460 likes | 490 Views
Join Professor Saaid Elhadad as he explores the world of cybersecurity, covering topics such as cyber-attacks, defending against malware, protecting your data, and more. Discover why cybersecurity matters and how to stay safe in an increasingly connected world.
E N D
Cybersecurity What You Don’t Know Can Hurt YouProfessor Saaid Elhadad
Agenda • The World is Flat • What is Cybersecurity? • Why Cybersecurity Matters? • Attackers Tools and Techniques • Common Malware Symptoms • Defending Against Malware • Protecting Your Data • Securing Wi-Fi and IoT • Avoiding Cyber-Attacks Professor SaaidElhadad What You Don’t Know Can Hurt You
The World is Flat"A Brief History of the Twenty-First Century"Author: Thomas Friedman What You Don’t Know Can Hurt You Professor SaaidElhadad
- Googleprocesses 100 billion searches a month- 91.47% of all internet searches are carried out by Google- 90% of Google’s searches come from mobile devices https://www.brandwatch.com/blog/amazing-social-media-statistics-and-facts/#section-2 What You Don’t Know Can Hurt You Professor SaaidElhadad
o Facebookadds 500,000 new users every dayo 6 new profiles every secondo 68% of all Americans are on Facebooko 79% of all online US adults use Facebooko 76% of Facebook users check it every day Source: https://www.brandwatch.com/blog/amazing-social-media-statistics-and-facts/#section-2 What You Don’t Know Can Hurt You Professor SaaidElhadad
• 300 hours of video are uploaded to YouTube every minute• People watch 1 billion hours of YouTube videos every day• More than half of YouTube views come from mobile devices• 94% of American 18-24 year old use YouTube• YouTubesees around 1,148bn mobile video views per day Source: https://www.brandwatch.com/blog/amazing-social-media-statistics-and-facts/#section-2 What You Don’t Know Can Hurt You Professor SaaidElhadad
The Web $$$$ https://www.visualcapitalist.com/wp-content/uploads/2018/03/who-owns-who.html What You Don’t Know Can Hurt You Professor SaaidElhadad
The Dark Web What You Don’t Know Can Hurt You Professor SaaidElhadad
What is Cybersecurity? “The practice of protecting systems, networks, and programs from digital attacks. These attacks are usually aimed at accessing, changing, or destroying sensitive information; extorting money from users; or interrupting normal business processes.” Cisco “The protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability. .” NIST What You Don’t Know Can Hurt You Professor SaaidElhadad
NIST Source: https://www.nist.gov/news-events/news/2018/04/nist-releases-version-11-its-popular-cybersecurity-framework What You Don’t Know Can Hurt You Professor SaaidElhadad
Cybersecurity 3 Dimensions Cube The Cube What You Don’t Know Can Hurt You Professor SaaidElhadad
Why Does it Matter? What You Don’t Know Can Hurt You Professor SaaidElhadad
“I am convinced that there are only two types of companies: those that have been hacked and those that will be. And even they are converging into one category: companies that have been hacked and will be hacked again.” Source: https://archives.fbi.gov/archives/news/speeches/combating-threats-in-the-cyber-world-outsmarting-terrorists-hackers-and-spies What You Don’t Know Can Hurt You Professor SaaidElhadad
World's Biggest Data Breaches & Hacks Source: https://informationisbeautiful.net/visualizations/worlds-biggest-data-breaches-hacks/ What You Don’t Know Can Hurt You Professor SaaidElhadad
Real Time Cyber Attacks World's Biggest Data Breaches & Hacks Source: https://www.fireeye.com/cyber-map/threat-map.html What You Don’t Know Can Hurt You Professor SaaidElhadad
Cybercrime Economics Source: https://www.mcafee.com/enterprise/en-us/solutions/lp/economics-cybercrime.html What You Don’t Know Can Hurt You Professor SaaidElhadad
https://thehackernews.com/ What You Don’t Know Can Hurt You Professor SaaidElhadad
Attackers Tools & Techniques What You Don’t Know Can Hurt You Professor SaaidElhadad
The Cyber Kill Chain Source: https://sckheedmartin.com/en-us/capabilities/cyber/cyber-kill-chain.html What You Don’t Know Can Hurt You Professor SaaidElhadad
Spoofing Attacks' • Social engineering • Ransomware • Malware (Malicious code – viruses, worms, etc.) • Insider threats • Theft of information (data) and resources Cyber Attacks What You Don’t Know Can Hurt You Professor SaaidElhadad
Identity Theft - Steal & misuse your identity ($$$) Phishing - Email tricking users into giving personal or business/customer Spear Phishing - Email with specific company details and targeted at specific employees SPAM - Unsolicited and unwanted Email Compromised web pages - invisible code planted on legitimate web pages that attempts to install malware on personal or business computer(s) Cyber Attackers What You Don’t Know Can Hurt You Professor SaaidElhadad
Steal information/computer files (electronic and physical) Accessing information system accounts (to steal information) Stealing laptops and computers (physical theft) Intercepting your emails or internet transactions Mobile devices left unguarded – Can/will be stolen Cyber Attackers Can (Cont.) What You Don’t Know Can Hurt You Professor SaaidElhadad
Find and delete or steal critical personal or business data • Lock up computer(s) • Hide in program or documents • Make copies of itself • Install on your system and record your keystrokes Cyber Attackers Can (Cont.) What You Don’t Know Can Hurt You Professor SaaidElhadad
Cyber Attack Techniques What You Don’t Know Can Hurt You Professor SaaidElhadad
Common Malware Symptoms What You Don’t Know Can Hurt You Professor SaaidElhadad
Browser closes unexpectedly or stops responding The home page changes to a different website and cannot be reset. New toolbars are added to the browser. Clicking a link does not work or you are redirected to an unrelatedwebsite. Common Malware Symptoms What You Don’t Know Can Hurt You Professor SaaidElhadad
Unstable System • Internet connection stops unexpectedly. • Computer stops responding or takes longer to start. • New icons are added to desktop or suspicious programs are installed • Certain system settings or configuration options become unavailable Common Malware Symptoms (Cont.) What You Don’t Know Can Hurt You Professor SaaidElhadad
Identify Suspicious Activities • Open ports • Remote Connections • Unknown Processes and Services • Sudden increase in Network Traffic • Sudden decrease in system performance • Unscheduled reboots What You Don’t Know Can Hurt You Professor SaaidElhadad
Defending Against Malware What You Don’t Know Can Hurt You Professor SaaidElhadad
Install and maintain antivirus software Use caution with links and attachment Block pop-up advertisements Use an account with limited permissions Disable AutoRun and AutoPlay features Defending Against Malware Source: https://www.us-cert.gov/ncas/tips/ST18-271 What You Don’t Know Can Hurt You Professor SaaidElhadad
Change your passwords Keep software updated Back up data Install or enable a firewall Avoid using public Wi-Fi Defending Against Malware Source: https://www.us-cert.gov/ncas/tips/ST18-271 What You Don’t Know Can Hurt You Professor SaaidElhadad
Protecting Your Data What You Don’t Know Can Hurt You Professor SaaidElhadad
Wi-Fi Default Factory Settings • Unauthorized Computer Access • Disable SSID Broadcast • Changing Your Access Point Name • Use WPA2 or Higher Security Encryption • Change Your Administrator Default Password • Update the WAP Firmware • Be Aware of Evil Twin Attacks • Use VPN on Public Hot Spots Protecting Wireless Communication What You Don’t Know Can Hurt You Professor SaaidElhadad
Prevents criminals from accessing all your online accounts using one stolen credentials • Use password managers to help with remembering passwords • Tips for choosing a strong password: • Do not use dictionary words or names in any languages • Do not use common misspellings of dictionary words • Do not use computer names or account names • If possible, use special characters, such as ! @ # $ % ^ & * ( ) • Use a password with ten or more characters Protect Online Account What You Don’t Know Can Hurt You Professor SaaidElhadad
Encrypted data can only be read with the secret key or password • Prevent unauthorized users from reading the content • What is Encryption? • Process of converting the information into a form where an unauthorized party cannot read it Data MaintenanceEncrypt What You Don’t Know Can Hurt You Professor SaaidElhadad
Keep Firewall On • Prevent unauthorized access to your data or computing devices • Keep the firewall up to date • Use Antivirus and Antispyware • Prevent unauthorized access to your data or computing devices • Only download software from trusted websites • Keep the software up to date • Manage Your Operating System andBrowser • Set the security settings at medium or higher • Update your computer’s operating systemand browser • Download and install the latest software patches and security updates • Protect All Your Devices • Password protect • Encrypt the data • Only store necessary information • IoT devices Protecting Your Computing Devices What You Don’t Know Can Hurt You Professor SaaidElhadad
Prevent the loss of irreplaceable data • Use additional storage location for the data • Copy the data to the backup location regularly and automatically • Local Backup NAS, external hard drive, CDs/DVDs, thumb drives, or tapes • Cloud Storage Service, such as AWS • access to backup as long as you have access to your account • may need to be more selective about the data being backed up Data Maintenance - Back up Your Data What You Don’t Know Can Hurt You Professor SaaidElhadad
Use available tools to delete permanently: ZDelete and Secure Empty Trash, for example Destroy the storage device to ensure that the data is unrecoverable Delete the online versions Data Maintenance - Deleting Your Data Permanently What You Don’t Know Can Hurt You Professor SaaidElhadad
Need Username / password or PIN and a second token for access: • Popular online services use two factor authentication • Physical object - credit card, ATM card, phone, or fob • Biometric scan - fingerprint, palm print, as well as facial or voice recognition Strong Authentication - Two Factor Authentication What You Don’t Know Can Hurt You Professor SaaidElhadad
Securing Wirelessand IoT Devices What You Don’t Know Can Hurt You Professor SaaidElhadad
Change default passwords Restrict access Use WPA2 or 3 Encryption * Protect your Service Set Identifier (SSID)* SecuringWi-Fi Source: https://www.us-cert.gov/ncas/tips/ST05-003 What You Don’t Know Can Hurt You Professor SaaidElhadad
Hardware firewall Firmware Security flaws Deploy patches Configure RADIUS* Use VPN SecuringIoT Source: https://us.norton.com/internetsecurity-iot-smart-home-security-core.html What You Don’t Know Can Hurt You Professor SaaidElhadad
Statistics show that roughly 80 percent of compromises and attacks can be prevented by following best practices. Simple patching of your devices, both at home and at work, can eliminate vulnerabilities that are considered low hanging fruit to hackers and hacktivists. 80% of Attacks CanBe Avoided Source: https://it.nc.gov/cybersecurity-awareness-2015 What You Don’t Know Can Hurt You Professor SaaidElhadad
What You Don’t Know Can Hurt You Professor SaaidElhadad
Links & Resources https://haveibeenpwned.com/ https://www.virustotal.com/ https://support.symantec.com/ https://www.opswat.com/search?q=destructive+malware https://www.spokeo.com/ https://sourceforge.net/ https://www.libreoffice.org/ http://hackertyper.com/ https://www.ubuntu.com/ https://informationisbeautiful.net/ https://wigle.net/ http://ui.linksys.com/ https://www.netacad.com/courses/packet-tracer https://www.veracrypt.fr/en/Home.html What You Don’t Know Can Hurt You Professor SaaidElhadad
Links & Resources http://www.zdelete.com/zdcleaner.htm https://www.bleachbit.org/ https://www.slavasoft.com/hashcalc/ https://www.gpg4win.org/ https://www.openstego.com/ https://www.microsoft.com/en-us/download/details.aspx?id=19892 https://www.tenable.com/products/nessus/nessus-professional http://www.openvas.org/4:27 https://www.youtube.com/watch?v=opRMrEfAIiI https://www.metageek.com/products/inssider/ https://docs.microsoft.com/en-us/sysinternals/dd https://us.norton.com/internetsecurity-how-to-how-can-i-access-the-deep-web.html https://archives.fbi.gov/archives/news/speeches/combating-threats-in-the-cyber-world-outsmarting-terrorists-hackers-and-spies https://www.mcafee.com/enterprise/en-us/solutions/lp/economics-cybercrime.html https://www.visualcapitalist.com/wp-content/uploads/2018/03/who-owns-who.html https://www.lockheedmartin.com/en-us/capabilities/cyber/cyber-kill-chain.html What You Don’t Know Can Hurt You Professor SaaidElhadad