trusted friend attack
play

TRUSTED FRIEND ATTACK: GUARDIAN ANGELS STRIKE A talk by Ashar Javed - PowerPoint PPT Presentation

Feb 28, 2024 •50 likes •1.77k views

TRUSTED FRIEND ATTACK: GUARDIAN ANGELS STRIKE A talk by Ashar Javed @ DeepSec (21-22 November 2013), Vienna Austria WHAT Survey of " Fallback Authentication Methods " of fifty (50) popular social networking websites GRAPH IS BIG

  1. ANOTHER BAD SECURITY PRACTICE https://www.facebook.com/help/163063243756483 Question: What happens if a user realize after answering/setting the question that he has chosen a weak answer? Remark: In case of compromised accounts, if attacker has proceeded via answering the security question, he can do the same thing some time after because "QnA" remains same.

  2. INCONSISTENCY IN SECURITY QUESTIONS' USER INTERFACE

  3. WHAT IS YOUR REACTION IF YOU HAVE TO GIVE AN ANSWER TO A SECURITY QUESTION(S) THAT IS NOT EVEN A PART OF FACEBOOK'S DEFAULT SECURITY QUESTIONS' LIST?

  4. MY REACTION :-)

  5. SECURITY QUESTION # 1

  6. SECURITY QUESTION # 2

  7. HOW CAN A LEGITIMATE USER GIVE AN ANSWER TO A SECURITY QUESTION THAT HE HAS NEVER SET? No Way ... BUT I know the answer that works sometimes :-) https://www.facebook.com/ ashar.javed (ajaved) mscashar.javed (mjaved) https://www.facebook.com/

  8. EMPIRICAL STUDY Tested real 250 accounts of my friends on Facebook. In 181 cases, Facebook doesn't allow us to proceed ... It means no security question exposed + no option of trusted friends In 69 cases, Facebook allows us to PROVIDE a NEW EMAIL ADDRESS and once provided, we can have either security question exposed or trusted friends feature appears or BOTH

  9. 181 CASES WE GOT ... If as an attacker, we click on " I Cannot Access My Email "

  10. 181 CASES (NO EMAIL ACCESS ... WE ARE SORRY) https://www.facebook.com/recover/extended/ineligible

  11. IN 69 CASES Facebook exposed the selected security question of the victim OR Option of Trusted friends' selection OR Choice among above two options

  12. 11 OUT OF 69 ACCOUNTS COMPROMISED Out of 11 compromised accounts 8 by answering security question AND 3 using trusted friends feature ENOUGH FOR POC! # of compromised accounts can be easily raised to 20-25 but requires more work & motivation :-)

  13. SOME INTERESTING OBSERVATIONS

  14. ON FACEBOOK ANYBODY CAN SEND ANYONE A PASSWORD RESET REQUEST IF HE KNOWS THE USERNAME WHICH IS PUBLIC INFORMATION

  15. AT THE SAME TIME DENIAL-OF-SERVICE (DOS) VICTIM What if attacker will enter 20-30 times wrong secret code? Attacker doesn't have access to victim's email box in order to get the valid 6 digit code but he has the above dialog box in front of him ...

  16. HERE YOU GO: " Try again later " will be nasty experience for the victim! We call this " Password Reset DoS "

  17. IDENTIFY ACCOUNT ANOTHER WAY In this way, attacker can force victim to use email address or phone and if victim has lost his email address ....

  18. WORST THING

  19. MY FRIEND'S REACTION ON WORST THING

  20. ANOTHER TYPE OF DOS ON FACEBOOK

  21. TRUSTED FRIEND FEATURE DOS If an attacker has started the password recovery using TF and at the same time victim tries to use this feature ... he will receive the following message from Facebook

  22. FACEBOOK'S SECURITY MEASURES & HOW LEGITIMATE USERS REACT & THEIR BYPASSES

  23. THIS IS HOW COMMON USERS USE FACEBOOK...

  24. 1) SECURITY ALERT VIA EMAIL OR MOBILE SMS As soon as attacker starts an account recovery via " password reset " functionality, Facebook immediately sends an email or sms alert to the legitimate user.

  25. USERS' REACTION ON THIS EMAIL OR SMS

  26. USERS' REACTION ON THIS EMAIL OR SMS

  27. 2) TEMPORARILY LOCKED In order to recognize device, Facebook uses OS, IP Address, Browser & Estimated Location etc. What happens if attacker clicks on " Continue " button?

  28. WHAT HAPPENS IF AN ATTACKER CLICKS ON " CONTINUE " BUTTON?

  29. (1)

  30. (2) Click " Continue " after selecting one of the option but remember who is doing selection? An ATTACKER

Recommend

Autoimmune Disease - What Is It? We depend on our immune system to stay healthy or recover from

Autoimmune Disease - What Is It? We depend on our immune system to stay healthy or recover from

Autoimmune Disease - What Is It? We depend on our immune system to stay healthy or recover from illness. Like a trusted friend, it comes rushing to your defense when your body is under attack from harmful bacteria or viruses. However, if you

431 views • 13 slides
1 Attacks on randomization - Error repeating the question An attack:

1 Attacks on randomization - Error repeating the question An attack:

Context: Theory of variable privacy Theory of security allows binary choice for data revelation: Bob is trusted/untrusted The channel coding theorem and the If he is trusted, data is revealed to him using a perfect protocol

400 views • 5 slides
A Replay Attack in the TCG Specification and a Solution Danilo Bruschi Lorenzo Cavallaro Andrea

A Replay Attack in the TCG Specification and a Solution Danilo Bruschi Lorenzo Cavallaro Andrea

Trusted Computing Platforms Replay Attack Model Checking Proposed Solution Conclusion and Future Works A Replay Attack in the TCG Specification and a Solution Danilo Bruschi Lorenzo Cavallaro Andrea Lanzi Mattia Monga Universit` a degli

579 views • 38 slides
http://cs224w.stanford.edu Start with the intuition [Heider 46]: Friend of my friend is my

http://cs224w.stanford.edu Start with the intuition [Heider 46]: Friend of my friend is my

CS224W: Analysis of Networks Jure Leskovec, Stanford University http://cs224w.stanford.edu Start with the intuition [Heider 46]: Friend of my friend is my friend Enemy of enemy is my friend Enemy of friend is my enemy Look at

972 views • 64 slides
Want to impress your boy friend / girl friend? SAT Modulo Ordinary Differential Equations An

Want to impress your boy friend / girl friend? SAT Modulo Ordinary Differential Equations An

Want to impress your boy friend / girl friend? SAT Modulo Ordinary Differential Equations An Analysis Method for Hybrid Systems Martin Frnzle 1 with slides, L A T EX souce, etc., by Andreas Eggers 1 Christian Herde 1 Nacim Ramdani 2

889 views • 39 slides
Padding Oracle Attack for non-standard PKCS#1 v1.5 Can non-standard implementation provide us a

Padding Oracle Attack for non-standard PKCS#1 v1.5 Can non-standard implementation provide us a

Padding Oracle Attack for non-standard PKCS#1 v1.5 Can non-standard implementation provide us a shelter? Si Gao Hua Chen Limin Fan Trusted Computing and Information Assurance Laboratory, Institute of Software, Chinese Academy of Sciences

442 views • 40 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

557 views • 18 slides
About imec-DistriNet enclave research https://distrinet.cs.kuleuven.be/ Trusted computing across

About imec-DistriNet enclave research https://distrinet.cs.kuleuven.be/ Trusted computing across

About imec-DistriNet enclave research https://distrinet.cs.kuleuven.be/ Trusted computing across the system stack: hardware, compiler, OS, application Integrated attack-defense perspective and open-source prototypes SGX-Step framework Sancus

925 views • 75 slides
Jesus tells a parable about a midnight request of a friend. This friend needs to borrow

Jesus tells a parable about a midnight request of a friend. This friend needs to borrow

Jesus tells a parable about a midnight request of a friend. This friend needs to borrow loaves of bread to feed an unexpected guest. Since most people are sleep at midnight, his request is declined. and from inside he answers and

625 views • 23 slides
Committee Report 2018 / 2019 Your Committee Larry Herbert (Chair) - Friend of Keston Common John

Committee Report 2018 / 2019 Your Committee Larry Herbert (Chair) - Friend of Keston Common John

Committee Report 2018 / 2019 Your Committee Larry Herbert (Chair) - Friend of Keston Common John Ince (Vice-chair) - Friend of Hoblingwell John Cutting (Treasurer) - Friend of Kelsey Park Kari Silvester - Friend of Bromley Town Parks Keith Rodwell

166 views • 12 slides
TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution Environments Gui Andrade Krste Asanovi Dayeol Lee David Kohlbrenner Dawn Song University of California, Berkeley TRUSTED MEMORY? Securing data/code

703 views • 48 slides
Trusted Caregivers, On Demand An app that provides a marketplace of trusted, convenient, and

Trusted Caregivers, On Demand An app that provides a marketplace of trusted, convenient, and

Trusted Caregivers, On Demand An app that provides a marketplace of trusted, convenient, and affordable caregivers to families on demand. Why create RestUp? Americans provide $470 Billion in unpaid care in 2015. Emergency Staffing

324 views • 8 slides
Office for Security & Counter Terrorism Learning from the Skripal attack for CBRN

Office for Security & Counter Terrorism Learning from the Skripal attack for CBRN

OFFICIAL-SENSITIVE Office for Security & Counter Terrorism Learning from the Skripal attack for CBRN Preparedness. Presented by: Anita Friend Date: 24 th April 2019 OFFICIAL-SENSITIVE Reflections Skripal response The response was

510 views • 7 slides
Years ago, sitting atop a mound of lava on the island of Baltra in the Galapagos, a friend of

Years ago, sitting atop a mound of lava on the island of Baltra in the Galapagos, a friend of

Years ago, sitting atop a mound of lava on the island of Baltra in the Galapagos, a friend of mine turned to another friend and announced, I came to find myself. Thats funny, replied the other friend, because I came

696 views • 23 slides
Your Trusted China Partner Market Overview Your Trusted Partner in China Source: McKinsey &

Your Trusted China Partner Market Overview Your Trusted Partner in China Source: McKinsey &

Chinas Dietary Supplement Industry Market Insights Natural Products Expo West March 11, 2017 Your Trusted China Partner Market Overview Your Trusted Partner in China Source: McKinsey & Company Your Trusted Partner in China Consumer

409 views • 29 slides
GeoPal: Friend Spam Detection in Social Networks with Private Location Proofs Bogdan Carbunar,

GeoPal: Friend Spam Detection in Social Networks with Private Location Proofs Bogdan Carbunar,

GeoPal: Friend Spam Detection in Social Networks with Private Location Proofs Bogdan Carbunar, Mizanur Rahman, Mozhgan Azimpourkivi, Debra Davis Florida International University carbunar@cs.fiu.edu Social Network Friend Spam Friend invitations

351 views • 20 slides
Solution to ensure TPM resistance to offline dictionary attack Liqun Chen Mark D. Ryan HP Labs,

Solution to ensure TPM resistance to offline dictionary attack Liqun Chen Mark D. Ryan HP Labs,

Solution to ensure TPM resistance to offline dictionary attack Liqun Chen Mark D. Ryan HP Labs, Bristol HP Labs, Bristol University of Birmingham Future of Trust 2008 June 2008 The Trusted Platform Module A hardware chip currently

473 views • 19 slides
Trusted Platform Module Dries Schellekens COSIC, KU Leuven Nomenclature Trusted versus

Trusted Platform Module Dries Schellekens COSIC, KU Leuven Nomenclature Trusted versus

Trusted Platform Module Dries Schellekens COSIC, KU Leuven Nomenclature Trusted versus trustworthy RFC 4949 (Internet Security Glossary) Trust : A feeling of certainty (sometimes based on inconclusive evidence) either (a) that the system

788 views • 33 slides
for TPM API Aybek Mukhamedov, Andy Gordon and Mark Ryan Trusted Platform Module Trusted

for TPM API Aybek Mukhamedov, Andy Gordon and Mark Ryan Trusted Platform Module Trusted

Towards Verified C specification for TPM API Aybek Mukhamedov, Andy Gordon and Mark Ryan Trusted Platform Module Trusted Computing, an initiative by major IT vendors Functions: integrity measurement, reporting & protected storage

374 views • 16 slides
MATE CRIME? When a person is harmed or taken advantage of by someone they thought was their

MATE CRIME? When a person is harmed or taken advantage of by someone they thought was their

WHAT IS MATE CRIME? When a person is harmed or taken advantage of by someone they thought was their friend. Someone you think is a friend asks for money and refuses to give it back. Someone you think is a friend calls you names or even

397 views • 11 slides
ATTACK: Learning the Distributions of Adversarial Examples for an Improved Black-Box Attack on

ATTACK: Learning the Distributions of Adversarial Examples for an Improved Black-Box Attack on

ATTACK: Learning the Distributions of Adversarial Examples for an Improved Black-Box Attack on Deep Neural Networks Yandong Li* 1 Lijun Li* 1 Liqiang Wang 1 Tong Zhang 2 Boqing Gong 3 *Equal Contribution 1 University of Central Florida 2 Hong

440 views • 11 slides
Detecting a Biological Attack The attack will not be obvious; it may take hours or days to know.

Detecting a Biological Attack The attack will not be obvious; it may take hours or days to know.

Detecting a Biological Attack The attack will not be obvious; it may take hours or days to know. Current biological diagnostics are very effective at identifying agents, but theyre slow. We already have an infrastruc- ture in place to

233 views • 8 slides
Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal Holloway, University of London c.mitchell@rhul.ac.uk http://www.isg.rhul.ac.uk/~cjm Contents What is trusted computing? The TCG TCG

1.43k views • 114 slides
Artificial Intelligence: a friend of convenience but a threat to privacy? Patrick Nuttall, CISSP

Artificial Intelligence: a friend of convenience but a threat to privacy? Patrick Nuttall, CISSP

Source: Getty Images (licensed) Artificial Intelligence: a friend of convenience but a threat to privacy? Patrick Nuttall, CISSP CISM CBCI InnoTech Q1 2019 Security Matters Forum AI friend or foe for insurance businesses?2 Speaker

163 views • 13 slides

More recommend