


















































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
An overview of cybersecurity, focusing on identifying and combating threats to it systems and data. It covers both accidental and malicious security threats, emphasizing the importance of protecting devices and data from theft, damage, and unauthorized access. The document also discusses relevant legislation, ethical considerations, and cybersecurity testing methods, offering insights into ethical hacking and security policies. It is a valuable resource for understanding the fundamentals of cybersecurity and its practical applications. (417 characters)
Typology: Study notes
1 / 58
This page cannot be seen from the preview
Don't miss anything!



















































Level 2 Diploma in Digital and IT Skills Unit 001 Cybersecurity
Intent This aim of this unit is to investigate the accidental and malicious security threats that exist to IT systems and data. Implementation
Cyber security is important because smartphones, computers and the internet are now such a fundamental part of modern life, that it's difficult to imagine how we'd function without them. From online banking and shopping to email and social media, it's more important than ever to take steps that can prevent cybercriminals from getting hold of our accounts, data, and devices.
Hands up!
Starting in 1878 – Before the telephone, teenage boys operated the telegraph system. It made sense that they should operate the new telephone system. 2 years after the telephone was invented, they were kicked off. Apart from being unruly, they would intentionally misdirect and disconnect calls just for fun! Military codebreaking 1939-1945 - Turin’s team cracked the Enigma code so able to decode secret messages sent within the German military. The rise of the phone phreaks 1957-1980 - Working out how phone calls were transmitted using the tones emitted by the phone. Out of phreaking evolved the blue box built by Apple founders, Steve Wozniak and Steve Jobs. These boxes could communicate with phone lines. Network penetration 1970-1995 for fun, Kevin Mitnick, managed to hack into some of the most guarded networks in the world. Ever seen the film War Games? The first internet Worm 1988 - Robert Morris was the first person to create a worm and, as a result, was the first person to be convicted of violating the Computer Fraud and Abuse Act. The Stuxnet Worm 2010 - was the first work to cause actual damage to hardware. Discovered in Iran’s Nuclear Power plants where 1/5 of centrifuges were knocked out, causing havoc to Iran’s nuclear programme.
Hands up!
Viruses - is a piece of coding that replicates itself infecting other code in the computer system. Viruses can also attach themselves to executable code or associate themselves with a file by creating a virus file with the same name but with an .exe extension, thus creating a decoy which carries the virus. Worms - unlike viruses, they don’t attack the host, being self-contained programs that propagate across networks and computers. Worms are often installed through email attachments, sending a copy of themselves to every contact in the infected computer email list. They are commonly used to overload an email server and achieve a denial-of-service attack. Trojans - a program hiding inside a useful program with malicious purposes. Unlike viruses, a trojan doesn’t replicate itself and it is commonly used to establish a backdoor to be exploited by attackers.
Spyware - a type of program installed to collect information about users, their systems or browsing habits, sending the data to a remote user. The attacker can then use the information for blackmailing purposes or download and install other malicious programs from the web. Adware - is unwanted software designed to throw advertisements up on your screen, most often within a web browser. Some security professionals view it as the forerunner of the modern-day PUP (potentially unwanted program). Ransomware - a type of malware that denies access to the victim's data, threatening to publish or delete it unless a ransom is paid. Advanced ransomware uses cryptoviral extortion, encrypting the victim’s data so that it is impossible to decrypt without the decryption key.
Social Engineering
Ransomware Ransomware: Should paying hacker ransoms be illegal? - BBC News Is Ransomware illegal? Ransomware is illegal. It is obviously a criminal offence to demand a payment in return for the safe return of your property (data, personal information, device functionality). But, is paying a ransom legal? Paying a ransom is mostly legal, although it may depend on where you or your business is located. Some believe that making the payment of a ransom illegal will prevent more businesses and individuals from paying ransoms, so reducing the fuel for ransomware criminals.
https://jamboard.google.com/d/ 11q5Xu8x5AVq49A4jm9NZ79f5QJ-J9MnzMNm9p4WbYlM/edit? usp=sharing Internal Threats.
Internal Threats Actions of employees or by an authorised user.