...1 A .It is important for a company to understand the threat environment because company should be able to defend themselves and protect their assets from the threat environment and safe themselves from the attacks. 2 B. Confidentiality, Integrity, Availability 3 C. Compromises on successful attacks breaches are synonyms of incidents. 4 D. incident is a successful attack ie threat plus successful attempt. 5 E. Counter measures are the tools used to stop attacks. 6 F. Synonyms safeguards, protections and controls. 7 G. the goal of the counter measures safeguard protect and control company or firm’s assets. 8 H.The goal of the counter measure is to protect safeguard and control. 9 I. Types of Countermeasures preventive, detective and corrective. This assignment is part 1 of 3 of the Course Project. The assignment is to create the Project Synopsis/Overview Statement. Do note, this is a 'formal' document. It may contain the following: * The name of the Project * The Sponsor/Customer/Vendor/ . . . . (the major Stakeholders who would have benefited from the Project * The Scope of Work, Requirements etc. * Constraints such as Cost, Time, Quality etc. that have been imposed * Criteria to determine the success or failure of the Project * Any other details that are important to introduce the Project * Any other details that are of relevance to help plan and execute the Project * etc Having said that, here is a possible...
Words: 1819 - Pages: 8
...Web Server Application Attacks Brooks Gunn Professor Nyeanchi CIS 502 July 10, 2013 Web Server Application Attacks Many organizations have begun to use web applications instead of client/server or distributed applications. These applications has provided organizations with better network performance, lower cost of ownership, thinner clients, and a way for any user to access the application. We applications significantly reduce the number of software programs that must be installed and maintained in end user workstations (Gregory 2010). Web applications are becoming a primary target for cyber criminals and hackers. They have become major targets because of the enormous amounts of data being shared through these applications and they are so often used to manage valuable information. Some criminals simply just want vandalize and cause harm to operations. There are several different types of web application attacks. Directory traversal, buffer overflows, and SQL injections are three of the more common attacks. One of the most common attacks on web based applications is directory traversal. This attack’s main purpose is the have an application access a computer file that is not intended to be accessible. It is a form of HTTP exploit in which the hacker will use the software on a Web server to access data in a directory other than the server’s root directory. The hacker could possibly execute commands...
Words: 1620 - Pages: 7
...I would like to thank Richboy and Ete Akumagba for their guidance and for proof reading this report. I would like to thank my family for their support and love. ii Abstract This era of explosive usage of networks have seen the rise of several opportunities and possibilities in the IT sector. Unfortunately, cybercrime is also on the rise with several forms of attack including, but not limited to botnet attacks. A Botnet can simply be seen as a network of compromised set of systems that can be controlled by an attacker. These systems are able to take malicious actions as needed by the attacker without the consent of the device owner and can cause havoc. This paper is the first part of a two-part report and discusses on several reportedly known botnets and describes how they work and their mode of infection. Several historic attacks and the reported damage have been given to give a good picture and raise the bar on the capabilities of botnets. Several existing tools have been considered and examined which are useful for detecting and terminating botnets. You would find that each tool has its own detection strategy, which may have an advantage on some end than others. iii Table of Contents Declaration ........................................................................................................................................... i Acknowledgements ..............................................................................................
Words: 13171 - Pages: 53
...The Workings of Trojan Horse Viruses Name School In Partial Fulfillment of the requirements for Class Professor Due Date Abstract Since the beginning of computer security one form of malware has always been a thorn in everyone’s side, it is one of the oldest and most commonly misunderstood malware and people hardly ever see it coming. It is the Trojan horse; a piece of programming code disguised as another program or file. This paper discusses how Trojans function, the damage Trojans cause and how Trojans can be prevented. The Workings of Trojan Horse Viruses What is a Trojan Horse Virus? Computer Trojans emerged in the mid-1980’s as a way to infect software and distribute the infected payload to different systems without raising suspicion. Trojans are not like viruses or worms per se, Trojans are malicious and cause damage but they are not self-replicating and don’t reproduce by infecting other files. Hackers have taken advantage of human nature with persuading the user to install a Trojan for the hacker by means of deception (Greenberg, 2011). Trojans Spread by users, the Trojan is latched onto an enticing program like a popular game, screen saver or any other program the user finds legitimate. Trojans usually open a covert backdoor into a targets computer or server, once installed the Trojan gives a hacker access to man operations including: Data theft, crashing the victim’s system, installing key loggers, and viewing the user’s screen (Greenberg...
Words: 1672 - Pages: 7
...Report#1 Denial of Service as a Service - Asymmetrical Warfare at Its Finest Introduction Denial of service attack becomes a major problem against computers connected to the Internet. DoS attacks involves exploiting any bugs in such an operating system or any existed vulnerabilities in TCP/IP implementation. Tracking this attack becomes very serious problem, because the attacker uses many machines in order to lunch this kind of attack. On the other hand, since the attackers are human being at least one mistake will occurred by them, once the investigators discover such mistake will be very helpful to track such attacker. The attacker goal is to prevent the legitimate users from accessing their resources by taking down such a server. This report will discuss “Denial of Service as a Service Asymmetrical Warfare at Its Finest” which was given by Robert Masse, CEO of Swipe Identity Company. Robert Masse has explained the process of capturing the attacker who performed Denial of server attack (DoS) against mid-sized internet server provider (ISP). Actually, the attacker was working at Mid-sized ISP, which is considered to be the largest ISP in Canada. In addition, the attacker was one of the employees who’s working at the targeted ISP, which make the investigation process very difficult to identify him or to stop this attack. On November 25th 2012 the ISP received this attack for one week and then eventually escalate quickly. As a result, this attack cause to shut down the emergency...
Words: 3055 - Pages: 13
...Linda Fernandez Chap 2 Review Questions 1. Why is information security a management problem? What can management do that technology cannot? Both management and IT management are responsible for the protection necessary to secure information. They are the ones who make the decisions regarding the appropriate security system and what level of security will work for the system. 2. Why is data the most important asset an organization possesses? What other assets in the organization require protection? Data is important because it keeps a record of all changes and activity. Without data, the company or organization may fail because they have no records, and therefore be of no good use. 3. Which management groups are responsible for implementing information security to protect the organizations’ ability to function? General Management and IT Management are responsible because it has to be set up for that specific system. If one part fails, then they are the ones to fix it and make it usable 4. Has the implementation of networking technology created more or less risk for businesses that use information technology? Why? Networking has caused more risk for businesses using information technology because it made it much easier for attackers to breach the security systems. They are even more of a target with the internet connection. 5. What is information extortion? Describe how such an attack can cause losses, using an example not found in the text. ...
Words: 1293 - Pages: 6
...Product Review This section consists of the types of Anti-distributed denial-of-service (DDoS) attack software and services that are available in the market. Here, we review two big companies providing anti DDoS services to large organizations and 2 different types of software for smaller scale uses. Each is access carefully before comparing them based on their specifications and ability to fend off DDoS. Defense.net Defense.net was founded by Barrett Lyon. 10 years ago, he created the Distributed Denial of Service (DDoS) attack mitigation industry. Defense.net DDoS Frontline protects users from DDoS attacks. It has a massive cloud based DDoS mitigation service which allows them to absorb even the most aggressive DDoS attacks. They allow only the legitimate traffic through the website after scrubbing the bad traffics away. Defense.net has very large and new redundant data centers with the latest equipment and tools to fend off DDoS attacks. Below listed are the features of Defense.net DDoS Frontline. Fastest Time to Mitigation With the DefenseActioner™ technology, they are able to determine the good and bad of each packet of traffic by intercepting them before routing them to the most appropriate of their large number of different mitigation solutions. Within the DefenseD™ network, multi-layer attacks are broken down into their components for more thorough mitigation. They are able to mitigate most attacking vectors. These attacking vectors are the White List, Black List...
Words: 771 - Pages: 4
...The solution is redundancy Though many of the outages described above were caused by targeted DDoS attacks, focusing on security as a solution is misguided. No matter how robust a company’s security measures, future attacks are inevitable. Rather, the solution to thwarting attacks like these and maintaining continuous service for customers is to work with multiple DNS providers to build up resiliency and redundancy. The simplest step toward establishing redundancy is using multiple name servers. Many DNS providers already encourage this, usually suggesting that four to six separate name servers be configured for each domain name. This ensures that if one of the name servers fails, the next one on the list is tried, and so on until a connection can be made. However, though this kind of name server redundancy is vital, a company is far more likely to survive an external attack if it not only uses redundant name servers but also redundant DNS providers. Setting up a secondary DNS improves the likelihood of a functioning domain name, specifically in situations like DDoS attacks when entire DNS providers are targeted indiscriminately, shutting down all of their name servers. For example, if a company’s domain name is configured to four different DNS name servers but all from the same managed provider, and that DNS provider is subjected to a major DDoS attack, then the queries cycle through servers 1-4 with no luck, because all those servers are down. However, if the company also...
Words: 753 - Pages: 4
...Security Evaluation Matthew Williams CMGT/441 1/21/2013 Shivie Bhagan Security Evaluation My evaluation is of the paper “Why Information Security is Hard” by Ross Anderson. This paper is an evaluation that covers an economic perspective of information security in the financial industry throughout the world. Simply summed up by the statement, “The more people use a typical network, the more valuable it becomes. The more people use the phone system - or the Internet - more people there are to talk to and so the more useful it is to each user.” (Anderson, 2001) In the first paragraph Denial of Service (DOS) attacks are described as one of the issues presented by the current security incentive structure. “As an example presented the author states, “While individual computer users might be happy to spend $100 on anti-virus software to protect themselves against attack, they are unlikely to spend even $1 on software to prevent their machines being used to attack Amazon or Microsoft.” (Anderson, 2001) The statement accurately describes what I’d like to call a failure to respond to an indirect threat. Simply because a user is not directly being attacked most assume they are safe and that the statistics are in their favor. Unfortunately, this is rarely the case, like the great library in Alexandria which was destroyed and affects us all even today though indirectly. In a typical connection, the user sends a message asking the server to authenticate it. The server returns the...
Words: 495 - Pages: 2
...DCIT 65 - Web Development Botnet Edrilyn R. Fortuno BS IT 3 - 1 February 7, 2013 Botnet A botnet is a collection of computers that connected to the internet that interact to accomplish some distributed task. A bot is a type of malware that enables a network attacker to gain control over a computer and utilize it to launch third party attacks on the Internet. Software agents, or robots, that run autonomously and automatically. A group of computers running a computer application controlled and manipulated only by the owner or the software source. In the past, the concept of bots did not include harmful behavior by default.Bots can be very bene cial programs when they are designed to assist a human user, either by automating a simple task, or by simplifying a user's control over various programs or systems. Botnets are used for malicious activity like distributed denial of service attacks, identity theft, sending spams and phishing attacks. Typically botnets used for illegal purposes. Botnets are seen to be one of the main sources of malicious activity. Rapidly growing botnets and new methods for spreading malicious codes and launching attacks. Bots sneak into a persons computer in many ways. Bots often spread themselves across the Internet by searching for vulnerable, unprotected computers to infect. When they nd an exposed computer, they quickly infect the machine and then report back to their master. Their goal is then to stay hidden until they are instructed to carry...
Words: 1041 - Pages: 5
...Chapter 2 Review Questions 1. Why is information security a management problem? What can management do that technology cannot? Managing information security has more to do with policy and enforcement rather than technology. Management must address information security in terms of business impact and the cost. 2. Why is data the most important asset an organization possesses? What other assets in the organization require protect? Data in an organization represents its transaction records and its ability to deliver to its customer. Without this the organization would not be able to carry out day to day work. 3. Which management groups are responsible for implementing information security to protect the organization’s ability to function? Both management and IT management are responsible for implementing security to protect an organizations ability to function. 4. Has the implementation of networking technology created more or less risk for businesses that use information technology? Why? Networking is usually considered to have created more risk for businesses that use information security. The reason is that potential attackers have reader access to the information system. 5. What is information extortion? Describe how such an attack can cause losses, using an example not found in the text Information extortion is the act of an attacker or trusted insider who steals information from a computer system and demand compensation for its return or for an agreement...
Words: 1152 - Pages: 5
...Technology innovations have been a major source of improvement in the Energy & Resources sector with efficiency and cost control. Over the years, this growth has been enormous and evident. Significant efforts have been deployed from time to time on gaining insight into how learning on energy technologies has been acquired. Information technology (IT) has revolutionized to such an extent that it has evolved into web-based energy information with control systems. Author Capehart in his book states that “web-based systems can provide more access, flexibility, and more interoperability; and they can provide these benefits over a wider area than conventional control systems can” (Capehart, 2004, p. 9). The book gives us an insight on how the IT wave can roll over anything ranging from buildings, campuses, manufacturing plants, schools, hospitals making them more productive and cost-effective in operation. The author further explains how IT finds its usage in energy based systems called the energy information system (EIS). EIS is broad range of web-based tools that let users measure, monitor and quantify energy usage of their facilities and help them with energy conservation opportunities. The author also tells us about the various types of EIS systems namely: Basic Energy Information System (Basic EIS), Demand Response systems (DRS), Enterprise Energy Management (EEM), Web-base Energy Management and Control Systems (Web-EMCS). In another instance the author briefs the energy-saving...
Words: 389 - Pages: 2
...Case Analysis The iPremier Company (A): Denial of service Attack Case 2—2 MIS 606- Management Information Systems 4 December 2012 Summary of the problem The case presents a specific problem that has taken place in iPremier, a Seattle based company that was founded in 1996 by two students from Swathmore College and had become one of a few success web-based commerce, selling luxury, rare, and vintage goods over the Internet. It was exactly on January 12, 2007, when iPremier Web servers were brought to a standstill. The Web site of the company was locked up; neither employees nor customers can access the site due to a distrusted denial-of-service (DDoS) hacker attack. At that time, the company CIO, Bob Turley, who was recently hired, was out of the town on a mission, and that made the situation even worse. The problem was soon spread reaching the CEO! The shocking finding was the outdated emergency procedures. Eventually after 75 minutes the problem was solved and the main champion in my opinion was luck! Unstructured actions were taken to overcome this attack. The corrective action was taken but still iPremier will need to come up with preventive action for similar situations because this might threaten its existence. The technology The case discussed different technologies: distributed denial of service (DDoS) attack, firewall, and information security mainly in case of crisis. DDoS is a type of web attack that seeks to disrupt the normal function...
Words: 1713 - Pages: 7
...THE iPREMIER COMPANY (A): Denial of Service Attack By Robert Austin November 19, 2003 DPDN Brian Dyrud Jennifer Paterson Paul Davidson Lindsay Neal BACKGROUND: iPremier, a Seattle based company, was founded in 1994 by two students from Swathmore College. iPremier had become one of the only success stories of web-based commerce, selling luxury, rare, and vintage goods over the Internet. Most of iPremier’s goods sell for under $200 and the customer buys the products online with his or her credit card. iPremier’s competitive advantage is their flexible return policies which allows the customer to thoroughly check out the product and make a decision to keep the product or return it. The majority of iPremier customers are high end and credit limits are not a problem, which also adds to the competitive advantage of utilizing their entire customer base. During 1999 the company reached a profit of $2.1 million on sales of $32 million. Sales had increased by 50% during the last three years and they were in an upward trend. iPremier’s stock nearly tripled after the company’s Initial Public Offering in 1998 and had continued to grow since the IPO, and eventually the stock tripled again. iPremier was one of the few companies to survive the technical stock recession of 2000. Management at iPremier consisted of young people who had been with the company from the start and a group of experienced managers that were brought in over time as the company grew. IPremier’s...
Words: 3910 - Pages: 16
...required for example, gaming bots and auction-site robots or less commonly in situations where the emulation of human activity is required, for example chat bots. Recently bots have been used for search advertising, such as Google AdSense. (Juusi, 2012) Internet bots are also commonly used in games such as RuneScape, despite the fact that it's not allowed. RuneScape has now known bots as illegal and you will receive a fine of $500-$2,500. Another, more malicious use of bots is the coordination and operation of an automated attack on networked computers, such as a denial-of-service attack by a botnet. Internet bots can also be used to commit click fraud and more recently have seen usage around MMORPG games as computer game bots. A spambot is an internet bot that attempts to spam large amounts of content on the Internet, usually adding advertising links. There are malicious bots and botnets of the following types: 1. Spambots that harvest email addresses from internet forums, contact forms or guestbook pages 2....
Words: 1003 - Pages: 5
