THE NERD VERSION OF OFFENSE BY KALYAN MANDA GAUTAM BHASWAR 4 years of study covers only 6 Botnets reponsible for 79 of spam messages arriving at the University of Washington What about the other 21 ID: 514494
Download Presentation The PPT/PDF document "STUDYING SPAMMING BOTNETS USING BOTLAB" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
STUDYING SPAMMING BOTNETS USING BOTLABTHE NERD VERSION OF
OFFENSE BY
KALYAN MANDA GAUTAM BHASWARSlide2Slide3
4 years of study, covers only 6 Botnets reponsible for 79% of spam messages arriving at the University of Washington.What about the other 21%?
Why cant
Botlab
provide any details regarding the same….Slide4
In classifying bots:For the bots which spread spam using HTTP based services, the Botlab infrastructure spoofs login and mail transaction process, using
fake
ssl
certificates.
Fortunately, this variant didn’t check the
ssl
certificate. And now after reading this paper the spammer will have to only start validating the certificate and we are back to ground zero.Slide5
Avoiding Blacklisting To prevent bots from reporting 100% delivery rates Botlab depends upon failed DNS lookup as a source of randomness in bot
-reported statistics.
The
botmasters
have to only perform
a more complicated statistics analysis to identify the
spamhole
.
So what after this?
Slide6
Perform an end to end check for e-mail reachability!Use encrypted packets to avoid detection
Tips for Spammers!
-From
Botlab
TeamSlide7
- Deploy in-depth defense strategies and multi-layered network security
- Promptly patch and vigilantly download security
updates
- Block
JavaScripts
-
Monitor ports and plan port security to block unauthorized
traffic
- Generate user awareness amongst friends and
colleagues
Tips to Banish
Botnets
Once and for AllSlide8
Good guys always end up last!It’s a one time study! Bad guys will soon be back with some alternatives and perhaps you will require another four years of study !
Conclusion