ISSEC.1 - IS Security Threats

UBC COMM 335

2 Oct 202027:42

Summary

TLDRThis video explores critical aspects of information security, highlighting both accidental and deliberate threats to data. It covers various cyberattacks such as phishing, malware, ransomware, and social engineering, along with real-world examples of security breaches. The importance of implementing a comprehensive security life cycle—assessing risks, developing policies, and using technology tools—is emphasized. It also discusses the consequences of poor security, including financial loss and reputational damage. The video encourages proactive measures to protect sensitive information and prevent cyber threats.

Takeaways

😀 Social engineering involves manipulating people into revealing confidential information or performing actions that compromise security.
😀 Posing is a tactic where attackers create fake businesses to extract sensitive data from individuals or organizations.
😀 URL farming and hijacking involve redirecting users to malicious websites through slight changes in the URL to deceive them.
😀 Scavenging involves stealing discarded items like mail or storage devices in search of confidential information.
😀 Shoulder surfing refers to observing someone's screen or actions in order to gain unauthorized access to sensitive data.
😀 Skimming is a method of stealing credit card information by using a device to capture the data from the card’s magnetic strip.
😀 Logic bombs are malicious programs that activate under specific conditions, like when an employee is terminated or when a bitcoin address is copied.
😀 Spyware secretly collects data and can hijack a user's browser to monitor activity or steal sensitive information.
😀 Keyloggers record a user's keystrokes to gather sensitive information like passwords and account numbers.
😀 Ransomware encrypts a user's files and demands payment (typically in Bitcoin) to restore access to the data, often with irreversible consequences.

Q & A

What is the primary purpose of posing in cybersecurity?
-Posing refers to creating a fake business or identity to obtain sensitive information, often by tricking individuals into revealing personal or confidential data.
How does 'farming' differ from URL hijacking?
-'Farming' involves redirecting users to a spoofed website, often by altering the URL slightly to trick them into entering sensitive data. URL hijacking, on the other hand, involves registering a domain that looks similar to a legitimate one (like google.com without the 'e') to deceive users into visiting a malicious site.
What is the purpose of 'scavenging' in cybersecurity threats?
-Scavenging refers to searching through discarded items such as trash, old storage devices, or stolen mail to find sensitive information like passwords or bitcoin addresses that could be used for malicious purposes.
What is shoulder surfing and how is it dangerous?
-Shoulder surfing is the act of looking over someone's shoulder to observe confidential information, like passwords or bank account details. This practice can lead to identity theft or unauthorized access to sensitive accounts.
What is a logic bomb in the context of cybersecurity?
-A logic bomb is a type of malware that triggers specific harmful actions on a computer when a predefined event occurs, such as a user being terminated from their job or when a bitcoin address is copied to the clipboard, redirecting funds to a hacker's account.
What are the risks of using tracking cookies on the internet?
-Tracking cookies collect and monitor users' browsing habits, often for marketing or malicious purposes. These cookies can compromise privacy by tracking sensitive personal information and online behavior without user consent.
How does ransomware typically work and what makes it so dangerous?
-Ransomware encrypts files on a victim's computer and demands payment (often in Bitcoin) to decrypt the files. It is particularly dangerous because the encryption is usually very strong, making it nearly impossible to recover the files without paying the ransom or having a secure backup.
What is the difference between phishing and spear phishing?
-Phishing is a broad, generic attempt to deceive random individuals into revealing sensitive information through fake emails or websites. Spear phishing, on the other hand, is a targeted attack where the hacker impersonates someone the victim trusts, such as a bank or coworker, to increase the likelihood of success.
What are whaling attacks and who are their typical targets?
-Whaling attacks are a type of spear phishing that specifically targets high-ranking executives or individuals with access to sensitive company information. These attacks are highly personalized to exploit the trust and authority of the victim.
How does social engineering manipulate human behavior to compromise security?
-Social engineering involves manipulating individuals into revealing confidential information or performing actions that compromise security, such as impersonating trusted entities or creating fake situations. One example is when attackers pose as IT personnel and trick employees into disclosing passwords by changing contact information or phone numbers in an office environment.