PPT-February 2016 Meeting Web Defacement and Spear Phishing

3 Objectives Going through a scenario from a Capture the Flag event Using all available data and tools from a Security Onion Image Demonstrate some techniques to reverse engineer the attack Discuss common avenues during web defacementspear phishing. What Is Spear Phishing SpearPhishing Attack Ingredients The Email Enrique . Escribano. eescriba@hawk.iit.edu. Nowadays. M. illions of people use Internet nowadays, so we must be aware of the different risks users are exposed to.. There are many ways of cyber attacks:. Anh. Nguyen. May 6. th. , 2010. Organization. Introduction. How Hackers Deface Web Pages. Solutions to Web Defacement. Conclusions . 2. Introduction. Introduction. Web Defacement . Hackers Motivation. part: . Email . Borne Attacks and How You Can Defend Against Them. Matthew Gardiner. Product Marketing. 91% of all incidents start with a phish. Wired 2015. Think Your Employees are Alert Enough to Stop Them? . May 6. th. , 2010. Organization. Introduction. How Hackers Deface Web Pages. Solutions to Web Defacement. Conclusions . 2. Introduction. Introduction. Web Defacement . Hackers Motivation. Effects on Organizations. The Phishing Landscape. Globally, the rate of phishing increased 250% in Q1 2016, and is still rising (source: SC Media). Why is LSU being targeted? . Who is doing this? . What are they after?. W-2’s, to change direct deposit information, spawn more phish internally, intellectual property, personally identifying information for identity theft. Spam:. Spam is unsolicited or undesired electronic junk mail. Characteristics of spam are:. Mass . mailing to large number of recipients. Usually a commercial advertisement. Annoying but usually harmless unless coupled with a fraud based phishing scam . Spam:. Spam is unsolicited or undesired electronic junk mail. Characteristics of spam are:. Mass . mailing to large number of recipients. Usually a commercial advertisement. Annoying but usually harmless unless coupled with a fraud based phishing scam . Information Security Assistant . Division of Information Technology. What is Phishing?. Phishing email messages, websites, and phone calls are designed to steal . money or sensitive information. . Cybercriminals can do this by . part: . Email . Borne Attacks and How You Can Defend Against Them. Matthew Gardiner. Product Marketing. 91% of all incidents start with a phish. Wired 2015. Think Your Employees are Alert Enough to Stop Them? . Learning Objectives. Defining . CyberSecurity. Why Should You Care?. Who Are Hackers (Yesterday vs. Today)?. Understanding Typical Hacking Exploits. CyberSecurity. Strategies: Protecting Your Organization. SPEAR Surveying and Planning through Electronic Applications and Referrals Agenda SPEAR Update LASSI - SPEAR Victorian Implementation of ePlan Questions and Discussion SPEAR Update SPEAR Subdivision Statistics DCSS Spring 2019. Marc DeBonis. V1.0. Obligatory. Wikipedia. Phishing.  is the fraudulent attempt to obtain sensitive information such as usernames, passwords and credit card details by disguising as a trustworthy entity in an electronic communication. Typically carried out by email spoofing or instant messaging, it often directs users to enter personal information at a fake website, the look and feel of which are identical to the legitimate site.. Natallia. . Dziatsel. Mateusz . Czernikiewicz. Matt Baker. The use of electronic communication, mainly email, to trick someone into providing sensitive passwords that will allow access to bank accounts, credit card information, and related data.