Free Essay

Security

In: Computers and Technology

Submitted By Marwah
Words 671
Pages 3
1. In reading this case study, who or what is the Threat Actor? What is the Threat Action? Please describe the difference between the two as well.
Threat actor is a group using Hydraq (Aroura) Trojan horse they were named Elderwood gang
Threat action happen when the attackers used nearly a dozen pieces of malware and several levels of encryption to burrow deeply into the bowels of company networks and infrastructure
In simple way, we can say that threat actor is the person who does the attack while the threat action is how this attack assaults the system 2. What were the vulnerabilities that the Threat exercised?
The most recent use exploits are : 1. Adobe Flash Player Object Type Confusion Remote Code Execution Vulnerability (CVE-2012-0779) 2. Microsoft Internet Explorer Same ID Property Remote Code Execution Vulnerability (CVE-2012-1875) 3. Microsoft XML Core Services Remote Code Execution Vulnerability (CVE-2012-1889) 4. Adobe Flash Player Remote Code Execution Vulnerability (CVE-2012-1535)
The attackers gained access to the source code or reserve-engineered to those complied applications. Then use them to hit the targeted victim. 3. Was the attack on Confidentiality, Integrity, and/or Availability? Please provide an explanation for your response.
I believe that this attack on confidentiality because the hackers had stolen intellectual property and sought access to the Gmail accounts of human rights activists and this leads to disclosure of data to non-authorized users so it violates the confidentiality
4. What was the attacker's profile based on the definitions provided on the Week 2 lecture material?
Based on information provided in the Elderwood Project I categorized this attacker’s profile as a Nation State because it is targeted specific countries so the motivation is political and speaking about skill the attackers develop targeted malware, zero day exploits, also they were organized as a unit of expert attackers with very sophisticated skills and wanted to hit critical infrastructure or government systems
The steps they used to conduct this attack were: 1. Create Trojan 2. Packed Trojan a. Via Email : i. Attach Exploit ii. Deliver Malware through Email b. Via Web Vector iii. Hack a Chosen Website iv. Deliver Malware through Website 3. Steal Date 4. Analyze Data

5. How was the attack detected?
Through the monitoring the Trojans that being used and one of them was Internet Explorer zero-day exploit the one that been used in attacking google.
6. What can Google do to protect itself from another attack like this?
For Google or any other victims should follow a plan of protection including: 1. Intrusion prevention network which is a preemptive approach to network security used to identify potential threats and respond to them swiftly. An intrusion prevention system (IPS) monitors network traffic. because an exploit may be carried out very quickly after the attacker gains access therefore, such a system take an immediate action and might drop a packet that it determines to be malicious and block all further traffic from that IP address or port 2. Using symentic.cloud that provides essential security while virtually eliminating the need to manage hardware and software on site. It includes: email security cloud which protects cloud and on premise mailboxes and remove the complexities of on-site technology. It also includes the web security.cloud that safeguards the business against web-borne malware and web misuse 3. Norton safe web insight protection which aim to categorized files from the internet based on reputation so instead of scanning every file, known files are skipped, cutting scanning times. 4. Last and most important one is using antivirus to eliminate any viruses that can be used by any attacker.
7. Do you think Google did enough to protect its systems or was it negligent in its security controls?
I think that google as a big, well-known is IT world today didn’t do its assignment to protect its systems very well and should do more in its security plans and policies so won’t allow such an attack happen again

Similar Documents

Free Essay

Security

...Assignment 1 Lee Holland Identify what you see as the main purpose of security management and discuss what is meant by the statement that ‘security measures must be commensurate with the threat’. Within this essay I seek to break down the main assignment into the two phases that are within the title, the first being; What is the main purpose of security management? a role that to some would be undervalued, inconvenient, poorly funded and a hindrance, where to others, it is an effective, well-co-ordinated and highly desirable position, which when funded correctly, will have a positive effect on an organisations financial goals in the aid of preventing the loss of their assets through ways that were not before protected, this both in the corporate business and the commercial world. A reliable and effective security function is an asset to any organisation wishing to protect their tangible and intangible assets from compromise. In the second phase I will discuss what is meant by the statement that “security measures must be commensurate with the threat” In a world where the threats are changing daily, it is imperative that security procedures, policies and counter measures are kept up to date, and in line with the current rules and regulations of the security industry, they must also work within the National law within the county that they might be operating in. With financial constrictions and fierce competition within the business world it is only natural that an......

Words: 685 - Pages: 3

Premium Essay

Security

...the CSO or Chief Security Officer. The CSO reports to the Board of Directors directly, hence cannot be influenced by the CEO or the CFO. According to the guideline by ASIS, this is the best model for a position that is as critical as the Chief Security Officer. Our CSO has been trying to add security to the culture of the company, and so far, it has been working. Being that the department is very new (about 1 year old), the security policies are now part of the human resources new hire packet. During their orientation, every new employee has to listen in on about 30 minutes of presentation that is security related, in addition to the normal company and culture orientation. The policies and procedures are now also embedded in the company intranet, and everyone has to sign a letter that says they read everything about the company’s security policies and procedures. This part also complies with the ASIS CSO guideline of bringing security into the company culture. According to the guideline, there is physical security that is handled by the CSO through his Facilities Director, as well as information security that is handled by the Information Security Director. They both report to the CSO (although the facilities director also reports to the Vice President of Human Resources). The company also has a Legal General Council, but this position reports directly to the CEO. The CSO regularly liaises with the General Council on all legal matters relating to the security department.......

Words: 561 - Pages: 3

Premium Essay

Security

...Security policy & standards Name Institution Course Instructor Date Part A In the current system, the following would be threats to the various components. THREATS TO SERVER Hacker Hacker is a general term that has truly been utilized to portray a machine programming master. All the more as of late, this term is regularly utilized as a part of a negative approach to depict a person who endeavors to increase unapproved access to system assets with pernicious plan. Black hat Black is an alternate term for people who utilize their insight into machine frameworks to break into frameworks or systems that they are not approved to utilize. Port Redirection Port redirection assaults are a kind of trust misuse assault that uses a bargained host to pass movement through a firewall that would overall be dropped. Consider a firewall with three interfaces and a host on every interface. The host on the outside can achieve the host on people in general administrations section, however not the host within. This openly open fragment is normally alluded to as a neutral ground (DMZ). The host on people in general administrations fragment can achieve the host on both the outside and within. In the event that programmers had the capacity bargain people in general administrations fragment host Theft of Service The likelihood of maverick utilization of a system association. Numerous hosts run the Dynamic Host Configuration Protocol (DHCP), by which...

Words: 1684 - Pages: 7

Free Essay

Security

...In this age where everything is computerized and or internet based, people spend more time on their pc’s than ever. You can pay your bills, email, perform financial transactions with the bank, social network, shop, get a degree, and the list goes on. These activities involve the transmission of sensitive data over the network and open the door for criminals to steal your valuable personal information. Knowing how to stop these thieves is important. The purpose of this report is to address a few of these security issues and discuss ways to prevent attacks from occurring. Users pose the largest security threat to a pc. Users go out on the internet, haphazardly clicking away on links that could open their pc for an attack. Malware, phishing scams, bot herding, viruses, and worms are just a few of the ways that your pc can be attacked. First and foremost is the user needs to understand that they must use caution when accessing the network. Follow sensible rules such as, don’t open email from strangers, don’t click on strange links, and don’t walk away from the pc without logging out. Never give out passwords, and change passwords often. Every 30-90 days is good and make sure you create strong passwords. As a rule of thumb, only give users access to the specific files and folders that they need. Use common sense when you are on the network and you can prevent malicious attack on your pc and protect sensitive information. Another way to protect your pc from malicious......

Words: 693 - Pages: 3

Premium Essay

Securities

...SECURITIES What is meant by ‘Securities’? The definition of ‘Securities’ as per the Securities Contracts Regulation Act (SCRA), 1956, includes instruments such as shares, bonds, scrips, stocks or other marketable securities of similar nature in or of any incorporate company or body corporate, government securities, derivatives of securities, units of collective investment scheme, interest and rights in securities, security receipt or any other instruments so declared by the Central Government. What is the function of Securities Market? Securities Markets is a place where buyers and sellers of securities can enter into transactions to purchase and sell shares, bonds, debentures etc. Further, it performs an important role of enabling corporates, entrepreneurs to raise resources for their companies and business ventures through public issues. Transfer of resources from those having idle resources (investors) to others who have a need for them (corporates) is most efficiently achieved through the securities market. Stated formally, securities markets provide channels for reallocation of savings to investments and entrepreneurship. Savings are linked to investments by a variety of intermediaries, through a range of financial products, called ‘Securities’. Which are the securities one can invest in? Shares Government Securities Derivative products Units of Mutual Funds etc., are some of the securities investors in the securities market can invest in...

Words: 710 - Pages: 3

Premium Essay

Security

...Kudler Fine Foods IT Security Report Area of System | Threat | Potential Vulnerability | IT System | Targeted Attacks – specifically designed to penetrate a particular organization, and focus on gathering specific information. | Used to gather information with monetary value for example, customers personal information. Name, address, phone numbers, and social security numbers. | | Privacy Threats - That puts both personal data at risk and raises bigger questions about the proper use of aggregated data companies use for promotional purposes. | The internet allows users to bank, shop, and socialize online which requires users to disclose customer information putting personal data at risk | | Fake Security Certificates - cybercriminals have been able to issue fake certificates for their malware using so-called self-signed certificates, and they have also been able to successfully breach the systems of various CAs and use stolen certificates to sign their code. | Make a fake website seem like it is a legit service | | Mobile Malware – about 90% of mobile malware is targeted toward Android based devices. Android is widely used, easy to develop for, and users of Android are able to download apps from anywhere they choose. On the other hand, iOS is a closed file system, allowing the download and use of apps from just a single source, the App Store. | Customer using their mobile devices to store their loyalty card must be aware that mobile phones are also targets......

Words: 327 - Pages: 2

Premium Essay

Security

...Security Students Name Institutions Name How to resolve a security issue in a situation where the need for security is great but the available funds are limited Community participation is a very important aspect in enhancing security. Through the community’s leaders individuals can be sensitized on the need to protect each other and also help them to create a ‘we’ feeling in the management of the important resources in a region. This will enable the community members to identify with the resources and wealth of a region and hence strive to protect it by all means. Governments and administrative officials should also involve the locals in making of decisions that are of utmost importance to the people’s welfare (Bakari, Magnusson, Tarimo, & Yngström, 2006). The benefits if personnel in security management develop skills as educators for their organization's security Having high skilled employees who are given the potential to grow their expertise is a great benefit to any organization. An organizations success can often be attributed to individual expertise and skills of its employees. The benefits are as follows: 1. Cuts on the costs of hiring external consultants; many organizations spend a lot of money in hiring third party consultants to cover essential tasks within the organization such as periodic network vulnerability scans and developing security programs. The cost of sending employees to the requisite training may be relatively cheaper (McCoy &......

Words: 1066 - Pages: 5

Premium Essay

Security

...White Paper IT Security Risk Management By Mark Gerschefske Risk Analysis How do you predict the total cost of a threat? Is it only the cost to restore the comprised system and lost productivity? Or does it include lost revenue, customer confidence, and trust of investors? This paper provides an overview of the risk management process and its benefits. Risk management is a much talked about, but little understood area of the IT Security industry. While risk management has been practiced by other industries for hundreds of years, little historical data exists to support qualitative analysis in the IT environment.1 The industry approach has been to buy technology without really understanding the potential underlying risks. To further complicate matters, new government regulations create additional pressure to ensure sensitive data is protected from compromise and disclosure. Processes need to be developed that not only identify the sensitive data, but also identify the level of risk posed due to noncompliance of corporate security policies. Verizon has developed security procedures based on industry standards that evaluate and mitigate areas deemed not compliant to internal security policies and standards. Through the use of quantitative analysis, Verizon is able to determine areas that present the greatest risk, which allows for identification and prioritization of security investments. Risk Mitigation Process The Risk Mitigation Process (RMP) is a part of risk......

Words: 2021 - Pages: 9

Premium Essay

Security

...Security is an intentional process of securing anything from expected jeopardy. It is a condition in result of various protective measures. There are different aspects of security that ranges from personal life to national security. This is a separate department in large managements.   This is a condition that prevents unauthorized information or people from having access to confidential or personal areas. Writing on this subject matter might not be difficult but writing well is surely. It’s not simple to comprehend a professional paper on such a diverse subject. It has various categories and concepts which need to be researched and studied properly to write an ample document.   Our company has been writing security term papers since long and it has experienced writers who know their job very well. Physical security, information security, computing security, financial security, human security or food security, writers at our company are skilled enough to produce highly authentic term papers on any one of these categories of security. No matter how difficult topic you have for your term paper we guarantee you quality in any case.   Writers at our company follow your given specifications keenly to produce desired papers. With us you don’t need to worry about the quality of your term paper because excellence is never compromised at our company. Just place your order with us and experience it yourself.   Services provided by our company include:   ...

Words: 295 - Pages: 2

Premium Essay

Security

...above to submit your assignment. Term Paper: Chief Security Officer Due Week 10 and worth 200 points You have been hired as the Chief Security Officer for a local University. For this role you will be responsible for establishing and maintaining an enterprise wide information security program to ensure that all information and data assets are not compromised. Knowing the concepts that are presented in the course, you will develop a plan to carry out a security program that deters computer crimes, establishes a process for investigation and outlines which laws are applicable for possible offenders. Write a 8-10 page paper in which you: Research the Internet for recent computer hacker attacks or other crimes that have been committed against higher educational institutions. Analyze the processes put in place by other higher education institutions in order to prevent these crimes from reoccurring. Recommend processes, methodologies, or technology that can be purchased to lower computer crime threats. Include specifics on pricing and the level of support and maintenance that would be required. Research the Internet for current laws and government agencies that exist in your region that address the threat of computer cyber-crimes. Identify the laws that would be effective to convict offenders. Determine what computer crime fighting government programs exist within your region that can complement your security operations. Research the internet for......

Words: 317 - Pages: 2

Free Essay

Security

...Raymond D. Jambalos BSIT Physical Security measures every organization should take Lock up the server room Even before you lock down the servers, in fact, before you even turn them on for the first time, you should ensure that there are good locks on the server room door. Of course, the best lock in the world does no good if it isn’t used, so you also need policies requiring that those doors be locked any time the room is unoccupied, and the policies should set out who has the key or keycode to get in. Set up surveillance Locking the door to the server room is a good first step, but someone could break in, or someone who has authorized access could misuse that authority. You need a way to know who goes in and out and when. A log book for signing in and out is the most elemental way to accomplish this, but it has a lot of drawbacks. A person with malicious intent is likely to just bypass it. A better solution than the log book is an authentication system incorporated into the locking devices, so that a smart card, token, or biometric scan is required to unlock the doors, and a record is made of the identity of each person who enters. A video surveillance camera, placed in a location that makes it difficult to tamper with or disable (or even to find) but gives a good view of persons entering and leaving should supplement the log book or electronic access system. Surveillance cams can monitor continuously, or they can use motion detection technology to record only when...

Words: 1226 - Pages: 5

Premium Essay

Security

...Project Part 1 Multi-Layered Security Plan | NT2580 | | James Maus | 8/21/2015 | In the process of emerging a mulit-layered security plan, you will need to see the seven domains of the IT set-up. The security will be increased on each of the domains. Security increase on the seven domains increases complete security of the system and build a mulit-layered security plan. Only the users can negotiate the system in the user domain. Easy passwords can cause a lot of problems so we will need to use difficult passwords with eight characters and up. Passwords will include special characters with capitals and lowercase. A limit to how long you can use the password and to only a one time password use. Workstations will have antivirus and malware protection installed. Since laptops are very weak and easy to get lost or stolen, the companies will have a converted hard drive so only the owner can recover the data. On the LAN domain, you should never open any scam emails when on company systems. To reduce email malware, you should add spam filters to stop junk email and reduce employee mistakes. On the LAN to WAN domain, we should switch the FTP to secure FTP so only our suers can have access to the FTP server. On the WAN domain there should be firewalls put in place on the network to filter inbound traffic. In the case of the Richman investments, network of\ any kind of traffic that is coming in and out is not needed will be stopped by a firewall. Reference Courtesy of...

Words: 444 - Pages: 2

Premium Essay

Security

...Security is the degree of resistance to, or protection from, harm. It applies to any vulnerable and valuable asset, such as a person, dwelling, community, nation, or organization. As noted by the Institute for Security and Open Methodologies (ISECOM) in the OSSTMM 3, security provides "a form of protection where a separation is created between the assets and the threat." These separations are generically called "controls," and sometimes include changes to the asset or the threat.[1] Perception of security may be poorly mapped to measureable objective security. For example, the fear of earthquakes has been reported to be more common than the fear of slipping on the bathroom floor although the latter kills many more people than the former.[2] Similarly, the perceived effectiveness of security measures is sometimes different from the actual security provided by those measures. The presence of security protections may even be taken for security itself. For example, two computer security programs could be interfering with each other and even cancelling each other's effect, while the owner believes s/he is getting double the protection. Security theater is a critical term for deployment of measures primarily aimed at raising subjective security without a genuine or commensurate concern for the effects of that measure on objective security. For example, some consider the screening of airline passengers based on static databases to have been Security Theater and Computer......

Words: 436 - Pages: 2

Premium Essay

Security

...Recruiting and Selecting Quality Security Employees for security job position Contemporary Issues in Security Management Abstract For years, recruitment and hiring methods have been deemed by dated by human resource managers but are realizing that different strategies and methods are need to attract millennials. Hiring qualified personnel has become an essential component in an organization foundation. This paper will explore multiple articles that provide techniques on how to recruitment and hire candidates from college graduates, apprentices, and novices to the security profession and presents key components of innovative approaches and traditional human resource techniques, and training policies that will meet any small or large business goal of highly hiring qualified candidates. In addition, it will highlight techniques, practices and, lessons learnt in enhancing a company’s ability to attract, hire, retain, and improve human resource practices, improve human resource development and human resource capabilities in today’s security career field. Keyword: Employees, Hiring, Human Resources (HR), Security Recruiting and Selecting Quality Security Employees in the security field Currently there is a high demand for security professional specializing Cybersecurity, Personnel Security, Physical Security, and Industrial security and many other security jobs. The issue is attracting, hiring, retaining people that......

Words: 3616 - Pages: 15

Premium Essay

Security

...Security Students Name Institutions Name How to resolve a security issue in a situation where the need for security is great but the available funds are limited Community participation is a very important aspect in enhancing security. Through the community’s leaders individuals can be sensitized on the need to protect each other and also help them to create a ‘we’ feeling in the management of the important resources in a region. This will enable the community members to identify with the resources and wealth of a region and hence strive to protect it by all means. Governments and administrative officials should also involve the locals in making of decisions that are of utmost importance to the people’s welfare (Bakari, Magnusson, Tarimo, & Yngström, 2006). The benefits if personnel in security management develop skills as educators for their organization's security Having high skilled employees who are given the potential to grow their expertise is a great benefit to any organization. An organizations success can often be attributed to individual expertise and skills of its employees. The benefits are as follows: 1. Cuts on the costs of hiring external consultants; many organizations spend a lot of money in hiring third party consultants to cover essential tasks within the organization such as periodic network vulnerability scans and developing security programs. The cost of sending employees to the requisite training may be relatively cheaper (McCoy &......

Words: 1066 - Pages: 5