Herding Vulnerable Cats

Tajalizadehkhoob, Samaneh; Goethem, Tom Van; Korczyński, Maciej; Noroozian, Arman; Böhme, Rainer; Moore, Tyler; Joosen, Wouter; Eeten, Michel van

doi:10.1145/3133956.3133971

Cited by 28 publications

(3 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…1) Security Issues and Website Vulnerabilities: From the perspective of the online "hosting provider" or the "website administrator", Tajalizadehkhoob et al [37] investigated website vulnerabilities and security issues. They argued that in a shared hosting environment, webmasters and providers share responsibility for web security.…”

Section: Internet-related Attacksmentioning

confidence: 99%

Secure Storage of Crypto Wallet Seed Phrase Using ECC and Splitting Technique

Bukhari,

Janjua,

Qadir

2024

IEEE Open J. Comput. Soc.

View full text Add to dashboard Cite

Blockchain technology enables users to control and record their cryptocurrency transactions through the use of digital wallets. As the use of blockchain technology and cryptocurrency wallets continues to grow in popularity, the potential for attacks on these wallets increases, as attackers seek to gain access to the large sums of cryptocurrency they contain. To mitigate these risks, it is important to conduct thorough security evaluations of wallets and implement strong protective measures. In recent years, there have been several incidents involving significant losses of cryptocurrency in crypto-wallets, and in this research, a comprehensive evaluation of seed phrase and password attack methods found in the published literature was conducted, and the topic was advanced by addressing the question of whether seed phrases are hackable. The research aims to use the elliptic-curve cryptography (ECC) encryption algorithm for storing the seed phrase online by encrypting the seed phrase and using the splitting technique to store the crypto wallet seed phrase. It was concluded that it is only possible to hack a seed phrase if a significant portion of it is already known, but even this would require a significant amount of time and computational power.

show abstract

Section: Internet-related Attacksmentioning

confidence: 99%

Secure Storage of Crypto Wallet Seed Phrase Using ECC and Splitting Technique

Bukhari,

Janjua,

Qadir

2024

IEEE Open J. Comput. Soc.

View full text Add to dashboard Cite

show abstract

“…Update Behavior Update behavior of software has been previously studied. Tajalizadehkhoob et al [19] measure the security state of software provided by hosting providers to understand the role of hosting providers for securing websites. Vaniea et al [23] conduct a survey to understand the update behaviour of software.…”

Section: Related Workmentioning

confidence: 99%

“…To understand how up to date the utilized software on the Web is and to understand its possible security implications, we conduct a large-scale measurement. Previous work also analyzed update behavior on the Web (e.g., [19,23]) but -to the best of our knowledge -our measurement is more comprehensive than the previous studies. While we analyze over 5.6M sites and nearly 250 software (SW) products, other work in this field often only analyzed one specific type of software or a small subset.…”

Section: Introductionmentioning

confidence: 99%

Our (in)Secure Web: Understanding Update Behavior of Websites and Its Impact on Security

Demir

Urban

Wittek

et al. 2021

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Software updates take an essential role in keeping IT environments secure. If service providers delay or do not install updates, it can cause unwanted security implications for their environments. This paper conducts a large-scale measurement study of the update behavior of websites and their utilized software stacks. Across 18 months, we analyze over 5.6M websites and 246 distinct client-and server-side software distributions. We found that almost all analyzed sites use outdated software. To understand the possible security implications of outdated software, we analyze the potential vulnerabilities that affect the utilized software. We show that software components are getting older and more vulnerable because they are not updated. We find that 95 % of the analyzed websites use at least one product for which a vulnerability existed.

show abstract