The WOMBAT Attack Attribution Method: Some Results
نویسندگان
چکیده
In this paper, we present a new attack attribution method that has been developed within the WOMBAT project. We illustrate the method with some real-world results obtained when applying it to almost two years of attack traces collected by low interaction honeypots. This analytical method aims at identifying large scale attack phenomena composed of IP sources that are linked to the same root cause. All malicious sources involved in a same phenomenon constitute what we call a Misbehaving Cloud (MC). The paper offers an overview of the various steps the method goes through to identify these clouds, providing pointers to external references for more detailed information. Four instances of misbehaving clouds are then described in some more depth to demonstrate the meaningfulness of the concept.
منابع مشابه
Gene and genome-centric analyses of koala and wombat fecal microbiomes point to metabolic specialization for Eucalyptus digestion
The koala has evolved to become a specialist Eucalyptus herbivore since diverging from its closest relative, the wombat, a generalist herbivore. This niche adaptation involves, in part, changes in the gut microbiota. The goal of this study was to compare koala and wombat fecal microbiomes using metagenomics to identify potential differences attributable to dietary specialization. Several popula...
متن کاملSpectrum Sensing Data Falsification Attack in Cognitive Radio Networks: An Analytical Model for Evaluation and Mitigation of Performance Degradation
Cognitive Radio (CR) networks enable dynamic spectrum access and can significantly improve spectral efficiency. Cooperative Spectrum Sensing (CSS) exploits the spatial diversity between CR users to increase sensing accuracy. However, in a realistic scenario, the trustworthy of CSS is vulnerable to Spectrum Sensing Data Falsification (SSDF) attack. In an SSDF attack, some malicious CR users deli...
متن کاملA Reasoning Method of Cyber-Attack Attribution Based on Threat Intelligence
With the increasing complexity of cyberspace security, the cyber-attack attribution has become an important challenge of the security protection systems. The difficult points of cyber-attack attribution were forced on the problems of huge data handling and key data missing. According to this situation, this paper presented a reasoning method of cyber-attack attribution based on threat intellige...
متن کاملThe Effectiveness of Verbal Self-Instruction Method on Pessimistic Attribution Style about Negative Events in Children with Dyslexia
Objectives: The aim of this study was to investigate the effectiveness of verbal self-Instruction on pessimistic attribution style about negative events in children with dyslexia. Methods: The study was experimental with pre-test-post-test and control group. The statistical population consists of all dyslexic students of Maktab Ali School in Tehran City. Forty students were selected by conve...
متن کاملAssessing Cybercrime Through the Eyes of the WOMBAT
The WOMBAT project is a collaborative European funded research project that aims at providing new means to understand the existing and emerging threats that are targeting the Internet economy and the net citizens. The approach carried out by the partners include a data collection effort as well as some sophisticated analysis techniques. In this chapter, we present one of the threats-related dat...
متن کامل