Cyber security awareness
•Download as ODP, PDF•
4 likes•9,256 views
The document discusses cyber security awareness and promotes self-protection techniques. It outlines goals of promoting awareness, discussing how to secure personal information, and providing examples of protection software. It then discusses common security threats like malware, phishing, and social engineering and offers tools and best practices for protecting against them, including using antivirus software, enabling two-step verification, and employing encryption and VPNs when online.
Report
Share
Cyber security awareness
- 1. Cyber Security Awareness Jason Murray TechTalk Live May 7, 2013
- 3. Goals • Promote cyber security awareness • Offer self-protection techniques • Discuss methods to secure personal information • Provide examples of protection software
- 5. 0% 2% 4% 6% 8% 10% 12% 14% Concerns ● Symantec blocked 5.5 billion malware attacks last year – 81% increase over the previous year (computerworld.com) ● Kaspersky detecting 200,000 new/variant malwares per day (kaspersky.com) Position Industry Rate 1 Education 146% 2 Retail & wholesale 104% 3 Health Care 100% 4 Banking & Finance 69% 5 Food & Beverage 58% 6 Government 46% January Malware Encounters Source:Cisco Ratesabove100%reflecthigherthan medianrateofencounter United States 11.52% Japan 3.47% Colombia 2.53% Source:Fortinet France 1.87% Canada 1.74% Received Spam (Top 5 Regions)
- 7. FortiGuard Center ● http://www.fortiguard.com/ ● Live Threat Monitor
- 8. Valuable Content • Identity • SSN • Demographics • Credit Cards • Bank accounts • Intellectual Property • Business plans • Innovational ideas • Marketing campaigns • Thoughts
- 9. Vulnerabilities • Computers • Networks • Systems • Game consoles • Phones • Houses • Cars • GPS systems
- 11. Security Threats • Social Engineering – Facebook – Twitter – LinkedIn
- 12. Security Threats • Phishing Source: APWG
- 13. Security Threats • Phishing From: MICHELLE REILLY [mailto:mreilly@westfieldnjk12.org] Sent: Monday, January 28, 2013 11:21 PM To: employee-web@webmaster.org Subject: Important Technical Web Notice! Important Technical Web Notice! Your mailbox has exceeded one or more size limits set by the administrator. You may not be able to send or receive new messages until the mailbox size is reduced. For more space, please CLICK HERE <http://systemcheck-res.ucoz.com/index1.htm> to upgrade your web mail account. The new secure feature upgrades your inbox to a clean, modern look while maintaining your contacts, passwords, aliases and more. It's fast. It's intuitive. It's email at its best. Thank you for your cooperation. Information and Technology DESK THE MAIL TEAM.
- 14. Security Threats • Malware – Viruses ● Trojans ● Worms ● rootkits – Spyware ● Ransomware ● Adware ● keyloggers
- 15. Trojan Horse
- 16. Security Threats • Man in the Middle Attack • Eavesdropping • Beware of free WiFi • KARMA
- 17. Security Threats • Computer/Flash drive Theft
- 18. Security Threats • Script Kiddies – YouTube – Google
- 19. Passwords • www.howsecureismypassword.net • Avoidance • Personal information • Facebook • 2 step verification • Best Practice
- 20. Penetration Testing • Blackbuntu • BackTrack • Metasploit
- 21. Additional Tools • Hiren’s Boot Disk • Nmap & ZenMap • Cain & Abel • Nessus • AirCrack-ng
- 22. Communication Security • Secure Instant Message • Pidgin • Pidgin OTR Plugin • Prevents eavesdropping
- 23. Communication Security • Anonymization • Hides the true Internet address • Masks the geographical location • Circumvents online tracking technologies • Software • Tor • Bounces on a network of relays
- 24. Communication Security • HTTP vs HTTPS • Encryption • HTTPS • Designed to withstand eavesdropping • Subject to decryption by SSL stripping tools • Wireshark with SSL decryption support • HTTPS Everywhere • FireFox plugin • Chrome plugin
- 25. Website Vulnerabilities • Hacked websites • Hacked advertisements • Cookies • Tracking • Injections • Malware • Redirection
- 26. Communication Security • CyberGhost VPN • Hotspot Shield • SpotFlux
- 27. Mobile Security Android; 69% iOS; 19% Blackberry; 5% Symbian; 3% Windows; 3% Others; 2% Android iOS Blackberry Symbian Windows Others Source: IDC Worldwide Mobile Phone Tracker, February 14, 2013
- 28. Mobile Defense • Lock passwords • Device encryption • Tracking software • Disable WiFi & Bluetooth when not in use • Antivirus software • Remote wipe
- 29. Android • Lookout (tracking) • Prey (tracking) • WhisperCore (disk encryption) • RedPhone (conversation encryption) • TextSecure (text encryption) • Gibberbot (messaging encryption) Source: androidfreeware.net
- 30. Summary
- 32. Resources • NEK Cyber Operations • Androidfreeware.net • IDC World Mobile Phone Tracker • APWG • Wireless Defense • SC magazine • SC education security ebook • Fortiguard