trusted friend attack
play

TRUSTED FRIEND ATTACK: GUARDIAN ANGELS STRIKE A talk by Ashar Javed - PowerPoint PPT Presentation

Feb 28, 2024 •50 likes •1.77k views

TRUSTED FRIEND ATTACK: GUARDIAN ANGELS STRIKE A talk by Ashar Javed @ DeepSec (21-22 November 2013), Vienna Austria WHAT Survey of " Fallback Authentication Methods " of fifty (50) popular social networking websites GRAPH IS BIG

  1. ANOTHER BAD SECURITY PRACTICE https://www.facebook.com/help/163063243756483 Question: What happens if a user realize after answering/setting the question that he has chosen a weak answer? Remark: In case of compromised accounts, if attacker has proceeded via answering the security question, he can do the same thing some time after because "QnA" remains same.

  2. INCONSISTENCY IN SECURITY QUESTIONS' USER INTERFACE

  3. WHAT IS YOUR REACTION IF YOU HAVE TO GIVE AN ANSWER TO A SECURITY QUESTION(S) THAT IS NOT EVEN A PART OF FACEBOOK'S DEFAULT SECURITY QUESTIONS' LIST?

  4. MY REACTION :-)

  5. SECURITY QUESTION # 1

  6. SECURITY QUESTION # 2

  7. HOW CAN A LEGITIMATE USER GIVE AN ANSWER TO A SECURITY QUESTION THAT HE HAS NEVER SET? No Way ... BUT I know the answer that works sometimes :-) https://www.facebook.com/ ashar.javed (ajaved) mscashar.javed (mjaved) https://www.facebook.com/

  8. EMPIRICAL STUDY Tested real 250 accounts of my friends on Facebook. In 181 cases, Facebook doesn't allow us to proceed ... It means no security question exposed + no option of trusted friends In 69 cases, Facebook allows us to PROVIDE a NEW EMAIL ADDRESS and once provided, we can have either security question exposed or trusted friends feature appears or BOTH

  9. 181 CASES WE GOT ... If as an attacker, we click on " I Cannot Access My Email "

  10. 181 CASES (NO EMAIL ACCESS ... WE ARE SORRY) https://www.facebook.com/recover/extended/ineligible

  11. IN 69 CASES Facebook exposed the selected security question of the victim OR Option of Trusted friends' selection OR Choice among above two options

  12. 11 OUT OF 69 ACCOUNTS COMPROMISED Out of 11 compromised accounts 8 by answering security question AND 3 using trusted friends feature ENOUGH FOR POC! # of compromised accounts can be easily raised to 20-25 but requires more work & motivation :-)

  13. SOME INTERESTING OBSERVATIONS

  14. ON FACEBOOK ANYBODY CAN SEND ANYONE A PASSWORD RESET REQUEST IF HE KNOWS THE USERNAME WHICH IS PUBLIC INFORMATION

  15. AT THE SAME TIME DENIAL-OF-SERVICE (DOS) VICTIM What if attacker will enter 20-30 times wrong secret code? Attacker doesn't have access to victim's email box in order to get the valid 6 digit code but he has the above dialog box in front of him ...

  16. HERE YOU GO: " Try again later " will be nasty experience for the victim! We call this " Password Reset DoS "

  17. IDENTIFY ACCOUNT ANOTHER WAY In this way, attacker can force victim to use email address or phone and if victim has lost his email address ....

  18. WORST THING

  19. MY FRIEND'S REACTION ON WORST THING

  20. ANOTHER TYPE OF DOS ON FACEBOOK

  21. TRUSTED FRIEND FEATURE DOS If an attacker has started the password recovery using TF and at the same time victim tries to use this feature ... he will receive the following message from Facebook

  22. FACEBOOK'S SECURITY MEASURES & HOW LEGITIMATE USERS REACT & THEIR BYPASSES

  23. THIS IS HOW COMMON USERS USE FACEBOOK...

  24. 1) SECURITY ALERT VIA EMAIL OR MOBILE SMS As soon as attacker starts an account recovery via " password reset " functionality, Facebook immediately sends an email or sms alert to the legitimate user.

  25. USERS' REACTION ON THIS EMAIL OR SMS

  26. USERS' REACTION ON THIS EMAIL OR SMS

  27. 2) TEMPORARILY LOCKED In order to recognize device, Facebook uses OS, IP Address, Browser & Estimated Location etc. What happens if attacker clicks on " Continue " button?

  28. WHAT HAPPENS IF AN ATTACKER CLICKS ON " CONTINUE " BUTTON?

  29. (1)

  30. (2) Click " Continue " after selecting one of the option but remember who is doing selection? An ATTACKER

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Autoimmune Disease - What Is It? We depend on our immune system to stay healthy or recover from

Autoimmune Disease - What Is It? We depend on our immune system to stay healthy or recover from

Autoimmune Disease - What Is It? We depend on our immune system to stay healthy or recover from illness. Like a trusted friend, it comes rushing to your defense when your body is under attack from harmful bacteria or viruses. However, if you

431 views • 13 slides
1 Attacks on randomization - Error repeating the question An attack:

1 Attacks on randomization - Error repeating the question An attack:

Context: Theory of variable privacy Theory of security allows binary choice for data revelation: Bob is trusted/untrusted The channel coding theorem and the If he is trusted, data is revealed to him using a perfect protocol

400 views • 5 slides
A Replay Attack in the TCG Specification and a Solution Danilo Bruschi Lorenzo Cavallaro Andrea

A Replay Attack in the TCG Specification and a Solution Danilo Bruschi Lorenzo Cavallaro Andrea

Trusted Computing Platforms Replay Attack Model Checking Proposed Solution Conclusion and Future Works A Replay Attack in the TCG Specification and a Solution Danilo Bruschi Lorenzo Cavallaro Andrea Lanzi Mattia Monga Universit` a degli

579 views • 38 slides
http://cs224w.stanford.edu Start with the intuition [Heider 46]: Friend of my friend is my

http://cs224w.stanford.edu Start with the intuition [Heider 46]: Friend of my friend is my

CS224W: Analysis of Networks Jure Leskovec, Stanford University http://cs224w.stanford.edu Start with the intuition [Heider 46]: Friend of my friend is my friend Enemy of enemy is my friend Enemy of friend is my enemy Look at

972 views • 64 slides
Want to impress your boy friend / girl friend? SAT Modulo Ordinary Differential Equations An

Want to impress your boy friend / girl friend? SAT Modulo Ordinary Differential Equations An

Want to impress your boy friend / girl friend? SAT Modulo Ordinary Differential Equations An Analysis Method for Hybrid Systems Martin Frnzle 1 with slides, L A T EX souce, etc., by Andreas Eggers 1 Christian Herde 1 Nacim Ramdani 2

889 views • 39 slides
Padding Oracle Attack for non-standard PKCS#1 v1.5 Can non-standard implementation provide us a

Padding Oracle Attack for non-standard PKCS#1 v1.5 Can non-standard implementation provide us a

Padding Oracle Attack for non-standard PKCS#1 v1.5 Can non-standard implementation provide us a shelter? Si Gao Hua Chen Limin Fan Trusted Computing and Information Assurance Laboratory, Institute of Software, Chinese Academy of Sciences

442 views • 40 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
About imec-DistriNet enclave research https://distrinet.cs.kuleuven.be/ Trusted computing across

About imec-DistriNet enclave research https://distrinet.cs.kuleuven.be/ Trusted computing across

About imec-DistriNet enclave research https://distrinet.cs.kuleuven.be/ Trusted computing across the system stack: hardware, compiler, OS, application Integrated attack-defense perspective and open-source prototypes SGX-Step framework Sancus

925 views • 75 slides
Jesus tells a parable about a midnight request of a friend. This friend needs to borrow

Jesus tells a parable about a midnight request of a friend. This friend needs to borrow

Jesus tells a parable about a midnight request of a friend. This friend needs to borrow loaves of bread to feed an unexpected guest. Since most people are sleep at midnight, his request is declined. and from inside he answers and

625 views • 23 slides
Committee Report 2018 / 2019 Your Committee Larry Herbert (Chair) - Friend of Keston Common John

Committee Report 2018 / 2019 Your Committee Larry Herbert (Chair) - Friend of Keston Common John

Committee Report 2018 / 2019 Your Committee Larry Herbert (Chair) - Friend of Keston Common John Ince (Vice-chair) - Friend of Hoblingwell John Cutting (Treasurer) - Friend of Kelsey Park Kari Silvester - Friend of Bromley Town Parks Keith Rodwell

166 views • 12 slides
TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution Environments Gui Andrade Krste Asanovi Dayeol Lee David Kohlbrenner Dawn Song University of California, Berkeley TRUSTED MEMORY? Securing data/code

703 views • 48 slides
Trusted Caregivers, On Demand An app that provides a marketplace of trusted, convenient, and

Trusted Caregivers, On Demand An app that provides a marketplace of trusted, convenient, and

Trusted Caregivers, On Demand An app that provides a marketplace of trusted, convenient, and affordable caregivers to families on demand. Why create RestUp? Americans provide $470 Billion in unpaid care in 2015. Emergency Staffing

324 views • 8 slides
Office for Security & Counter Terrorism Learning from the Skripal attack for CBRN

Office for Security & Counter Terrorism Learning from the Skripal attack for CBRN

OFFICIAL-SENSITIVE Office for Security & Counter Terrorism Learning from the Skripal attack for CBRN Preparedness. Presented by: Anita Friend Date: 24 th April 2019 OFFICIAL-SENSITIVE Reflections Skripal response The response was

510 views • 7 slides
Years ago, sitting atop a mound of lava on the island of Baltra in the Galapagos, a friend of

Years ago, sitting atop a mound of lava on the island of Baltra in the Galapagos, a friend of

Years ago, sitting atop a mound of lava on the island of Baltra in the Galapagos, a friend of mine turned to another friend and announced, I came to find myself. Thats funny, replied the other friend, because I came

696 views • 23 slides
Your Trusted China Partner Market Overview Your Trusted Partner in China Source: McKinsey &

Your Trusted China Partner Market Overview Your Trusted Partner in China Source: McKinsey &

Chinas Dietary Supplement Industry Market Insights Natural Products Expo West March 11, 2017 Your Trusted China Partner Market Overview Your Trusted Partner in China Source: McKinsey & Company Your Trusted Partner in China Consumer

409 views • 29 slides
GeoPal: Friend Spam Detection in Social Networks with Private Location Proofs Bogdan Carbunar,

GeoPal: Friend Spam Detection in Social Networks with Private Location Proofs Bogdan Carbunar,

GeoPal: Friend Spam Detection in Social Networks with Private Location Proofs Bogdan Carbunar, Mizanur Rahman, Mozhgan Azimpourkivi, Debra Davis Florida International University carbunar@cs.fiu.edu Social Network Friend Spam Friend invitations

351 views • 20 slides
GDPR FOR AUTHORS EVERYTHING YOU NEED TO KNOW YOURE IN THE RIGHT PLACE IF Youre an

GDPR FOR AUTHORS EVERYTHING YOU NEED TO KNOW YOURE IN THE RIGHT PLACE IF Youre an

GDPR FOR AUTHORS EVERYTHING YOU NEED TO KNOW YOURE IN THE RIGHT PLACE IF Youre an author, or aspiring author Youre marketing online to people in the EU You want to understand how data privacy laws affect what youre

605 views • 23 slides
Contact Information The Write Way: How HR Professionals Can Get Results Presented by

Contact Information The Write Way: How HR Professionals Can Get Results Presented by

Contact Information The Write Way: How HR Professionals Can Get Results Presented by Latonia Page Federal HR Institute Center for Leadership Development Developing Visionary Leaders to Transform Government LEADERSHIP.OPM.GOV |

609 views • 41 slides
THE POWER OF READING 10 FACTS EVERY TEACHER & PARENT MUST KNOW EMAIL:

THE POWER OF READING 10 FACTS EVERY TEACHER & PARENT MUST KNOW EMAIL:

THE POWER OF READING 10 FACTS EVERY TEACHER & PARENT MUST KNOW EMAIL: jimmckenzie@trsonline.org We are raising the most distracted Our politics, religion, news, generation in the history of the athletics, education and commerce

385 views • 14 slides
B2B Email Messaging: How to maximize the quality of your leads with carefully crafted email

B2B Email Messaging: How to maximize the quality of your leads with carefully crafted email

B2B Email Messaging: How to maximize the quality of your leads with carefully crafted email messaging Presenter: Dr. Flint McGlaughlin About the Presenter Dr. Flint McGlaughlin Managing Director, MECLABS Flint McGlaughlin is the Managing

571 views • 40 slides
Phishing Junxiao Shi, Sara Saleem University of Arizona Apr 23, 2012 1 Introduction 2 Email

Phishing Junxiao Shi, Sara Saleem University of Arizona Apr 23, 2012 1 Introduction 2 Email

Phishing Junxiao Shi, Sara Saleem University of Arizona Apr 23, 2012 1 Introduction 2 Email Spoofing 3 Web Spoofing 4 Pharming 5 Malware 6 Phishing through PDF 7 References What is Phishing a form of social engineering to fraudulently retrieve

640 views • 38 slides
Security for Cloud & Big Data CS 161: Computer Security Prof. David Wagner April 25, 2016

Security for Cloud & Big Data CS 161: Computer Security Prof. David Wagner April 25, 2016

Security for Cloud & Big Data CS 161: Computer Security Prof. David Wagner April 25, 2016 Awesome Project 2 Solutions Honorable mention: Vincent Wang and John Choi super-efficient updates (6-9x better than our target!) using a log of

955 views • 28 slides
!"#$%&'()*+!,-,#")-".+/-%0("1+2.$3+4##"11+-$+

!"#$%&'()*+!,-,#")-".+/-%0("1+2.$3+4##"11+-$+

!"#$%&'()*+!,-,#")-".+/-%0("1+2.$3+4##"11+-$+ 5,.*"6/#,'"+4&&'(#,7$)18++ 4+9$0"'()*+4&&.$,#:+2$.+/-$.,*"+;$.<'$,01+ !!"#$%&'()*+,*-&. /0 &1233&&

472 views • 30 slides
Be an Email Creative Top Chef Lisa Harmon Director, Creati tive Services Smith

Be an Email Creative Top Chef Lisa Harmon Director, Creati tive Services Smith

Be an Email Creative Top Chef Lisa Harmon Director, Creati tive Services Smith th-Harmon, rmon, A Responsys Company Shannon Dorton Marketing Manager Orbitz Shinn Chen Marketing Manager Salesforce.com January 21, 2010 Janua uary

389 views • 27 slides

More recommend