Cyber security
Cyber Security
Cyber security is today's interconnected vault makes everyone more susceptible to cyber
attacks. Whether you are attracted to this relatively new world of cyber
security as a professional or you are just interested in protecting
yourself online. You must have a solid understanding of cyber security.
Hi
friends I am Techno Suraj & welcome you to this session on cyber
security, so without any delay let's go ahead and take a look at topics
that we will be talking about in this session, so guys we will begin by having
a brief discussion.
1. What is the
need for cyber security?
2. What cyber security
actually is?
3. Fundamental
concepts of cyber security?
4. How cyber security
is insured with the help of real-world scenario?
So I
hope agenda was clear to you guys, let's get started there and turn it today
and forms entertains and connects us it's the backbone of global economy our
devices which are connected through this internet and other networks open up a
world of possibilities and friend of us, for example- we can access information
we need without having to keep it on our devices permanent.
We can
easily communicate with others, who are on the other side of the world without
any glitches. These connected devices form the network that help us to run our
lives but these connections also leave our devices vulnerable to damage and our
information vulnerable to theft, for example- cyber criminals are in business
of stealing sensitive data like contact numbers, credit card information, bank
account details etc. That they sell to third parties for profit and then there
are malicious hackers with personal enmity hacking the systems to expose the
hosts vulnerabilities.
The
hacked arrest inspired by their political and social activism hack systems
opposed to their ideology and mindset so guys making use of these
vulnerabilities that are present in Internet's architecture. People are trying
to initiate attack in the cyber space we call them cyber
attacks. Now let's take a look at few popular cyber taxes that have
terrorized the world till now. To begin with there is malware, well if you have
ever seen an anti-virus alert pop-up on your screen or if you have mistakenly
clicked on malicious email attachment then you had a close call with malware,
basically is a term which is used to describe malicious software
including spyware viruses worms different kind of Trojans that are injected into your computer to
corrupt it and then there is something called Phishing .
In a phishing
attack an attacker may send you an email that appears to be from someone you
trust like it could be your boss or a company that you do business with in this
email. You will find an attachment to open or a link asking for you to click on
and as soon as you do that you're giving leeway for attacker to exploit your
computer and then there is man in the middle attack it is also known as eavesdropping
attack. Here attacker inserts himself as a third party into a two party
transaction once the attacker interrupts the traffic, he can easily filter
manipulate and steal your data without you knowing anything about it.
Moving
on we have denial of service attack here attack of floods a website with more
traffic than it can handle this will make it impossible for the website to
respond to legitimate visitors. Who are trying to access it and then there is
malware it is the use of online advertising to spread malware. It typically
involves injecting malicious advertisements into legitimate online advertising
networks and web pages.
Finally
there is ransomware landsmen, where basically is a type of malware that
prevents users from accessing their system or personal files if the user want
to regain access then will have to pay the ransom that the attacker is
demanding and today most of the time ransomware criminals ordered that payment
be sent by a crypto currency or traded Gold. So guys these are just few
major type of cyber attacks, there are others out are traumatizing the cyberspace
cybercrime
is a global problem. That's been dominating the news cycle it poses a threat to
individual security and even bigger threat to large international companies
organizations banks and government but the good thing is that even with this
flawed internet there are several things that we can do to protect ourselves
from these attacks.
This is
where cyber security comes into picture in simple terms “cyber
security is defined as techniques and practices designed to protect
your data” and then I say data I mean digital data, that is stored transmitted
and used on an information system. After all this is what criminal wants right
the data, the network servers computers and other online gadget are just
mechanisms to get this data ensuring cyber security, requires the
coordination of efforts throughout an information system and this includes
application security. It mainly focuses on keeping software and devices free
from cyber
threats.
Then there is information security, it is
basically protecting the integrity and privacy of data so you're protecting
organizations from possible data breaches here and then there is network
security. It is practice of securing a computer network from intruders whether
it could be targeted attackers or a simple malware moving on there is
operational security, it includes all the processes for handling and protecting
digital data assets. The permissions which users usually have when they're
accessing a network and the procedures that determine how and their data must
be stored and shared all and fall under this category. Then there is disaster
recovery and business continuity they define how an organization responds to a cyber
security incident or any other event that causes the loss of operation
and digital data
Finally
the most important thing and user education it addresses the most unpredictable
cyber
security factor which is people teaching users to delete suspicious
email attachment not plug-in unidentified USB drivers and various other
important lessons is very vital for the security of any organization. That
there is so guys earlier I said that cyber security a set of techniques
and practices employed to protect data, but what are we actually protecting
data here from, these three terms was similar to what we know as CIA triad and cyber
security.
We
need to protecting data from:
1. Unauthorized
access
2. Unauthorized
modification
3. Unauthorized
deletion
Confidentiality
Integrity and Availability (CIA) now let's explore the
CIA trial so the confidentiality is exactly what it sounds like keeping your
information secret. It is the protection of information from unauthorized
people and processes let's consider a simple example would you like the thought
of your private health information or financial information falling into some
stranger's hands. Who definitely not right similarly no business owner likes
the thought of a business information being disclosed to competitors
information is a valuable asset integrity is when the information that the
stored in a system. Is very accurate and highly reliable integrity is protection
of information from intentional or accidental unauthorized modification for
example if a hacker were to break into a banking website and change this
balance from $1.00 to $1,000,000 integrity of site is now lost. The final
component of CIA triad is availability assurance that systems and data are
accessible by authorized users whenever they need so if it cannot access the
data whenever we need it. We are definitely not secure so ice now you know what
CIA tried basically means. Technology plays a very important role, technology
can be deployed to prevent or reduce the impact of cyber risk depending on
your risk assessment and what you deem an acceptable level of risk so guys now
that we are aware of what cyber security is and its
fundamentals
Let's
take a look at real-world scenario to understand how cyber security is injured
meet Wendy she owns a successful Hotel and Spa because everyone needs an escape
from the stressful life. Once in a while right now being the owner of
successful spa means that our clients are trusting her with their personal
information and she uses different kind of technical systems to book
appointments make payments and keep track of her financial accounts on top of
that to keep it all safe. She has an elaborate IT security system
protecting everything but unfortunately it's not secure enough Wendy's business
is targeted by hackers. Who are determined to break and hold a business
information hostage because of this Wendy's business has come to a halt. She
cannot make appointments can't process payments and a client's Personal
information is exposed and on top of that hackers are asking her for, a heavy
ransom. So what would you do if you are in Wendy's place well when she doesn't
want to pay hackers so she decides to hire instant response team from a very
popular security company. This Incident Response Team mission basically is to
prevent serious loss of profits and your public confidence and protect
information assets for business like Wendy's but how does this IRP team actually
achieve it. So as foster IRP team will identify the source of security
breach then IRP team orchestrates China events that ultimately prevents
from encountering a serious security disaster the detect logs and access
control and contain the threat pot. So that Wendy's company can avoid further
damage after the attack is contained the team identifies the data that has been
stolen or compromised during the incident. After that the team prioritizes
recovery to project Wendy's as from further attacks now Wendy's customers can
continue their spa day without any hassles. In the past security breach of this
nature would have required Wendy to contact several agencies and third parties
to solve the problem in the worst case. When they might have had to pay hackers
the amount they demanded for but IRP platform organized all of these people
processes and technology to identify and contain the problem in very limited
amount of time.
So guys
today you have reached the position in which cyber crime is so sophisticated
it seems almost impossible to prevent the emphasis is. Now on how an
organization responds once it has been breached well we can't prevent every
incident that there is we can easily control how we manage the aftermath so
that we're prepared and practiced in the process of response.
So this it guys, we have reached the end of the session. I hope
this session was informative and now have you know your role as an individual
in enduring cyber security and the spoil well.
If
you have any doubts or any topics that you want to discuss based on cyber
security, please do post them in the comment section below and we'll
get back to you as soon as possible.
Thank
you guys meet you in the next session with another interesting topic. I hope
you have enjoyed reading this article, please be kind enough to share it and
you can comment any of your doubts and queries and I will reply them at the
earliest do look out for more articles.
Learn More Happy learning
Stay At Home Stay Safe
Some of the software listed below you can check:



Comments
Post a Comment
Please do not add any spam link in the comment box