Sirikt2007 > 112-bozic

VZORČNI PRIMERI OMREŽNIH INCIDENTOV

SECURITY INCIDENTS - CASE STUDIES

Gorazd Božič (SI-CERT), Tadej Hren (SI-CERT), Arnes

Povzetek
Kot vse drugo na omrežju, se razvijajo in spreminjajo tudi metode in cilji vdorov v računalniške sisteme. Motivi vdiralcev so se korenito spremenili iz "raziskovalnih" v čisto pridobitniške. Slušatelji se bodo seznanili tudi z nekaterimi žargonskimi izrazi, kot sta recimo "phishing" in "drive-by pharming". Preko analiz primerov vdorov in zlorab, ki jih je obravnaval SI-CERT center, bomo analizirali sodobne ranljivosti - ne samo strojne in programske opreme, ampak tudi uporabnikov.

Abstract
Like everything else on the internet, methods and goals of computer break-ins are evolved. Hackers' goals have changed substantially from those of "research" to that of profit. Audience gets familiar with such jargon terms as "phishing" and "drive-by pharming". Using examples of system compromises and other incidents that SI-CERT has dealt with, we analyze current vulnerabilities - not just in hardware or software but of users too.