Module 7 - The Role of Social Networking

Question 1

Uses of Social Media

Answer 1

1 to many comms. with tools such as Twitter, Flickr, and resume sites

• 1 to many comms with some privileged comm. to groups of individuals with tools such as Facebook (with security enabled) and Orkut (popular in S. America and S. Africa).
• One to One sharing of info with tools such as SnapChat and Pair

Question 2

Social Media as Means of OSInt

Answer 2

Collect information from across multiple social networking sites, e.g. Facebook, LinkedIn, Twitter, Flickr, Monster, forums, product reviews, etc. Becomes very easy to do.

• Also against the corporations based on information posted by employees

Question 3

Social Networking Sites serve as (4):

Answer 3

• passive source of info. about targets, both individuals and organizations
• an active source of reconnaissance (Robin Sage and fake profiles)
• a weapon, e.g. profiles with hyperlinks and embedded malicious pictures
• as means to rally large groups of individuals

Question 4

Popular Sources of Communication and Information:

Answer 4

• social networking sites (personal, professional)
• file sharing sites
• pastebin (Anonymous)
• IRC Servers
• Forums
• 4chan.org

Question 5

List 7 Popular Social Networking Sites in US

Answer 5

• MySpace
• Facebook
• Twitter
• Linked In
• Google Plus
• Flickr
• Four Square

Question 6

Social Media Problem for Governments (examples)

Answer 6

View Social Networking as a problem (sensitive information disclosed online)
- example - Fairfax Media survey uncovered > 200 Australian intelligence officers who had disclosed their classified employment on sites.
> Petraeus Affiar (mistress leak sensitive information
> UK - Wife of MI6 posted data on Facebook

Question 7

Social Media as Intel Source (tool)

Answer 7

For governments, military, and non state such as corporations.

Dynamic Twitter Network Analysis (DTNA)
- pulls data from Facebook, YouTube, Google, Twitter

Question 8

Robin Sage

Answer 8

• Thomas Ryan ran experiment Dec 2009 - Jan 2010.

- Obtained 300 LinkedIn contacts, 110 Facebook Friends, 141 Twitter followers

Question 9

Terrorists Use of Social Media for Intelligence

Answer 9

Taliban friending US Troops on Facebook using fake accounts.

Question 10

Cyber Profiling Using Social Media (how its done)

Answer 10

• Identify Individuals of Interest (DBAs, Security Admins, Firewall engineers)
• Identify Architecture (determine weaknesses based on posting)
• Target Organizations of interest (realistic spear phishing attacks, logistical information)

One Intrusion Technique Using Social Media:

1) Forgot password
2) Answer security questions based on profiling data
3) Reset the password and reset secondary e-mail address

Question 11

Live Journal

Answer 11

Accounts: 41.4 Million
US Accounts: 4.5 million
Russian Federation Accounts: 2.6 million (but much more active)

Question 12

Sentinel Analyzer

Answer 12

• Analyzes cluster “power” of individuals, shows connections $4000

Question 13

Facebook Notes

Answer 13

• Username and password required for logon
• Logon from computer or mobile device
• E-mail alert when an unusual device or location are used.
• Friend Invitations must be accepted.
• Postings timestamped
• Not all profiles viewable

Question 14

Twitter Notes

Answer 14

all around the world

Question 15

Tool for Looking at Metadata

Answer 15

ExifReader
- make/model
- timestamp
- phone's GPS
(likely on Apple, possible on Android)