F.A.Q.

Understanding the Concept of Cyber Security ?

Cybersecurity focuses on safeguarding computers, servers, mobile gadgets, electronic systems, networks, and data from harmful attacks. This field is frequently referred to as information technology security or electronic information security.

The term is applicable in various situations, from corporate settings to mobile computing,
and can be divided into several key areas such as:

Network Security: This involves proactive measures to shield the network from unauthorized users, attackers, and intrusions.

Application Security: Applications necessitate regular updates, testing, and monitoring to ensure their security against potential attacks.

Endpoint Security: Remote access, while crucial for business operations, can pose a risk to data security. Endpoint security is about safeguarding remote access to a company's network.

Data Security: Data pervades all networks and applications. The protection of business and customer information, both when stored and in transit, is of utmost importance.

Identity Management: This process involves understanding and managing the access rights of each individual to applications and networks within an organization.

Database and Infrastructure Security: These are the methods used to secure computer systems, networks, and other critical assets that are integral to national security, economic stability, and public safety.

Cloud Security: This involves encrypting cloud data during storage, movement, and use to ensure customer privacy, meet business requirements, and comply with regulatory norms.

Disaster Recovery/Business Continuity Planning: DDisaster recovery strategies dictate how an organization restores its operations and information to return to normal functioning after a disaster. Business continuity planning, on the other hand, outlines the steps an organization takes when it cannot operate due to resource constraints.

Defining a Cyber Attack

A cyber attack refers to the act of manipulating, disrupting, or damaging a digital environment or infrastructure through the realm of cyberspace, or compromising the reliability of data or pilfering confidential information.

Prevalent Cyber Attack Techniques

Malware

Malware, an abbreviation for malicious software, encompasses a variety of harmful programs including spyware, ransomware, viruses, and worms. The activation of malware typically occurs when a user unsuspectingly clicks on a harmful link or attachment, resulting in the installation of detrimental software.

According to studies, once malware is engaged it can:

Restrict access to critical network components (a common function of ransomware)

Facilitate the installation of further harmful software

Extract data by transmitting information from the hard drive (a characteristic of spyware)

Interfere with specific components, rendering systems nonfunctional

Denial Of Service

A Denial of Service (DoS) attack is a prevalent cyber attack technique that overwhelms a computer or network, making it incapable of responding to requests. A Distributed Denial of Service (DDoS) attack operates similarly, but it originates from a computer network. Cyber attackers often employ flood attacks to interfere with the "handshake" process and execute a DoS. While other methods can be used, some cyber attackers leverage the downtime of a network to initiate further attacks.

SQL Injection

An SQL Injection is a cyber attack that involves the introduction of harmful code into an SQL server. Once a server is compromised, it divulges data. The process of introducing the harmful code can be as straightforward as inputting it into a vulnerable website's search box.

Phishing

Phishing is a fraudulent activity where the attacker impersonates a legitimate individual or organization through email or other communication channels. Attackers often use phishing emails to disseminate harmful links or files with diverse objectives. Some aim to steal the recipients' login credentials or account information.

Romance Fraud / Relationship Fraud

In February 2020, the FBI alerted U.S. citizens about confidence fraud, a tactic used by cybercriminals on dating sites, chat rooms, and apps. These criminals exploit individuals seeking companionship, tricking victims into revealing personal information. According to the FBI, romance cyber threats impacted 114 victims in New Mexico in 2019, leading to financial losses of approximately $1.6 million.