Create Powerpoint presentation For Technical Writing Paper
SaMsRa@1
Sample_PowePoint.pptxDeepa KC Dr. R. Daniel Creider CSCI303 4/12/2020
Digital Security Threats To Information
AGENDA:
3
1
2
3
4
5
Introduction
Sources of Digital Security Threats
Computer and Network Vulnerabilities
Digital Security Threat Motives
Solution to Digital Security Threats Information
4
Technology plays a huge part on how information is stored and retrieved.
Some of its advantages are:
Better Information Management: Data files are now easily managed digitally. Hence, removed the manual work and challenges of keeping them physically.
Efficiency and Accuracy: Have access to data anytime while ensuring accuracy and consistency.
However, with the convenience this gives, also comes risks and downsides. This problem is the digital security threat to information.
As hacker communities, and their malicious motives arises, viruses have been invented as well to manipulate and knock down information management.
5
Sources of Digital Security Threats
I. Weakness in communication Protocols and Information Network Infrastructure.
As information is being transferred, it is broken down into small package so it can easily be transmitted to the network, then later on being reassembled at the receiving point. Security is necessary on this process to ensure each information packet is guaranteed.
But it is not the case all the time in the existing cyberspace protocols. There are loopholes still in which unauthorized users are able to penetrate and intercept these information packets.
Communication Protocol
TCP
UDP
Three-way Handshake
This process creates TCP connection to both client and server through a unique port number.
6
Sources of Digital Security Threats
II. Rapid Growth of Hackers Community
Hackers are individuals breaching defense and penetrating security on computer systems/networks
Major Cyberattacks:
1
2
3
4
5
6
The Internet Worm
Michaelangelo Virus
Smeg, Queeg and Pathogen Virus
Melissa Virus
Love bug Virus
Anna Kournikova Virus
Before, they are the worst enemy to information systems, but as technology progresses, organizations and even government uses their knowledge to strengthening networks and critical information database of countries.
7
Sources of Digital Security Threats
Major Cyberattacks:
1
The Internet Worm
Unintentionally created by Robert Morris in 1988. He released it knowing that it was a self-propagating program that replicates and distributes copies of itself. It was not de-bugged effectively before the release which infected other computers on the same network. He was legally punished for this.
2
Michaelangelo Virus
The virus was designed to infect DOS, MS-DOS system. It infects hard disks and floppy disks, then later on installs itself to a computer memory where it could penetrate and infect the hard drive as well. It has been the most disastrous virus and cost up to million of dollars damages.
3
Smeg, Queeg and Pathogen Virus
These viruses were written by Christopher Pile between 1993 and 1994. Smeg served as camouflage for Quueg and Pathogen which made these viruses difficult to detect. Pile was arrested in 1995.
4
Melissa Virus
This viruses were written by David Smith. Infection is via word programs and Microsoft Outlook. It is distributed via email attachment and can disable security. It can re-send itself to the email addresses on user’s address book.
8
Sources of Digital Security Threats
Major Cyberattacks:
5
Love bug Virus
This was released by AMA computer college dropout Onel De Guzman in 2000. This virus infected large firms in Europe and Asia as well as The House of Commons in Britain. It has also infected U.S. Senate computer systems as well as Danish parliament in Denmark.
It is distributed via email and would appear to be sent from “someone they know” so the user would be tricked to open it.
The virus caused great losses approximately 7-20 billion US dollars.
6
Anna Kournikova Virus
Released back in 2001, and was one of the viruses that hit global computer networks. The virus is contained on a JPEG file tat shows user picture of Anna Kornikova. The spread of the virus was double the speed of the “ILOVEYOU” virus.
9
Sources of Digital Security Threats
III. The Insider Effect Security Threat
In 1997, Ernst & Young — multinational professional services firm, conducted an interview among IT managers and professionals. It shows that:
75% pointed to employees and authorized users as the major threat to the information.
42% indicated that they were victims of external attacks.
43% indicated employees’ malicious activities.
Jack Strauss, CEO and President of Safecorp stated that the greatest information security threat is when a firm insider accidentally, or intentionally misuse the information at their disposal.
IV. Social Engineering
It involves techniques to acquire authorization to a specific information through impersonification of someone who has access to data.
10
Sources of Digital Security Threats
V. Rapid Cyberspace Growth
As the number of users increase, the security threat tendencies goes up as well. More individuals with motives use the internet to gain wealth, control and power.
According to Breat Et Al: (2019), approximately 400-500 viruses are identified on a monthly basis which is turning out to be a major security threat to information.
VI. Design Philosophy
Refers to a manner in which communication protocols and computer infrastructures are designed. Internet growth and development involved bright minds who contribute to the infrastructure.
Architecture work in progress philosophy, for one, encourages the spirit of adventurism and individualism.
11
Computer and Network Vulnerabilities
Routing Algorithm
TCP/UDP
ICMP Redirect Hazard
ARP Hazzard
Fragmentation
Internet Technology
Design Flaws
Incorrect Implementation
Changing Nature of Hacker Activities
Poor Security Management
Sequence spoofing
When IP address requires data to be processed hackers may send stream of small fragments to the host which collapses the target.
DDoS attacks – Interruption of system resulting to hard disk being destroyed.
Involved in IP mapping, this can be hijacked by overseeing TCP connections between two active host and inserting forged packets.
Fast-paced development of telecommunication and computer technologies’ loopholes, gaps and weaknesses.
Connection between sender & receiver is intercepted by predicting TCP sequence.
Mainly found on software & hardware. Main contributors are human errors like attention failure, memory lapses and rush to finish.
Due to incompatible interfaces. Might be because of too much details, manual entry errors or failure to understand underlying parameters.
As technology progress, hackers technologies and motives also changes. Which makes information security more vulnerable.
Poor administration team dealing with security that results to information being compromised.
12
Digital Security Threats Motives
Targeting the National Information Database
Revenge or Vendetta
Hate
Greed
Notoriety
Terrorism
Sponsored and well-coordinated by foreign power and targets a particular country or organization.
Electronic terrorism is usually used in which hackers attack banking system, installation of the military and other targets that they know has great value to an individual or organization.
Motivated by the desire to punish or hit back individuals/organizations.
Feeling of despise that may be based on race, origin, gender and other factors.
Driven by desire for power and financial gain.
Driven by desire to be renown as someone competent based on their skills to penetrate the system.
Solution for Digital Security Threats to Information.
1
Disaster Recovery
Organizations should come up with a disaster recovery to show readiness for any digital security threats. They should consider:
Planned procedure
Highly-skilled and informed staff
Wellness disaster supplies
It involves different steps such as:
Identification and prioritization of disaster
Key information system and functions of the organization.
Effective notification plan, and designation of responsibilities.
Solution for Digital Security Threats to Information.
2
An Organization Always Being Ready For Digital Security Threats
It is necessary to be ready for attacks to information systems. This can be ensured by:
Regular testing, or checking of information systems.
Review system & transaction logs.
Ensure that all information is well backed up.
Solution for Digital Security Threats to Information.
2
Access Authorization and Control
It is ALWAYS important to determine who has access to certain information and how restrictions can be imposed. Different access control systems can be applied. Such system includes:
Access cards
Biometrics
Passwords
Face, voice and fingerprint recognition
Conclusion:
16
Various digital threats to information present a huge problem for people, organisations and governments alike. It is therefore important to resolve this problem as early as possible in order to prevent its continued harm to the victims. For better handling of information security, software developers should develop more sophisticated tools to identify viruses and monitor their effects on information systems, and ensure preparation for such actions would help.
17
References
Banham, R. (2017). Cybersecurity threats proliferating for midsize and smaller businesses. Journal of Accountancy, 224(1), 75.
Brett, T., Loukas, G., Moreno, Y., & Perra, N. (2019). Spreading of computer viruses on time-varying networks. Physical Review E, 99(5), 050303.
Information Resources Management Association. (2018). Cyber security and threats: concepts, methodologies, tools, and applications. IGI Global.
Jang-Jaccard, J., & Nepal, S. (2014). A survey of emerging threats in cybersecurity. Journal of Computer and System Sciences, 80(5), 973-993.
Kizza, J. M. (2015). Guide to computer network security. London: Springer.
Ludwig, M., & Noah, D. (2017). The giant black book of computer viruses. American Eagle Books.
Peng, S. Y. (2015). Cybersecurity threats and the WTO national security exceptions. Journal of International Economic Law, 18(2), 449-478.
