February 2005
e-solutions for a Global Economy
Evangelos Moustakas – PhD ResearcherMiddlesex University London - UK
Copyright February 2005 Evangelos Moustakas PhD Researcher Middlesex University
• The spam business model• What is spam?• How to control Spam?• Forging an e-mail address• How to ‘read’ an e-mail header • What can YOU do?• How to hack a hotmail account• Going ‘phishing’?• Cases studies of phishing – on-line fraud• On-line privacy• Monitoring in the working place• The mp3 on-line industry & copyright issues• Encryption & Decryption• Q & A
The Agenda
Monty Python Sketch Spam, Spam, Spam
Business OpportunitiesBulk E-mailChain LettersWork from HomeHealth & DietEffortless IncomeFree GoodsInvest OpportunitiesGuaranteed LoansCredit RepairVacation Prizes
Spam at an average enterprise exceeds 50% Sep 04 Spam cost businesses
$10 + B in 2003
62% of US employees say pornographic spam can contribute to a hostile workplace
Employees receive 5000-15000 spam msgs/day (2004)
The Spam Business Model
Spam is profitable: cost to sender is minimal
Global Spam this year: 3 trillion msgs = Cost $107 - $131 bn / $200bn by Dec
A delicious processed meat productLike the song, spam is an endless repetition of worthless text
What is Spam?
Legitimate companies cannot conduct on-line transactions
Forging an email address
Forging an email address
Changing the e-mail header properties
The ‘real’ e-mail sender
Controlling Spam – What can YOU do?
Reducing Spam
• Don’t display your e-mail address in public• Check the privacy policy when you submit your address to a website• Use an anti-spam filter – ISP research
The “Munging” [email protected] e.moustakas @ mdx ac uk
Make e-mail addresses indistinct in the .html source code
The characters can be replaced either by a small image (logo)
“Hexadecimal encoding” ‘[email protected]’ is transformed:<a href="mailto: %65%2e%6d%6f%75%73%74%61%6b%6163%2e%75%6b">contact</a>
Online contract forms
www.wbwip.com/wbw/emailencoder.html
How to hack easily a hotmail account
Follow the following instructions carefully:
First of all, compose a new messageIn the addressee (to) field, write the service address: [email protected] the subject field, write: ‘Password*fetch*’In the body, write:
1. In the 1st line write your e-mail address2. In the 2nd line write your password3. Leave the 3rd line empty (pass one line)4. In the 4th line write the e-mail address which you want to get its password5. In the 5th line write the e-mail which you want to get the password to (yours)6. Send the message
After few minutes/seconds you will get e-mail message contains the password you asked for!
How to hack easily a hotmail account
;)
Unsolicited e-mail sent to redirect recipients to fraudulent logon sites to capture personal detail.
Going for Phishing?
Going for Phishing?
On-line Privacy
On-line Privacy
Monitoring in the workplace
The mp3 on-line industry & copyright issues
Encryption and decryption
Q & A
ISPV – ESTGL Escola Superior de Tecnologia e Gestao de Lamego
e-solutions for a Global Economy
Copyright February 2005 Evangelos Moustakas PhD Researcher Middlesex University
Evangelos Moustakas (BA, BSc., MSc, MPhil)
PhD Researcher-Scholar of Middlesex University (2001-2004)Scholar of the Greek Unit of European Programs (I.K.Y.) (2000-2004)Visiting Scholar University of Illinois in Chicago (Autumn 2004)
URL: http://www.academy.gr/vmoustakasE-mail: [email protected]