SlideShare a Scribd company logo

Social Network Security & Backdooring email

M.Syarifudin, ST, OSCP, OSWP , profile picture
M.Syarifudin, ST, OSCP, OSWP

The document discusses security issues related to social networking and email attacks. It covers how social networks like Facebook and Twitter are vulnerable to phishing and session hijacking attacks. It also explains how email is commonly targeted through backdooring, and demonstrates how this can be done to take over multiple accounts using a single email mailbox. The document provides tips for protecting oneself, such as being paranoid, using unique passwords, and regularly checking email accounts for suspicious activity.

EducationTechnology
Related topics:
Email Security Overview
1 of 20
Downloaded 47 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
SocialNetworkingSecurity & BackdooringEmail Presented by Syarif ! Seminar & Workshop Nasional Security System Malang, Juni 5 2011 Universitas Muhammadiyah Malang
• http://www.google.com/search? q=fl3xu5 • http://fl3x.us Whoami
Agenda • Social Networking ? • Social Networking :Attacks & Defense • Backdooring Email • There is No Privacy anymore :) • How to protect your self
Social Networking ?
Facebook Statistics
Twitter Statistics
Facebook & twitter attack
Facebook & twitter attack • Phishing
Facebook & twitter attack • Session Hijacking • Firesheep
facebook & twitter defense • Be a paranoid & don’t trust anyone on the internet • Never put some sensitive information carelessly • Keep your eyes, Always check the correct url • Never Subscribe unauthorized applications • Always remember, wireless is not secure. Keep “safety” browsing :p • Always using https • etc
Email attack : Backdooring Email ;) • Why ? • Email is very important • as a communication media • Email is a privacy • Everything using email • User account : facebook, twitter, etc • Passwords • paypal account • domain & hosting account
Email attack : Backdooring Email ;) • Motivation ? • Just for fun :) • Jealous / Revenge • Get important data • Get Final Exam Task & Answer :p • Spy • Scamming • Money reason : paypal, etc • Domain & hosting take over
Email attack : Backdooring Email ;) • Prelinimary ? • Social Engineering • password obtained by hacking other websites ~ one password for all
Backdooring Email ?Yes you can ;) • Using what ? • Why ? • most people using it • easy to use • could be used to impersonate :p • high capacity mailbox • 10 more accounts could be backdoored in one mailbox • no need to log in the target mailbox • could be used to backdoor all of mail accounts in some mail server :)
Demo
thereisnoprivacyanymore
someoneiswatchingyou !
How to ProtectYourself ? • Always Check Last Log in your email • Never put some sensitive information carelessly • Be a Paranoid, check the flag messages in your email • Keep on your eyes to check mail in the inbox, sent, draft , and trash • Always keep your correct mail setting • Never use “one password for all” :p • Changer your mail password regularly • don’t use a “weak” security question
Q & A • twitter : fl3xu5 • YM : fl3xu5
Thank you :)

More Related Content

PPTX
IT Security DOs and DON'Ts
Amir Ali Mokhberi
 
PDF
Instagram account hack
Instagramhacks
 
PPTX
Safety social media for positive social change
Moses Ngeth
 
PDF
Online Safety -- Securing your space as a Netizen
Kofi Kafui Kornu
 
KEY
Staying Safe & Secure on Twitter
Tom Eston
 
PPTX
What’s a’twitter
Ryan Harrell
 
PPTX
Preventions of Email Hacking
Usman Khan
 
PPTX
Email hacking
ShreyaBhoje
 
IT Security DOs and DON'Ts
Amir Ali Mokhberi
 
Instagram account hack
Instagramhacks
 
Safety social media for positive social change
Moses Ngeth
 
Online Safety -- Securing your space as a Netizen
Kofi Kafui Kornu
 
Staying Safe & Secure on Twitter
Tom Eston
 
What’s a’twitter
Ryan Harrell
 
Preventions of Email Hacking
Usman Khan
 
Email hacking
ShreyaBhoje
 

What's hot (12)

PPT
Communication
krmartens
 
PPTX
Slideshare
stuartamber
 
PPTX
Hacking
Mo Irshad Ansari
 
PPTX
Top 10 microblogging tools
iumstech
 
PPTX
An introduction to the Basics of Twitter!
Joyce C. Arias
 
PPT
Cel1
angbeelee
 
PPT
Internet safety at work presentation
Devlog Integrated Services
 
PPT
Twitter General Basics June 2009
mollysly
 
PDF
Twitter: Not just about Miley Cyrus and Weird #hashtags #FLBlogConEDU
Joshua Murdock
 
PPTX
Dos and don's on social media
sanjeev kumar
 
PPT
Twitter for teachers
Jennifer L. Scheffer
 
PPTX
Go Incognito!
Jhansi Pailla, GISP
 
Communication
krmartens
 
Slideshare
stuartamber
 
Hacking
Mo Irshad Ansari
 
Top 10 microblogging tools
iumstech
 
An introduction to the Basics of Twitter!
Joyce C. Arias
 
Cel1
angbeelee
 
Internet safety at work presentation
Devlog Integrated Services
 
Twitter General Basics June 2009
mollysly
 
Twitter: Not just about Miley Cyrus and Weird #hashtags #FLBlogConEDU
Joshua Murdock
 
Dos and don's on social media
sanjeev kumar
 
Twitter for teachers
Jennifer L. Scheffer
 
Go Incognito!
Jhansi Pailla, GISP
 
Ad

Viewers also liked (7)

PDF
iCrOSS 2013_Pentest
M.Syarifudin, ST, OSCP, OSWP
 
PDF
IPTV Security
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Prepare Yourself to Become Infosec Professional
M.Syarifudin, ST, OSCP, OSWP
 
PDF
My pwk & oscp journey
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Information gath
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Wireless LAN Security-Bimtek Kominfo
M.Syarifudin, ST, OSCP, OSWP
 
iCrOSS 2013_Pentest
M.Syarifudin, ST, OSCP, OSWP
 
IPTV Security
M.Syarifudin, ST, OSCP, OSWP
 
Prepare Yourself to Become Infosec Professional
M.Syarifudin, ST, OSCP, OSWP
 
My pwk & oscp journey
M.Syarifudin, ST, OSCP, OSWP
 
Information gath
M.Syarifudin, ST, OSCP, OSWP
 
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
Wireless LAN Security-Bimtek Kominfo
M.Syarifudin, ST, OSCP, OSWP
 
Ad

Similar to Social Network Security & Backdooring email (20)

PPT
Basic Digital Security
Ujjwal Acharya
 
PPTX
Spamming for ecommerce student of college
Amuanpuia1
 
PPT
Email and web security
shahhardik27
 
PPTX
Spam & Phishing
GrittyCC
 
PPT
Email Basics
Sarthak Dongre
 
PPTX
CYBER SECURITY AND CYBER CRIME COMPLETE GUIDE.pLptx
BarakaMuyengi
 
PDF
Digital security for Sri Lankan activists
Sanjana Hattotuwa
 
PPT
E-Mail Crimes - Gurugram Cyber Crime Cell July 2017
Shyam Pareek
 
PDF
Internet Safety for 1950s Adults and Beginners
Rajesh Soundararajan
 
PPTX
Social Engineering and What to do About it
Aleksandr Yampolskiy
 
PDF
Spam and hackers
Souhail Hammou
 
PDF
Spam and hackers
Souhail Hammou
 
PDF
Social networking fraud handout june 2011
Lawrence Medical Managers
 
PDF
Social networking fraud handout june 2011
Lawrence Medical Managers
 
PDF
Social networking fraud handout june 2011
Lawrence Medical Managers
 
PPTX
Introduction to Email
Made Aditya
 
PPTX
Bad Email-Final_1_2_14.pptx
GEETHA LATHA
 
PPT
Session 3 Gmail-Account.ppt
jaspreetkaur908049
 
PPTX
Eric Dearbeck Security PowerPoint
Eric Dearbeck
 
PPTX
Email security
Baliram Yadav
 
Basic Digital Security
Ujjwal Acharya
 
Spamming for ecommerce student of college
Amuanpuia1
 
Email and web security
shahhardik27
 
Spam & Phishing
GrittyCC
 
Email Basics
Sarthak Dongre
 
CYBER SECURITY AND CYBER CRIME COMPLETE GUIDE.pLptx
BarakaMuyengi
 
Digital security for Sri Lankan activists
Sanjana Hattotuwa
 
E-Mail Crimes - Gurugram Cyber Crime Cell July 2017
Shyam Pareek
 
Internet Safety for 1950s Adults and Beginners
Rajesh Soundararajan
 
Social Engineering and What to do About it
Aleksandr Yampolskiy
 
Spam and hackers
Souhail Hammou
 
Spam and hackers
Souhail Hammou
 
Social networking fraud handout june 2011
Lawrence Medical Managers
 
Social networking fraud handout june 2011
Lawrence Medical Managers
 
Social networking fraud handout june 2011
Lawrence Medical Managers
 
Introduction to Email
Made Aditya
 
Bad Email-Final_1_2_14.pptx
GEETHA LATHA
 
Session 3 Gmail-Account.ppt
jaspreetkaur908049
 
Eric Dearbeck Security PowerPoint
Eric Dearbeck
 
Email security
Baliram Yadav
 

Recently uploaded (20)

PDF
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PDF
Weekly quiz Compilation Jan -July 25.pdf
Nitin Suresh
 
PDF
Trump Administration's workforce development strategy
Mebane Rash
 
PDF
Black Hat USA 2025 - Micro ICS Summit - ICS/OT Threat Landscape
Chris Sistrunk
 
PDF
GENETICS IN BIOLOGY IN SECONDARY LEVEL FORM 3
ElishamichaelSamwel
 
PPTX
master seminar digital applications in india
ananyaray35
 
PDF
RTP_AR_KS1_Tutor's Guide_English [FOR REPRODUCTION].pdf
RobertMentino1
 
PDF
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
PDF
Complications of Minimal Access Surgery at WLH
mohitsuren827
 
PPTX
Pharma ospi slides which help in ospi learning
rameetkumar304
 
PPTX
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
PDF
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
PPTX
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
PDF
OBE - B.A.(HON'S) IN INTERIOR ARCHITECTURE -Ar.MOHIUDDIN.pdf
ArchitectAFMMohiuddi
 
PPTX
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
PDF
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
PPTX
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
PDF
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
PDF
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
PDF
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
Weekly quiz Compilation Jan -July 25.pdf
Nitin Suresh
 
Trump Administration's workforce development strategy
Mebane Rash
 
Black Hat USA 2025 - Micro ICS Summit - ICS/OT Threat Landscape
Chris Sistrunk
 
GENETICS IN BIOLOGY IN SECONDARY LEVEL FORM 3
ElishamichaelSamwel
 
master seminar digital applications in india
ananyaray35
 
RTP_AR_KS1_Tutor's Guide_English [FOR REPRODUCTION].pdf
RobertMentino1
 
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
Complications of Minimal Access Surgery at WLH
mohitsuren827
 
Pharma ospi slides which help in ospi learning
rameetkumar304
 
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
OBE - B.A.(HON'S) IN INTERIOR ARCHITECTURE -Ar.MOHIUDDIN.pdf
ArchitectAFMMohiuddi
 
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 

Social Network Security & Backdooring email

  • 1. SocialNetworkingSecurity & BackdooringEmail Presented by Syarif ! Seminar & Workshop Nasional Security System Malang, Juni 5 2011 Universitas Muhammadiyah Malang
  • 3. Agenda • Social Networking ? • Social Networking :Attacks & Defense • Backdooring Email • There is No Privacy anymore :) • How to protect your self
  • 8. Facebook & twitter attack • Phishing
  • 9. Facebook & twitter attack • Session Hijacking • Firesheep
  • 10. facebook & twitter defense • Be a paranoid & don’t trust anyone on the internet • Never put some sensitive information carelessly • Keep your eyes, Always check the correct url • Never Subscribe unauthorized applications • Always remember, wireless is not secure. Keep “safety” browsing :p • Always using https • etc
  • 11. Email attack : Backdooring Email ;) • Why ? • Email is very important • as a communication media • Email is a privacy • Everything using email • User account : facebook, twitter, etc • Passwords • paypal account • domain & hosting account
  • 12. Email attack : Backdooring Email ;) • Motivation ? • Just for fun :) • Jealous / Revenge • Get important data • Get Final Exam Task & Answer :p • Spy • Scamming • Money reason : paypal, etc • Domain & hosting take over
  • 13. Email attack : Backdooring Email ;) • Prelinimary ? • Social Engineering • password obtained by hacking other websites ~ one password for all
  • 14. Backdooring Email ?Yes you can ;) • Using what ? • Why ? • most people using it • easy to use • could be used to impersonate :p • high capacity mailbox • 10 more accounts could be backdoored in one mailbox • no need to log in the target mailbox • could be used to backdoor all of mail accounts in some mail server :)
  • 15. Demo
  • 18. How to ProtectYourself ? • Always Check Last Log in your email • Never put some sensitive information carelessly • Be a Paranoid, check the flag messages in your email • Keep on your eyes to check mail in the inbox, sent, draft , and trash • Always keep your correct mail setting • Never use “one password for all” :p • Changer your mail password regularly • don’t use a “weak” security question
  • 19. Q & A • twitter : fl3xu5 • YM : fl3xu5