Hiran V Nath
Assistant Professor
MB209, Department of Computer Science and Engineering, National Institute of Technology Calicut, NIT Campus PO, Calicut, Kerala - 673601, India +91-0495-2286819 hiranvnath[at]nitc[dot]ac[dot]in (email)
Analysis of a multistage attack embedded in a video file
- Citation:
- Nath, HV, Mehtre BM. 2015. Analysis of a multistage attack embedded in a video file, 2015. 17(5):1029-1037.
Abstract:
In 1990s, burglars used to break into house, while the residents were viewing some interesting television shows. This type of attacks happened mainly in the physical world and it was expected that cyber world is free from such crimes. Unfortunately, this is not true. A skilled hacker could compromise a system, while the user is viewing (an interesting) video file. Quite often computer users, use their machines for viewing (interesting) videos. Such users may be naive users or could even be those who work on mission critical systems, like banking, defence, nuclear power-plant, space agencies etc. So playing a video file can lead to high security risk. In this paper, we have analysed video files, for detecting multistage attacks. We found that some video files contain malicious link through which an exploit gets downloaded into the host machine. The contribution of this paper is the discovery of novel attacks that are hidden (by perpetrator) in innocuous video files with the objective of staging a targeted attack in multiple stages. Finally, we propose a new method for detection of such attacks (carried through video files) using API calls.
Notes:
n/a
