Account hijacking has become a routine, large-scale threat that users and online web services face. Like a siren’s call, miscreants seek to monetize on the proliferation of personal data to remote servers. For email and cloud services, the most intimate… Continue Reading
This post is based on research conducted in collaboration with Google, to appear in CCS 2012. A pdf is available under my publications. Any views or opinions discussed herein are my own and not those of Google. Driveby downloads —… Continue Reading
This post is based on research to appear in CCS 2010 — an advance pdf is available under my publications To understand spam propagating within Twitter, we plugged into Twitter’s streaming API and monitored tweets submitted to the site over… Continue Reading
The Koobface botnet preys on social networking sites as its primary means of propagation. Unsuspecting victims browsing Facebook, Twitter, and other social networks are sent messages from users they believe to be friends. In truth, these users are either compromised… Continue Reading