Eicon Networks S92 Manuel d'utilisateur télécharger pdf (Page 202)

YuChakTinMichael‘sGIACGCFWProjectAssignment

Page 202

CompromisingInternalSys tems

WhenIreviewthedifferentpostedpracticalassignments,Ifoundthatmostsecurity

architectures(includingtheoneunderfirehere)aretargetedtowardsprotectingthe

servers(webserversinparticular)withlittleemphasisonprotectingtheendusers.

Imaginethefollowingscenarios:

Scenario1:Johndownloadedafilefromtheinternet.Whenherunsit,theprogram

quicklyeraseseverydocumentfilesonhisdriveandatthesametimesendsout

broadcaststohalthislocalsegment.

Scenario2:MaryreceivedawordfilewhichcomeswithMacrovirusviaemail.Upon

openingthefile,thevirusgetstriggeredandeventuallychangesallthenumbersinside

Mary’sFinancialStatementsfiletorandomvalues.

Theattacksintheabovescenariosarepossiblewithjuniorlevelprogrammingskill.

Thestepstotakearedescribedbelow:

Step1:Researchthetarget.

ByvisitingGIAC’swebsite,wecanfindoutwhatbusinessGIACisin.GIACis

makingfortunecookiesandissellingthemworldwidethroughmanydifferent

channels.Wemaylocatedifferentcontactemailaddresses.Wemayevenretrievealist

ofGIAC’ssuppliersandpartners.

Step2:Attack!

Viatheemailroute:

Programamacrovirus.AttachittoaWordfile.Markthisfileasabusiness

informationrelatedfile.SendittothecontactpeopleinGIAC,withasenderaddress

of anyoneof itssuppliersandpartners.Chancesarethattheofficestaffswillopenany

fileoriginatedfromtheir“trustedpartners”.

1 2 ... 197 198 199 200 201 202 203 204 205 206 207 208 209

Pas de commentaire

Eicon Networks S92 Manuel d'utilisateur Page 202