Question

Write a 4 to 5 page paper (not including title and reference pages) write-up a scenario where you develop a plan to attack a fictitious organization. Use all the phases that in this hacking Methodology course to build your plan.

Answer 1

Answer:-

1. The Ransom/Cryptolocker Attack - where these viruses work like a Trojan and are often hidden in email attachments. After you open them, it blocks the user from accessing their files on the PC, infecting the entire system. Later on, the users are asked to pay a certain amount of money to decrypttheir drives and get access to the files again.
2. Email Phishing/Whaling Scams - the CEO or someone at the top hierarchy is targeted here. He/She is asked to give some sensitive information about the credit card or business bank account. Most of the time they manipulate via an email or a link which redirects them to a fake website which seems legitimate to these innocents!
3. Email Extortion - Here the most influential of the business is asked for money. If they do not do that, they are told that their sex tape or any sensitive information about the company would leak and get viral.
4. Zero Day Attacks- This is a vulnerability or a flaw that remains within the business’ software security. It is like a hole, where another software is placed and installed so that hackers can get, steal and hack their information and publish them on the internet later.

1 1 10110101110 pa 101 101 1101 11 101 101 110111 101 101110111 101110 1101 101 01- 1 10110101110 d 92b1d 010 COoD1 -10 10101110 101 101 110111 1:1. 1011010111o c1C 961d 1010PIna- 1G40 1. 101 01 1 tprhs9s0soo ob sorootloh opda 011 1010401011 o0101 0111 101010 D101- 1010so 1010 11 10 101 1010O 10111 0110013 1101 10001dt01 100 E 0it dHas 10101.1p101 1o 101 11o100.1.1 1 011 ho1 01104o o11010 10 i101010101 0100sD o OrosO1osas0 osos1010 oo a atioro o100 1010101 1011 1139o o110 11 10101 0101 s0s 10100 o151 1gos ao oo no

With all of these red flags, what I want to suggest you prevent from serious effect is: Keeping your security software and browser up to date is a good practice, and do not forget to train your workers, so that they can take precautions earlier in the day, and would avoid being in a bad situation.

First, backup your files on another server, and then take physical backups of critical files from there to a DVD, and put that DVD into a fireproof safe.

Do not hire a remote IT person. Make sure they can show up on site at least once a week to check on things and can be on call as needed. I recently did a ransomware job where my client took backups and had a remote IT staff and by the time they figured out what was wrong the good backups were over-written with the bad ones.

If you have a physical workplace, hire a competent IT person. I am amazed to find out how many good IT people are unemployed when just hiring an experienced admin part-time could have solved lots of problems and saved a lot of money. (good, experienced System administrators are better to have than a “Security Expert” like myself to come in later and clean up)

Have your new competent IT person do an Audit of backups, software (is it vulnerable) and email (will it need an appliance to filter malware and possible spear phishing attacks?).

So, phase 1.

1. Fire remote person. Hire real IT person who can visit the site at least weekly
2. Backups. Make them. Keep them on a separate computer. Keep a weekly or monthly backup on hard drive or DVDs in a fireproof safe.
3. Backup to the Cloud? Sure, Remember the Cloud is a dumb name for “A computer that is someplace else” If you are comfortable with this, then the Cloud offers good protection at a low price.

Phase 2.

1. Have your new IT person do an audit of old systems, software and hardware. Take their advice on the change and ask your new IT person to start a migration plan if needed.
2. Have your IT person look into appliances like firewalls and email filters. Spend money on them if needed.
3. Have a security policy: Both cyber and physical. Paper gets shredded, even un-important paper. Digital Media gets shredded. Old Hard drives get turned into powerful refrigerator magnets. No one installs pirated software, no one picks up DVDs or USB sticks on the floor and no one opens attachments, and no one emails attachments. (Your IT person can make it so its easy to know what is safe to open)

Phase 3.

1. Maintenance. IT person comes by at least once a week or 5 days a week 40 hours a week, depending on your needs and checks things, talks to people unjams printers, vaccuums servers does Operating system and softeware updates.
2. IT person tells you and your staff of latest tech and security developments and advises if it is relevant to you or not.

1. Spread security user awareness among employees. Educate them about the importance of security in today’s business scenario. Security should never be an after thought - it should be built in along with other business processes.
2. Create policies and enforce them strictly(eg. strong password combinations, anti-virus software must be regularly updated, firewalls must be inspected, VPNs must be used when working remotely, logout from all accounts when signing out)
3. New vulnerabilities creep in everyday and patches for software should be regularly updated.
4. Important business emails should be encrypted.
5. CCTV cameras should be installed at all crucial locations.
6. Keep yourself updated about the latest in the InfoSec world and always keep a security team to layout the policies and guidelines for the company.

This just lists some of the points that can be done to protect against a cyber attack…

47 views · Answer requested by Alan Taylor

CIOLCOK

Cio Look Magazine, Media & Publication

Answered Oct 23, 2018

CIO

Secure Your Network with Intelligence : Cyber Security

At present, cyber security is playing a vital role in the digital world and it is also known as a standard technology use for the protection of cyber environment of an individual or any organization. It is mainly known for security culture which includes user network, drives, software process, information storage, application security and system support which is directly or indirectly connected to the network. The prime objective of cyber security is to reduce continuously growing cyber risks and cyber threats.

Cyber security technology consists of a collection of tools, policies, security concepts, risk management, actions, and training. The technology tracks protected networks, data security from data attack, along with cyber security and physical security. The core functionality of cyber-security is based on techniques involved protecting information and system from cyber threats.

How Cyber Security came into Existence?

As with the history, cyber security has huge network background with its own findings and technology aspects. In the early 1990s, a research on information security and policy was been introduced where information was in the form of accuracy and based on system awareness. Under 2016 survey, 70% of the organizations in the US were adopted by US Security survey which is comprised of NIFT (National Institute of Standards and Technology) Cyber-security framework.

Origins of Cyber Security Platform

Cyber security is defined as a package of safety solutions which provides major security processes. There are many sectors which are consuming cyber security platform as its major functionality for web service network. The fundamentals of cyber security process are,

1. Application Security
2. Information Security
3. Network Security
4. Operational Security
5. Application security is covered with technology that measures the feasibility of the application by finding, fixing and preventing security exposers. There are different techniques which are being used as security platform to emphasize safety at different stages of the application cycle. Application cycle includes different segments such as design, development, deployment, upgrade, and maintenance. The standard of security process is consequently changing and application cycle has also a different process with different standardization.
6. Information security is a core source of information which is confidential, integrated and easily available. The primary focus of this security process is to the stable data protection while maintaining a focus on efficient policy application. Risk management process is achieved by identifying assets, threat sources, and vulnerabilities and is also followed by the effectiveness of the risk management plan. Information security mainly works on confidential information which is highly entitled to the process.
7. Network security sets a variety of computer networks, used in both public and private sector. It also includes conducting transactions and build communications among businesses, government agencies, and individuals. All networks are divided into two sections, private network and public network.
8. Operational security is a process that identifies information which is critical and easy to determine by competitor intelligence. It protects individual piece of data that could be grouped together to give a proper set of information. It includes critical information essential for military commanders, senior leaders, and higher management. The whole process also includes technical and non-technical measures such as, use of email encryption software, taking precautions against spying data and securing confidential information not to be shared on social media platform.

Operational security is a five-step process which assists any organization to specify required information,

1. Identification of critical information
2. Analysis of threats
3. Analysis of Vulnerabilities
4. Assessment of Risk.

Conclusion

Cyber security is equally important for local, state, and central government as these organizations maintains a huge amount of confidential data and records concerning the country and its citizens. Yet there are many government and commercial organizations that face difficulties in protecting the confidential data due to lack of inadequate secured infrastructure, and lack of security awareness.