DOCSLIB.ORG

Denial of Service Attacks: Difference in Rates, Duration, and Financial Damages and the Relationship Between Company Assets and Revenues

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Denial of Service Attacks: Difference in Rates, Duration, and Financial Damages and the Relationship Between Company Assets and Revenues Walden University ScholarWorks Walden Dissertations and Doctoral Studies Walden Dissertations and Doctoral Studies Collection 2020 Denial of Service Attacks: Difference in Rates, Duration, and Financial Damages and the Relationship Between Company Assets and Revenues Abebe Gebreyes Walden University Follow this and additional works at: https://scholarworks.waldenu.edu/dissertations Part of the Databases and Information Systems Commons This Dissertation is brought to you for free and open access by the Walden Dissertations and Doctoral Studies Collection at ScholarWorks. It has been accepted for inclusion in Walden Dissertations and Doctoral Studies by an authorized administrator of ScholarWorks. For more information, please contact [email protected]. Walden University College of Management and Technology This is to certify that the doctoral dissertation by Abebe Gebreyes has been found to be complete and satisfactory in all respects, and that any and all revisions required by the review committee have been made. Review Committee Dr. Robert Haussmann, Committee Chairperson, Applied Management and Decision Sciences Faculty Dr. Kenneth Levitt, Committee Member, Applied Management and Decision Sciences Faculty Dr. Keri Heitner, University Reviewer Applied Management and Decision Sciences Faculty Chief Academic Officer and Provost Sue Subocz, Ph.D. Walden University 2020 Abstract Denial of Service Attacks: Difference in Rates, Duration, and Financial Damages and the Relationship Between Company Assets and Revenues by Abebe Gebreyes MPhil, Walden University, 2020 MS, American University, 2003 MA, Howard University, 1996 Dissertation Submitted in Partial Fulfillment of the Requirements for the Degree of Doctor of Philosophy Management Walden University October 2020 Abstract Denial-of-service/distributed denial-of-service (DoS) attacks on network connectivity are a threat to businesses that academics and professionals have attempted to address through cyber-security practices. However, currently there are no metrics to determine how attackers target certain businesses. The purpose of this quantitative study was to address this problem by, first, determining differences among business sectors in rates and duration of attacks and financial damages from attacks and, second, examining relationship among assets and/or revenues and duration of attacks and financial damages. Cohen and Felson’s routine activity theory and Cornish and Clarke’s rational choice theory served as frameworks as they address the motivations and choices within criminal targeted attacks. Using the Kruskal-Wallis test and Spearman’s correlation analysis, data, compiled from online database, on 100 U.S. businesses that were attacked in a 19-year period were analyzed. Kruskal-Wallis test indicated financial and informational sectors had higher attack rates; educational and informational sectors experienced longer attacks; and retail and informational sectors suffered greater financial damages. Results of Spearman’s correlation showed that there was a significant negative relationship between duration and assets across all sectors but a significant positive relationship between duration and assets within the financial sector. A key recommendation is for cyber security professionals to better understand DoS attacks and to develop protections targeted business sectors. The implications of positive social change include the potential for security professionals to improve their security defenses from targeted attacks and trigger scholars to further research using the issues presented in the study. Denial of Service Attacks: Difference in Rates, Duration, and Financial Damages and the Relationship Between Company Assets and Revenues by Abebe Gebreyes MPhil, Walden University, 2020 MS, American University, 2003 MA, Howard University, 1996 Dissertation Submitted in Partial Fulfillment of the Requirements for the Degree of Doctor of Philosophy Management Walden University October 2020 Dedication First and foremost, I would like to give honor to my God (Elohim) almighty for giving me the never-ending perseverance and strength to deal with this strenuous process. This study is dedicated to my mother, Zenebech Wondim who encouraged me to get education. I would also like to honor, acknowledge, and dedicate this study to my family, Emaways Assefa, Abel, Ethael, and Bruk Abebe who endured my long journey for this doctoral research: I thank you for your support and patience with me during this protracted journey. I also thank my sister (Yeshi), brothers (Arega, Moges, Getachew, Teklu, Zewdu, Alemayehu) and relatives for their encouragement and assistance through this doctoral research process: you contributed everything in your power to make sure I had the proper resources I need to accomplish my dissertation. I could not have reached this point without all of you. Acknowledgments In this dissertation process, I would like to express my sincere appreciation and gratefulness to my chairperson, Dr. Robert Haussmann. Dr. Haussmann, I thank you enormously for your guidance throughout my long journey. I have learnt wisdom and vision from your immediate and valuable feedback to my research. I give thanks also to Dr. Ken Levitt my second committee member and methodology expert. Thank you for accepting my request during a difficult time. Thanks to all of you for ensuring that my dissertation met the University’s rigorous requirements Table of Contents List of Tables ................................................................................................................. vi Chapter 1: Introduction to the Study ................................................................................1 Background of the Study ............................................................................................4 Problem Statement .....................................................................................................7 Purpose of the Study ..................................................................................................9 Research Questions and Hypotheses ..........................................................................9 Theoretical Framework ............................................................................................ 12 Routine Activity Theory .................................................................................... 13 Rational Choice Theory ..................................................................................... 14 Nature of the Study .................................................................................................. 15 Definitions ............................................................................................................... 18 Assumptions ............................................................................................................ 21 Scope and Delimitations .......................................................................................... 21 Limitations............................................................................................................... 22 Significance of the Study ......................................................................................... 23 Significance to Theory ...................................................................................... 24 Significance to Practice ..................................................................................... 25 Significance to Social Change ........................................................................... 26 Summary ................................................................................................................. 27 Chapter 2: Literature Review ......................................................................................... 29 Introduction ............................................................................................................. 29 i Cyber-Attacks .......................................................................................................... 31 Type of Attacks........................................................................................................ 33 Malware Attacks ............................................................................................... 34 Cryptolocker ..................................................................................................... 35 Denial-of-Services/Distributed Denial-of-Services Attack ........................................ 37 Smurf Attack ..................................................................................................... 39 Fraggle Attack ................................................................................................... 39 SYN Flood Attack ............................................................................................. 39 The Ping-of-Death Attack ................................................................................. 40 The Teardrop Attack ......................................................................................... 40 Launching DDoS Attacks .................................................................................. 41 Commonly Used Attack Tools ................................................................................. 44 Trinoo.. ............................................................................................................. 44 Tribe Flood Network Tool ................................................................................
Load more

Recommended publications
  • Detecting Botnets Using File System Indicators
    Detecting botnets using file system indicators Master's thesis University of Twente Author: Committee members: Peter Wagenaar Prof. Dr. Pieter H. Hartel Dr. Damiano Bolzoni Frank Bernaards LLM (NHTCU) December 12, 2012 Abstract Botnets, large groups of networked zombie computers under centralised control, are recognised as one of the major threats on the internet. There is a lot of research towards ways of detecting botnets, in particular towards detecting Command and Control servers. Most of the research is focused on trying to detect the commands that these servers send to the bots over the network. For this research, we have looked at botnets from a botmaster's perspective. First, we characterise several botnet enhancing techniques using three aspects: resilience, stealth and churn. We see that these enhancements are usually employed in the network communications between the C&C and the bots. This leads us to our second contribution: we propose a new botnet detection method based on the way C&C's are present on the file system. We define a set of file system based indicators and use them to search for C&C's in images of hard disks. We investigate how the aspects resilience, stealth and churn apply to each of the indicators and discuss countermeasures botmasters could take to evade detection. We validate our method by applying it to a test dataset of 94 disk images, 16 of which contain C&C installations, and show that low false positive and false negative ratio's can be achieved. Approaching the botnet detection problem from this angle is novel, which provides a basis for further research.
    [Show full text]
  • Zerohack Zer0pwn Youranonnews Yevgeniy Anikin Yes Men
    Zerohack Zer0Pwn YourAnonNews Yevgeniy Anikin Yes Men YamaTough Xtreme x-Leader xenu xen0nymous www.oem.com.mx www.nytimes.com/pages/world/asia/index.html www.informador.com.mx www.futuregov.asia www.cronica.com.mx www.asiapacificsecuritymagazine.com Worm Wolfy Withdrawal* WillyFoReal Wikileaks IRC 88.80.16.13/9999 IRC Channel WikiLeaks WiiSpellWhy whitekidney Wells Fargo weed WallRoad w0rmware Vulnerability Vladislav Khorokhorin Visa Inc. Virus Virgin Islands "Viewpointe Archive Services, LLC" Versability Verizon Venezuela Vegas Vatican City USB US Trust US Bankcorp Uruguay Uran0n unusedcrayon United Kingdom UnicormCr3w unfittoprint unelected.org UndisclosedAnon Ukraine UGNazi ua_musti_1905 U.S. Bankcorp TYLER Turkey trosec113 Trojan Horse Trojan Trivette TriCk Tribalzer0 Transnistria transaction Traitor traffic court Tradecraft Trade Secrets "Total System Services, Inc." Topiary Top Secret Tom Stracener TibitXimer Thumb Drive Thomson Reuters TheWikiBoat thepeoplescause the_infecti0n The Unknowns The UnderTaker The Syrian electronic army The Jokerhack Thailand ThaCosmo th3j35t3r testeux1 TEST Telecomix TehWongZ Teddy Bigglesworth TeaMp0isoN TeamHav0k Team Ghost Shell Team Digi7al tdl4 taxes TARP tango down Tampa Tammy Shapiro Taiwan Tabu T0x1c t0wN T.A.R.P. Syrian Electronic Army syndiv Symantec Corporation Switzerland Swingers Club SWIFT Sweden Swan SwaggSec Swagg Security "SunGard Data Systems, Inc." Stuxnet Stringer Streamroller Stole* Sterlok SteelAnne st0rm SQLi Spyware Spying Spydevilz Spy Camera Sposed Spook Spoofing Splendide
    [Show full text]
  • Coordinating Across Chaos: the Practice of Transnational Internet Security Collaboration
    COORDINATING ACROSS CHAOS: THE PRACTICE OF TRANSNATIONAL INTERNET SECURITY COLLABORATION A Dissertation Presented to The Academic Faculty by Tarun Chaudhary In Partial Fulfillment of the Requirements for the Degree International Affairs, Science, and Technology in the Sam Nunn School of International Affairs Georgia Institute of Technology May 2019 COPYRIGHT © 2019 BY TARUN CHAUDHARY COORDINATING ACROSS CHAOS: THE PRACTICE OF TRANSNATIONAL INTERNET SECURITY COLLABORATION Approved by: Dr. Adam N. Stulberg Dr. Peter K. Brecke School of International Affairs School of International Affairs Georgia Institute of Technology Georgia Institute of Technology Dr. Michael D. Salomone Dr. Milton L. Mueller School of International Affairs School of Public Policy Georgia Institute of Technology Georgia Institute of Technology Dr. Jennifer Jordan School of International Affairs Georgia Institute of Technology Date Approved: March 11, 2019 ACKNOWLEDGEMENTS I was once told that writing a dissertation is lonely experience. This is only partially true. The experience of researching and writing this work has been supported and encouraged by a small army of individuals I am forever grateful toward. My wife Jamie, who has been a truly patient soul and encouraging beyond measure while also being my intellectual sounding board always helping guide me to deeper insight. I have benefited from an abundance of truly wonderful teachers over the course of my academic life. Dr. Michael Salomone who steered me toward the world of international security studies since I was an undergraduate, I am thankful for his wisdom and the tremendous amount of support he has given me over the past two decades. The rest of my committee has been equally as encouraging and provided me with countless insights as this work has been gestating and evolving.
    [Show full text]
  • Ethical Hacking
    Ethical Hacking Alana Maurushat University of Ottawa Press ETHICAL HACKING ETHICAL HACKING Alana Maurushat University of Ottawa Press 2019 The University of Ottawa Press (UOP) is proud to be the oldest of the francophone university presses in Canada and the only bilingual university publisher in North America. Since 1936, UOP has been “enriching intellectual and cultural discourse” by producing peer-reviewed and award-winning books in the humanities and social sciences, in French or in English. Library and Archives Canada Cataloguing in Publication Title: Ethical hacking / Alana Maurushat. Names: Maurushat, Alana, author. Description: Includes bibliographical references. Identifiers: Canadiana (print) 20190087447 | Canadiana (ebook) 2019008748X | ISBN 9780776627915 (softcover) | ISBN 9780776627922 (PDF) | ISBN 9780776627939 (EPUB) | ISBN 9780776627946 (Kindle) Subjects: LCSH: Hacking—Moral and ethical aspects—Case studies. | LCGFT: Case studies. Classification: LCC HV6773 .M38 2019 | DDC 364.16/8—dc23 Legal Deposit: First Quarter 2019 Library and Archives Canada © Alana Maurushat, 2019, under Creative Commons License Attribution— NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) https://creativecommons.org/licenses/by-nc-sa/4.0/ Printed and bound in Canada by Gauvin Press Copy editing Robbie McCaw Proofreading Robert Ferguson Typesetting CS Cover design Édiscript enr. and Elizabeth Schwaiger Cover image Fragmented Memory by Phillip David Stearns, n.d., Personal Data, Software, Jacquard Woven Cotton. Image © Phillip David Stearns, reproduced with kind permission from the artist. The University of Ottawa Press gratefully acknowledges the support extended to its publishing list by Canadian Heritage through the Canada Book Fund, by the Canada Council for the Arts, by the Ontario Arts Council, by the Federation for the Humanities and Social Sciences through the Awards to Scholarly Publications Program, and by the University of Ottawa.
    [Show full text]
  • Fortinet Threat Landscape Report Q3 2017
    THREAT LANDSCAPE REPORT Q3 2017 TABLE OF CONTENTS TABLE OF CONTENTS Introduction . 4 Highlights and Key Findings . 5 Sources and Measures . .6 Infrastructure Trends . 8 Threat Landscape Trends . 11 Exploit Trends . 12 Malware Trends . 17 Botnet Trends . 20 Exploratory Analysis . 23 Conclusion and Recommendations . 25 3 INTRODUCTION INTRODUCTION Q3 2017 BY THE NUMBERS: Exploits nn5,973 unique exploit detections nn153 exploits per firm on average nn79% of firms saw severe attacks nn35% reported Apache.Struts exploits Malware nn14,904 unique variants The third quarter of the year should be filled with family vacations and the back-to-school hubbub. Q3 2017 felt like that for a nn2,646 different families couple of months, but then the security industry went into a nn25% reported mobile malware hubbub of a very different sort. Credit bureau Equifax reported nn22% detected ransomware a massive data breach that exposed the personal information of Botnets approximately 145 million consumers. nn245 unique botnets detected That number in itself isn’t unprecedented, but the public nn518 daily botnet comms per firm and congressional outcry that followed may well be. In a congressional hearing on the matter, one U.S. senator called nn1.9 active botnets per firm the incident “staggering,” adding “this whole industry should be nn3% of firms saw ≥10 botnets completely transformed.” The impetus, likelihood, and extent of such a transformation is yet unclear, but what is clear is that Equifax fell victim to the same basic problems we point out Far from attempting to blame and shame Equifax (or anyone quarter after quarter in this report.
    [Show full text]
  • Ics-Cert - 2010 Year in Review
    ICS-CERT - 2010 YEAR IN REVIEW January 2011 A LOOK BACK The past year has been a busy and unprecedented year for both the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) and the control systems community. The most notable event was the emergence of Stuxnet, the first malware created specifically to target industrial control systems (ICS). ICS- CERT analysts and researchers across industry dissected and unraveled the malware revealing a sophisticated trail of zero-days, anti-detection, and propagation techniques. Since Stuxnet’s discovery, news outlets and bloggers have flooded cyberspace with a barrage of analysis and conjecture behind who created it and who was the intended target. While many theories abound, it is the Department’s mission to remain focused on the risk mitigations and collaborate with the 18 Critical Infrastructure/Key Resource (CIKR) sectors to promote preparedness and information sharing. ICS-CERT accomplished this through sector briefings, meetings, conferences, and other engagements to meet with asset owners and operators, vendors, and federal/state/local partners to discuss concerns and mitigations for this and other threats. For many, Stuxnet signaled a paradigm shift with the ICS community, demonstrating that organizations must be operationally prepared with tools, systems, and personnel to detect malicious activity and effectively mitigate the impact to their control systems. While Stuxnet was a dominating force in 2010, other advanced persistent threats (APT) became commonplace across industry. This uptick in activity resulted in the development of “fly-away” teams to provide onsite assistance to asset owners in response to a cyber incident. Many of these fly-away engagements were conducted in conjunction with US-CERT through the newly formed National Cybersecurity and Communications Integration Center (NCCIC pronounced ‘n-kick’).
    [Show full text]
  • List of Sources — Grounded Theory Analysis
    1 List of Sources — Grounded Theory Analysis This appendix shows the individual source materials contained in the three datasets [?][23][24] as explained in Chapter 3 Research Design and analysed in Part II of this thesis. BCS Cybercrime Forensics Specialist Group Briefings [?] 1. AAP, “Fraudsters paid mortgage with stolen data”, in The Australian, 23rd April 2013. https://www.theaustralian.com.au/news/latest-news/fraudsters-paid-mortgage- with-stolen-data/news-story/a4af198305af03849a472b11a141d6cb. Last accessed 9th July 2018. 2. ABC News, “FBI: Crime ring stole $70m using computer virus”, in Crime-research.org, 27th October 2010. http://www.crime-research.org/news/27.10.2010/3829. Last ac- cessed 9th July 2018. 3. N. Ammembala, “City phishing cases traced to Mumbai”, in IBNLive, 1st August 2011. https://www.news18.com/news/india/city-phishing-cases-traced-to-mumbai-388333.html. Last accessed 19th July 2018. 4. Associated Press, “International cybercrime suspects to face justice in Lincoln’s Federal Court”, in WOWT.com, 11th April 2014. No longer available online. Last accessed 1st July 2014. 5. Azatutyun, “Computer virus ‘mastermind’ jailed in Armenia”, 22nd May 2012. https: //www.azatutyun.am/a/24589591.html. Last accessed 9th July 2018. 6. L. Baldor, “Government-backed hacker teams do most China-based data theft”, in USA Today, 12th December 2011. No longer available online. Last accessed 1st July 2014. 7. B. Ballenger, “$45m stolen in hours with prepaid cards”, in Money Talks News, 15th May 2013. https://www.moneytalksnews.com/45-million-stolen-in-hours-with- 1 Chapter 1. List of Sources — Grounded Theory Analysis prepaid-cards/.
    [Show full text]
  • © 2020 Deepak Kumar a PRINCIPLED APPROACH to MEASURING the IOT ECOSYSTEM
    © 2020 Deepak Kumar A PRINCIPLED APPROACH TO MEASURING THE IOT ECOSYSTEM BY DEEPAK KUMAR DISSERTATION Submitted in partial fulfillment of the requirements for the degree of Doctor of Philosophy in Computer Science in the Graduate College of the University of Illinois at Urbana-Champaign, 2020 Urbana, Illinois Doctoral Committee: Associate Professor Michael Bailey, Chair Professor Nikita Borisov Assistant Professor Adam Bates Assistant Professor Gang Wang Assistant Professor Zakir Durumeric, Stanford University ABSTRACT Internet of Things (IoT) devices combine network connectivity, cheap hardware, and actuation to provide new ways to interface with the world. In spite of this growth, little work has been done to measure the network properties of IoT devices. Such measurements can help to inform systems designers and security researchers of IoT networking behavior in practice to guide future research. Unfortunately, properly measuring the IoT ecosystem is not trivial. Devices may have different capabilities and behaviors, which require both active measurements and passive observation to quantify. Furthermore, the IoT devices that are connected to the public Internet may vary from those connected inside home networks, requiring both an external and internal vantage point to draw measurements from. In this thesis, we demonstrate how IoT measurements drawn from a single vantage point or mesaurement technique lead to a biased view of the network services in the IoT ecosystem. To do this, we conduct several real-world IoT measurements, drawn from both inside and outside home networks using active and passive monitoring. First, we leverage active scanning and passive observation in understanding the Mirai botnet— chiefly, we report on the devices it infected, the command and control infrastructure behind the botnet, and how the malware evolved over time.
    [Show full text]
  • TP Spotlight 2012 Preview.Indd
    Spotlight Series Five Security Predictions for 2012 The Kaspersky Lab Security News Service Featured Articles: Stuxnet and the specter of sophisticated, state-sponsored attacks were still dominat- ing the news a year ago, as 2010 ended and we welcomed the New Year. Soon enough, • Facebook And Twitter Erode Your Company’s Security From Within. however, there would be a new phenomenon to contend with: hacktivists. As the at- Here’s How Stop It. tack on HBGary Federal and Sony showed, faceless online activists or anarchists can do plenty of damage to even sophisticated and well protected fi rms. Soon enough, atten- • Report: FTC Nears Deal with tion shifted from the People’s Liberation Army in China to fi nished basements across Facebook For Opt-In Privacy the U.S., where disaff ected teens were joining the ranks of groups like Anonymous and Changes Lulzsec to exact revenge on fi rms for slights both real and imagined. • DHS Offi cial Warns of Security Risks What will 2012 bring? We can’t know for sure. Recent years have taught us that, when in Supply Chain it comes to computer security, one should expect to be surprised. However, it’s equally • Vodafone-Distributed Handset true that in the realm of computer security, “what’s past is prologue,” as Shakespeare Found Pre-installed With Mariposa famously wrote. In other words: the events of the past year have helped to set the stage Bot for the big events (and news stories) of 2012. What are those likely to be? Here’s Threat- • Samsung Handsets Distributed With post’s list of 2012 trends: Malware-Infected Memory Cards • Android Market XSS Bug Allowed Code Execution on Mobile Devices The Rise of the Chaotic Actor • DroidDream Again Appears in The past year saw the emergence of a series of cleverly named hacking groups like Android Market Apps Anonymous, LulzSec, and TeaMp0isoN.
    [Show full text]
  • Book and Is Not Responsible for the Web: Content of the External Sources, Including External Websites Referenced in This Publication
    2020 12th International Conference on Cyber Conflict 20/20 Vision: The Next Decade T. Jančárková, L. Lindström, M. Signoretti, I. Tolga, G. Visky (Eds.) 2020 12TH INTERNATIONAL CONFERENCE ON CYBER CONFLicT 20/20 VISION: THE NEXT DECADE Copyright © 2020 by NATO CCDCOE Publications. All rights reserved. IEEE Catalog Number: CFP2026N-PRT ISBN (print): 978-9949-9904-6-7 ISBN (pdf): 978-9949-9904-7-4 COPYRIGHT AND REPRINT PERMissiONS No part of this publication may be reprinted, reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior written permission of the NATO Cooperative Cyber Defence Centre of Excellence ([email protected]). This restriction does not apply to making digital or hard copies of this publication for internal use within NATO, or for personal or educational use when for non-profit or non-commercial purposes, providing that copies bear this notice and a full citation on the first page as follows: [Article author(s)], [full article title] 2020 12th International Conference on Cyber Conflict 20/20 Vision: The Next Decade T. Jančárková, L. Lindström, M. Signoretti, I. Tolga, G. Visky (Eds.) 2020 © NATO CCDCOE Publications NATO CCDCOE Publications LEGAL NOTICE: This publication contains the opinions of the respective authors only. They do not Filtri tee 12, 10132 Tallinn, Estonia necessarily reflect the policy or the opinion of NATO Phone: +372 717 6800 CCDCOE, NATO, or any agency or any government. NATO CCDCOE may not be held responsible for Fax: +372 717 6308 any loss or harm arising from the use of information E-mail: [email protected] contained in this book and is not responsible for the Web: www.ccdcoe.org content of the external sources, including external websites referenced in this publication.
    [Show full text]
  • Cyber Warfare, 2Nd Ed by Syngress
    CYBER WARFARE SECOND EDITION CYBER WARFARE Techniques, Tactics and Tools for Security Practitioners SECOND EDITION JASON ANDRESS STEVE WINTERFELD LILLIAN ABLON Technical Editor AMSTERDAM • BOSTON • HEIDELBERG • LONDON NEW YORK • OXFORD • PARIS • SAN DIEGO SAN FRANCISCO • SINGAPORE • SYDNEY • TOKYO Syngress is an imprint of Elsevier Acquiring Editor: Chris Katsaropoulos Editorial Project Manager: Benjamin Rearick Project Manager: Punithavathy Govindaradjane Designer: Mark Rogers Syngress is an imprint of Elsevier 225 Wyman Street, Waltham, MA 02451, USA Copyright # 2014 Elsevier Inc. All rights reserved. No part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or any information storage and retrieval system, without permission in writing from the publisher. Details on how to seek permission, further information about the Publisher’s permissions policies and our arrangements with organizations such as the Copyright Clearance Center and the Copyright Licensing Agency, can be found at our website: www.elsevier.com/permissions. This book and the individual contributions contained in it are protected under copyright by the Publisher (other than as may be noted herein). Notices Knowledge and best practice in this field are constantly changing. As new research and experience broaden our understanding, changes in research methods or professional practices, may become necessary. Practitioners and researchers must always rely on their own experience and
    [Show full text]
  • Into the Eternalblue
    REGULATORY VIEWPOINTS ISSUE 4 MAY 2017 Into the EternalBlue As the world enters a new week, individuals hack’ training videos. You can safely view these and organisations are waiting to learn yourself. We left all the stable doors open, and whether the recent ransomware attack, the entire string of horses has bolted. already affecting more than 200,000 computers in over 100 countries, will How easily malware can be spread continue to be detected on new machines. We are not certain how this new attack has The malware might be sitting on many been distributed, but there are two probable thousands of computers that have not been scenarios. In the first, the malware could used over the weekend. have been spread via email. Finding email addresses for specific organisations can be While serious, this latest attack is not yet a child’s play; it is often as simple as searching candidate for the place of largest ever seen. on Google. I ran a search for UK National The Mariposa Botnet infected over 13 million Health Service email lists posted online this computers a few years ago and at least one morning and found thousands of publicly other such case, where a hacker remotely available examples. takes control of large numbers of machines at the same time, has reached similar Even the most low-level hacker can, proportions. But the current infection has therefore, send infected emails to targets. captured the headlines, and it underscores The emails could contain the malware itself, some fundamental challenges facing modern possibly in the form of an attachment, or they computing systems and networks.
    [Show full text]