SlideShare a Scribd company logo

phishing-technology-730-J1A0e1Q.pptx

Download as PPTX, PDF
M
MaheshDhope1

This document summarizes a seminar presentation on phishing. It defines phishing as attempting to acquire personal information through electronic communication by posing as a trustworthy entity. It discusses common phishing techniques like link manipulation and website forgery. It provides examples of phishing emails targeting bank users. It also covers the types, causes, effects, and ways to defend against phishing attacks, including social, technical, and legal approaches. The goal is to help reduce losses from phishing through improved individual practices, security technologies, and legal actions against phishing operations.

Education
1 of 16
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
www.SeminarSlide.com Seminar On Phishing
 Introduction  Phishing Techniques  Phishing Examples  Types of Phishing  Causes of Phishing  Anti Phishing  Effects of Phishing  Defend against Phishing Attacks  Conclusion  Reference
 Phishing is the act of attempting to acquire information such as username, password and credit card details as a trustworthy entity in an electronic communication.  Communications purporting to be from popular social web sites ,auction sites, online payment process or IT administrators are commonly used to lure the unsuspecting public .Phishing emails may contain links to websites that are infected with malware.
 LINK MANIPULATION  FILTER EVASION  WEBSITE FORGERY  PHONE PHISHING
 In this example, targeted at South Trust Bank users, the phisher has used an image to make it harder for anti-phishing filters to detect by scanning for text commonly used in phishing emails.
phishing-technology-730-J1A0e1Q.pptx
 Deceptive - Sending a deceptive email, in bulk, with a “call to action” that demands the recipient click on a link.  Malware-Based - Running malicious software on the user’s machine. Various forms of malware-based phishing are:  Key Loggers & Screen Loggers  Session Hijackers  Web Trojans  Data Theft
 DNS-Based - Phishing that interferes with the integrity of the lookup process for a domain name. Forms of DNS-based phishing are:  Hosts file poisoning  Polluting user’s DNS cache  Proxy server compromise  Man-in-the-Middle Phishing - Phisher positions himself between the user and the legitimate site.
 Content-Injection – Inserting malicious content into legitimate site. Three primary types of content-injection phishing:  Hackers can compromise a server through a security vulnerability and replace or augment the legitimate content with malicious content.  Malicious content can be inserted into a site through a cross-site scripting vulnerability. Malicious actions can be performed on a site through a SQL injection vulnerability.
 Misleading e-mails  No check of source address  Vulnerability in browsers  No strong authentication at websites of banks and financial institutions  Limited use of digital signatures  Non-availability of secure desktop tools  Lack of user awareness  Vulnerability in applications
A. Social responses B. Technical approaches • 1. Helping to identify legitimate websites. • 2. Browsers alerting users to fraudulent websites. • 3. Eliminating Phishing mail. • 4. Monitoring and takedown. C. Legal approaches
 Internet fraud  Identity theft  Financial loss to the original institutions  Difficulties in Law Enforcement Investigations  Erosion of Public Trust in the Internet.
 Preventing a phishing attack before it begins  Detecting a phishing attack  Preventing the delivery of phishing messages  Preventing deception in phishing messages and sites  Counter measures  Interfering with the use of compromised information
 No single technology will completely stop phishing.  However, a combination of good organization and practice, proper application of current technologies, and improvements in security technology has the potential to drastically reduce the prevalence of phishing and the losses suffered from it.
www.google.com www.wikipedia.com www.SeminarSlide.com
Thanks

More Related Content

PDF
phishingppt-160209144204.pdf
vinayakjadhav94
 
PPTX
Phishing ppt
Sanjay Kumar
 
PPTX
Phishing ppt
shindept123
 
PPTX
PPT on Phishing
Pankaj Yadav
 
PPTX
Phishing
Arpit Patel
 
PDF
A Review on Antiphishing Framework
IJAEMSJORNAL
 
PPTX
Phishing attack, with SSL Encryption and HTTPS Working
Sachin Saini
 
PPTX
IP SPOOFING &-.pptx
pesmallu4444
 
phishingppt-160209144204.pdf
vinayakjadhav94
 
Phishing ppt
Sanjay Kumar
 
Phishing ppt
shindept123
 
PPT on Phishing
Pankaj Yadav
 
Phishing
Arpit Patel
 
A Review on Antiphishing Framework
IJAEMSJORNAL
 
Phishing attack, with SSL Encryption and HTTPS Working
Sachin Saini
 
IP SPOOFING &-.pptx
pesmallu4444
 

Similar to phishing-technology-730-J1A0e1Q.pptx (20)

PPTX
Chapter 3
anas_desa
 
PPTX
Anti phishing
Shethwala Ridhvesh
 
PDF
Edu 03 assingment
Aswani34
 
PPTX
Rods and Hooks - The Phishing Trip by Soummya Mukhopadhyay
null - The Open Security Community
 
PDF
Phishing: Analysis and Countermeasures
IRJET Journal
 
PPTX
Phishing
Archit Mohanty
 
PPT
Phishing
anjalika sinha
 
PDF
90% of Data Breaches Start with Phishing—Here’s How to Protect Yourself.pdf
Enterprise world
 
PDF
onlinesecurityandpaymentsystem-140116021418-phpapp01.pdf
jainutkarsh078
 
PPTX
Online security and payment system
Gc university faisalabad
 
PPTX
Em Tech - Lesson 2 - Online Safety, Ethics and Netiquette.pptx
JCNicolas2
 
PPTX
Phishing ppt
shindept123
 
PPT
Computer 4 ict
guest1daf5af
 
PPT
Phis
Presentaionslive.blogspot.com
 
PDF
Cyber Crime
A.T Multitech Corporation Ltd
 
PDF
E Mail Phishing Prevention and Detection
ijtsrd
 
PDF
need help with a term paper 8 pages Write a term paper that discusse.pdf
anjandavid
 
PPTX
CYBER.pptx
ssuser8b4eb21
 
PDF
Study on Phishing Attacks and Antiphishing Tools
IRJET Journal
 
PPTX
Phishing technology
Preeti Papneja
 
Chapter 3
anas_desa
 
Anti phishing
Shethwala Ridhvesh
 
Edu 03 assingment
Aswani34
 
Rods and Hooks - The Phishing Trip by Soummya Mukhopadhyay
null - The Open Security Community
 
Phishing: Analysis and Countermeasures
IRJET Journal
 
Phishing
Archit Mohanty
 
Phishing
anjalika sinha
 
90% of Data Breaches Start with Phishing—Here’s How to Protect Yourself.pdf
Enterprise world
 
onlinesecurityandpaymentsystem-140116021418-phpapp01.pdf
jainutkarsh078
 
Online security and payment system
Gc university faisalabad
 
Em Tech - Lesson 2 - Online Safety, Ethics and Netiquette.pptx
JCNicolas2
 
Phishing ppt
shindept123
 
Computer 4 ict
guest1daf5af
 
Phis
Presentaionslive.blogspot.com
 
Cyber Crime
A.T Multitech Corporation Ltd
 
E Mail Phishing Prevention and Detection
ijtsrd
 
need help with a term paper 8 pages Write a term paper that discusse.pdf
anjandavid
 
CYBER.pptx
ssuser8b4eb21
 
Study on Phishing Attacks and Antiphishing Tools
IRJET Journal
 
Phishing technology
Preeti Papneja
 

Recently uploaded (20)

PDF
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
PPTX
Pharma ospi slides which help in ospi learning
rameetkumar304
 
PPTX
Introduction to Child Health Nursing – Unit I | Child Health Nursing I | B.Sc...
RAKESH SAJJAN
 
PDF
English Language Teaching from Post-.pdf
Aniana Gonzales
 
PDF
3rd Neelam Sanjeevareddy Memorial Lecture.pdf
Academy of Grassroots Studies and Research of India (AGRASRI)
 
PPTX
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
PDF
The Final Stretch: How to Release a Game and Not Die in the Process.
Marta Fijak
 
PPTX
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
PPTX
Cardiovascular Pharmacology for pharmacy students.pptx
TumwineRobert
 
PDF
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
PDF
Mark Klimek Lecture Notes_240423 revision books _173037.pdf
pascalgumisiriza1
 
PPTX
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
PPTX
Onica Farming 24rsclub profitable farm business
shivakumar N
 
PDF
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
PDF
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
PDF
STATICS OF THE RIGID BODIES Hibbelers.pdf
pascualasturiaskaye4
 
PPTX
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
PDF
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
PPTX
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
PPTX
Open Quiz Monsoon Mind Game Prelims.pptx
Sourav Kr Podder
 
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
Pharma ospi slides which help in ospi learning
rameetkumar304
 
Introduction to Child Health Nursing – Unit I | Child Health Nursing I | B.Sc...
RAKESH SAJJAN
 
English Language Teaching from Post-.pdf
Aniana Gonzales
 
3rd Neelam Sanjeevareddy Memorial Lecture.pdf
Academy of Grassroots Studies and Research of India (AGRASRI)
 
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
The Final Stretch: How to Release a Game and Not Die in the Process.
Marta Fijak
 
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
Cardiovascular Pharmacology for pharmacy students.pptx
TumwineRobert
 
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
Mark Klimek Lecture Notes_240423 revision books _173037.pdf
pascalgumisiriza1
 
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
Onica Farming 24rsclub profitable farm business
shivakumar N
 
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
STATICS OF THE RIGID BODIES Hibbelers.pdf
pascualasturiaskaye4
 
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
Open Quiz Monsoon Mind Game Prelims.pptx
Sourav Kr Podder
 

phishing-technology-730-J1A0e1Q.pptx

  • 2.  Introduction  Phishing Techniques  Phishing Examples  Types of Phishing  Causes of Phishing  Anti Phishing  Effects of Phishing  Defend against Phishing Attacks  Conclusion  Reference
  • 3.  Phishing is the act of attempting to acquire information such as username, password and credit card details as a trustworthy entity in an electronic communication.  Communications purporting to be from popular social web sites ,auction sites, online payment process or IT administrators are commonly used to lure the unsuspecting public .Phishing emails may contain links to websites that are infected with malware.
  • 4.  LINK MANIPULATION  FILTER EVASION  WEBSITE FORGERY  PHONE PHISHING
  • 5.  In this example, targeted at South Trust Bank users, the phisher has used an image to make it harder for anti-phishing filters to detect by scanning for text commonly used in phishing emails.
  • 7.  Deceptive - Sending a deceptive email, in bulk, with a “call to action” that demands the recipient click on a link.  Malware-Based - Running malicious software on the user’s machine. Various forms of malware-based phishing are:  Key Loggers & Screen Loggers  Session Hijackers  Web Trojans  Data Theft
  • 8.  DNS-Based - Phishing that interferes with the integrity of the lookup process for a domain name. Forms of DNS-based phishing are:  Hosts file poisoning  Polluting user’s DNS cache  Proxy server compromise  Man-in-the-Middle Phishing - Phisher positions himself between the user and the legitimate site.
  • 9.  Content-Injection – Inserting malicious content into legitimate site. Three primary types of content-injection phishing:  Hackers can compromise a server through a security vulnerability and replace or augment the legitimate content with malicious content.  Malicious content can be inserted into a site through a cross-site scripting vulnerability. Malicious actions can be performed on a site through a SQL injection vulnerability.
  • 10.  Misleading e-mails  No check of source address  Vulnerability in browsers  No strong authentication at websites of banks and financial institutions  Limited use of digital signatures  Non-availability of secure desktop tools  Lack of user awareness  Vulnerability in applications
  • 11. A. Social responses B. Technical approaches • 1. Helping to identify legitimate websites. • 2. Browsers alerting users to fraudulent websites. • 3. Eliminating Phishing mail. • 4. Monitoring and takedown. C. Legal approaches
  • 12.  Internet fraud  Identity theft  Financial loss to the original institutions  Difficulties in Law Enforcement Investigations  Erosion of Public Trust in the Internet.
  • 13.  Preventing a phishing attack before it begins  Detecting a phishing attack  Preventing the delivery of phishing messages  Preventing deception in phishing messages and sites  Counter measures  Interfering with the use of compromised information
  • 14.  No single technology will completely stop phishing.  However, a combination of good organization and practice, proper application of current technologies, and improvements in security technology has the potential to drastically reduce the prevalence of phishing and the losses suffered from it.