Cybercrime

Published in: Ethical Hacking

68,491 Views

This presentation includes introductory concepts of cybercrime

Anuja S / Chandigarh

5 years of teaching experience

Qualification: M.Tech (Banasthali Vidyapeeth University - 2012), B.Tech/B.E. (Maharishi Dayanand University - 2010), 12th (HAL School korwa - 2006)

Teaches: Basic Computer, Computer for official job, MS Office, School Level Computer, Computer Science, Mathematics, Physics, PSU Exam, GATE Exam, Computer, IT, Java Script, Web CMS

Contact this Tutor

CONTENTS About cybercrime Definition of cybercrime Types Hacking and its tools Denial of service attack and its tools Phishing and its example SIPRNET Virus dissemination Cain and abel Cyberlaw Cyber security
What is Cybercrime? [1]Computer crime, or cybercrime, refers to any crime that involves a computer and a network, where the computers may or may not have played an instrumental part in the commission of a crime, Net crime refers, more precisely, to criminal exploitation of the Internet, .Y 0
Computer Crimes are Vulnerable o Because off 1 )Anonymity, 2)Weakness in Operating System, 3)Lack off Awareness off user.
Types of Cyber Crime (This is not exhaustive list of cybercrime) HACKING DENIAL OF SERVICE ATTACK VIRUS DISSEMINATION SOFTWARE PIRACY PORNOGRAPHY IRC Crime CREDIT CARD FRAUD >PHISHING >CYBER STALKING >THREATENING >SALAMI ATTACK
Hacking.. ...or Cracking?? A hacker is a person who is proficient with computers and/or programming to an expert level where they know all of the in's and out's of a system. There is NO illegality involved with being a hacker, A cracker is a hacker who uses his proficiency for personal gains outside of the law, EX: stealing data, changing bank accounts. It's then safe to say that all crackers are hackers, but not all hackers are crackers.
Hacking tools... • Nmap - scans and detects ports. • Wireshark - it is a sniffer that lets you capture and interactively browse the contents of network frames. LCP — Windows Password Cracker • SuperScan - It is great TCP/IP port scanner which is widely used for detecting the open ports or live hosts in given IP ranges • Keyloggers — tracks the keys struck on keyboard and monitors them.
Denial-of-service attack A denial-of-service attack (DOS attack) is an attempt to make a computer resource unavailable to its intended users. DOS attacks are commonly launched from one or more points on the Internet that are external to the victim's own system or network. The types of DOS attacks are Ping of Death and SYN attacks. A Ping of Death attack involves a very large Internet Control Messaging Protocol (ICMP) packet and the receiving computer gets it in the form of data packets, Then it tries to reassemble it. When reassembled the packet proves to be too large for the buffers and overflows it. The consequences may be anything from reboots to system hangs. The SYN attack involves the three-way handshake of the TCP/IP protocol. First the client sends a SYN packet to the server. Then the server responds with a SYN-ACK. When the client responds to this, only then does the client-server conversation really start. Now in a SYN attack the client does not respond to the SYN- ACK. It waits till just before the service time expires and then sends another request. This way the server machine remains engaged.
Tools regarding DOS Trinity is a Linux-based distributed denial-of-service attack tool that a hacker can use to launch a massive IP flood against a victim's targeted computer, It must first be secretly installed on a hacked Linux server; after that, the agent can be remotely controlled to launch a network flood. It prevents the hacker from being identified The major versions of distributed denial of service attack tools are Trinoo (or trin00), TEN, TFN2K and Stacheldraht.
Phishing... The act of sending email that falsely claims to be from a legitimate organization. This is usually combined with a threat or request for information: for example, that an account will close, a balance is due, or information is missing from an account flow' to Ovoid Online Seams/ Within the Address, the rightOnd side is the most important! ft shows the site name. Site Name Nat tmportnrt' ottca "b. NEXT I get it, Dad! citibank.com is the site name!
? u ? ? u ? ? P ? sn ? ? ? ? ? @ ? ? ? ? aq ? 2 ? u ? ? P ? 9 n ? ? ? n ? ? ? ? ? = ? 1 u ? LIL ? ? ? P ? 4 sn u29 ? L ? 2 ? ? ? ? ? n ? AAddeu 2 ? ? 2 ? uada ? ? ? p ? ? 2 ? ? 92 ? ? ? ? 1 ? ? ? ? I-ELI ? ? dap pn ? ? ? ? n ? ? ? ? au ? p 2 ? ? ? ? u n ? 2 ? 1-10 ? : ? ? ? u ! ! ? 2 sn ? / ? ? 2u2 / ? ? ? ? ? u ? CIP ? ? ? ? u : u ? ? E : ? ? ? ? u ! ? u ? 9 ? ad ? n ? ? I-la ? ? ? ? ? ? q ? u ? 2 ? ? ? ? ? ? ? ? qa ? n ? ? ? ! ? ? ? ? 29 ? ? d ? 2 ? ? 2 ? ? E : 9 ? SY ? ? ? ? ? ? n ? ? ? 992 ? ? ? 2. ? ? ? ? L.I E : ? ? I-Jhun au ? 2 ? ? 9 ? ? 2 ? ? ? ? ? ? u ? u ? ? E : ? ? ? ? u ! ? L ? ? ? ? E ? $ : ? ? n ? ? ? 2 ? ? u ? I-I! ? ! ? ? un ? ? ? ? ? iu ? aL ? ? n ? ? ? ? ? ? ? ? ? ? un ? ? ? ? il-l ? ? ? ? 2 ? P ? ? paldu ? 2 ? ? ? ? ? I-la ? 2 ? 2 ? ? ? ? ? ? n ? ? ? ? ? ? 2 ? ? ? u pa ? ? ? ? ? ? 2 ? 2 ? ? ? ? ? u 2 ? ? u ? P ? ? ? ? ? ? 2 ? ? n ? pan ? ^ ? ? 2 ? P ? sn ?
[2]How it is done?? Fake websites-A domain name similar to a legitimate site is bought, and molded to look exactly like the real thing, The phisher then sends out messages, either by e-mail, instant messaging, Facebook messages, text messages, and so forth to fool a victim into clicking a link to the fake site, The unsuspecting victim logs in and their credentials logged. Fake Pop-up -A link was still sent, however, instead of linking to a fake website, it would link to the actual website. When the real website loads, a pop-up appears asking for the user's credentials, The victim, seeing the legitimate site in the background would think the pop-up was from a legitimate source and enter their information, In reality, the pop-up would be the hacker's tool to phish credentials.
[3]Security Threats.. How wikileaks break security of USA network SIPRNET Siprnet is a communication network which is being used by the Ministry of defense USA, It is also called internet protocol secret network, This network was shared among foreign officials of USA to exchange sensitive information, Siprnet is considered as source of wikileaks documents which they are broadcasting. The most astonishing feature is that there is no current proof..,how it occurred... It was thought that one of its members Bradely Manning leaked the contents but wikileaks denied that, There was no log of evidence that the system was used out of network terminals which were allotted. AFP,
VIRUS DISSEMINATION A computer virus is a program that can 'infect' other legitimate programs by modifying them to include a possibly 'evolved' copy of itself, Viruses can spread themselves, without the knowledge or permission of the users, to potentially large numbers of programs on many machines. A computer virus passes from computer to computer like a biological virus passes from person to person. —O
Virus distributed via internet Virus is distributed via the Internet Virus is Intentionally uploaded to an Internet server or distributed e-mail The Internet server hard disk ts infected vnbh the Virus or the server faalltates distribution of the virus The Virus in some way downloaded to an unsuspecting user • BOOM
Virus distributed via common diskettes Virus is distributed via common diskettes (L) diskette loaded to a microcomputer system the hard disk 15 infected A clean is loaded to an infected system When removed the previously dean diskette infected with the virus
Online Ads — New Virus Spreading Tools for Hackers Web ads, unintentionally, have become a powerful tool in the hands of hackers for spreading viruses, Recently, a computer virus in the advertisement on tomshadware.com has been discovered which automatically takes the users to a website which installs malware,
Spreading Virus — Local Networks Virus is distributed via networks \/ru5 is planted in legitimate ode transmitted via data communications to another nr,de on the network prorogates itself to other nodes of the
Now let me give you an example of a software which is easily available...and it sniffs the packets of the ip addresses connected to the system on which it is being running... The name of the software is Cain & Abel and it is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of several kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute- Force and Cryptanalysis attacks, recording VolP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols
File View.' Tools Help ? H R L L ? H R L L T L M S P 00 F S F T H "SET TL Network. niFFer , : : ? : O | ? Wireless Traceroute Q ? ery Cached Passwo Pro ? d Storage Press the ? b | ? ? ? ? | 0 ? | the ? b ? 0 dl ? ? np the Protected 5 ge LSA Se r 5 IE7 Passv•ords Windows Mail Passv•ords Dialup P Enterprise ' n • 'P , : ? , ? Iti Manager Protected Storage LO packets: | ? % ? 3 Microsoft 0 , 8 Wi ? 'dows Expl.. 3 FireFox
ain File Decoders IP address 192.168 , 47.4 192.18 , 47 , 5 192.168 147.6 192.1613 .47 . 7 192.168.4718 192.168 , 47 eg 192.168.47.10 192.16847111 lg2.1sa.47.12 .47, 14 192.168 192.168.47.15 192,168 47.17 192.16847118 192.168.47.2.3 192.16847124 192.168.47.25 192.16847126 192.168 192.16847.zg lg2.16a.47.32 192.168.47..33 Hosts Lost packets: View.' NTLM AUTH Configure CHRLL CHALL SPOOF SPOOF "SET Network Tools Help Sniffer 01.11 Fin er Cracker rint ccau Traceroute Host name Wireless Query 831 816 aa MAC address 4487FC820BFA 4487F-ca4Fr-48 4487F-ca5ZE23 4487Fcæar-11 4487Fr-5F-c.365 4487Fr-84FF14 4487F-ce,4Far-E 4487F-cæggAü 4487Fca.36637 4487F-cægaoa 44,37Fcæor-13 4487F-cazor-B1 4487Fcæooac 4487F-ca52D60 4487F-caszaaa 4487F-ca200üD 4487F-casr-495 44875-1.--853701 448787-85.3684 4487Fca4FOBE 4487Fcaszaoz 4487FC5FCüE6 4487F-ce,50Ar-F 4487F-ca528E4 4487Fca20040 4487F-caszr-F6 44,37Fcæor-BE Ml APR + Routing Microsoft • I Passwords ValP 8 Windows Expl... FireFox e 11:03 PM
File View,' Configure Tools Help 1+0 CHRLL CHRLL SPOOF SPOOF RESET Network... Sniffer C/ Decoders Cracker Traceroute CCOLI HTTP (9) IMAP 150,151.111203 150,151.111203 150,151.111203 Telnet 150,151.11.154 Ill, 141 TOS 150,151.111203 SMTP NNTP Timestam 2010112011 - 2010112011 - HTTP + Routing Passwords I-ITTP 124.1531851162 150.151 Wireless I-Isername OEVENOER vini Singh wounded, sau127 cute, angelo manishprince aveekch web admin cute. angelo Query Passi,ward nil 234 minnyÜ minnyÜ Ramüü71Z3456 sni1234 team 12345 minnr0 URL www.onestopshop.in http : Ismart. spectranet. do?r login , yahoo , com login.yahoo.com http : spectranet. da?r http : inladministrator\index , php login. yahoo, cam häps 1 Radius-Keys Radius-users (0) * ICQ G IKE-PSK O GRE\PPP Hosts Lost packets: e APR
CYBERLAW.. Cyberlaw is a constantly evolving process, As the Internet grows, numerous legal issues arise. These issues vary from Domain Names, to Intellectual Property Rights, Electronic Commerce, Privacy, Encryption to Spamming and so on .lnternet in India came in 1995 and after almost 5 years, India gets ready to legislate its first Cyberlaw namely the Information Technology Bill 1999, The said bill is presently pending in Parliament. by :- Mr.Pawan Duggal Advocate, Supreme Court of India & Cyberlaw Expert CYBERLAW
Cyber Safety.. It is a common term used to describe a set of practices, measures and or actions you can take to protect your WEB WISE KIDS
Top seven cyber safety actions l,lnstall OS/Software updates 2.Run antivirus software 3,Prevent Identity theft 4, Turn on personal firewalls 5,Avoid spyware/adware 6.Protect passwords 7.Back up important files
1) 2) 3) References http://en.wikipedia.orq/wiki/Main Paqe bttp://www.brighthub.com/internet/security= privacy/articIes/67339.aspx bttp://secu riour.com/201 0/1 2/01 [how-wiki leaks- break-securityoEusazne.tUL&sjprnet/ Books referred:- Kevin J. Houle, CERT/CC,George M. Weaver, CERT/CC: Trends in Denial of Service Attack Technology

We use cookies

Choose Country Code

Direction

Ask a Question

Report a Profile Issue

Cybercrime

Anuja S / Chandigarh

Need a Tutor or Coaching Class?

Upload PPTs