Subtopic Notes
5.3 Cyber security
5. The internet and its uses
Malware:
Any kind of malicious software. Examples are virus, ransomware, adware, trojan horse, spyware, worms, logic bomb
| Threat | Effect | Method of Protection |
|---|---|---|
| Brute Force Attack Password guessed by trying out all possible combinations | Personal data like passwords and card information gets unauthorized access | Stronger password with uppercase, lowercase, symbols and numbers, Captcha |
| Data Interception Data stolen by tapping into a transmission line | Unauthorized access gained leading to privacy breach, identity theft, financial loss. | Encryption, VPN (Virtual Private Network), Stronger password in Wi-Fi, Avoid public wifi, Antivirus, Keep system updated |
| Distributed Denial of Service (DDoS) attack Multiple computers (uses bots) flood a target with overwhelming traffic | Website, Server, Network slow down, crash or become unavailable to users | Use firewalls, increase bandwidth, monitor website traffic, Captcha |
| Hacking Gaining illegal access to a computer system Cracking: Unauthorized breaking into a computer system or software or editing program code | Unauthorized access gained, privacy breach, identity theft, financial loss, data loss or corrupted | Firewalls, Anti hacking software, Stronger password, Use biometrics, 2FA |
| Virus Spreads between computers and causes damage to data and software. | Computer crashing, files corrupted or deleted | Antivirus, Preventing downloads or emails from unknown sources, Keep OS updated |
| Worm Standalone piece of malware that replicates itself using a network. | Corrupt user’s data, consume bandwidth, unauthorized access | Antivirus, Not connecting to unsafe internet, Keep OS updated |
| Trojan Horse Softwares that are disguised as other legitimate software | Resources drained, unauthorized access, data loss, software stops working | Antivirus, Keep OS updated, Firewall |
| Spyware Secretly collects user activity Keylogger: Collects key pressed | Stealing info like accessed sites, applications, downloaded files. Taking control of device | Antivirus, Preventing downloads or emails from unknown sources, Keep OS updated, Use dropdowns |
| Adware Showing unwanted advertisements to user’s device | Annoying advertisement, search engine in browser changes, system slowdown | Antivirus, Updated system, use reputed browsers, review app permission, enable popup blockers |
| Ransomware Encrypting data until a ransom is paid to the attacker | Data loss, unauthorized access, legal consequences to organizations, reputation damage | Backup Data, Stronger password, antivirus, updated system, restrict user privileges |
| Pharming Disguising a website as some other legitimate site, may be redirected or DNS poisoning | Time waste, Sensitive information like passwords and financial details stolen | Antivirus, Checking weblink properly, checking SSL certificate, 2FA |
| Phishing Legitimate looking fake emails sent to the victim | Time waste, sensitive information stolen, money stolen | Do not open link or attachment from unknown sources, check for spelling mistakes, Use spam filter |
| Social Engineering Attackers create a social scenario that persuades victims to reveal their personal information. (ex - spam calls) | Victim persuaded to reveal personal information leading to privacy breach, identity theft, financial loss. | Verify identity, enable two factor authentication, limit personal information |
Keeping Data Safe
- Encryption: Making data unreadable using an algorithm and key
- Access Level/Right: Keeping different layer of access for different individuals (ex: Only teachers can access student data)
- Anti-malware, including anti-virus and Anti-spyware: Protecting user’s device from malware attacks
- Authentication: Process of verifying the identity of a user, device, or system before granting access
- Username and Password: Requires the user to enter their unique name and password to login
- Biometrics: Uses a unique physical characteristics like fingerprint, facial recognition, iris, voice recognition
- Two-Factor Authorization (2FA) or Two Step Verification: Requiring two form of verification to access (eg. OTP)
- Automating software updates
- Checking the spelling and tone of communications
- Checking the URL attached to a link
- Firewalls
- Monitors traffic between a network and device
- May allow or block data travelling
- May be hardware or software
- Privacy settings Used to restrict access to and visibility of a user's profile
- Proxy-servers
- Serves as a gateway between the user's device and server
- IP Address hidden, filtering traffic, blocking certain website, DDoS attacks this server keeping the server safe, acts as firewall
- Secure Socket Layer (SSL) security protocol
- Used in client-server application by the use of encryption and using digital certificates
- Digital Certificate: An electronic document verifying the identity of an entity (Contains its public key, issuing date, expiry date, digital signature, etc)
- Steps
- Client (browser) sends a request to server to initialize a SSL/TLS connection
- The session begins with a handshake.
- Server responds by sending its digital certificate
- Client verifies the certificate through a Certificate Authority (CA)
- Client generates a session key and encrypts it using server’s public key
- The session key is sent to server and it is used for encrypting and decrypting all the data that is transferred between the two nodes