BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Who's next? Identifying risk factors for subjects of targeted atta
 cks - Martin Lee (Symantec)
DTSTART:20121127T161500Z
DTEND:20121127T171500Z
UID:TALK40621@talks.cam.ac.uk
CONTACT:Wei Ming Khoo
DESCRIPTION:Malware-containing emails can be sent to anyone. Single malwar
 e variants can be sent to tens of thousands of recipients without distinct
 ion. However\, a small proportion of email malware is sent in low copy num
 ber to a small set of recipients that have apparently been specifically se
 lected by the attacker. These targeted attacks are challenging to detect a
 nd if successful\, may be particularly damaging for the recipient. The vas
 t majority of Internet users will never be sent a targeted attack. The few
  users to which such attacks are sent\, presumably possess features that h
 ave brought them to the attention of attackers\, and have caused them to b
 e selected for attack. Applying epidemiological techniques to calculate th
 e odds ratio for features of malware recipients\, both targeted and non-ta
 rgeted\, allows the identification of putative factors that are associated
  with targeted attack recipients. In this paper we show that it is possibl
 e to identify putative risk factors that are associated with individuals s
 ubjected to targeted attacks\, by considering the threat akin to a public 
 health issue. These risk factors may be used to identify those at risk of 
 being subject to future targeted attacks\, so that these individuals can t
 ake additional steps to secure their systems and data.
LOCATION:Lecture Theatre 2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR