Professional Documents
Culture Documents
A Brave New World (CV)
A Brave New World (CV)
World ?
Paulo Rupino da Cunha
http://eden.dei.uc.pt/~rupino
rupino@dei.uc.pt
Agenda
Traditional Atacks
Modern Warfare
Traditional
Attacks
What people think mostly happens…
Poor Security Habits
https://nordpass.com/blog/top-worst-passwords-2019/
Poor Security Habits
https://visao.sapo.pt/exameinformatica/noticias-ei/internet/2021-11-22-nord-security-roubadas-325-milhoes-de-passwords-em-portugal/
Top 25 passwords used in Portugal
https://observador.pt/2020/10/22/advogada-suspeitou-logo-de-email-que-permitiu-ataque-de-rui-pinto-a-plmj-nao-parecia-normal/
Common SE attacks
• Quid pro quo (appeal to courtesy and kindness, play on emotions, innate sense to want to
https://www.rasmussen.edu/degrees/technology/blog/social-engineering-attacks/
trust others and be helpful, promising to do something in return…)
• Baiting (appeal to curiosity and excitement, everyone wants to feel lucky at least once, gratification
just a click or login away, clickbait videos and photos…)
• Pretexting (leveraging ignorance and trust, unawareness of the value of the information, using
bits of real information, catfishing, survey scams…)
https://observador.pt/2020/04/13/edp-alvo-de-ataque-informatico-que-bloqueou-sistemas-de-atendimento-aos-clientes/
https://www.wired.com/story/oldsmar-florida-water-utility-hack/
https://www.technologyreview.com/2020/11/12/1012015/ransomware-did-not-kill-a-german-hospital-patient/
https://www.zdnet.com/article/security-alert-dramatic-increase-in-cyberattacks-says-who-after-passwords-leaked-online/?ftag=TRE49e8aa0&bhid=209702&mid=12812116&cid=717946272
https://www.zdnet.com/article/why-ransomware-is-still-so-successful-over-a-quarter-of-victims-pay-the-ransom/
Big Tech, Social
Media & Fake
News
https://www.forbes.com/sites/daveywinder/2019/09/05/facebook-security-snafu-exposes-419-million-user-phone-numbers
https://restoreprivacy.com/linkedin-data-leak-700-million-users/
https://news.trust.org/item/20210319120214-n93hk/
https://www.dailymail.co.uk/sciencetech/article-6734805/Facebook-secretly-collects-highly-sensitive-data-popular-apps.html
https://www.theguardian.com/world/2021/jul/17/covid-misinformation-conspiracy-theories-ccdh-report
https://www.nbcnews.com/tech/tech-news/how-three-conspiracy-theorists-took-q-sparked-qanon-n900531
https://www.theguardian.com/technology/2020/oct/09/facebook-rightwing-extremists-michigan-plot-militia-boogaloo
https://www.technologyreview.com/2021/03/11/1020600/facebook-responsible-ai-misinformation
https://www.theguardian.com/technology/2018/feb/02/how-youtubes-algorithm-distorts-truth
https://edition.cnn.com/2020/12/17/politics/us-government-hack-extends-beyond-solarwinds/index.html
https://www.ted.com/talks/supasorn_suwajanakorn_fake_videos_of_real_people_and_how_to_spot_them
https://www.youtube.com/watch?v=lnUbEPFlgKA
Modern
Warfare
“Hence to fight and conquer in all your
battles is not supreme excellence;
supreme excellence consists in breaking
the enemy's resistance without fighting.”
Sun Tzu
Chinese general, military strategist
writer, and philosopher
544–496 BC
https://www.hybridcoe.fi/hybrid-threats/
https://www.politico.eu/article/eu-warns-of-disinformation-campaign-linked-to-russias-sputnik-vaccine/
https://www.wired.com/2014/11/countdown-to-zero-day-stuxnet/
https://edition.cnn.com/2020/12/17/politics/us-government-hack-extends-beyond-solarwinds/index.html
https://edition.cnn.com/2020/12/17/politics/https://www.ft.com/content/5bbaa89b-2e85-4c5f-b918-566e6712d273/index.html
Paulo Rupino da Cunha
http://eden.dei.uc.pt/~rupino
rupino@dei.uc.pt