Impersonation-as-a-Service: Characterizing the EmergingCriminal Infrastructure for User Impersonation at Scale

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

22 Citaten (Scopus)

Samenvatting

In this paper we provide evidence of an emerging criminal infrastructure enabling impersonation attacks at scale. Impersonation-as-a-Service (IMPaaS) allows attackers to systematically collect and enforce user profiles (consisting of user credentials, cookies, device and behavioural fingerprints, and other metadata) to circumvent risk-based authentication system and effectively bypass multi-factor authentication mechanisms. We present the IMPaaS model and evaluate its implementation by analysing the operation of a large, invite-only, Russian IMPaaS platform providing user profiles for more than 260,000 Internet users worldwide. Our findings suggest that the IMPaaS model is growing, and provides the mechanisms needed to systematically evade authentication controls across multiple platforms, while providing attackers with a reliable, up-to-date, and semi-automated environment enabling target selection and user impersonation against Internet users as scale.
Originele taal-2Engels
TitelCCS '20: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security
UitgeverijAssociation for Computing Machinery, Inc
Pagina's1665-1680
Aantal pagina's16
ISBN van elektronische versie9781450370899
DOI's
StatusGepubliceerd - 30 okt. 2020

Vingerafdruk

Duik in de onderzoeksthema's van 'Impersonation-as-a-Service: Characterizing the EmergingCriminal Infrastructure for User Impersonation at Scale'. Samen vormen ze een unieke vingerafdruk.

Citeer dit