Short Research Paper
yasernoory
CyberSecurityThreats.pptxCyber Security Threats
Yassir Nour
Dr. Fonda Ingram
ETCS-690
Cybersecurity Research Seminar
Date: 02/08/2019
1. Denial-of-Service (DoS) Attacks
A denial-of-service (DoS) is any kind of assault where the assailants (programmers) endeavor to keep real clients from getting to the service.
Programmer sends undesirable high volumes of traffic through the system until it ends up stacked and can never again work.
https://www.incapsula.com/ddos/ddos-attacks/denial-of-service.html
2
Company and summary of how the threat affected the firm
Deezer, an online music streaming service, says it was affected by a vast scale DDoS assault on June 7 through a botnet, which brought about the organization's site being down for a few hours.
https://www.theguardian.com/technology/2014/jun/10/deezer-user-data-hack-attack-ddos
3
Possible Solutions
These threats could been avoided by:
Reinforcing the security frameworks and servers
WAFs (Web Application Firewalls) are an incredible instrument to use against these assaults as they give you more command over your web traffic while perceiving malicious web misuses.
2. Malware
A malware assault is a sort of cyber-attack in which malware or malicious programming performs exercises on the unfortunate casualty's PC system, more often than not without his/her insight.
In straightforward words, it is a code with the expectation to takes information or obliterates something on the PC.
https://us.norton.com/internetsecurity-malware.html
5
Company and summary of how the threat affected the firm
Onslow Water and Sewer Authority (OWASA) on October 15, 2018, was assaulted by Ryuk ransomware making huge harm to the association's system and brought about various databases and systems being modified starting from the group up.
The ransomware corrupted vast quantities of endpoints and requested higher payments than what we ordinarily observe (15 to 50 Bitcoins).
https://blog.malwarebytes.com/cybercrime/malware/2019/01/ryuk-ransomware-attacks-businesses-over-the-holidays/
6
Possible Solutions
These threats could been avoided by:
Introducing anti-malware arrangements on all organized gadgets and systems can essentially decrease the likelihood of getting these infections or enabling them to spread.
IT experts should forcefully stay up with the latest, both on the end-client systems and on core system PCs.
3. Phishing
It is a demand regularly sent by means of messages and requests that the clients click on the link and enter the required information.
Phishing messages have turned out to be increasingly classy as of late and making it troublesome for the client to isolate a genuine demand from the ill-conceived one.
https://magma.co.in/phishing-attack/
8
Company and summary of how the threat affected the firm
World Cup and holiday rentals – 2018
scammers are hoodwinking fans with phishing messages that incorporate alluring, however thoroughly phony, free outings to Moscow.
Tricksters will focus on a proprietor who is promoting a posting, assume control over their email account, and supplant the email address on investment property advertisements with their very own email.
https://www.inc.com/will-yakowicz/biggest-email-phishing-scams-2018.html
9
Possible solutions
These threats could been avoided by:
Satisfactorily controlling phishing assaults, cautiousness is basic.
Tragically, these endeavored assaults are difficult to maintain a strategic distance from, however as a standard guideline, you should prepare your clients to dependably be careful when scanning and opening all messages.
Before clicking an outside email interface, you should take a gander at the real URL, as it might be not quite the same as the content in the email.
4. Password Attacks
password assaults are very popular nowadays.
An outsider endeavors to access your system by decoding a client's secret word.
https://blog.finjan.com/password-attacks-how-they-occur-and-how-to-guard-against-them/
11
Company and summary of how the threat affected the firm
Fifty million Facebook clients have been endangered to ID scam after the greatest digital assault on the social media mammoth in its history
Taking the tokens let the programmers assume control accounts, giving them a chance to see photographs, messages, and other private data.
https://www.telegraph.co.uk/technology/2018/09/28/facebook-security-flaw-exposed-50-million-accounts-hackers/
12
Possible solutions
The assault could have been avoided by:
Facebook IT directors by protecting clients from a dictionary or brute-force attacks
They should actualize prior to a record lockout approach that will lock the record after a couple of invalid secret word trials.
Clients to pursue these record lockout best practices so as to set it up accurately.
5. “Man In The Middle” (MITM)
In cryptography and PC security, a man-in-the-middle assault (MITM) is an assault where the attacker subtly transfers and conceivably adjusts the communication between two groups who trust they are straightforwardly speaking with one another.
https://us.norton.com/internetsecurity-wifi-what-is-a-man-in-the-middle-attack.html
14
Company and summary of how the threat affected the firm
Apples' organization
Wandera as of late found a vulnerability in iOS. It enables aggressors to sidestep proposed access confinements by utilizing off base design profile determination.
It viably implies that a malignant profile can't be completely expelled from an unfortunate casualty's gadget; an affected gadget would permit the configuration profile settings to hold on, even crosswise over reboots!
https://www.wandera.com/mobile-security/malicious-profiles-come/
15
Possible solutions
This could have been avoided by:
Send a Mobile Threat Defense answer for caution and shield them from all dangers including malicious profiles.
Pick a solution that enables you to perceive any obsolete working systems and control the speed in which they move up to the most recent OS variant accessible.
managers ought to teach clients in the association to be mindful when validating iOS profile connections.
https://www.wandera.com/mobile-security/malicious-profiles-come/
16
6. Cryptojacking
Cryptojacking is the unapproved utilization of a PC, tablet, cell phone, or associated home gadget by cybercriminals to dig for the digital money.
By deceiving their unfortunate casualties into stacking mining codes onto their PCs, programmers can utilize their objective's CPU handling assets to dig for the cryptographic money, altogether affecting the performance of their systems.
https://us.norton.com/internetsecurity-malware-what-is-cryptojacking.html
17
Company and summary of how the threat affected the firm
Kaspersky Labs company was attacked in Nov. 28, in Russia
These malignant contents can take up a great deal of CPU control, bringing about an exceptionally moderate PC, and now and again may harm the gadget due to over-burdening the processor.
https://cointelegraph.com/news/kaspersky-cryptojacking-increasingly-popular-attack-vector-for-botnets
18
Possible solutions
These threats could been avoided by:
keeping the hardware and software always up-to-date.
Connecting with Cyber Security system suppliers like Indegy or Claroty can help protect your ICS frameworks
7. Malvertising
A sort of malicious publicizing, use to spread malware and undesirable documents to various destinations.
A document or code is downloaded to the PC framework while clicking on the affected promotion
https://en.wikipedia.org/wiki/Malvertising
20
Company and summary of how the threat affected the firm
in 2018, Check Point found a Malvertising effort utilizing a huge number of traded off Word Press sites to divert exploited people to IP address 134.249.116.78, also called 'Master134.'
This IP address, thusly, diverted its traffic to hibids10[.]com, an area that has a place with the AdsTerra promotion network and is sold to publicizing affiliates.
https://www.lastline.com/blog/how-malvertising-works-what-you-need-to-know/
21
Possible solutions
These threats could been avoided by:
Promoting networks can handle the issue head-on with better advertisement examining and the inconvenience of more noteworthy hindrances for publicists to submit online offers.
associations can shield themselves by searching for suspicious side-tracks, iframes, and other code in commercials facilitated on their sites.
system traffic examination innovation ought to be actualized to recognize suspicious action that outcomes from malware introduced by Malvertising.
8. Cross-site scripting (XSS) attack
Cross-Site Scripting (XSS) assaults are a kind of infusion, in which noxious contents are infused into generally benevolent and confided in sites. XSS assaults happen when an assailant utilizes a web application to send malevolent code, by and large as a program side content, to an alternate end client.
https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)
23
Company and summary of how the threat affected the firm
eBay clients have been managing potential XSS contents installed in item postings for quite a long time, and by mid-2017 the issue still hadn't been settled. For this situation, noxious merchants added contents to genuine item postings to divert clients to a mock login page that collected accreditations previously diverting clients back to an authentic eBay page.
https://www.techrepublic.com/article/cross-site-scripting-attacks-a-cheat-sheet/
24
Possible solutions
These threats could been avoided by:
Developing Web application using some form of security development lifecycle (SDL).
Another solution to XSS assaults is a "crossing boundaries" policy whereby confirmed clients need to re-enter their passwords prior to access specific services.
References
Amini, L., Christodorescu, M., Cohen, M. A., Parthasarathy, S., Rao, J., Sailer, R., ... & Verscheure, O. (2015). U.S. Patent No. 9,032,521. Washington, DC: U.S. Patent and Trademark Office.
Thakur, K., Qiu, M., Gai, K., & Ali, M. L. (2015, November). An investigation on cyber security threats and security models. In Cyber Security and Cloud Computing (CSCloud), 2015 IEEE 2nd International Conference on (pp. 307-311). IEEE.
