Presentation is loading. Please wait.

Presentation is loading. Please wait.

Unit 32 – Networked Systems Security

Published byDaniel Wells Modified over 6 years ago

Similar presentations

Presentation on theme: "Unit 32 – Networked Systems Security"— Presentation transcript:

1 Unit 32 – Networked Systems Security

2 Lesson 2 - Security & Sources of Attacks

3 What is Security? Dictionary.com says:
1. Freedom from risk or danger; safety. 2. Freedom from doubt, anxiety, or fear; confidence. 3. Something that gives or assures safety, as: 1. A group or department of private guards: Call building security if a visitor acts suspicious. 2. Measures adopted by a government to prevent espionage, sabotage, or attack. 3. Measures adopted, as by a business or homeowner, to prevent a crime such as burglary or assault: Security was lax at the firm's smaller plant. …etc. What is Security?

4 Protect vital information while still allowing access to those who need it
Trade secrets, medical records, etc. Provide authentication and access control for resources Guarantee availability of resources Why do we need Security?

5 Who is Vulnerable? Financial institutions and banks
Internet service providers Pharmaceutical companies Government and defense agencies Contractors to various government agencies Multinational corporations ANYONE ON THE NETWORK Who is Vulnerable?

6 Top 7 Network Attacks 2015 (so far)
What is the percentage of Denial of Service attacks? types-in-2015-so-far/ Top 7 Network Attacks 2015 (so far)

7 Sources of Attacks Internal Disaffected Staff Social Engineering
Downloads External Internet Connections Unsecured Wireless Points Viruses introduce by Sources of Attacks

8 Internal Attack Malicious damage can occur through
internal means in that it comes from within an organisation, perhaps the result of a disgruntled employee Breaking or sabotaging equipment Deleting, altering or making public business- sensitive or embarrassing data Internal Attack

9 Jeffrey Delisle: Canadian spy passed on UK secrets
Former MI6 man sentenced for secret files leak Edward Snowden – whistleblower

10 The threat has spread from outside of an organisation, perhaps for self-gain or self-satisfaction, or maybe for a competitor company. Examples are: – hacking – theft – criminal damage – industrial espionage. However, the distinction between internal and external malicious damage is not black and white: the four external damage examples listed could also result from within an organisation and so could be classed as internal External Attack

11 External Attack - Internet
External attacks involving internet connections will normally be mitigated by the company Internet security policy and rules. The objective is to establish rules and measures to use against attacks over the Internet. External Attack - Internet

12 External Attack - Through unsecured wireless access points
Wi-Fi has provided significant benefits for businesses and their customers but it also has generated significant headaches. “Rogue” access points operating without company blessing and potentially installed for industrial espionage are a real threat to a secure corporate computing environment. External Attack - Through unsecured wireless access points

13 External Attack - Through unsecured wireless access points
Man arrested over wi-fi 'theft‘ Two cautioned over wi-fi 'theft‘ External Attack - Through unsecured wireless access points

14 External Attack - Through unsecured wireless access points
Google admits wi-fi data blunder Security warning over wireless networks External Attack - Through unsecured wireless access points

15 External Attack - Virus introduced via email
Virus authors adapted to the changing computing environment by creating the virus. For example, the Melissa virus in March 1999 was spectacular in its attack. Melissa spread in Microsoft Word documents sent via . How Computer Viruses Work External Attack - Virus introduced via

16 Categorise the threats into the sources they come from.
Internal Disaffected Staff Social Engineering Downloads External Internet Connections Unsecured Wireless Points Via Other Both Threats - Denial of service, Back door, Spoofing, Mathematical, Brute force, Adware. Theft of data Ransomware Data modification Identity theft Software exploitation, Viruses, Rootkits, Worms, Trojans, spyware, Eavesdropping Man in the middle Create a table in which you can categorise the different threats. They may appear in more than one source. Task Order the threats in each category from highest to lowest damage they may cause

17 Choose 5 types of threats that attack a network, summarise each attack.
Why is it a dangerous type of attack? When is a company usually susceptible to this type of attack? Who normally perpetrates this type of attack? Include a diagram of this attack (if possible) Recommend ways the attack can be mitigated Task

18

19 Read this http://www. securityweek
Read this is there anything interesting? Discuss

20 Learning Objectives Illustrate the need for security.
Categorise network attacks into different sources Summarise different security attacks on networks Learning Objectives

Download ppt "Unit 32 – Networked Systems Security"

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
4 Information Security.

4 Information Security.
Ethics, Privacy and Information Security

Ethics, Privacy and Information Security
Possible Threats To Data. Objectives To understand: Types of threats Importance of security Preventative and remedial actions Personal safety This will.

Possible Threats To Data. Objectives To understand: Types of threats Importance of security Preventative and remedial actions Personal safety This will.
Mr C Johnston ICT Teacher

Mr C Johnston ICT Teacher
Chapter 9: Privacy, Crime, and Security

Chapter 9: Privacy, Crime, and Security
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.

MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
1 Title ECI: Anatomy of a Cyber Investigation Who Are the Actors.

1 Title ECI: Anatomy of a Cyber Investigation Who Are the Actors.
Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.

Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.
ISNE101 Dr. Ken Cosh Week 14. This Week  Challenges (still) facing Modern IS  Reliability  Security.

ISNE101 Dr. Ken Cosh Week 14. This Week  Challenges (still) facing Modern IS  Reliability  Security.
PART THREE E-commerce in Action Norton University E-commerce in Action.

PART THREE E-commerce in Action Norton University E-commerce in Action.
Copyright 2009 Trend Micro Inc. Classification 9/9/2015 1 2010 Corporate End User Study Employee Online Behavior.

Copyright 2009 Trend Micro Inc. Classification 9/9/ Corporate End User Study Employee Online Behavior.
Malware  Viruses  E-mail Virus  Worms  Trojan Horses  Spyware –Keystroke Loggers  Adware.

Malware  Viruses  Virus  Worms  Trojan Horses  Spyware –Keystroke Loggers  Adware.
Tutorial Chapter 5. 2 Question 1: What are some information technology tools that can affect privacy? How are these tools used to commit computer crimes?

Tutorial Chapter 5. 2 Question 1: What are some information technology tools that can affect privacy? How are these tools used to commit computer crimes?
Lesson 2- Protecting Yourself Online. Determine the strength of passwords Evaluate online threats Protect against malware/hacking Protect against identity.

Lesson 2- Protecting Yourself Online. Determine the strength of passwords Evaluate online threats Protect against malware/hacking Protect against identity.
Prepared by: Dinesh Bajracharya Nepal Security and Control.

Prepared by: Dinesh Bajracharya Nepal Security and Control.

Similar presentations

Ads by Google