Presentation is loading. Please wait.

Presentation is loading. Please wait.

OV 2- 1 Copyright © 2005 Element K Content LLC. All rights reserved. Security Threats  Social Engineering  Software-based Threats  Hardware-based Threats.

Published byDarren Elliott Modified over 9 years ago

Similar presentations

Presentation on theme: "OV 2- 1 Copyright © 2005 Element K Content LLC. All rights reserved. Security Threats  Social Engineering  Software-based Threats  Hardware-based Threats."— Presentation transcript:

1 OV 2- 1 Copyright © 2005 Element K Content LLC. All rights reserved. Security Threats  Social Engineering  Software-based Threats  Hardware-based Threats

2 OV 2- 2 Copyright © 2005 Element K Content LLC. All rights reserved. A Social Engineering Attack Attacker Target User name Password 2 2 1 1 1.Attacker obtains credentials from user 2.Attacker uses credentials to mount attack

3 OV 2- 3 Copyright © 2005 Element K Content LLC. All rights reserved. Hackers, Crackers, and Attackers CrackerAttackerHacker

4 OV 2- 4 Copyright © 2005 Element K Content LLC. All rights reserved. Attacker Types  Internal attacker  Hacktivist  Data thief  Script kiddie  Electronic vandal  Cyberterrorist

5 OV 2- 5 Copyright © 2005 Element K Content LLC. All rights reserved. A Software Attack ApplicationOperating system Protocol

6 OV 2- 6 Copyright © 2005 Element K Content LLC. All rights reserved. A Port Scanning Attack PortProtocolState 21FTPOpen 53DNSClosed 80HTTPOpen 110POP3Closed 119NNTPClosed 443HTTPSOpen

7 OV 2- 7 Copyright © 2005 Element K Content LLC. All rights reserved. An Eavesdropping Attack

8 OV 2- 8 Copyright © 2005 Element K Content LLC. All rights reserved. An IP Spoofing Attack IP Packet Target 192.168.0.77 Real IP address: 10.10.10.25 Real IP address: 10.10.10.25 Source IP address: 192.168.0.10 Destination IP address: 192.168.0.77 Source IP address: 192.168.0.10 Destination IP address: 192.168.0.77

9 OV 2- 9 Copyright © 2005 Element K Content LLC. All rights reserved. A Hijacking Attack

10 OV 2- 10 Copyright © 2005 Element K Content LLC. All rights reserved. A Replay Attack 10:00 A.M. 1:00 P.M.

11 OV 2- 11 Copyright © 2005 Element K Content LLC. All rights reserved. A Man-in-the-Middle Attack

12 OV 2- 12 Copyright © 2005 Element K Content LLC. All rights reserved. A DoS Attack

13 OV 2- 13 Copyright © 2005 Element K Content LLC. All rights reserved. A DDoS Attack Drones

14 OV 2- 14 Copyright © 2005 Element K Content LLC. All rights reserved. Types of DoS Attacks  Smurf  Buffer overflow  SYN flood

15 OV 2- 15 Copyright © 2005 Element K Content LLC. All rights reserved. A Malicious Code Attack

16 OV 2- 16 Copyright © 2005 Element K Content LLC. All rights reserved. Types of Malicious Code Viruses Worms Trojans Logic Bombs

17 OV 2- 17 Copyright © 2005 Element K Content LLC. All rights reserved. Default Security Attacks

18 OV 2- 18 Copyright © 2005 Element K Content LLC. All rights reserved. A Software Exploitation Attack Known flaw

19 OV 2- 19 Copyright © 2005 Element K Content LLC. All rights reserved. Types of Software Exploitation Attacks  Buffer overflow  Mathematical  Weak keys

20 OV 2- 20 Copyright © 2005 Element K Content LLC. All rights reserved. Misuse of Privilege Attacks Administrative user

21 OV 2- 21 Copyright © 2005 Element K Content LLC. All rights reserved. A Password Attack xxxxxxxxx xPxxxxxxx xPassxxxx xPass 1234 !Pass 1234

22 OV 2- 22 Copyright © 2005 Element K Content LLC. All rights reserved. Types of Password Attacks  Guessing  Stealing  Brute force  Dictionary  Birthday xxxxxxxxx xPxxxxxxx xPassxxxx xPass 1234 !Pass 1234

23 OV 2- 23 Copyright © 2005 Element K Content LLC. All rights reserved. A Backdoor Attack Backdoor account

24 OV 2- 24 Copyright © 2005 Element K Content LLC. All rights reserved. Hardware Attacks

25 OV 2- 25 Copyright © 2005 Element K Content LLC. All rights reserved. Reflective Questions 1. What type of attack do you think is most dangerous? 2. Which type of attack do you think it might be most difficult to guard against?

Download ppt "OV 2- 1 Copyright © 2005 Element K Content LLC. All rights reserved. Security Threats  Social Engineering  Software-based Threats  Hardware-based Threats."

Similar presentations

Network Vulnerabilities and Attacks Dr. John Abraham UTPA.

Network Vulnerabilities and Attacks Dr. John Abraham UTPA.
Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.

Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.
Lesson 3-Hacker Techniques

Lesson 3-Hacker Techniques
Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.

Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Taxonomy of Computer Security Incidents Yashodhan Fadnavis.

Taxonomy of Computer Security Incidents Yashodhan Fadnavis.
Chapter 8 Cybercrime, Cyberterrorism, and Cyberwarfare.

Chapter 8 Cybercrime, Cyberterrorism, and Cyberwarfare.
Exploits Dalia Solomon. Categories Trojan Horse Attacks Trojan Horse Attacks Smurf Attack Smurf Attack Port Scan Port Scan Buffer Overflow Buffer Overflow.

Exploits Dalia Solomon. Categories Trojan Horse Attacks Trojan Horse Attacks Smurf Attack Smurf Attack Port Scan Port Scan Buffer Overflow Buffer Overflow.
BUSINESS PLUG-IN B6 Information Security.

BUSINESS PLUG-IN B6 Information Security.
Types of Attacks, Hackers Motivations and Methods

Types of Attacks, Hackers Motivations and Methods
Chapter 2: Attackers and Their Attacks Security+ Guide to Network Security Fundamentals Summer 2006.

Chapter 2: Attackers and Their Attacks Security+ Guide to Network Security Fundamentals Summer 2006.
Hacking Linux Based on Hacking Linux Exposed Hatch, Lee, and Kurtz ISBN 0-07-212773-2.

Hacking Linux Based on Hacking Linux Exposed Hatch, Lee, and Kurtz ISBN
Chapter 8 Cybercrime, Cyberterrorism, and Cyberwarfare.

Chapter 8 Cybercrime, Cyberterrorism, and Cyberwarfare.
1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.

1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Software Security Threats Threats have been an issue since computers began to be used widely by the general public.

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.
Hacking and Network Defense. Introduction  With the media attention covering security breaches at even the most tightly controlled organization, it is.

Hacking and Network Defense. Introduction  With the media attention covering security breaches at even the most tightly controlled organization, it is.
Analysis of Attack By Matt Kennedy. Different Type of Attacks o Access Attacks o Modification and Repudiation Attacks o DoS Attacks o DDoS Attacks o Attacks.

Analysis of Attack By Matt Kennedy. Different Type of Attacks o Access Attacks o Modification and Repudiation Attacks o DoS Attacks o DDoS Attacks o Attacks.
Privacy - not readable Permanent - not alterable (can't edit, delete) Reliable - (changes detectable) But the data must be accessible to persons authorized.

Privacy - not readable Permanent - not alterable (can't edit, delete) Reliable - (changes detectable) But the data must be accessible to persons authorized.

Similar presentations

Ads by Google