Development of Injected Code Attacks in Online Banking Fraud Incidents

An exploratory study for understanding the evolution of code used by cyber criminals in financial malware

Master thesis (2018)

Authors

G. Charalambous Technology, Policy and Management

Contributors

C. Hernandez Ganan (mentor)

M.J.G. van Eeten (graduation committee member)

T. Fiebig (graduation committee member)

Faculty

Technology, Policy and Management, Technology, Policy and Management

Cyber Security Cyber-attacks Malware analysis

More Info

expand_more

To reference this document use:

http://resolver.tudelft.nl/uuid:dd7ef146-1047-4067-a174-732aa5d2c317

Published Date

29-08-2018

Language

English

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Faculty

Technology, Policy and Management

Abstract

The frequency of online banking fraud incidents has increased over the last years. A method used by different cybercriminals is the injection of malicious code into the targeted web pages. For example, attackers might inject an additional piece code into the webpage of a targeted bank asking users to enter extra personal information (e.g., the PIN of the card). By comparing attack instances of web injected code attacks from different malware families an answer will given on how cyber criminals evolve the code of financial malware that is been used in injected code attacks against financial institutions. The contribution of this thesis is to verify the current literature of the existence of code re-use among different code instances using different code similarity tools and to explore how and why the code is evolved.

Files

Thesis_GeorgiaCharalambous.pdf

(.pdf | 5 Mb)