Enterprise Computing Preliminary Course Unit 3: Principals Of Cybersecurity

00:00

Enterprise Computing preliminary course

00:03

unit 3 principles of cyber security so

00:06

as the name suggests here now we're

00:08

looking at Enterprise systems in the

00:10

context of they have lots of information

00:12

a lot of user accounts signed up to it

00:14

we need measures in place to protect

00:17

that data and that's what cyber security

00:18

is all about and so what we're going to

00:20

look at this unit is the different

00:21

principles that can help make our

00:23

systems more secure but also identify

00:25

vulnerabilities that might leave our

00:27

system open to people potentially

00:29

accessing information and identify them

00:32

so we can put structures in place in

00:34

order to protect that data so the first

00:36

area of this is obviously understand is

00:38

in privacy and security privacy being

00:40

that information about people is private

00:43

it is their information they voluntarily

00:46

given it up to a system but they don't

00:48

want everyone seeing it okay and there

00:50

are laws in place that support that and

00:52

then the security side of it are the

00:54

measures we put in place to protect that

00:56

privacy different types of things such

00:58

as passwords Biometrics okay okay a

01:01

two-factor authentication all of that is

01:03

put in place to keep data private on

01:05

systems that are online

01:08

so going through this the first areas

01:10

that of privacy trust and freedom

01:12

information so we've said privacy

01:14

relates to being acknowledging that

01:17

information related to people is

01:19

sensitive and we've got to keep that

01:20

private

01:22

trust relates to the fact that people

01:23

trust our system that when they upload

01:25

their data to our system that things

01:28

will be in place to protect that data

01:30

those aforementioned security areas and

01:32

then we have this notion of freedom

01:34

information and this is a legislation

01:35

that's in place that means that

01:37

basically when someone puts their data

01:39

on the system they have a right to see

01:42

data that is about them on a system now

01:44

it might be directly or indirectly that

01:47

data has gone into a system such as

01:48

governments record specific data about

01:51

people when they sign up for services

01:52

such as their driver's license and

01:55

Medicare and even our criminal records

01:57

data is kept about people on systems

02:00

freedom information means people have a

02:02

right to essentially check those systems

02:05

to ensure that the data's thought about

02:06

them is correct all right and thus

02:09

supporting the Integrity of that system

02:11

that has correct information about the

02:13

individual but also allowing people to

02:15

know what information is being stored

02:17

about them

02:18

the next area we'll look at is the

02:20

access storage and permissions related

02:23

to data on systems just because this

02:25

data has been uploaded to a specific

02:27

enterprise system doesn't mean everyone

02:30

within the Enterprise has that right to

02:32

view the data and that's why we put in

02:35

place access rights and permissions okay

02:38

based on users logins within that

02:41

organization they would be given

02:43

specific access rights to different

02:44

types of data usually pertaining to what

02:47

is their job within the organization

02:49

some people would have full rights and

02:51

can read everything but in reality

02:53

people only need rights to data that

02:55

pertain to their day-to-day work which

02:57

means they're not looking at the

02:59

personal information of every employee

03:01

or user that accesses this system and

03:04

permissions need to be in place because

03:06

the smaller the circle of people who

03:08

have access to data the smaller the

03:10

vulnerabilities because in many cases

03:12

people are the ones that open up

03:14

vulnerabilities that hackers get into

03:16

systems so we need our permissions in

03:18

place to protect the privacy of the

03:20

users that have uploaded the information

03:21

but also reduce the vulnerabilities

03:24

the next area is people acknowledging

03:26

they need to maintain their own data

03:28

privacy be careful what they upload okay

03:31

if you've put something online you're

03:33

pretty much saying here look at my

03:35

information so we need to be responsive

03:37

to this and understand and mindful that

03:40

I'm careful in what I put out there

03:42

online and data that is secure I'm

03:45

putting it in Secure places where I know

03:48

where the security is if it has to be in

03:49

digital form I'm keeping it maybe only

03:51

stored locally on my system as opposed

03:53

to online or at an offline system

03:55

something's in place but I'm conscious

03:57

that I need to protect my own privacy as

04:00

well

04:01

the next area is that of the

04:03

vulnerabilities okay and specifically

04:05

through social networking okay and how

04:08

we are at the mercy sometimes of the

04:10

social network and if someone's

04:12

infiltrated that social network we can

04:15

put ourselves in a dangerous situation

04:16

where unknowingly we're giving data to a

04:19

malicious party so it could be through

04:21

account access when I log in and I enter

04:23

in my login and password if someone's

04:25

there and um they're viewing that data

04:27

they'll get my login details and they

04:30

can potentially use it and if my

04:32

passwords are the same across multiple

04:33

platforms they'll know it

04:35

if the account is behaving funny or has

04:38

been compromised that may be confusing

04:40

and maybe cause me to give data

04:43

unknowingly to a specific malicious

04:45

party okay so we're really counting on

04:48

the actual platform that I'm using that

04:50

they have Security in place and

04:52

different platforms have different

04:53

Securities got to remember these

04:55

platforms are also internationally based

04:57

okay so different countries have

04:59

different rules although they are bound

05:00

by International laws but they've got

05:02

different National laws themselves and

05:04

so that provides a gray area with a

05:06

degree of security and you've really got

05:07

to trust the networks you can meet your

05:09

data to in that they'll take your

05:10

securities uh seriously a result of this

05:13

can be if people get your data it can

05:16

lead to identity theft so if once they

05:18

get your bank account data is if you

05:19

write your account details to purchase

05:22

an item from an unreliable website bang

05:24

they've got your bank number your uh

05:26

your name and your CVC they can use that

05:28

data then to purchase things for their

05:31

own behalf on other websites using your

05:33

money okay and that's what happens with

05:35

identity theft so you've got to only

05:36

purchase from trusted websites then we

05:39

have things such as fishing where people

05:41

send you an email saying their your

05:43

website your trusted uh platform your

05:46

social media or your bank but it's

05:48

taking you to a fake website that

05:50

emulates the real website and then you

05:52

put in your real login and password get

05:54

nowhere but on their end they got your

05:56

login in password they go to the real

05:58

site and start using your information

06:00

and then also we've got something that's

06:02

risen in the last few years known as an

06:04

evil twin this is a wireless access

06:06

point that is legitimate it's set up and

06:09

it does work for users to connect to but

06:11

the people that have set it up are

06:13

monitoring what you're doing and they're

06:15

registering your logins passwords and uh

06:18

sensitive information that you're

06:19

putting in for the purposes of identity

06:21

theft and gain your data to do malicious

06:24

things with it so some really cool

06:27

stuffs out there and we've got to be

06:28

aware of these vulnerabilities

06:30

now the next area then is what are the

06:33

attributes of when a cyber security

06:34

breach takes place well firstly this

06:37

confidentially of information has it

06:39

been retained did they get into

06:41

information did they see things if they

06:43

did we need to change things such as our

06:45

passwords so that the people that know

06:48

our passwords it's changed now they

06:50

can't get into our things so we've got

06:52

to know that and we've got to let our

06:54

users know that our system's been

06:55

compromised okay so they can do changes

06:58

on their end too but ensuring that

07:00

information is stayed confidential

07:03

we've also got to check the Integrity of

07:05

our information on our system did the

07:07

malicious party that got into our system

07:09

change any of our information we need to

07:12

go through it to see if anything's

07:13

changed because our users on their end

07:14

who rely on our information may start

07:16

getting incorrect or offensive data that

07:19

could be damaging to our Enterprise

07:22

some people as well when they hack into

07:24

a system might try to take a system out

07:26

from functioning so that's when the

07:28

availability of information gets

07:30

affected okay there are things such as

07:32

ddosing where they overwhelm the website

07:34

causing it to crash okay and that takes

07:37

information offline so is our

07:39

information still available to ourselves

07:40

and to our users and then finally bring

07:43

it home back to those privacy

07:45

implications has people's privacy been

07:47

breached what other measures they need

07:49

to go through in order to protect their

07:51

data or change their data so that they

07:53

stay secure in their own way

07:55

all right and then into the next area

07:58

what are things that specifically get

08:00

exploited the vulnerabilities during a

08:03

breach our data gets exploited that's

08:05

stored in our system

08:06

people's data about themselves gets

08:09

exploited okay when the data's being

08:11

accessed in a breach the processes of

08:13

our organization and how we do tasks get

08:16

viewed and people know our inner

08:18

workings of our system so they may need

08:20

to be changed or modified so that these

08:22

people can't see that vulnerability

08:24

again to get into our system and then

08:26

obviously what technology are we using

08:27

gets exploited okay our IP addresses and

08:30

devices okay provide an opening and so

08:33

modifications may need to be made there

08:35

okay and obviously updated to prevent

08:37

further exploitation

08:39

okay the next area is security awareness

08:42

okay that we are aware that we need to

08:44

have security measures in place in order

08:46

to protect data so the first area is

08:49

knowing the cyber crime threat so

08:51

traditional hacking where people try to

08:52

get into our system uh through um unfair

08:56

uh authorized means through using IP

08:58

addresses and different Nets to get

09:00

through and fake away into our system

09:03

sometimes hacking can be simple as they

09:06

know a user's password and they just got

09:08

in that way so it can even just be an

09:10

open door and they use it that way bang

09:11

they're in the system but it's pretty

09:13

much their unauthorized getting into a

09:14

system we've already mentioned phishing

09:16

before where we send out an email and it

09:19

takes you to a pretend site that looks

09:21

like your authentic platform that you do

09:22

actually use and you give information

09:24

willingly but then that's also evolved

09:26

into a new thing called smishing which

09:28

is the same thing but instead of email

09:29

it's using SMS so they're sending out

09:31

links through SMS saying oh your account

09:34

has been compromised click on this link

09:35

to fix up your details and through SMS

09:38

they click on it and then once again you

09:39

give your own details giving away your

09:41

information

09:42

this is all a part of scamming there are

09:44

many types of scamming too as well so

09:46

it's not always through phishing and

09:47

smashing could just be there saying

09:49

something like um these days it's Common

09:51

People message uh out saying oh mum and

09:54

dad I need help can you please wire me

09:56

some money but it's actually not from

09:58

their kids okay and they've clicked on

10:00

that link and they've willingly sent

10:01

money to this unauthorized party

10:03

thinking that it was their children so

10:06

there's many different scams out there

10:07

that are tricking people into believing

10:10

it's something authentic and then we

10:12

have the whole AI level the Bots and the

10:14

botnets trying to get into systems okay

10:17

and they're Relentless because they're

10:18

technology okay and obviously mapped

10:20

with AI trying to get through the

10:22

vulnerabilities of a system

10:24

finally as I mentioned a bit before one

10:26

of the biggest openings to getting to a

10:28

system can be employees within

10:30

Enterprise themselves causing

10:31

vulnerability forgetting to log out of

10:34

systems putting their passwords into

10:37

phishing websites or some sort of scam

10:39

giving away their information okay thus

10:42

leaving an opening for people to get

10:44

into a system and hack it in order to

10:46

conduct cyber crime so they are some of

10:50

the actual threats to Enterprise systems

10:53

now on the other side we've got to think

10:56

of security as an actual type of almost

10:59

like health and safety where there's a

11:01

risk management procedure in place so

11:03

that we can upskill the people within

11:05

our organization in what to do and have

11:08

an actual procedure to protect our

11:10

system so a foundation of this is our

11:12

staff need to have ongoing training so

11:14

that they know of potential threats and

11:17

how they can cause vulnerabilities okay

11:19

train them in how in cyber security so

11:22

that they use systems safely and prevent

11:23

these vulnerabilities

11:25

okay through training they learn about

11:27

identifying and managing these

11:28

vulnerabilities what things can they do

11:30

so changing their password regularly

11:32

ensuring they log out of systems not

11:34

sharing their information that kind of

11:37

stuff in order to protect the data of

11:38

the system when a breach takes place how

11:41

to assess what was the impact what got

11:44

viewed who do we need to contact what

11:46

data on our end needs to change

11:48

and then with that controlling the

11:51

damage and loss of data reverting to

11:53

backups modifying things that did get

11:55

changed letting our users know what

11:57

happens so we can hopefully keep a

11:59

decent Public Image even though we did

12:01

have a security Beach that's a worst

12:03

case scenario and we don't want to get

12:04

to that level

12:06

the next area is that of assessing the

12:09

Cyber risk and implementing risk

12:11

management so looking at the internal

12:14

and external implications So based on

12:16

the actual system itself has the system

12:18

been affected internally with its

12:21

structures functioning and employees of

12:23

the organization but also those outside

12:25

parties have our users been impacted has

12:27

the environment been impacted okay what

12:29

is the threat landscape out there of

12:31

what took place and how does it impact

12:34

our system okay and which leads to the

12:36

next Point what is the impact of the

12:38

actual exposure okay has data been

12:40

leaked are we being held for ransom

12:42

which is quite common out there these

12:45

days and they where they might link all

12:47

our data because they want a payment

12:48

being made to them okay and then we've

12:52

got to wave that up in what's the

12:53

likelihood our system will be exploited

12:55

and all our data will be out there this

12:58

is why it is so important we are

13:00

managing cyber security to have these

13:01

measures in place these things do happen

13:03

and it can destroy a business okay if

13:06

they leak data no one's going to trust

13:08

that business again it can lead to them

13:10

going out of business altogether

13:12

okay within our actual system then we

13:16

have the actual protection methods how

13:18

do we protect data with our it first is

13:20

the notion of isolation when malicious

13:22

software gets caught by antivirus

13:23

software it puts it into isolation for

13:26

the actual administrators to review is

13:28

this actual software malicious in many

13:31

cases it might be based on its virus

13:33

signatures and thus before it even gets

13:35

to the system we can eliminate it and

13:37

delete it so it didn't impact on the

13:39

wider system there

13:40

physical security within our

13:42

organization that data is stored within

13:45

locked rooms okay we have cameras in

13:48

place and Technology physical components

13:50

that protect the actual data on our

13:52

systems other backup locations physical

13:55

hard drives and network locations and

13:57

servers for storing data in multiple

14:00

places in case we do lose data and then

14:02

we have those network access methods of

14:04

Biometrics checking people's biology

14:06

such as their facial recognition scans

14:09

and thumb prints give them access to a

14:10

system as well as passwords for the

14:12

typing in of strings of characters that

14:14

people use to identify themselves in

14:16

conjunction with their logins the use of

14:19

encryption for scrambling data during

14:20

transmission obviously done prior to

14:22

transmission so that if it is in

14:24

transmission gets intercepted it comes

14:26

up scrambled but the receiver on the

14:28

other end of the data has the encryption

14:30

key to revert that symbol scrambled data

14:33

back into readable form firewalls that

14:36

check data coming in from various

14:38

sources and if it's an untrusted sources

14:40

it will block the entry of that data

14:41

into the system the use of multi-factor

14:44

authentication which is very big at the

14:45

moment which means you log into a system

14:47

and then once you've logged in as it

14:49

says multi-factor a secondary alert gets

14:52

sent out to that user for them to

14:54

authenticate themselves again which may

14:56

come through either SMS or through their

14:58

email a message saying you're trying to

15:00

log into this system here's a

15:01

verification code enter this now and

15:04

then they've used another way to get

15:06

into the system as well the hence why

15:07

it's multi-factor they've used their

15:09

pass login and password and then they've

15:11

used in the pin prompt that was sent to

15:13

their email or SMS gaining the access to

15:15

the system

15:16

our use of backup to protect data from

15:19

loss okay that we have multiple servers

15:21

and offline servers for storing data

15:24

that way if our main servers go down we

15:26

can recover the data from our backed up

15:28

sources to keep the sync the system

15:30

functioning and as mentioned before the

15:33

use of antivirus and anti-malware

15:35

software which keeps up to date with

15:37

specific virus signatures and common

15:40

threats out there and then through its

15:42

catalog is able to intercept them and

15:44

put them into isolation when that data

15:46

tries to infiltrate the network

15:48

the final areas of cyberlore and ethics

15:51

and with that we obviously are looking

15:53

at the impact of cyber breaches and I

15:54

said before it can lead to a company

15:56

going out of business for these reasons

15:57

the fact that Financial loss it costs

16:00

money they could steal money from the

16:01

organization or hold them to Ransom the

16:04

reputational damage which is sometimes

16:05

even worse in that the public know that

16:08

this business was the victim of a Cyber

16:10

attack and do I trust my data with this

16:12

business okay it leads to massive

16:15

disruptions in work especially in areas

16:17

where the system's either been taken

16:19

down or you need to go through all your

16:21

data and assess the damage level the

16:23

Cyber threat which takes away from your

16:25

main business and isolates certain uh

16:28

data that people need to use as a part

16:30

of their jobs okay so it brings work to

16:33

a halt which obviously costs money in

16:35

the long term as well and the legal and

16:37

Regulatory ramifications you've got to

16:40

say uh commit it to the government that

16:42

we did have a cyber breach and you've

16:44

got to comply with what measures are are

16:47

known for Less your users know that you

16:50

didn't have that cyber breach and

16:51

telling them the regulations that they

16:53

should need to follow to ensure that

16:55

their data is safe or what passwords

16:56

they may need to change so it says

16:58

structures that need to be followed in

17:00

to ensure that all parties are safe not

17:02

just the Enterprise itself but all users

17:04

suppliers other organizations are aware

17:06

that you had a data breach data was

17:08

potentially leaked and giving them

17:10

advice on what they need to do to keep

17:12

their own data safe because it has been

17:14

infiltrated through your system it's not

17:16

nice and a business does not want to go

17:18

through this

17:19

the next areas of specific laws and

17:21

legislation laws exist at a state

17:23

federal and international level and one

17:25

of the most common laws known as the

17:26

Privacy Act 1988 okay as well as I

17:29

mentioned before the Freedom of

17:30

Information Act Two which obviously

17:32

highlights how businesses need to take

17:34

the acquisition and storage of people's

17:36

data seriously and have these cyber

17:38

security measures in place to ensure

17:40

that that data does stay safe but then

17:42

also knowing too who can view data

17:44

putting access rights and permissions on

17:46

the data so it's only being used for

17:48

specific purposes but people need to

17:49

access that data all of that is bound by

17:51

law and we need to follow that and then

17:54

the final area is a knowledge of current

17:56

and emerging cyber crime threats okay

17:59

and we are in an era where this is a

18:01

booming industry of cyber security

18:02

because there are so many cyber threats

18:04

out there okay there have been ones that

18:06

have infiltrated Banks Health Systems uh

18:09

gaming platforms and their online stores

18:11

many have happened in previous years

18:13

with people's data being exposed so

18:16

we've learned through seeing what our

18:18

current ones happening by having a

18:20

knowledge understanding of current

18:21

threats hopefully we can put measures in

18:23

place to protect ourselves against it if

18:25

we are going to go into that industry

18:26

and Enterprises can protect themselves

18:28

so I hope this video has given you

18:30

understanding of this third unit of the

18:31

preliminary course of principles of

18:33

cyber security and really it's so

18:35

important that we protect our systems

18:36

and why it is so important because

18:38

really it could mean the life and death

18:40

of an Enterprise if they can or cannot

18:43

protect the data of the users who

18:45

interact with their systems