Embed Size (px)
Citation preview
![Page 1: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/1.jpg)
ptsecurity.com
: ?
Ю
![Page 2: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/2.jpg)
О о е
• 2009
• 2012
•
• …
• : : , ATM, POS,
http://uk.linkedin.com/in/tyunusov
![Page 3: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/3.jpg)
т ф од те
• SIEM
• 90%
•
• 2 –
![Page 4: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/4.jpg)
т ф од те НЕ Р ОТ ЮТ
• 3 5
• К
• (
![Page 5: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/5.jpg)
т ф од ке
• Bot-Trek •
•
• HTML5, AJAX, etc
![Page 6: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/6.jpg)
Чекл т
•
•
• 2FA
• -
•
•
![Page 7: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/7.jpg)
уте т ф к ц я
• • 2 3
• IP
•
• PAN/CVV/EXP DATE
![Page 8: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/8.jpg)
уте т ф к ц я
• PAN/ /etc • PAN
• PAN/EXP DATE
![Page 9: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/9.jpg)
уте т ф к ц я
• ( , FB, etc) • Telegram API –
• OAuth
•
![Page 10: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/10.jpg)
уте т ф к ц я
• 2 – « 120 » • 4
• 120
•
• –
![Page 11: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/11.jpg)
уте т ф к ц я
• 2 – « 120 » • 4
• 120
•
• 1000 30
• 3000 90
• ~30%
• – • /auth?step=1&login=&password=
• /auth?step=2&password=OTP
![Page 12: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/12.jpg)
уте т ф к ц я
• 2 – « 120 » • 4
• 120
•
• 1000 30
• 3000 90
• ~30%
• – • /auth?step=1&login=&password=
• /auth?step=2&password=OTP
• /auth?step=2&login=&password
![Page 13: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/13.jpg)
Реше е
•
•
• – , ( ) • –
. . •
![Page 14: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/14.jpg)
вто ц я
• – POST /pay HTTP/1.1 Host: bank {"amount":100,"templateId":"393141","accountFrom":“бббб81039бббб028","methodName":"createPayment"}
![Page 15: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/15.jpg)
Реше е
• ACL • WAF backend
• DBF
• ACL – . • ACL
![Page 16: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/16.jpg)
Реше е
• « »
![Page 17: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/17.jpg)
е -п оце
• Limits
•
• 3 5
• $0.1 100 ?
![Page 18: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/18.jpg)
Реше е
•
• « ». .
![Page 19: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/19.jpg)
т к кл е тов
• XSS •
• CSRF
• lickJacking
• К
• К • CARD2CARD
![Page 20: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/20.jpg)
Реше е
• « »
•
![Page 21: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/21.jpg)
ут е уш тел
•
•
•
•
![Page 22: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/22.jpg)
Реше е
• « »
• « »
• ,
![Page 23: ZrZglbnjh^ - Positive Technologies · AZ]heh\hd¤1/ &/ 4 ! 6 A ;jmlnhjk nZ± ©M]gZlvaZ k_dmg^ª HLI 4 kbf\heZ k_dmg^\j_fy`bagb Kdhevdhm]h^ghljZgaZdpbc\wlhfhdg_](https://reader033.pdfslide.fr/reader033/viewer/2022042912/5f489ecbd453c439b45a6bd7/html5/thumbnails/23.jpg)
Thank You!
ptsecurity.com
