CYBERATTACKS AND CYBERSECURITY

is a cyberattack that takes place before the security community and/or software developers become aware of and fix a security vulnerability. 

It takes advantage of security flaws that enable unauthorized users to gain access to a computer system or to download sensitive user data 

How much effort and money should be spent to safeguard against computer crime? (In other words, how safe is safe enough?

What should be done if recommended computer security safeguards make conducting business more difficult for customers and employees, resulting in lost sales and increased costs? 

If a firm is a victim of a cybercrime, should it pursue prosecution of the criminals at all costs, maintain a low profile to avoid the negative publicity, inform affected customers, or take some other action?

58 percent of global companies have an overall security strategy

54 percent have a chief information security officer (CISO) in charge of security

53 percent have employee security awareness and training programs

52 percent have security standards for third parties

49 percent conduct threat assessments

48 percent actively monitor and analyze security intelligence 

Increasing computing complexity,  

expanding and changing systems,

an increase in the prevalence of bring your own device (BYOD) policies,

a growing reliance on software with known vulnerabilities,

and the increasing sophistication of those who would do harm

Computing environments have become enormously complex. Cloud computing, networks, computers, mobile devices, virtualization, operating systems, applications, websites, switches, routers, and gateways are interconnected and driven by hundreds of millions of

lines of code.

The number of possible entry points to a network expands continually as more devices are added, increasing the possibility of security breaches.

Business has moved from an era of stand-alone computers, in which critical data were stored on an isolated mainframe computer in a locked room, to an era in which personal computers and mobile devices connect to networks with millions of other computers, all capable of sharing information.

it is increasingly difficult for IT organizations to keep up with the pace of technological change, successfully perform an ongoing assessment of new security risks, and implement approaches for dealing with them

Bring your own device (BYOD) is a business policy that permits, and in some cases

encourages, employees to use their own mobile devices (smartphones, tablets, or laptops) to access company computing resources and applications, including email, corporate databases, the corporate intranet, and the Internet. 

However, this practice raises many potential security issues as it is highly likely that such devices are also used for nonwork activity (browsing websites, shopping, visiting social networks, blogging, etc.) that exposes them to malware much more frequently than a device used strictly for business purposes 

many users do not password protect their laptops, tablets, and smartphones or set the timeout to automatically lock the device after a few minutes of not being used. All these create an environment ripe for potential security problems. 

It is worth noting that employees also have concerns with BYOD policies, primarily related to privacy

Most people place a high priority on keeping any prying eyes, including those of their employer, from looking at the personal photos, text messages, and email stored on their personal mobile devices

In computing, an exploit is an attack on an information system that takes advantage of a particular system vulnerability. 

Often this attack is due to poor system design or implementation. 

Once the vulnerability is discovered, software developers create and issue a “fix,” or patch, to eliminate the problem 

Any delay in installing a patch exposes the user to a potential security breach

Previously, the stereotype of a computer troublemaker was that of an introverted “geek” working on his or her own and motivated by the desire to gain some degree of notoriety 

While such individuals still exist, it is not this stereotyped individual who is the biggest threat to IT security 

Today’s computer menace is much better organized and may be part of an organized group (for example, Anonymous, Chaos Computer Club, Lizard Squad, TeslaTeam, and hacker teams sponsored by national governments) that has an agenda and targets specific organizations and websites.

Ransomware

viruses

worms

trojan horse

blended threat

spam

DDoS attacks

Advanced Persistent Threat 

Phishing

Smishing  

Vishing

Cyberespionage 

Cyberterrorism