of the uploaded file LEET 2011

  5. File Identifier & Privacy • The file ID is used to enforce access-control in a security-through-obscurity way – ID == access to file • FHS are typically not-searchable – ID acts as a shared secret between a FHS and each user’s files – Non- owners should not be able to “guess” this secret LEET 2011

  6. Top 100 FHS • We studied the top 100 FHS to discover, among others, the way they generate unique “secret” identifiers – Uploading files, recording the given ID and comparing • Removed 12 that had search/browse capabilities LEET 2011

  7. Sequential IDs • 34/88 FHS were generating sequential identifiers – numeric, or alphanumerical • 20/34 did not append any other non-guessable information – e.g. filename or secondary ID • E.g. – http://vulnerable.com/9996 – http://vulnerable.com/9997 – http://vulnerable.com/9998 LEET 2011

  8. Scraping file information • Given a link a user must follow a set of steps to actually download a file – Download “foo.txt” - > “Free user” -> Wait n seconds - > “Download “foo.txt” • Advantageous for an attacker – Visit first page, scrape filename and file-size – Download only the files of interest LEET 2011

  9. Crawling 20 FHS • Designed a crawler for the 20 sequential FHS • Run for 30 days – Random delays to avoid DoS and blacklisting – Scraping only the filenames and sizes (privacy) • Results: – > 310,000 file records LEET 2011

  10. Finding private files… • Depending on the nature of a file, it will be shared in different ways • Exploit the ubiquity of search-engine crawlers to characterize a file as private or public. • Given a filename – 0 search results -> Private LEET 2011

  11. Private Files Results • Using Bing: – 54.16% of files returned 0 search results – Rough approximation of private files due to close pirate communities Filetype #Private documents Images (JPG,GIF,BMP) 27,711 Archives (ZIP) 13,354 Portable Document Format 7,137 MS Office Word 3,686 MS Office Excel Sheets 1,182 MS Office PowerPoint 967 LEET 2011

  12. Random but short • Brute-force short random identifiers Length Charset #Tries #Files Found 6 Numeric 617,169 728 6 Alphanumeric 526,650 586 8 Numeric 920,631 332 LEET 2011

  13. Design & Implementation errors • Security audit of a popular FHS software product – Used in 13% of FHSs – Directory traversal vulnerability – De-randomization attack for deletion code • Report-link contained the first 10 characters of the 14- charater delete code – 16^14 -> 16^4 combinations LEET 2011

  14. Status… • File hosting services are vulnerable – Sequential identifiers – Weak non-sequential identifiers – Bugs in their source code • Do attackers know about this? – How do we found out? LEET 2011

  15. HoneyFiles • HoneyPot for FHS attackers – Decoy files promising valuable content – Each file “called - home” when opened • <img/> in HTML files • embedded HTML in doc files • TCP socket in executables • Attempt to open page in pdf files LEET 2011

  16. Carding forum • card3rz.co.cc – fake underground carding community – One of the decoy files contained valid credentials for the forum • Reasons: i. Hide our monitors ii. Do attackers use data that they find in illegally obtained files? LEET 2011

  17. LEET 2011 NOW

  18. HoneyFiles results • Monitoring sequential FHSs for 30 days: – 275 honeyfile accesses – more than 80 unique IP addresses – 7 different sequential FHSs • 1 had a catalogue functionality • 2 had a search functionality • 4 had neither – Accesses from all around the world LEET 2011

  19. Geo-location LEET 2011

  20. HoneyFiles results • Download ratio of each file: Claimed content Download ratio Credentials to PayPal accounts 40.36% Credentials for card3rz.co.cc 21.81% PayPal account Generator 17.45% Leaked customer list 9.09% Sniffed email 6.81% List of emails for spamming purposes 5.09% LEET 2011

  21. card3rz.co.cc results • 93 successful logins – 43 different IP addresses – 32% came back at a later time • Attacks against the monitor and the login- form – SQL-injection & file-inclusion attacks • Attackers do in-fact use data from illegally obtained files LEET 2011

  22. Honeyfiles cntd. • Monitor 20 non-seq. FHSs for 10 days: – 24 honeyfile accesses – 13 unique IP addresses – 3 different FHSs • Two of them offered a search functionality • The third didn’t – but actually did… LEET 2011

  23. Status… • File hosting services are vulnerable – Sequential identifiers – Weak non-sequential identifiers – Bugs in their source code • Attackers are abusing them – They are using the data found in other user’s files LEET 2011

  24. SecureFS • A client must protect himself • Encryption is a good way – Do people know how to? – If they do know, does their OS assist them? • SecureFS – Encryption to protect a user’s data – Steganography to mislead potential attackers LEET 2011

  25. SecureFS • Browser-plugin monitoring uploads and downloads • Protects uploads on-the-fly: important.doc ENC(important SFS_HDR .doc,RND_KEY) ZIP(FAKE) LEET 2011

  26. SecureFS • Browser-plugin monitoring uploads and downloads • Rewrites download links to include the random key – http://unsafefhs.com/12345 – http://unsafefhs.com/12345/sfs_key/[RND_KEY] LEET 2011

  27. Future Work • Security/Privacy monitor for well-known FHS • Every illegal download/open would be registered to a Web service – Insecure FHS • Help users to choose a safe one • Put pressure on FHS developers to redesign their systems LEET 2011

  28. Ethics • We didn’t download user files • HoneyFiles were not harmful to a user’s computer in any way • HoneyFiles were uploaded as private files in various FHSs • All vulnerable FHSs were notified LEET 2011

  29. Conclusion • Large percentage of FHSs fail to provide the user with adequate privacy – Hundreds of thousands of files ready to be misused • Attackers know & exploit this fact • A user must protect himself: – SecureFS LEET 2011

  30. Thank you • Questions/Comments? nick.nikiforakis@cs.kuleuven.be LEET 2011

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

THE (IN)SECURITY OF FILE HOSTING SERVICES Nick Nikiforakis, Marco Balduzzi Steven Van Acker,

THE (IN)SECURITY OF FILE HOSTING SERVICES Nick Nikiforakis, Marco Balduzzi Steven Van Acker,

THE (IN)SECURITY OF FILE HOSTING SERVICES Nick Nikiforakis, Marco Balduzzi Steven Van Acker, Wouter Joosen, Davide Balzarotti OWASP Netherland Chapter Meeting 6th July 2011 Sharing is caring Internet expanding More users More Web

548 views • 30 slides
SLTNet Shared Web Hosting Services Confidential Public Shared Web Hosting Service Service

SLTNet Shared Web Hosting Services Confidential Public Shared Web Hosting Service Service

SLTNet Shared Web Hosting Services Confidential Public Shared Web Hosting Service Service Features Provide more capacity initially (300MB -1000MB) Language Support- ASP , PHP , ASP.NET v1.0/2.0/3.0/3.5/4.0 Database Support -

555 views • 10 slides
Overview of the Application pp Hosting Environment Stefan Zasada University College London y

Overview of the Application pp Hosting Environment Stefan Zasada University College London y

Overview of the Application pp Hosting Environment Stefan Zasada University College London y g 1 The Application Hosting Environment Environment Based on the idea of applications as web services Lightweight hosting environment

492 views • 24 slides
Webhosting at its best? Theoretical and technical approaches to top level hosting services

Webhosting at its best? Theoretical and technical approaches to top level hosting services

Webhosting at its best? Theoretical and technical approaches to top level hosting services Presented by: Alexandru Lauran Webhosting at its best? What is webhosting? We all use the internet nowadays. It has become a big part of our daily

708 views • 21 slides
Week 10: File Management What is a file? Elements of file management File

Week 10: File Management What is a file? Elements of file management File

CPSC 410 / 611 : Operating Systems Week 10: File Management What is a file? Elements of file management File organization Directories File allocation UNIX file system Reading: Silberschatz, Chapter 10, 11

498 views • 13 slides
What if... There is no file with the name given to the File constructor: new File

What if... There is no file with the name given to the File constructor: new File

What if... There is no file with the name given to the File constructor: new File (IDontExist.txt); Throws FileNotFoundException 1 Handling Exceptions Call that throws the exception try { File f = new File (file.txt);

804 views • 8 slides
File Management What is a file? Elements of file management File organization

File Management What is a file? Elements of file management File organization

CPSC 410 / 611 : Operating Systems File Management File Management What is a file? Elements of file management File organization Directories File allocation What is a File? A file is a collection of data elements, grouped

817 views • 38 slides
Disaster Recovery: Types of Hosting and How they Differ April 9, 2014 1. Who is Digital Realty?

Disaster Recovery: Types of Hosting and How they Differ April 9, 2014 1. Who is Digital Realty?

Disaster Recovery: Types of Hosting and How they Differ April 9, 2014 1. Who is Digital Realty? Table of 2. Definitions contents 3. Types of hosting for Disaster Recovery 4. Wholesale Colocation 5. Retail Colocation 6. Managed Services

345 views • 15 slides
CPSC 410/611: File Management What is a file? Elements of file management File

CPSC 410/611: File Management What is a file? Elements of file management File

CPSC 410 / 611 : Operating Systems CPSC 410/611: File Management What is a file? Elements of file management File organization Directories File allocation UNIX file system Reading: Silberschatz, Chapter 10, 11

186 views • 14 slides
Cloud-Based File Synchronization Services Exploding in popularity Numerous providers:

Cloud-Based File Synchronization Services Exploding in popularity Numerous providers:

*-Box (star-box) Towards Reliability and Consistency in Dropbox-like File Synchronization Services Yupu Zhang , Chris Dragga, Andrea Arpaci-Dusseau, Remzi Arpaci-Dusseau University of Wisconsin - Madison 6/27/2013 1 Cloud-Based File

882 views • 31 slides
D Dynamics of i f O li Online Scam S Hosting Infr Hosting Infr rastructure rastructure

D Dynamics of i f O li Online Scam S Hosting Infr Hosting Infr rastructure rastructure

D Dynamics of i f O li Online Scam S Hosting Infr Hosting Infr rastructure rastructure Maria Konte, N Nick Feamster Georgi a Tech Jaeyeo on Jung Intel Re esearch Online Scams Online Scams Often advertised in spam p m

450 views • 17 slides
versions for Hosting Companies Xander Lammertink System &amp; Network Engineering: RP1 Research

versions for Hosting Companies Xander Lammertink System &amp; Network Engineering: RP1 Research

Fin ine-grained control of LAMP component versions for Hosting Companies Xander Lammertink System &amp; Network Engineering: RP1 Research question How to migrate customers from LAMP hosting providers to a new type of LAMP hosting where

1.34k views • 17 slides
MetaSync File Synchronization Across Multiple Untrusted Storage Services Seungyeop Han, Haichen

MetaSync File Synchronization Across Multiple Untrusted Storage Services Seungyeop Han, Haichen

MetaSync File Synchronization Across Multiple Untrusted Storage Services Seungyeop Han, Haichen Shen, Taesoo Kim*, Arvind Krishnamurthy, Thomas Anderson, and David Wetherall University of Washington *Georgia Institute of Technology 1 File

704 views • 42 slides
Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally

Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally

Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally The NFS specification distinguishes between the implemented by Sun Microsystems. services provided by the mount mechanism and the remote file

105 views • 9 slides
File Systems: Semantics &amp; Structure What is a File a file is a named collection of

File Systems: Semantics &amp; Structure What is a File a file is a named collection of

5/16/2018 File Systems: Semantics &amp; Structure What is a File a file is a named collection of information 11A. File Semantics primary roles of file system: 11B. Namespace Semantics to store and retrieve data 11C. File

373 views • 13 slides
File Systems: Semantics &amp; Structure What is a File a file is a named collection of

File Systems: Semantics &amp; Structure What is a File a file is a named collection of

5/15/2017 File Systems: Semantics &amp; Structure What is a File a file is a named collection of information 11A. File Semantics primary roles of file system: 11B. Namespace Semantics to store and retrieve data 11C. File

352 views • 16 slides
with Lucene Aliaksei Severyn University of Trento, Italy

with Lucene Aliaksei Severyn University of Trento, Italy

NLP and IR Building your first Search Engine with Lucene Aliaksei Severyn University of Trento, Italy April 06, 2012 1 Plan for the lab

1.18k views • 39 slides
Lord of the Bing Taking Back Search Engine Hacking From Google and Bing 29 July 2010 Presented

Lord of the Bing Taking Back Search Engine Hacking From Google and Bing 29 July 2010 Presented

Lord of the Bing Taking Back Search Engine Hacking From Google and Bing 29 July 2010 Presented by: Francis Brown and Rob Ragan Stach &amp; Liu, LLC www.stachliu.com Agenda O V E R V I E W Introduction Advanced Attacks

780 views • 53 slides
VSFS: A SEARCHABLE DISTRIBUTED FILE SYSTEM Lei Xu, Ziling Huang, Hong Jiang, Lei Tian, David

VSFS: A SEARCHABLE DISTRIBUTED FILE SYSTEM Lei Xu, Ziling Huang, Hong Jiang, Lei Tian, David

VSFS: A SEARCHABLE DISTRIBUTED FILE SYSTEM Lei Xu, Ziling Huang, Hong Jiang, Lei Tian, David Swanson Introduction Introduction 3 File systems have been widely used as HPC storage infrastructures Substitutes for databases

575 views • 29 slides
[537] Search Engines Tyler Harter 12/10/14 Flash Review Flash Hierarchy Plane : 1024 to 4096

[537] Search Engines Tyler Harter 12/10/14 Flash Review Flash Hierarchy Plane : 1024 to 4096

[537] Search Engines Tyler Harter 12/10/14 Flash Review Flash Hierarchy Plane : 1024 to 4096 blocks - planes accessed in parallel Block : 64 to 256 pages - unit of erase Page : 2 to 8 KB - unit of read and program Block 1111 1111

1.45k views • 106 slides
Sanborn Maps Sources For History Sanborn Maps Buildings Created to assess fire insurance

Sanborn Maps Sources For History Sanborn Maps Buildings Created to assess fire insurance

Sanborn Maps Sources For History Sanborn Maps Buildings Created to assess fire insurance risks Created from 1867 to 1970 Mapped 12,000 locations in US Mapped 150+ locations in NC Scale of 50 feet to one inch Size 21

522 views • 7 slides
Researching Research: what academics want from the Web James A. J. Wilson

Researching Research: what academics want from the Web James A. J. Wilson

Researching Research: what academics want from the Web James A. J. Wilson James.wilson@oucs.ox.ac.uk From the RDN to 'Intute' The Resource Discovery Network, 1999-2006. R.I.P Intute, 2006- From 8 hubs to 4 'Subject Groups'

874 views • 18 slides
Path Analysis References: Ch.10, Data Mining Techniques By M.Berry, andG.Linoff

Path Analysis References: Ch.10, Data Mining Techniques By M.Berry, andG.Linoff

Path Analysis References: Ch.10, Data Mining Techniques By M.Berry, andG.Linoff http://www9.org/w9cdrom/68/68.html Dr Ahmed Rafea Outline Introduction Link Analysis Path Analysis Using Markov Chains Applications Introduction

562 views • 15 slides
Personalized PageRank Document Understanding, session 4 CS6200: Information Retrieval

Personalized PageRank Document Understanding, session 4 CS6200: Information Retrieval

Personalized PageRank Document Understanding, session 4 CS6200: Information Retrieval Conditional PageRank The original PageRank score is a B 2 A 1 distribution over the entire Internet. We are often interested in quality B 3 scores for more

532 views • 7 slides

More recommend