Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • IT Management
    • Networking

    Hacking: Exploiting Default of Guessable Credentials

    By
    Fahmida Y. Rashid
    -
    March 7, 2012
    Share
    Facebook
    Twitter
    Linkedin

      PrevNext

      1Hacking: Exploiting Default of Guessable Credentials

      1

      Attackers exploited default or easily guessable credentials for about 29 percent of the breaches analyzed by the Verizon RISK team. Many vendors often ship devices, appliances and software with a default password assigned. While it is possible to change them, that is not always the case. Industrial control systems are an example of devices with default passwords that can’t be changed. Even if the password can be changed, many administrators don’t bother. With a little bit of searching, attackers can find the passwords online, and the gates are wide open.

      2Malware: Backdoor

      2

      The user is either tricked into downloading and installing malware on the system, or a malicious Website exploits a vulnerability in the software or operating system to download and install itself. Once the computer is infected, it acts as a backdoor, allowing the remote attacker access to the network or executing code. Even if the original vulnerability is patched, if the malware can still communicate with the remote server, the attackers can continue to operate. Backdoors were found in about 26 percent of the cases.

      3Hacking: Using Stolen Log-In Credentials

      3

      Found in about 24 percent of the cases, stealing log-in credentials remains popular with cyber-crooks. This method may have been used in tandem with malware, such as a keylogger. Once the criminal has access to the log-in information for email accounts or online banking, they have free rein to steal and loot. The number of dumped password lists after data breaches and the high incidence of password reuse by end users makes it is easier than ever to succeed with stolen credentials.

      4Hacking: Exploiting the Backdoor or Command and Control Channel

      4

      Slightly different from using malware to open a backdoor, this threat vector relies on the attacker somehow intercepting communications, using an unsecured port or other means to open up a backdoor themselves to transfer data or receive instructions. This method is the fourth most popular technique and is found in 23 percent of the cases.

      5Malware: Keylogger, Form-Grabber Spyware

      5

      Used in about 18 percent of the incidents analyzed by Verizon, attackers rely on data-capture malware, such as keyloggers, form-grabbers and other forms of spyware, to capture data directly from the user. The user is generally unaware that there is a tool monitoring everything they type on their system. Once that information has been captured, it is sent back to a remote server for future use.

      6Malware: Send Data to External Site

      6

      Several data-stealing Trojans fall in this category, as their sole purpose is to find specific types of data, such as configuration files, documents, spreadsheets and source code, and just send it back to the remote control server. Verizon’s RISK team found that cyber-crooks used this method in about 17 percent of all the incidents last year.

      7Hacking: Use System or Network Utilities

      7

      System tools, such as Pstools and netcat, are popular with IT professionals because they simplify the task of managing several systems on a network. Cyber-criminals like them, too, and they were used in about 14 percent of Verizon’s caseload. Pstools is a utilities suite that allows a user on the network to send commands to other connected Windows machines. This is similar to how attackers use legitimate penetration tools, such as Metasploit, to find holes in applications and Websites.

      8Hacking: SQL Injection

      8

      It was a bit surprising that Verizon found only 13 percent of its cases involve SQL injection. The SANS Institute has identified SQL injection errors as one of the most common errors in software. Developers don’t properly handle inputs in the application and allow malicious perpetrators to submit SQL commands that are executed on the database.

      9Malware: Capture Data Resident on System

      9

      Specific types of malware look for cookies and data stored in memory and cache that can be transferred to the remote attacker. There have been several cases of malware that are able to extract user names and passwords from memory. This occurred in 9 percent of the cases Verizon examined.

      10Malware: Download Install Additional Malware or Updates

      10

      Sometimes, the malware that is downloaded to the user’s computer after clicking on a malicious link or opening up a suspicious attachment is just a dropper file. Once installed, its sole purpose is to download additional malware or update itself with new instructions. This appeared in 9 percent of Verizon’s caseload.

      PrevNext

      MOST POPULAR ARTICLES

      Big Data and Analytics

      Alteryx’s Suresh Vittal on the Democratization of...

      James Maguire - May 31, 2022 0
      I spoke with Suresh Vittal, Chief Product Officer at Alteryx, about the industry mega-shift toward making data analytics tools accessible to a company’s complete...
      Read more
      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Applications

      Cisco’s Thimaya Subaiya on Customer Experience in...

      James Maguire - May 10, 2022 0
      I spoke with Thimaya Subaiya, SVP and GM of Global Customer Experience at Cisco, about the factors that create good customer experience – and...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Cloud

      Yotascale CEO Asim Razzaq on Controlling Multicloud...

      James Maguire - May 5, 2022 0
      Asim Razzaq, CEO of Yotascale, provides guidance on understanding—and containing—the complex cost structure of multicloud computing. Among the topics we covered:  As you survey the...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×