Privacy and Security in Today’s Web World

Coy ThorpSecurity Engineer, WatchGuard Technologies

What is“Today’s Web World?”

What is all of this?

• The “Social Web”• Web 2.0• Etc…

What is the impact?

• Personal• Business

What are the numbers?

• Let’s look at Facebook…

Facebook is Popular…So What?

1 in 5 Facebook users has at least one malicious link

on their feed

60% of Facebook attacks come from

apps

Malicious friend

requests

Like-jacking malicious

links

Facebook pages used to redirect

to malware

URL “shorteners” exasperate the

issue

http://goo.gl/Hsxsn

Social Networking – 7 Deadly SinsBy Bill Brenner, Senior Editor - CSOonline

1. Over-sharing company activities 2. Over-sharing personal activities3. Mixing personal with professional 4. Engaging in Tweet / Update Rage 5. Believing he/she who dies with the

most friends wins 6. Password sloth – one master

password7. Trigger finger

How Do the “Hackers” Do Their Job?

A botnet is a network of compromised computers under the control of a remote attacker/s.

Botnets are the Swiss Army knife of the malware world, and bot-herders have many

blades to choose from.

Botnet When Your Computer is Owned By Someone Else

Initial Infection

Compromised computers are “owned”

“owned” computers are rented

SPAM campaign launched

Pump Up The VolumeFBI Busts Alleged Mega D Botnet Mastermind

.

Oleg Nikolaenko

More than 500,000 infected computers

Paid$475,000

Ten Billion Spam e-mails a day. = 30% OF ALL SPAM WORLDWIDE

What Can I Do?

Review

Respond

Reject

Reward

Coy ThorpSecurity Systems Engineer

Coy.Thorp@WatchGuard.com