SEARCH ENGINE ATTACKS to dig Out sensitive information - PowerPoint PPT Presentation

About This Presentation

Title:

SEARCH ENGINE ATTACKS to dig Out sensitive information

Description:

By Creighton Linza for IT IS 3200 – PowerPoint PPT presentation

Number of Views:62

Avg rating:3.0/5.0

Slides: 15

Provided by: uncc150

Learn more at: https://webpages.charlotte.edu

Category:

Tags: attacks | engine | search | dig | information | isqlplus | out | sensitive

Transcript and Presenter's Notes

Title: SEARCH ENGINE ATTACKS to dig Out sensitive information

1
SEARCH ENGINE ATTACKSto dig Out sensitive
information

By Creighton Linza for IT IS 3200

2
Introduction

Search Engine
an information retrieval system that searches its
database for matches based on a query
Web Crawler
a program or script that automatically browses
the web

3
Introduction

Search Engine Attacks
Passive
Stealth
Have the ability to use the huge memory of the
internet

4
Main Issues

Exploits in software used to secure databases
Simple Identity theft
Little information required to get the attacker
going
Financial threats

5
Who benefits from this research?

The Good
Security personnel
Individual Users
The Bad
Hackers
Solicitors

6
Who has worked with this research?

Founders of Search Engine Attacks
Oliver Peek
Kristjan Lepik
What they did
Found press releases in advance
Overall made 7.8 million dollars

7
Examples of attacks
8
General Attacks

Search for Passwords
index of htpasswd / passwd
filetypexls Search Terms
WS_FTP.LOG
Web help forums

9
General Attacks (contd)

Google cache
Bad for those who thought their problem was fixed
Google Code Search
Exploitable code
Common files and directories
index of listener.ora

10
Database Attacks

Potentially vulnerable web applications searched
for via a search engine
Allow for advanced, specific, target-oriented
searching
Use exploits to attack holes
Protected databases found completely exposed by
web crawlers

11
Oracle Attacks Example

Oracle servers/database attack on iSQLPlus
Java servlet that listens on port 7777 or 5560
If either port is exposed to the internet
Web server and applications can be inventoried by
a web crawler
A route to access an internal database is created
From here, user accounts can be easily stolen
Do-it-yourself
allinurl /isqlplus

12
CONCLUSION
13
What can be improved

Latest updates and patches
Disable directory browsing
No sensitive information online
Unless using proper authentication
Analyze servers log for web crawlers access
Ask the search engine provider to remove any
necessary content

14
Conclusion

Web Crawler program/script overhaul
Google Webmaster Tools
More security
Workload
WYSIWYG (me)

Write a Comment

User Comments (0)

About PowerShow.com

Recommended Relevance Latest Highest Rated Most Viewed

Sort by:

Related More from user

CrystalGraphics Presentations

Introducing-PowerShowcom PowerPoint PPT Presentation

Introducing-PowerShowcom - Introducing-PowerShowcom (Without Music)

CrystalGraphics 3D Character Slides for PowerPoint PowerPoint PPT Presentation

CrystalGraphics 3D Character Slides for PowerPoint - CrystalGraphics 3D Character Slides for PowerPoint

Chart and Diagram Slides for PowerPoint PowerPoint PPT Presentation

Chart and Diagram Slides for PowerPoint - Beautifully designed chart and diagram s for PowerPoint with visually stunning graphics and animation effects. Our new CrystalGraphics Chart and Diagram Slides for PowerPoint is a collection of over 1000 impressively designed data-driven chart and editable diagram s guaranteed to impress any audience. They are all artistically enhanced with visually stunning color, shadow and lighting effects. Many of them are also animated. And they’re ready for you to use in your PowerPoint presentations the moment you need them. – PowerPoint PPT presentation

Related Presentations

How to get the Most out of your website? Basics Of seo PowerPoint PPT Presentation

How to get the Most out of your website? Basics Of seo - Optimizing your website according to the search engines can bring you increase in traffic and so more profit. To do the same you need to know the basics including - How search works? what's driving a search engine? How to optimize you site ethically? etc... Here are some basics of SEO and things you can do to improve your website... | PowerPoint PPT presentation | free to view

What is Search Engine Optimization (SEO) ? Effective for Website Ranking on SERP. PowerPoint PPT Presentation

What is Search Engine Optimization (SEO) ? Effective for Website Ranking on SERP. - SEO stands for Search Engine Optimization, as the name suggests it is a tactic that is used for the website to stand out in a Search Engine’s Ocean of websites. In other words, this Internet marketing strategy helps your website to rank in organic Internet traffic and improve the visibility of your website by ranking higher on the web search engine pages (SERP) resulting in more visitors, more leads and hence more business. | PowerPoint PPT presentation | free to view

SEARCH ENGINE ATTACKS to dig Out sensitive information PowerPoint PPT Presentation

SEARCH ENGINE ATTACKS to dig Out sensitive information - Web Crawler. a program or script that ... Web server and applications can be inventoried by a web crawler ... Analyze server's log for web crawler's access ... | PowerPoint PPT presentation | free to view

Blekko : An Information World Of Authenticity PowerPoint PPT Presentation

Blekko : An Information World Of Authenticity - The search results generated by the search engine blekko allow users more quickly get to great sources of information. The search engine is amongst the top four companies that actively index the entire web and offers a unique user tailored experience allowing you to categorize your search in unique, vertical categories. q | PowerPoint PPT presentation | free to view

Mixed content, mixed metadata: Information discovery in the NSDL PowerPoint PPT Presentation

Mixed content, mixed metadata: Information discovery in the NSDL - ... services must and search engines seek out ... Information Discovery in a Messy World Building blocks Brute force ... [Machine learning methods can identify ... | PowerPoint PPT presentation | free to view

Correct understanding of Search Engine Marketing PowerPoint PPT Presentation

Correct understanding of Search Engine Marketing - The early development of the Internet, search engines only as a technology for the website to provide information retrieval services | PowerPoint PPT presentation | free to view

Correct understanding of Search Engine Marketing PowerPoint PPT Presentation

Correct understanding of Search Engine Marketing - The early development of the Internet, search engines only as a technology for the website to provide information retrieval services | PowerPoint PPT presentation | free to view

Reaching Out With the Web: Evaluation of Food Safety Website Quality PowerPoint PPT Presentation

Reaching Out With the Web: Evaluation of Food Safety Website Quality - Add to our knowledge about the Web and how people search it. ... People sit at computers and search for information about food safety and biosecurity. ... | PowerPoint PPT presentation | free to view

Online Business And Using Search Engine Optimization PowerPoint PPT Presentation

Online Business And Using Search Engine Optimization - Proper SEO is essential to great Internet marketingTraffic Generation, part 4 The higher your search rankings, the more traffic you will receive. Here are some good suggestions you can use to get better search engine results. Pump out new content…..Pump out new content, and get it posted to your site as much as possible.… | PowerPoint PPT presentation | free to view

How do search engine (Google) Works? PowerPoint PPT Presentation

How do search engine (Google) Works? - The Google Search Engine: - The Google search engine is a powerful tool and without search engines like Google. It would be practically impossible to find the information you need when you browse the web. Like all search engine, Google uses a special algorithm to generate a search result. While Google shares general facts about its algorithm, the specifics are a company secret. This helps Google remain economical with other search engines on the web and reduces the accident of someone finding out how to abuse the system. | PowerPoint PPT presentation | free to view

How do search engine (Google) Works? (1) PowerPoint PPT Presentation

How do search engine (Google) Works? (1) - The Google Search Engine: - The Google search engine is a powerful tool and without search engines like Google. It would be practically impossible to find the information you need when you browse the web. Like all search engine, Google uses a special algorithm to generate a search result. While Google shares general facts about its algorithm, the specifics are a company secret. This helps Google remain economical with other search engines on the web and reduces the accident of someone finding out how to abuse the system | PowerPoint PPT presentation | free to view

What Are Social Engineering Attacks & How to Prevent Them? PowerPoint PPT Presentation

What Are Social Engineering Attacks & How to Prevent Them? - Social engineering attacks arrive in many patterns. The term is used to depict a vast range of vicious activities carried out through human exchanges. Criminals manipulate human nature and essential human tendencies – rather than specialized susceptibility or technical setbacks – to attack an organization. | PowerPoint PPT presentation | free to view

Which Engineering Course is Right For You PowerPoint PPT Presentation

Which Engineering Course is Right For You - Planning to pursue Engineering Degree ? Check out which Engineering Course is Right For You. | PowerPoint PPT presentation | free to view

Blekko : Designed To Give You A Remarkable Search Experience PowerPoint PPT Presentation

Blekko : Designed To Give You A Remarkable Search Experience - The search engine Blekko is one of the newest search engines and is being developed and designed after research of many years. | PowerPoint PPT presentation | free to view

Why Search Engine Optimization Is A Necessity In The Modern Marketplace PowerPoint PPT Presentation

Why Search Engine Optimization Is A Necessity In The Modern Marketplace - If you wish to increase your Internet traffic, consider search engine optimizationTraffic Generation, part 6 Increasing the number of visitors to your website is crucial in running a profitable Internet business, since higher traffic translates into higher profits. If you wish to increase your Internet traffic, consider search engine… | PowerPoint PPT presentation | free to view

Information Security PowerPoint PPT Presentation

Information Security - Government as well as private sectors looking for skilled professionals who can protect their company from the cyber attacks. | PowerPoint PPT presentation | free to view

Information and Communication Technologies in the New EU Framework Programme for Research and Innovation PowerPoint PPT Presentation

Information and Communication Technologies in the New EU Framework Programme for Research and Innovation - ... engineering of advanced embedded ... Advanced digital gaming/gamification technologies Multimodal and natural computer interaction 127 M Robotics ... | PowerPoint PPT presentation | free to view

The Phenomenon of Phishing Attacks PowerPoint PPT Presentation

The Phenomenon of Phishing Attacks - For high profile organizations and companies that collect and store sensitive information, this surge of phishing attacks is wildly disconcerting. In this case, your best response is full fledged security orchestration and automation. You simply cannot rely on one method of cyber defense to protect you from the intricacy of today’s phishing attacks. Visit - https://siemplify.co/ | PowerPoint PPT presentation | free to view

Remove SEARCH.LISTCHACK.COM redirect (Virus Removal Guide) PowerPoint PPT Presentation

Remove SEARCH.LISTCHACK.COM redirect (Virus Removal Guide) - SEARCH.LISTCHACK.COM is an adware that will display fake information to play a trick on computer users and do harm to Windows systems. Downloading freeware could make you pick up this kind of suspicious web page. Hence, it is necessary to notice each installation step and check whether freeware contains additional options. As soon as SEARCH.LISTCHACK.COM pops up as a browser start-up tab, it will display misleading information and take chance to install potentially unwanted programs to your computer. This kind of website will also use cookies to measure you. | PowerPoint PPT presentation | free to view

How to Remove Search.klivs.com Search Engine PowerPoint PPT Presentation

How to Remove Search.klivs.com Search Engine - This irresponsible search engine will replace the high-reputation with commercial results, most of which are related to ad-supported sites. The attack of this browser hijacker will cause information leaks for it will collect user’s browsing data as browsing history, cookies, frequent visited sites | PowerPoint PPT presentation | free to view

Searching Web Better PowerPoint PPT Presentation

Searching Web Better - ... RSCF-based Metasearch Engine. Search Engine Components. Feature ... Metasearch Engine. Receives query from user. Sends query to multiple search engines ... | PowerPoint PPT presentation | free to view

Maximizing Online Information Retrieval: How Theological Librarians Can Best Access the Gnostic Area PowerPoint PPT Presentation

Maximizing Online Information Retrieval: How Theological Librarians Can Best Access the Gnostic Area - No need for same code. Specialized search. Access to different information ... Be notified first when something is posted in your area of interest ... | PowerPoint PPT presentation | free to view

New Models for Scholarly Information Access PowerPoint PPT Presentation

New Models for Scholarly Information Access - Web search. engines. OPAC and Journal List. Library. E-content. Publisher. E-journal. Hosting ... list. ILL. Requests. Document. Ordering. Web search. engines ... | PowerPoint PPT presentation | free to view

Get Your Search Engine Optimization Going With These Tips PowerPoint PPT Presentation

Get Your Search Engine Optimization Going With These Tips - It is critical for you to make your site appear as high in the search engine rankings as possibleTraffic Generation, part 3 Search engine optimization can really help your customers find, and connect with you. Prospective clients should be able to use any search engine to find you easily.This means that it is critical for you to… | PowerPoint PPT presentation | free to view

Atl education foundation Information Security Training PowerPoint PPT Presentation

Atl education foundation Information Security Training - atl education foundation, it security training, it security franchise, network security, information security institute, it security institute, tech, science | PowerPoint PPT presentation | free to view

Search engine optimization draws more visitors to your site, ensuring that more potential clients wi PowerPoint PPT Presentation

Search engine optimization draws more visitors to your site, ensuring that more potential clients wi - How Does a Site Get Top Natural Listings? How Search Engines Rank Sites ... Ten SEO techniques you can do. 1. Do you have pages that speak to these key phrases? ... | PowerPoint PPT presentation | free to view

information security training phishing PowerPoint PPT Presentation

information security training phishing - Phishing is the attempt to acquire sensitive information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication. The word is a neologism created as a homophone of fishing due to the similarity of using fake bait in an attempt to catch a victim. Communications purporting to be from popular social web sites, auction sites, banks, online payment processors or IT administrators are commonly used to lure unsuspecting public. | PowerPoint PPT presentation | free to view