putting out a hit putting out a hit
play

Putting out a HIT Putting out a HIT Crowdsourcing Malware Installs - PowerPoint PPT Presentation

Jan 19, 2024 •197 likes •381 views

Putting out a HIT Putting out a HIT Crowdsourcing Malware Installs Stephen Checkoway Keaton Mowery Chris Kanich UC San Diego 1 Mechanical Turk Crowdsourcing platform Requesters post tasks paying 1 $10 Workers perform HITs

  1. Putting out a HIT Putting out a HIT Crowdsourcing Malware Installs Stephen Checkoway Keaton Mowery Chris Kanich UC San Diego 1

  2. Mechanical Turk • Crowdsourcing platform • Requesters post tasks paying 1¢ – $10 • Workers perform HITs – Human Intelligence Tasks • Amazon takes a 10% cut of each reward 2

  3. Pay-Per-Install • Abstracts compromise from monetization • Broker buys and sells “installs” in bulk • Sellers compromise hosts and install “droppers” • Sellers need exploits and traffic • Buyers monetize hosts (or install other droppers) • We act as hypothetical install sellers  Can we turn a profit selling installs from mturk? 3

  4. Summary • Drive-bys on Turkers are economically feasible  Volume leaves something to be desired… • Very high “exploitability” figures are common  AV up-to-date-ness in a similar state • Low-wage Turkers majority Indian 4

  5. Methodology • Goal: accurately simulate machine takeover and determine its economic profitability • Find a vulnerable population (Mturk workers) • Determine their vulnerability • Is host value > Mturk cost? Cost = 110% x (mturk wage) x (vulnerable ratio) 5

  6. Mechanical Turk HITs • Ran this at both 1¢ and 5¢ 6

  7. Mechanical Turk HITs • 38% conversion rate 7

  8. Mechanical Turk HITs • Ran this at 1¢ only 8

  9. Worker Uptake >400 hosts by t = 48 hours 9

  10. Worker Demographics • 61.3% in India • 23.2% in the U.S. • Remaining 15.5% in 75 other countries • English language HIT 10

  11. Worker Uptake 400-500 hosts per region by t = 5 days 11

  12. Vulnerability Oracle • Surveyed CVEs for popular browser plugins • Determined vulnerable version range • Limited to remotely exploitable CVEs 12

  13. Vulnerability of Workers 13

  14. Economic feasibility • For 5¢ hosts: PPI purchase price: • $100 – $180 for U.S. hosts • $7 – $8 for Asian hosts 14

  15. Drawbacks • Synthetic exploitation oracle  Exploit “startup cost” not factored in  Detection might hamper success • Uptake rate  PPI affiliates expect 1000s of hosts/week  Only feasible as a supplement to other infections • Only useful if crowdsourcing takes off 15

  16. Additional observations • Mturk allows targeting by country • Mturk’s iframe interface is powerful • AV penetration high; up-to-date not so much • Criminals might not pay their victims 16

  17. Conclusions • Antivirus use very high; correct use very low • Turker browsers very vulnerable • Mturk is very expensive as traffic acquisition • Mturk based drive-bys economically profitable, but perhaps not economically practical. 17

  18. Thank You! Yahoo! 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Unit 12: Putting it All Together: Briefly talk about system Digital Circuits Graphics

Unit 12: Putting it All Together: Briefly talk about system Digital Circuits Graphics

This Unit: Putting It All Together Application Anatomy of a game console OS Microsoft XBox 360 Compiler Firmware CIS 501: Computer Architecture Focus mostly on CPU chip CPU I/O Memory Unit 12: Putting it All Together: Briefly

374 views • 5 slides
BC Government & BCTF Putting the Students First BC Government & BCTF Putting the

BC Government & BCTF Putting the Students First BC Government & BCTF Putting the

BC Government & BCTF Putting the Students First BC Government & BCTF Putting the Students First BC Publi lic c Schools ools have e 40,000 0 teache hers s and ov over er 500,000 00 stud uden ents s in 60 school ool distric

472 views • 13 slides
Putting tec Putting tech h at the t the hear heart of t of an activ an active city e city

Putting tec Putting tech h at the t the hear heart of t of an activ an active city e city

Putting tec Putting tech h at the t the hear heart of t of an activ an active city e city Chris Scott Head of Corporate Communications, London Sport March 17 August 16 March 15 January 16 November 16 17 years ago

606 views • 46 slides
Putting drug development into Putting drug development into practice for Pancreatic Cancer:

Putting drug development into Putting drug development into practice for Pancreatic Cancer:

Putting drug development into Putting drug development into practice for Pancreatic Cancer: Malcolm J . Moore MD Head, Division of Medical Oncology and Hematology My Mentors My Mentors Pancreatic Cancer Ductal Adenocarcinom a

681 views • 17 slides
Putting the Pie c e s T o g e the r Se ssion 3 Drafting Yo ur Plan: Making Co he re nc y Out

Putting the Pie c e s T o g e the r Se ssion 3 Drafting Yo ur Plan: Making Co he re nc y Out

Putting the Pie c e s T o g e the r Se ssion 3 Drafting Yo ur Plan: Making Co he re nc y Out Of Yo ur Me tric s Welcome & I LOVE Introductions! LCAP! Putting the Pie c e s T o g e the r Se ssio n 3 2 Ag e nda L CAP: L o o

931 views • 24 slides
Building Sustainable Organizations: Putting the Profit in Nonprofit May 9, 2012 Putting the

Building Sustainable Organizations: Putting the Profit in Nonprofit May 9, 2012 Putting the

Building Sustainable Organizations: Putting the Profit in Nonprofit May 9, 2012 Putting the Profit in Nonprofit A nonprofit organization ( NPO ) is an organization that uses surplus revenues to achieve its goals rather than to distribute

448 views • 19 slides
Putting the Pie c e s T o g e the r Se ssion 4 I mple me ntatio n, Co mmunic atio n and Re

Putting the Pie c e s T o g e the r Se ssion 4 I mple me ntatio n, Co mmunic atio n and Re

Putting the Pie c e s T o g e the r Se ssion 4 I mple me ntatio n, Co mmunic atio n and Re plic ating the Pro c e ss We lc o me s & I ntro duc tio ns Putting the Pie c e s T o g e the r Se ssio n 4 2 Ag e nda De fining T he

418 views • 39 slides
Putting Kids Health First: Profitable and healthy fundraisers for Montana schools

Putting Kids Health First: Profitable and healthy fundraisers for Montana schools

9/22/11 Putting Kids Health FIRST: Montana Action for Healthy Kids ~ September 2011 Putting Kids Health First Putting Kids Health First: Profitable and healthy fundraisers for Montana schools PRESENTERS INSERT POLL ! Dayle Hayes,

435 views • 8 slides
Opportunity and Hope Putting Dreams to Work Since 1987 Strategic Thinking Who We Are The

Opportunity and Hope Putting Dreams to Work Since 1987 Strategic Thinking Who We Are The

Opportunity and Hope Putting Dreams to Work Since 1987 Strategic Thinking Who We Are The Wisconsin Womens Business Initiative Corporation (WWBIC) is a leading innovative statewide economic development corporation that is Putting

432 views • 28 slides
FINANCIAL FUNDAMENTALS FOR FOOD HUBS, PART 5: PUTTING IT ALL TOGETHER March 21, 2017

FINANCIAL FUNDAMENTALS FOR FOOD HUBS, PART 5: PUTTING IT ALL TOGETHER March 21, 2017

An NGFN An NGFN Webinar binar FINANCIAL FUNDAMENTALS FOR FOOD HUBS, PART 5: PUTTING IT ALL TOGETHER March 21, 2017 Presentation Outline Welcome Wallace Center at Winrock International Putting It All Together Questions and

465 views • 25 slides
I Investor Presentation t P t ti Putting in Place the Growth Enablers Putting in Place the

I Investor Presentation t P t ti Putting in Place the Growth Enablers Putting in Place the

I Investor Presentation t P t ti Putting in Place the Growth Enablers Putting in Place the Growth Enablers March 18, 2010 March 18, 2010 Current Structure DCBL - A Diversified Conglomerate Public / Others DCBL Promoters OCL Promoters

310 views • 16 slides
Putting on a Horse Show By: Candace Norman North Carolina 4-H Volunteer Contents Putting on a

Putting on a Horse Show By: Candace Norman North Carolina 4-H Volunteer Contents Putting on a

Putting on a Horse Show By: Candace Norman North Carolina 4-H Volunteer Contents Putting on a Horse Show Overview Horse Show Checklist Horse Show Timeline Sample Forms Class List Rider Entry Form Class Entry Form Division Talley Form

664 views • 17 slides
Digital Signatures Digital Signatures And Putting It All Together Digital Signatures And

Digital Signatures Digital Signatures And Putting It All Together Digital Signatures And

Digital Signatures Digital Signatures And Putting It All Together Digital Signatures And Putting It All Together Lecture 12 Digital Signatures Digital Signatures Syntax: KeyGen, Sign SK and Verify VK . Security: Same experiment as MAC s,

1.72k views • 142 slides
Notes Putting it together E 11 = 11 22 33 Some example values

Notes Putting it together E 11 = 11 22 33 Some example values

Notes Putting it together E 11 = 11 22 33 Some example values for common materials: (VERY approximate) E 22 = 11 + 22 33 Aluminum: E=70 GPa =0.34 Concrete: E=23 GPa

365 views • 3 slides
LECTURE 28: METRICS! CSE 442 Software Engineering Putting the E in SE Have mostly focused

LECTURE 28: METRICS! CSE 442 Software Engineering Putting the E in SE Have mostly focused

LECTURE 28: METRICS! CSE 442 Software Engineering Putting the E in SE Have mostly focused on creating software Putting the E in SE Have mostly focused on creating software Team Dynamics Putting the E in SE Have mostly focused on

993 views • 55 slides
PUTTING EVIDENCE-BASED PROGRAMS INTO PRACTICE Presentation sponsored on behalf of OAGE with

PUTTING EVIDENCE-BASED PROGRAMS INTO PRACTICE Presentation sponsored on behalf of OAGE with

1 PUTTING EVIDENCE-BASED PROGRAMS INTO PRACTICE Presentation sponsored on behalf of OAGE with presentations by: Katherine S. Judge, PhD Marc Molea, AICP Salli Bolin, MSW, LSW David M. Bass, PhD 2 PUTTING EVIDENCE-BASED PROGRAMS INTO

463 views • 9 slides
Heuris'c Searches recap Describing a state. En're state

Heuris'c Searches recap Describing a state. En're state

Heuris'c Searches recap Describing a state. En're state space vs. incremental development. Elimina'on of children. the solu'on path. Genera'on

700 views • 26 slides
Function Optimization with Local Search Sven Koenig, USC Russell and Norvig, 3 rd Edition,

Function Optimization with Local Search Sven Koenig, USC Russell and Norvig, 3 rd Edition,

12/18/2019 Function Optimization with Local Search Sven Koenig, USC Russell and Norvig, 3 rd Edition, Sections 4.1 and 4.2 These slides are new and can contain mistakes and typos. Please report them to Sven (skoenig@usc.edu). 1 Gradient

500 views • 9 slides
for Optimization and Analysis of Floating-Point Computations Heiko Becker, Pavel Panchekha, Eva

for Optimization and Analysis of Floating-Point Computations Heiko Becker, Pavel Panchekha, Eva

Combining Tools for Optimization and Analysis of Floating-Point Computations Heiko Becker, Pavel Panchekha, Eva Darulova, Zachary Tatlock FM 2018, 17.07.2018 Floating-Point Computations Are Ubiquitous 2 Floating-Point Computations are Tricky

341 views • 18 slides
Local and Stochastic Search Some material based on D Lin, B Selman 1 Search Overview

Local and Stochastic Search Some material based on D Lin, B Selman 1 Search Overview

RN, Chapter 4.3 4.4; 7.6 Local and Stochastic Search Some material based on D Lin, B Selman 1 Search Overview Introduction to Search Blind Search Techniques Heuristic Search Techniques Constraint Satisfaction Problems

818 views • 52 slides
Hit Primitives & Basic Clustering for Supernova Triggering Alexander Booth Overview:

Hit Primitives & Basic Clustering for Supernova Triggering Alexander Booth Overview:

Hit Primitives & Basic Clustering for Supernova Triggering Alexander Booth Overview: Triggering based on individual hits. Triggering based on clusters in channel and time. DAQ Sim Weekly Meeting. December 18, 2017 1 Analysis

780 views • 15 slides
A study for hit-time reconstruction of Belle II SVD Yuma Uematsu (UTokyo) on behalf of Belle II

A study for hit-time reconstruction of Belle II SVD Yuma Uematsu (UTokyo) on behalf of Belle II

A study for hit-time reconstruction of Belle II SVD Yuma Uematsu (UTokyo) on behalf of Belle II SVD group uematsu@hep.phys.s.u-tokyo.ac.jp poster (Indico) mattermost 2020/10/5 VERTEX 2020 1 pixel Belle II, SVD x2 layers strip (SVD) x4

167 views • 6 slides
Michel Electron Reconstruc0on in DUNE Aleena Rafique , Zelimir Djurcic on behalf of the DUNE

Michel Electron Reconstruc0on in DUNE Aleena Rafique , Zelimir Djurcic on behalf of the DUNE

Michel Electron Reconstruc0on in DUNE Aleena Rafique , Zelimir Djurcic on behalf of the DUNE collabora7on CPAD 2019 12/10/2019 Outline Why study Michel electrons TPC Michel Reconstruc7on Energy Reconstruc7on and Michel Energy

304 views • 26 slides
A Complete Algorithm for Generating Landmarks Blai Bonet Julio Castillo Universidad Sim on

A Complete Algorithm for Generating Landmarks Blai Bonet Julio Castillo Universidad Sim on

A Complete Algorithm for Generating Landmarks Blai Bonet Julio Castillo Universidad Sim on Bol var, Caracas, Venezuela ICAPS 2011 Freiburg, June 2011 Introduction multiple uses of landmarks in planning most powerful admissible

527 views • 38 slides

More recommend