4PQ
Read and respond in at least 150 words to at least two of your classmates’ postings by the end of the workshop. Include citations to at least one credible information source in your replies.
Peer Review 1:
Malware attacks such as Trojans, botnets, worms, and ransomware. They get installed on a computer system when the user clicks a malicious link. Once the malware is installed, it fetches confidential information and sends it back to the interested party. Another cyber-security threat is a denial-of-service attack (DoS), which floods the server with numerous requests making it impossible to process legitimate requests (Abouzakhar, 2018). SQL injection adds another cyber security vulnerability where attackers access the database by running malicious SQL commands. Training the staff is one of the most efficient ways to protect organizational information systems infrastructure. Hackers have mastered using social engineering tricks like impersonating a worker in the organization and consequently mischievously asking for personal details. Untrained employees are usually the weakest link in cyber security, and therefore, cyber security awareness is of utmost importance in protecting against email phishing attacks (Carlton, 2019). Another way to protect computer systems is by using firewalls, installing antivirus programs, keeping programs updated, and backing up data. While on the internet, users should only browse websites with HTTPS that are usually encrypted. This ensures that the intruder cannot comprehend the communication in the event of a man in the middle attack. Insecure redirects can be eliminated by using HTTP strict transport security feature that allows only secure HTTPS connections (Carlton, 2019). When connecting to the internet using public Wi-Fi, is it advisable to use a VPN connection to mitigate the risk of spoofing? Users should take proactive roles such as conducting risk mitigation assessments to identify potential gaps. Also, users should report suspected malicious activities to IT professionals for further action. Cyber attackers can manipulate employees through social engineering tricks, and therefore users should routinely be trained on basic cyber security techniques such as the importance of using strong passwords (Buchler, 2018). Studies have shown that continuous training can tremendously reduce human errors like sharing the password with colleagues and not installing programs on computers systems. Additionally, continuous awareness training equips them with the knowledge to help them not to fall prey to phishing and spam attacks. Also, users have a responsibility to comply with information security policies (Buchler, 2018).
Peer Review 2:
Threats can impact operations of the infrastructure:
A system threat is anything that can cause loss or corruption of data, or we can say physical damage to the hardware and/or infrastructure. Security Threat is defined as a risk that which can potentially harm your IT infrastructure. Threats to information system can be from internal or external sources to an organization. To secure system and information, each company or organization should analyze the types of threats that they are facing and how the threats affect information system security. Examples of threats such as unauthorized access (hacker and cracker), computer viruses, theft, sabotage, vandalism, and accidents.
Some common security threats affecting IT infrastructure are.
· DDos attacks
· Web Application Attacks
· Network Segmentation
· Malware Attacks
· Command Injection and Parameters Manipulation
· Staff employees pose perhaps the greatest risk in terms of access and potential damage to critical information systems.
Methods for mitigating information security Threats:
Implement a security endpoint solution: for Example, anti-virus, antimalware, etc.
Train all your team members and educate them about legitimate and suspect e-mails or websites. Regular and mandatory training sessions on cyber awareness can teach and educate people about online hazards to avoid security risks and increase their understanding.
· Having installed antivirus on the system
· Having firewall on the system
· Avoiding the untrusted websites
· Downloading and Installing data from unknown sources
· Choosing strong password (without noting it down on paper)
· Avoid connecting to public Wi-Fi
· Check Privacy Policy. Learn which data they collect about you or require for providing their service.
· Check the company’s partners and whether some portion of your data it may share with them and under which conditions.
Here are some tips to mitigate threats from Internet-based activities, such as the use of e-mail and web browsing,
· Always Check the links you’re about to click, they may be suspicious, you can use Virus total scanner, Norton Safe web, Google Safe Browsing Transparency Report.
· While using public Wi-fi spots, use VPN client from reliable provider. While it doesn’t guarantee full anonymity, it does enhance privacy and wouldn’t let crooks to snoop through your traffic
· Use password manager and two factor authorizations on all of your accounts that support it.
· Disable macro execution for documents and email attachments
· Java and Flash are often exploited technologies by attackers hunting for your data, so use No Script addon to block possible threat: Firefox, Chrome
· Use an ad blocker to avoid annoying ads and data collection
· Make sure you have an antivirus on your computer and mobile device,
· You can implement a proactive, prevention-focused on mitigation program to detect and identify threats, assess risk and manage that risk before an attack occurs.
The most observed insider threats come from three areas: recruitment of retail associates to cash out or pre-authorize stolen credit cards, sharing or selling of financial insider trading information, and co-opting implanted employees at financial institutions
In business, an indigenous product offers behavior analytics to baseline normal employee and record risky behavior with appropriate actions to avoid incidents beforehand. And it comes as an integrated solution offering DLP, Employee Productivity & Behavioral Monitoring, Employee Forensics and Cyber Intelligence Reporting as a single solution.