



























































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Various aspects of network security, including defining information security threats, the importance of dmz networks, and the benefits of network monitoring. It covers topics such as detecting security breaches, implementing security measures like firewalls and idss, and managing network resources and performance. Examples of recent security incidents and their consequences, as well as strategies for improving network security through techniques like dmz, static ip, and authentication. It emphasizes the importance of security policies, procedures, and employee awareness in maintaining a secure network environment. The document could be useful for students studying network security, information systems, or cybersecurity, as it covers a range of relevant concepts and practical applications.
Typology: Lecture notes
Uploaded on 04/06/2023
1 document
1 / 67
This page cannot be seen from the preview
Don't miss anything!




























































ASSIGNMENT 1 FRONT SHEET Qualification BTEC Level 4 HND Diploma in Business Unit number and title Unit: SECURITY Submission date Date received (1st submission) Re-submission date Date received (2nd submission) Student name
Student ID BC Class IT05101 Assessor name NGUYEN MINH TRIET Student declaration I certify that the assignment submission is entirely my own work and I fully understand the consequences of plagiarism. I understand that making a false declaration is a form of malpractice. Student’s signature: KIET Grading grid P1 P2 P3 P4 M1 M2 D1 D
1.1 Defining threats: Examples of information security threats include software attacks, intellectual property theft, identity theft, equipment or information theft, sabotage, and information extortion. A threat is defined as something that can exploit a vulnerability to breach security and negatively modify, remove, or harm an item or object of interest. We'll define a threat in this tutorial series as a prospective hacker attack that permits someone to get unauthorized access to a computer system (garg, 2021). Figure 1 : Threats 1.2 Identify threats agents to organizations: Nation States: Businesses in specialized industries, such as telecommunications, oil and gas, mining, power production, national infrastructure, and so on, may become targets for other countries, either to disrupt operations today or to give a future grasp in times of crises. Non-target specific (vandals' and the general public's ransomware, worms, Trojans, logic bombs, backdoor, and viruses):
Some companies have informed me, "Well, we're not going to be a target for hackers because..." Yet, due to the vast number of random assaults that occur every day (there are no credible figures to provide), any organization can become a victim.Expressing algorithms The most well-known example of a non-target specific attack is the Wanna Cry ransomware outbreak, which infected over 200,000 PCs in 150 countries. It forced the NHS in the United Kingdom to close for several days. Of course, there's the bored teenager in a loft somewhere seeking for a poor internet connection.Criteria to create a good algorithm Employees and Contractors: Morrison was fined because it did not have the necessary technological and organizational measures in place to prevent the ex-employee from committing the crime (it should be noted that Morrison is presently appealing the punishment). When a company need specialist expertise, it may employ contractors or other entities that require access to its systems or data. These third parties are typically the source of issues since their technology may not be as secure as the controller's data. Terrorists and hackers: (political parties, media, enthusiasts, activists, vandals, general public, extremists, religious followers) The level of harm presented by these actors, like the threat posed by nation-states, is depending on your action. But, because some terrorists prefer to target certain sectors or nations, you may be always afraid of a random attack. Wikileaks' dumps of diplomatic cables and other documents related to the wars in Iraq and Afghanistan in 2010 are possibly the most visible example of this. Local, national, international, and specialized organized crime Personal information is sought after by criminals for a variety of reasons, including credit card fraud, identity theft, and bank account fraud. These crimes are now being committed on a big scale. The tactics used vary, ranging from phishing efforts to 'Watering Hole' websites, but the end result is the same: your data and you are being stolen and exploited for bad reasons. Local, national, international, and specialized organized crime Personal information is sought after by criminals for a variety of reasons, including credit card fraud, identity theft, and bank account fraud. These crimes are now being committed on a big scale. The tactics used vary,ranging
The user has violated the security policy. Employee extortion or blackmail.Disgruntled employee waging war on the organization or creating sabotage. Malicious human activity: APT (Advanced Persistent Threats). When it comes to hacking a corporation, hackers who deploy Advanced Persistent Threats (APTs) intend to play the long game. They infiltrate a computer network quietly and in tight synchrony, seeking for entry and exit points that will allow them to go unnoticed. Figure 2 : APT Once within a company, they probe about, install specialized malicious programs, and steal vital data and sensitive information (RSI, 2021). Below are the five most frequent progressions that an Advanced Persistent Threat goes through to increase its damage: Access Infiltration: APT attackers utilize phishing, Trojan horses, and malware to obtain access to the system. Grip Strengthening: An Advanced Persistent Threat's capacity to get a foothold inside a firm is its strength.
Invasion of the System: Once they have total freedom of movement, APT attackers will begin attacking the system by gaining administrator access and cracking passwords left and right. Hackers have turned the corporation into their playground. Deep Machinations: During this phase, the APT attackers have complete control of the firm, erasing all evidence of their breach and constructing a robust backdoor for future use. To breach an organization's cybersquatting, they use cutting-edge technology such as malware and computer infiltration strategies. These noncriminals are vicious, preferring to get entry to an organization and wreak devastation by sneaky means (RSI, 2021). Distributed Denial of Service (DDoS): The primary goal of fraudsters using Distributed Denial of Service, or DDOS, is to disrupt a website. In a nutshell, they flood a target network with bogus requests in order to overload the system and force it to fail. Legitimate users or clients will be unable to access the website since it will be unavailable. DDoS can cause severe productivity losses as a result of these needless disruptions. Figure 3 : DDOS attack A Distributed Denial-of-Service attack is hard to stop since it does not originate from a single source. Imagine a restaurant where a noisy crowd gathers at the front door to cause a commotion Phishing:
Figure 5 :Worms Ransomware Ransomware is a form of virus from cryptovirology that hackers execute and encrypt to perfection after they have gained a foothold in your network. They steal vital corporate data or sensitive personal information from customers, then threaten to expose the information unless the target firm pays a ransom. Ransomware has turned into a common method of extorting money from businesses over time. Digital attackers weaponize critical information discovered within an infected network. Standard methods for luring employees into the organization include giving an innocent attachment or link. Figure 6 : Ransomware Botnet
The term "botnet" is derived from the phrases "robot" and "network." It is a catch-all word for private computers infected with malware, leaving them exposed to remote access by hackers without the organization's knowledge. This level of precise control and awareness of target networks is required for the transmission of spam, the execution of DDoS barrages, and data theft. Botnets are force multipliers used by hackers to disrupt the complex systems of their targets. Botnet architecture has advanced tremendously in terms of evasion. Its apps pose as clients in order to connect to existing servers. Noncriminals can then remotely operate these botnets using peer-to-peer networks. Figure 7 : Botnet Cryptojacking: Currently, bitcoin is everywhere. To earn additional cash naturally, the mining strategy is required. Noncriminals have employed phishing methods to infect and hijack additional slave PCs that willbe used to mine cryptocurrency. Cryptojacking can cause slower PCs since targets are unawarethat their resources are being exploited to generate bitcoin. Natural Events And Disasters: Natural disasters such as fires, floods, storms, earthquakes, tsunamis, avalanches, and others. This sort of danger comprises losses caused by activities undertaken to recover from the first problem, as well as losses caused by actions undertaken to recover from the first problem.
this is the case, you are in excellent company. Almost 300 USB drives were "accidentally" misplaced as part of the study to determine what would happen. Searchers choose nearly all rods, with 45% of cases opening a previously stored file. Figure 10 : security and lost USB stick Convenience beats IT security We must restart the machine after installing the newest Windows updates. Unfortunately, in such and other circumstances, the virus scanner slows down the machine. Employees that are more laid-back choose to altogether halt such operations. That also happens if there is a chance for an update or a virus scanner to disable it. This is a significant cost for IT security. Figure 11 : the convenience of information technology IT security and CEO fraud In the so-called CEO scam, the criminal poses as a corporate director over the phone or over e- mail. They guarantee that a huge sum of money is transferred to another nation by an employee. The
employee is perplexed by the authority of the other party and approves the transaction. This fraud has the potential to generate millions of dollars in damage, with serious implications for anyone engaged. Steal customer data if you change jobs Passing sensitive client data on to new employers appears to be regular practice in several businesses. Everyone knows a salesperson who switched to a competition. Soon later, he called us to resume business. In this scenario, though, we are talking about traditional stealing. It is no less dangerous if the employee keeps a business laptop after his job term expires. Carelessness leads to IT security problems Employees that are uninterested are toxic to any organization. They seldom add to productivity and are a possible security issue in IT. We can adopt a "I don't care" attitude toward all aspects of safety. This might involve, for example, careless password handling. Sensitive information is being disseminated. The problem with authorization. The transmission of files to third parties. Such personnel can always jeopardize security in any of these situations. 1.3 What are the recent security breaches? List and give examples with dates: Security Breaches are defined as any successful attempt by an attacker to gain unauthorized access to an organization's computer systems. Breach examples include the theft of sensitive data, the corruption or sabotage of data or IT systems, and activities intended to deface websites or destroy reputation (Cassetto, 2019). Figure 12 :Data Breaches Recent Security Breaches, List and give examples with dates: