INF4831 INFORMATION SECURITY QUESTIONS AND ANSWERS
A+ GRADED. Buy Quality Materials!
Cyber Attackers
Attackers are individuals or groups who attempt to exploit vulnerability for
personal or financial gain. As we've already seen, they are interested
in everything, from credit cards to product designs!
White, Gray, Black
What are the main types of cyber attackers who'll
try anything to get their hands on our information.
Amateurs or 'script kiddie'
refers to amateur or
inexperienced hackers who use existing
tools or instructions found on the Internet
to launch attacks. Some script kiddies are
just curious, others are trying to
demonstrate their skills and cause harm.
While script kiddies may use basic tools,
their attacks can still have devastating
consequences.
Hackers
This group of attackers break into computer systems or
networks to gain access. Depending on the intent of their
break in, they can be classified as white, gray or black hat
hackers.
White Hat Attackers
break into networks or computer
systems to identify any weaknesses so that the security of
a system or network can be improved. These break-ins are
done with prior permission and any results are reported
back to the owner.
Gray Hat Attackers
may set out to find vulnerabilities in a
system but they will only report their findings to the owners
of a system if doing so coincides with their agenda. Or
they might even publish details about the vulnerability on
the internet so that other attackers can exploit it.
Black Hat Attackers
take advantage of any vulnerability
for illegal personal, financial or political gain.
Organized Hackers
These attackers include organizations of cyber
criminals, hacktivists, terrorists and state-sponsored
hackers. They are usually highly sophisticated and
, organized, and may even provide cybercrime as a
service to other criminals.
Hacktivists
make political statements to create
awareness about issues that are important to them.
State-sponsored attackers gather intelligence or
commit sabotage on behalf of their government.
They are usually highly trained and well-funded and
their attacks are focused on specific goals that are
beneficial to their government.
Internal Threats
What type of threat includes employees, contract staff, or trusted partners
External Threat
What type of threat which can be done by amateur or skilled attackers outside the
organization
Cyberwarfare
is the use of technology to penetrate and
attack another nation's computer systems and networks in an effort to cause
damage or disrupt services, such as shutting down a power grid.
Sign of Times (Stuxnet)
One example of a state-sponsored attack that was
designed not just to hijack targeted computers but to actually cause physical
damage to equipment controlled by computers!
To gather compromised information and/or
defense secrets and To impact another nation's infrastructure
What are the two main purpose of cyberwarfare
June 2010
When was Stuxnet found?
Stuxnet specifically targeted Iran's nuclear enrichment facilities, particularly the
programmable logic controllers (PLCs) that managed centrifuges used in uranium
enrichment.
What did Stuxnet attack?
infected USB drives
How did Stuxnet spread?
unique in its level of sophistication, its use of zero-day vulnerabilities and it also
20x more complicated than typical malwares
What makes Stuxnet unique?
- Invest in cybersecurity
- Conduct regular audits
- Train personnel
- Collaborate with internation partners
What to do in order to protect your country from cyberwarfare?
Cybercriminals
They use many different types of malicious software, or malware, to
carry out their activities.
Malware
A+ GRADED. Buy Quality Materials!
Cyber Attackers
Attackers are individuals or groups who attempt to exploit vulnerability for
personal or financial gain. As we've already seen, they are interested
in everything, from credit cards to product designs!
White, Gray, Black
What are the main types of cyber attackers who'll
try anything to get their hands on our information.
Amateurs or 'script kiddie'
refers to amateur or
inexperienced hackers who use existing
tools or instructions found on the Internet
to launch attacks. Some script kiddies are
just curious, others are trying to
demonstrate their skills and cause harm.
While script kiddies may use basic tools,
their attacks can still have devastating
consequences.
Hackers
This group of attackers break into computer systems or
networks to gain access. Depending on the intent of their
break in, they can be classified as white, gray or black hat
hackers.
White Hat Attackers
break into networks or computer
systems to identify any weaknesses so that the security of
a system or network can be improved. These break-ins are
done with prior permission and any results are reported
back to the owner.
Gray Hat Attackers
may set out to find vulnerabilities in a
system but they will only report their findings to the owners
of a system if doing so coincides with their agenda. Or
they might even publish details about the vulnerability on
the internet so that other attackers can exploit it.
Black Hat Attackers
take advantage of any vulnerability
for illegal personal, financial or political gain.
Organized Hackers
These attackers include organizations of cyber
criminals, hacktivists, terrorists and state-sponsored
hackers. They are usually highly sophisticated and
, organized, and may even provide cybercrime as a
service to other criminals.
Hacktivists
make political statements to create
awareness about issues that are important to them.
State-sponsored attackers gather intelligence or
commit sabotage on behalf of their government.
They are usually highly trained and well-funded and
their attacks are focused on specific goals that are
beneficial to their government.
Internal Threats
What type of threat includes employees, contract staff, or trusted partners
External Threat
What type of threat which can be done by amateur or skilled attackers outside the
organization
Cyberwarfare
is the use of technology to penetrate and
attack another nation's computer systems and networks in an effort to cause
damage or disrupt services, such as shutting down a power grid.
Sign of Times (Stuxnet)
One example of a state-sponsored attack that was
designed not just to hijack targeted computers but to actually cause physical
damage to equipment controlled by computers!
To gather compromised information and/or
defense secrets and To impact another nation's infrastructure
What are the two main purpose of cyberwarfare
June 2010
When was Stuxnet found?
Stuxnet specifically targeted Iran's nuclear enrichment facilities, particularly the
programmable logic controllers (PLCs) that managed centrifuges used in uranium
enrichment.
What did Stuxnet attack?
infected USB drives
How did Stuxnet spread?
unique in its level of sophistication, its use of zero-day vulnerabilities and it also
20x more complicated than typical malwares
What makes Stuxnet unique?
- Invest in cybersecurity
- Conduct regular audits
- Train personnel
- Collaborate with internation partners
What to do in order to protect your country from cyberwarfare?
Cybercriminals
They use many different types of malicious software, or malware, to
carry out their activities.
Malware
