<-- See All News Stories

Distinguished Lecture: Phishing for Phishers

5:03 PM on October 8, 2020

** Distinguished Lecture **
CS Seminar

Phishing for Phishers

Sal Stolfo
Columbia University

Oct 16, Fri, 12noon

Phishing campaigns that target employees of enterprises are typically
addressed with training, to avoid "trick and click" user behavior, and
technical solutions that filter known phishing sites from corporate
email and web traffic. Customers of an enterprise are easier prey, they
generally are not protected with the same technical solutions. In this
presentation, we propose solving the phishing problem not solely by
prevention techniques, but rather by fast detection of phishing sites
and quickly responding by changing the economics of the attack. We do
this by flooding malicious websites with fake decoy credentials that
poison whatever may have been stolen. These decoys are monitored for
later misuse, which reveals information sufficient to fingerprint the
phisher to detect their activities elsewhere. The content of phishing
sites is analyzed for several purposes: a) to identify what digital
identity information is sought by the site in order to generate
believable decoy information for stuffing b) evaluating the danger of
the site based upon this information, and c) profiling of the phisher
based upon the variables they use in their html and Javascript code.

About the Speaker

Salvatore Stolfo is a Professor of Computer Science at Columbia
University. He is regarded as creating the area of machine learning
applied to computer security in the mid-1990's and has created several
anomaly detection algorithms and systems addressing some of the hardest
problems in securing computer systems. Of particular note is his recent
interest in the practical application of deception security in scale.
Stolfo is also co-inventor of the Symbiote technology that automatically
injects intrusion detection functionality into arbitrary embedded
devices. Stolfo has had numerous best papers and awards, most recently
the RAID Most Influential Paper and Usenix Security Distinguished Paper
awards. He is an IEEE fellow and ACM fellow. He has published well over
230 papers and has been granted over 95 patents and has been an advisor
and consultant to government agencies, including DARPA, the National
Academies and others, for well over 2 decades. Two security companies
were recently spun out of his IDS lab, Allure Security Technology and
Red Balloon Security.