Cyber Security

profileluckyqloo
W2D1responseBR.docx

For a post to be substantial, it needs to genuinely add something new to the conversation.  I am sure you will have no trouble writing about your personal experiences or research findings you have made. 

Please reply to post -150-250 words

The four steps mentioned in the article are Reconnaissance, Penetration, Maintaining access and stealing data, and Covering tracks (Lecklider, 2017). Reconnaissance is the planning stage in which the hacker is finding out information about their target.  They are looking for any information on the organization, the personnel, scouring social networks for background information, and email addresses (Lecklider, 2017).  Typically this is done through many of the social engineering techniques similar to what we discussed last week.  The Penetration step is where the hacker is attacking the target looking for weaknesses in the network. The hacker can typically use multiple types of attacks to gain access, and usually it can take place over several months. Once the hacker has gained access the goal is to steal the information that they deem useful, without being detected.  During this phase, the attacker is trying to move through the network undetected and if they have used several tools out there they can elevate their privileges.  At this point they have taken over the network.  The Covering track stage is very important as well.  If the intruders can hide the fact that was even in the network, they lessen the chance of getting caught and increase the amount of time before the breach has been discovered ("5 phases of a cyber attack: The attacker’s view", 2018).  This can be done in a couple of ways, by using ransom ware to destroy all evidence or by altering logs and files on the network.

 

I agree with this assertion in that I look at it from the process standpoint.  When someone is trying to physically burglarize a business or a house, they do the same thing.  They do their homework by doing research on the target, finding a point of entry, stealing the goods, and then and escape plan.  Most of the other sources I found had the same stages with a couple differences.  Some used different wording and a couple more stages, but we the same idea. 

 

Lecklider, T. (2017). Defending against cyberattacks, Evaluation Engineering. 14-16 Retrieved from https://lopes.idm.oclc.org/login?url=http://search.ebscohost.com/login.aspx?direct=true&db=aci&AN=121536041&site=ehost-live&scope=site

 

5 phases of a cyber attack: The attacker’s view. (2018). Retrieved from https://business.f-secure.com/5-phases-of-a-cyber-attack-the-attackers-view