






















Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
1623 - Security - Assignment 1
Typology: Papers
1 / 30
This page cannot be seen from the preview
Don't miss anything!























Qualification BTEC Level 5 HND Diploma in Computing Unit number and title Unit 5 : Security Submission date Date Received 1st submission Re-submission Date Date Received 2nd submission Student Name Hồ Ngọc Khánh Student ID GCS Class GCD0901 Assessor name Trần Trọng Minh Student declaration I certify that the assignment submission is entirely my own work and I fully understand the consequences of plagiarism. I understand that making a false declaration is a form of malpractice. Student’s signature Khanh Grading grid
Grade: Assessor Signature: Date: Lecturer Signature:
DEFINITION: Security Threat means any threat or series of connected threats to intentionally attack Network Systems in order to demand money, including virtual, digital, and electronic currency, securities, or other valuable property from an Insured; provided, however, that Security Threat does not include any such threat made by any governmental entity or public authority. (Anon., 2017) TYPES OF SECURITY THREATS: (Anon., 2019)
1. Malware : Malware is defined as malicious software, which includes spyware, ransomware, viruses, and worms. Malware is triggered when a user clicks on a malicious link or attachment, which causes hazardous software to be installed. Figure 1 : MALWARE
Figure 3 : DENIAL OF SERVICE
4. Man-in-the-middle: When hackers inject themselves into a two-party transaction, this is known as a man-in-the-middle (MITM) assault. According to Cisco, after disrupting traffic, they may filter and take data. MITM attacks are common when a visitor connects to an unprotected public Wi-Fi network. Attackers place themselves between the visitor and the network, then use malware to install software and steal data. Figure 4 : MAN-IN-THE-MIDDLE 5. Phishing: Phishing attacks employ forged communication, such as an email, to mislead the recipient into opening it and following the instructions contained inside, such as
entering a credit card number. According to Cisco, the objective is to "take sensitive data such as credit card and login credentials or to install malware on the victim's system." Figure 5 : PHISHING
6. SQL Injection: A Structured Query Language (SQL) injection is a form of cyber-attack that occurs when malicious code is inserted into a SQL server. When a server is infected, it leaks data. Entering the malicious code into a vulnerable website search box can be as simple as that. Figure 6 : SQL INJECTION
4. Forefront Dermatology – July 9th, 2021: Forefront Dermatology, a U.S. healthcare provider, revealed that unauthorized access to its IT systems exposed the personal data and medical information of up to 2.4 million patients. 5. Guess – July 12th, 2021: Guess alerted an unspecified number of customers of a data breach as a result of a ransomware assault that resulted in a data breach. 6. OneMoreLead – August 4th, 2021: OneMoreLead, a marketing firm, compromised the personal information of 126 million people via an unprotected database accessible online. 7. SeniorAdvisor – August 13th, 2021: Researchers in cyber security discovered an unprotected database holding over 3 million personal records of SeniorAdvisor members. 8. UNM Health – August 17th, 2021: An unauthorized third party got access to the personal and medical information of approximately 637,000 UNM Health patients. 9. Microsoft Power Apps – August 24th, 2021: At least 38 million data were exposed due to a misconfiguration in Microsoft Power Apps, a Microsoft software. American Airlines, Microsoft, J.B. Hunt, and the governments of Indiana, Maryland, and New York City were all affected by the data dumps. 10. GetHealth, FitBit and Apple – September 14th, 2021: Over 61 million records of Apple and Fitbit customers' data connected to fitness trackers and wearables were exposed in an unprotected database belonging to GetHealth, a health and wellness data app.
A consistent, clear communication about organizational policies and procedures can help decrease the likelihood of employees accidentally committing a crime or lash out at the business over a perceived injustice. To be as successful as possible in reducing unintentional insider
cybersecurity threats, your company's data security training program curriculum should include the following information:
1. Identification: To begin, create a risk universe to identify all potential threats that might influence the security of your organization's assets. Every known situation should be documented, and suggestions should be collected from all departments. Once you've identified potential risks, you'll want to specify the mitigation option(s) for each before you face an insider assault. 2. Prevention: A robust, detailed risk-management plan serves as the cornerstone for effective threat prevention. Check to see whether modifying procedures or activities can lower potential risks or lessen the effect of probable bad occurrences as part of your preventative strategy. As a deterrent to insider assaults, use warning messages such as the message of the day (MOTD), login prompts, and alerts. The MOTD below specifies correct usage to ensure that staff are aware of acceptable behavior. 3. Control: During this phase, your focus is on insider threat management and the solutions you may use to better protect yourself in the event of an attack. Begin by adding the ability to manage accounts and account access centrally. Streamlining access control improves your capacity to examine problems, such as finding an account and limiting its access if required.
Data encryption is a type of security mechanism in which information is encoded and may only be accessed or decoded by a user who has the appropriate encryption key. Encrypted data, also known as ciphertext, seems jumbled or unintelligible to anybody or entity who gains unauthorized access. Figure 8 : ENCRYPTED DATA Data encryption is used to prevent malevolent or careless individuals from gaining access to sensitive data. Encryption, a crucial layer of protection in a cybersecurity architecture, makes it as difficult as possible to use intercepted data. It may be used to secure data ranging from secret government information to personal credit card transactions. Data encryption software, often known as an encryption algorithm or cipher, is used to create an encryption system that can potentially be broken only with massive quantities of computational power.
Cybercriminals have many password-hacking techniques at their disposal, but the simplest is simply purchasing your passwords on the dark web. The black-market buys and sells login credentials and passwords for a lot of money, and if you've been using the same password for a long time, chances are it's been hacked.
Figure 12 : STRONG PASSWORD GENERATOR
Backup and recovery refers to the process of backing up data in case of loss and establishing systems that enable data recovery in the event of data loss. Backing up data entails copying and preserving computer data so that it can be accessed in the event of data loss or damage. Data from a previous time period can only be retrieved if it has been backed up. (Anon., 2017) Figure 13 : BACKUP AND RECOVERY DATA THE IMPORTANCE OF BACKUP AND RECOVERY: The backup's aim is to produce a copy of the data that can be retrieved in the case of a main data failure. Primary data failures can occur due to hardware or software failure, data corruption,
or a human-caused incident, such as a hostile attack (virus or malware), or unintentional data deletion. Backup copies enable data to be recovered from a previous point in time, assisting the company in recovering from an unforeseen incident. To achieve the greatest outcomes, backup copies should be produced on a consistent, frequent basis to reduce the amount of data lost between backups. The longer the time between backup copies, the greater the risk of data loss while recovering from a backup. Keeping several copies of data gives you the security and flexibility to restore to a point in time that was not impacted by data corruption or malicious assaults. TYPES OF DATA BACKUP (Anon., 2020)
1. Full Backup: It is a simple and comprehensive backup process that copies all of your data to another media set such as a disk, tape, or CD. As a result, a full copy of all your data is provided in a single media package. 2. Incremental Backup: This procedure copies just the data that has changed since your last backup process. All backup activities will be recorded and tracked by a backup program at the time and date they occur. This procedure is quicker and necessitates less storage space. 3. Differential Backup: This backup, like an incremental backup, will transfer all modified data from a previous episode, but each time it runs, it will continue to copy all data changed since the last complete backup.
Firewalls examine packets for malicious code or attack vectors that have previously been identified as known dangers. If a data packet is identified as posing a security concern, the firewall blocks it from entering the network or reaching your computer. (Anon., 2019) Figure 15 : HOW FIREWALLS WORK ADVANTAGES: (Roor, n.d.)
DEFINITION: The Security Policy establishes the policies and procedures for all personnel who access and use an organization's IT assets and resources. An effective IT Security Policy is a model