Network Secutiry (Phishing Presentation), Slides of Network security

Presentation on Phishing attack, how to prevent, measure and security.

Typology: Slides

2020/2021

Uploaded on 07/09/2021

pkhokhali
pkhokhali 🇳🇵

5

(1)

18 documents

1 / 20

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
International School of
Management And
Technology
Tinkune, Kathmandu
Presented By
Name: Prabin Khokhali
Faculty: IT
Subject: Network Security
Roll: 15
Submitted To
Er. Santosh Rauniyar
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14

Partial preview of the text

Download Network Secutiry (Phishing Presentation) and more Slides Network security in PDF only on Docsity!

International School of

Management And

Technology

Tinkune, Kathmandu

Presented By Name: Prabin Khokhali Faculty: IT Subject: Network Security Roll: 15 Submitted To Er. Santosh Rauniyar

Phishing Attack

Introduction

 (^) Phishing is the most powerful and popular attack for hacking into emails and web accounts.  (^) Used to accomplish identity theft by Cyber criminals. i.e. Hack into bank, email, facebook, other accounts of people.  (^) According to the FBI, phishing was the most common type of cybercrime in 2020—and phishing incidents nearly doubled in frequency, from 114,702 incidents in 2019, to 241,324 incidents in 2020.  (^) So, we must know what is Phishing and how to protect your accounts from phishing attack.

What is Phishing?  (^) The process of trying to induce the target to provide you with personal information by creating a counterfeit its website that looks like trusted site.  (^) It is a hacker technique of “fishing” for passwords and other secret financial info.

Types of Phishing

  1. Deceptive phishing
  2. Spear phishing
  3. Whaling
  4. Pharming

Types of Phishing

1. Deceptive Phishing

 (^) Sending a deceptive email, in bulk, with a “call to action” that demands the recipient click on a link.  (^) Attacker attempts to obtain confidential information from the victims.  (^) Attacker use the information to steal money or to launch other attacks.  (^) Ex. Attacker might send out an email purporting to be from a bank and telling recipients to click a link to verify account details.

Types of Phishing

3. Whaling

 When attackers go after a “big fish” like a

CEO, it’s called whaling.

 These attackers often spend considerable

time profiling the target to find the

opportune moment and means of stealing

login credentials.

 Whaling is of particular concern because

high-level executives are able to access a

great deal of company information.

Types of Phishing

  1. Pharming  (^) Similar to phishing, pharming sends user to a fraudulent website that appears to be legitimate.  (^) However, in this case, victims do not even have to click a malicious link to be taken to the bogus site.  (^) Attackers can infect either the user’s computer or the website’s DNS server and redirect the user to a fake site even if the correct URL is typed in.

Dangers of Phishing Attacks  (^) Sometimes attackers are satisfied with getting a victim’s credit card information or other personal data for financial gain.  (^) Other times, phishing emails are sent to obtain employee login information or other details for use in an advanced attack against a specific company.

Protecting against Phising Attack

  1. User Education  (^) One way to protect your organization from phishing is user education.  (^) Education should involve all employees.  (^) High-level executives are often a target Teach them how to recognize a phishing email and what to do when they receive one.  (^) Simulation exercises are also key for assessing how your employees react to a staged phishing attack.

Causes of Phishing

 (^) Misleading e-mails  (^) Vulnerability in browsers  (^) Limited use of digital signatures  (^) No check of source address  (^) Non-availability of secure desktop tools  (^) Vulnerability in applications  (^) Lack of user awareness  (^) No strong authentication at websites of bank and financial institutions

Effects of Phishing  (^) Identity Theft  (^) Internet Fraud  (^) Financial loss to the original institutions  (^) Difficulties in Law Enforcement Investigations  (^) Erosion of Public Trust in the Internet.

Reference  (^) www.google.com  (^) www.wikipedia.com  (^) www.studymaifa.org  (^) www.slideshare.net  (^) Computer Security Fundamentals (Third Edition) Chuck Easttom