3 day Workshop on Cyber Security & Ethical Hacking

Transcription

1 3 day Workshop on Cyber Security & Ethical Hacking 1 st day-highlights-hands On Phishing Attack Hammad Mashkoor Lari Freelancer

2 What is Cyber Security? What is Ethical hacking? What is Computer Science?

3 Information Systems Input Processing systems Output Information Systems Computer hardware Computer Software Network Information Systems Human Resources Database Many More Components of IS

4 Security-Information Systems Controls for Securing a facility 1. Walls, fence and gates 2. Guards 3. Dogs 4. Id cards and badges 5. Monitoring 6. Alarms systems What is Cyber security??? Controls for Securing a IS 1. Username 2. Passwords 3. Keys 4. Encryption/decryption 5. Digital signatures 6. Public /private data binding 7. Hacking(Ethical) 8. Pentest Cyber word is used to describe virtual world of computers. Cyber security refers to the technologies and processes designed to protect computers, networks and data from unauthorized access, vulnerabilities and attacks.

5 What is Cyber Crime? Cyber crime encompasses any criminal act dealing with computers and networks (called hacking). Additionally, cyber crime also includes traditional crimes conducted through the Internet. These crimes can be divided into three broad areas: Attacks against computer hardware and software for example, botnets, malware and network intrusion. Financial crimes and corruption such as online fraud, penetration of online financial services and phishing Abuse, in the form of grooming or sexploitation', especially crimes against children.

6 Indian Act Indian parliament passed its INFORMATION TECHNOLOGY ACT, 2000 on 17th oct to have its exhaustive law to deal with the technology in the field of e-commerce, e-governance, e- banking as well as penalties and punishments in the field of cyber crimes. GO ON Search Top Cyber Attacks on Google

7 Hacking In the early 1990s, the word hacker was used to describe a great programmer, someone who was able to build complex logics. Over time the word gained negative hype, and the media started referring to a hacker as someone who discovers new ways of hacking into a system. Therefore, the term has been broken down into three types: 1. White hat hacker 2. Black hat hacker 3. Gray hat hacker

8

9 Phishing Attack An that falsely claims to be a legitimate enterprise in an attempt to scam the user into surrendering private information to be used for identity theft. One such example is- You get an from unknown sender including names of FB in id that your password is breached and change your password asap through this link provided. When you click on the link you are transferred to a page that resembles FB in every case. You as a novice user fill the username and password and gets some notification that enter again. This whole process concludes that your username and password is captured and will be changed very soon without your info.

10 Hands on Phishing attack!

11

12 8 Ways To Avoid Phishing or Security Theft To help you protect yourself from phishing, we offer the following tips: 1. Guard against spam. 2. Communicate personal information only via secure web sites---in fact: When conducting online transactions, look for a sign that the site is secure such as a lock icon on the browser s status bar or a https: URL whereby the s stands for secure rather than a 3. Do not click on links, download files or open attachments in s from unknown senders. 4. Never personal or financial information, even if you are close with the recipient. 5. Beware of links in s that ask for personal information. 6. Beware of pop-ups and Never enter personal information in a pop-up screen. 7. Protect your computer with a firewall, spam filters, anti-virus and anti-spyware software. 8. Check your online accounts and bank statements regularly to ensure that no unauthorized transactions have been made.

13 For any Query: at:- Or Search Hammad Mashkoor Lari On