Why ALL Why ALL Why ALL Social Why ALL Social ocial Media ocial - - PowerPoint PPT Presentation

Why ALL Why ALL Social

• cial Media

edia Are Are Security ecurity Nightmares ightmares! Why ALL Why ALL Social

• cial Media

edia Are Are Security ecurity Nightmares ightmares!

Myspace is linked to your Facebook and its Twitterific!

David Jacoby Senior Security Researcher

About Da

• ut David Jacob

vid Jacoby About Da

• ut David Jacob

vid Jacoby

• Senior Security Researcher
• Global Research and Analysis Team
• Vulnerability and Threat Management
• Spokesperson
• Web Application Security
• Web Application Security
• Alternative Operating Systems
• Read about security!
• Write about security!
• Talk about security!
• Work with security!

Sep 22, 2011 The Kaspersky Security Symposium, Munich

What What We We Kno now What What We We Kno now

• What we already know about social media and security
• Koobface
• Phishing attacks
• Clickjacking
• Malicious applications
• Malvertising
• Used for C&C servers
• Used for C&C servers
• Malicious links
• Extreme information exposure
• Client vulnerabilities

Sep 22, 2011 The Kaspersky Security Symposium, Munich

KoobF

• obFace

ce KoobF

• obFace

ce

• KoobF
• obFace

ce

• Facebook
• MySpace

MySpace

• Twitter
• Friendster
• and others...
• Multi-platform
• Microsoft Windows
• Mac OS X
• Linux
• Two social engineering attacks
• Tricked users to visit a link
• Tricked users to update Adobe Flash

Sep 22, 2011 The Kaspersky Security Symposium, Munich

Link LinkedIn Phishing A edIn Phishing Attempt Link LinkedIn Phishing A edIn Phishing Attempt

• Collects username / passwords
• Looks VERY authentic

Sep 22, 2011 The Kaspersky Security Symposium, Munich

Twitt itter Bo Botne tnet Twitt itter Bo Botne tnet

• Twitter used as C&C Server
• Encrypted (HTTPS)

Sep 22, 2011 The Kaspersky Security Symposium, Munich

Social Social Media Media Are re Here Here to to Sta Stay Social Social Media Media Are re Here Here to to Sta Stay

• Total Facebook users
• About 50% of the population in the United States and United Kingdom

p p g

Sep 22, 2011 The Kaspersky Security Symposium, Munich

source: SocialBakers

Social Social Media Media Are re Here ere to to Sta Stay Social Social Media Media Are re Here ere to to Sta Stay

• Total Facebook users in Europe
• 211 512 380 users - 26.6% of the population

p p

Sep 22, 2011 The Kaspersky Security Symposium, Munich

source: SocialBakers

Social Social Media Media Are re Here ere to to Sta Stay Social Social Media Media Are re Here ere to to Sta Stay

• Facebook vs. LinkedIn

source: SocialBakers source: SocialBakers source: SocialBakers

Sep 22, 2011 The Kaspersky Security Symposium, Munich

source: SocialBakers

What What Can Can We Expect xpect fr from

• m Vendors

ndors? What What Can Can We Expect xpect fr from

• m Vendors

ndors?

• Who is responsible for „security“?
• People don‘t really understand that WE are responsible

p y p

• What type of „security“ can we expect?
• Vendors handle security for their property

Sep 22, 2011 The Kaspersky Security Symposium, Munich

The Ne The New w Era ra of Social

• f Social Media

Media The Ne The New w Era ra of Social

• f Social Media

Media

Sep 22, 2011 The Kaspersky Security Symposium, Munich

What What Are Are the the Real eal Threats hreats? What What Are Are the the Real eal Threats hreats?

• Attacks exploit trust
• This makes social engineering attacks very powerful!

g g y p

Sep 22, 2011 The Kaspersky Security Symposium, Munich

What What Are Are the the Real eal Threats hreats? What What Are Are the the Real eal Threats hreats?

• Attacks exploit ignorance
• We are willing to take risks just to get connected even we know its a

g j g risk!

Sep 22, 2011 The Kaspersky Security Symposium, Munich

What What Are re the the Real eal Threats hreats? What What Are re the the Real eal Threats hreats?

• „ Leapfrog attacks“
• We re-use information (accounts, passwords), which can lead to other

( p ) systems

Sep 22, 2011 The Kaspersky Security Symposium, Munich

What What Are Are the the Real eal Threats hreats? What What Are Are the the Real eal Threats hreats?

You can u can pr protect ect yo yourself against against technical vulnerabilities chnical vulnerabilities You can u can pr protect ect yo yourself against against technical vulnerabilities chnical vulnerabilities, but ho but how do y w do you secure a mindse u secure a mindset? t?

Sep 22, 2011 The Kaspersky Security Symposium, Munich

• D

id J b

• David Jacoby

david.jacoby@kaspersky.com 46 707 359001 +46-707-359001 http://www.securelist.com

Summar Summary Summar Summary

• We already know a lot about social network platforms
• Social media are a part of our life; therefore very hard to

Social media are a part of our life; therefore, very hard to limit

• We can protect ourselves against technical

We can protect ourselves against technical vulnerabilities, but not social vulnerabilities

• Social media are exploiting ignorance and trust

Social media are exploiting ignorance and trust

• We expect more attacks for social media platforms
• Att

k d l l tt k t t d

• Attackers need only a very low attack rate to succeed
• We are now facing „user-generated attacks“

Sep 22, 2011 The Kaspersky Security Symposium, Munich