Email attacks and shimming attack

Preview:

Click to see full reader

Citation preview

AISCON 2016

PAUL BABILA MBUA BENGYELLAExecutive Director/Founder Zixtech Organization

CEO / Founder Entrepreneurs InitiativeJCI Limbe Atlantic President 2017

EMAIL ATTACKS / PHISHING ATTACKS

DECEPTIVE PHISHING

• Impersonate a legitimate company and attempt to steal people’s personal information or login credentials. THEY USE THREATS AND SENSE OF URGENCY

• THEY ACT AS A LEGITIMATE COMPANY

SPEAR PHISHING• It uses target’s name, position, company, work

phone number and other information in an attempt to trick the recipient into believing that they have a connection with the sender.

• THEY ACT AS A THEY KNOW YOU, THEY PROVIDE SOME INFOS ABOUT YOU

• cybersecurity firm Kaspersky. Billion stolen from 100banks in 30 countries in 2015

http://money.cnn.com/2015/02/16/technology/bank-hack-kaspersky/index.html?section=money_topstories

http://usa.kaspersky.com/?sitepref=US

WHAT IS PHISHING• LEARN MORE FROM THIS VIDEO

HOW TO DETECT IT• Don’t trust the display name• Don’t be in a haste to click every link• Check for spelling mistakes• Analyze the salutation (Vague Greetings)• Don’t give up personal information• Beware of urgent or threatening language in

the subject line• Don’t click on attachments

DON’T BELIEVE EVERYTHING YOU SEE

HOW TO PREVENT IT• Conduct security awareness training for staff• (2SV) Two-step verification, • Enter sensitive information only on ‘https://

RUN GENUINE ANTIVIRUS (Virus + malware), Firewall Windows or others (Updated)

• Never Go to Your Bank’s Website by Clicking on Links Included in Emails

• Be careful of too good to be true• Be careful of WEBSITES YOU OPEN/LINKS U CLICK

ATM ATTACKSSHIMMING ATTACK

Billions of francs is lost to Shimming attacksShimming technology changes rapidly

SHIMMING?• A shimmer is a device that's placed inside the

ATM to intercept communications between the chip card and the chip reader.

(All card details stolen)

PREVENTION• INSPECT ATM MACHINE (User and Bank)

• ALWAYS CHECK ACCOUNT BALANCE• SMS TRANSACTION NOTIFICATION

THANK YOU

FOLLOW ME Facebook @paulbabz Twitter @zixtechorg

www.zixtechorganization.orgwww.business.zixtechorganization.org

www.entrepreneursinitiative.com

www.jci.cc

http://www.zixtechorganization.org/
http://www.business.zixtechorganization.org/
http://www.entrepreneursinitiative.com/
http://www.jci.cc/

Recommended

Mumbai Attacks-The Real Story--Who was behind Mumbai Attack----Eye Opening facts about Mumbai Attacks
Documents
Attack Spotlight: Multi-vector DDoS Attacks
Technology
THROTTLING DDoS ATTACKS USING INTEGER ...isea.nitk.ac.in/publications/Taqi.pdf1.1 DoS and DDoS Attacks A Denial of Service (DoS) attack is an attack with the purpose of preventing
Documents
DDoS Attacks Against Global Markets DDoS Cyber-Attack Prolexic PPT PDF
Documents
WEB SECURITY. WEB ATTACK TYPES Buffer OverflowsXML InjectionsSession Hijacking Attacks WEB Attack Types
Documents
Common Denial of Service Attacks - InfoSecWriters.com · ICMP attacks include a ping of death, ping floods, and a smurf attack. A ping of death attack is very easy to administer
Documents
Getting out from Under attack - TechWorld Event · Revenge, corporate espionage, politics, war and cloaking Attacks become sophisticated Attackers attack the way As attacks go up
Documents
Construction Measurement Shimming
Documents
Biological Attacks. A biological attack is an attack using toxic chemicals and contagious diseases as weapons of war
Documents
Network Security Attack Analysis. Outline Types of Attacks Vulnerabilities Exploited Network Attack Phases Attack Detection Tools cs490ns - cotter 2
Documents
Efficient Attack Correlation and Identification of Attack ...intrusion detection, attacks, alert correlation, network motifs 1 INTRODUCTION In our interconnected society, attacks on
Documents
Endpoint Detection and Response · The attack kill-chain is a sequence of actions an attacker follows in preparing and executing an attack. Most attacks, especially advanced attacks,
Documents
Early Heart Attack Care Heart Attacks Have Beginnings
Documents
Internet Security CS457 Seminar Zhao Cheng. Security attacks interruption, interception, modification, fabrication passive attack, active attack
Documents
AES Side Channel Attacks Biru Cui Sam Skalicky. Outline AES algorithm Side channel attacks Side channel attack against AES Cache-collision timing attack
Documents
AMS – Attack Mitigation System · SQL Injection Attack WAF. Cyber Attacks in numbers. Attacks that will cause the most harm to businesses. Types of Attacks Experienced By Organizations
Documents
Annihilation Attacks for Multilinear Maps: Cryptanalysis ... · Annihilation Attacks. To address this gap, we introduce annihilation attacks, which attack multilinear maps in a new
Documents
Defenses against Distributed Denial of Service Attacks · Defenses against Distributed Denial of Service Attacks Internet Threat: DDoS Attacks §Denial of Service (DoS) attack: consumption
Documents
MitM attacks on multi-platform banking applications · MitM attacks on multi-platform banking applications ... This attack was not successfully ... MitM attack provide an own DNS
Documents
Attacks Overview Nguyen Cao Dat 1. BK TP.HCM Outline Cryptographic Attacks ▫ Frequency analysis ▫ Brute force attack ▫ Meet-in-the-middle attack ▫ Birthday
Documents