- Vivi Padova
- Il Bo
SEMINARIO DI INFORMATICA
Giovedì 24 Settembre 2015 alle ore 13:00 in Sala riunioni IV piano, Daniele Lain (studente magistrale Università di Padova) terrà un seminario dal titolo: "Boten ELISA: A Novel Approach for Botnet C&C in Online Social Networks".
The Command and Control (C&C) channel of modern botnets is migrating from traditional centralized solutions (such as the ones based on Internet Relay Chat and Hyper Text Transfer Protocol), towards new decentralized approaches. As an example, in order to conceal their traffic and avoid blacklisting mechanisms, recent C&C channels use peer-to-peer networks or abuse popular Online Social Networks (OSNs). A key reason for this paradigm shift is that current detection systems become quite effective in detecting centralized C&C.
In this talk, we introduce the evolution of C&C channels and modern detection systems. We then present ELISA (Elusive Social Army), a novel type of botnet that conceals C&C information using OSNs accounts of unaware users. In particular, ELISA exploits in a opportunistic way the messages that users exchange through the OSN. We show that several popular social networks can be maliciously exploited to run this type of botnet, and we discuss why current traffic analysis systems cannot detect ELISA.
This work will be also presented at the 2015 IEEE Conference on Communications and Network Security (CNS 2015).