Data Leak Protection Using Text Mining and Social Network AnalysisIJERD Editor
Data Leak prevention is a research field which deals with study of potential security threats to
organizational data and strategies to prevent such threats. Data leaks involve the release of sensitive information
to an untrusted third party, intentionally or otherwise while data loss on the other hand is disappearance or
damage of data, inwhich a correct data copy isno longer available to the organization.Thesecorrespond toa
compromise of data integrity oravailability. Data leak/loss has led to huge loss of revenue in the affected
organisation and a threat to their continued existence. All organisations using electronic data storage are
vulnerable to this attack. This research work is targeted at organisations with sensitive datasuch as Bank,
Manufacturing industries, GSM operators, research centres, Military, Higher Educational Institutions and so
on.The authorsanalyse the possible threats to organisational data and the parties that are involved in such threat,
the impact of successful attack on an organisation,and current approaches to DLP.The authorsalso design a DLP
modelusing “text mining” and “social network analysis”, and suggested further research into “text mining” and
“social network analysis”for effective future solution to DLP problems.In conclusion, implementation of this
design with adherence to good data security practices and proactive strategies suggested in thispaper will
significantly reduce the risk of such security threats.
ARES focuses on the Sweet Spot of threat intelligence and continuous monitoring datasets, enabling you to identify and act on the most relevant and critical threats and findings at cyber speed
ENISA - EU strategies for cyber incident responseKevin Duffey
ENISA is the EU Agency for Network & Information Security. In this presentation, the Head of Stakeholder Relations shares lessons for CEOs from over 200 cyber simulations and other research conducted by ENISA.
Boxing legend Joe Louis famously said, "Everyone has a plan... until they get hit." While grizzled incident response veterans can relate to this sentiment, they all know that thorough preparation is crucial to success. Response procedures that are so thoroughly ingrained that executing them is like muscle memory have a chance, even in the fog of battle.
Have you thoroughly prepared your organization to respond when the inevitable happens? How confident are you that it will work in a real-world situation? Proper incident response preparation is key to answering these questions and is frankly the foundation of any incident response capability.
This webinar will review critical components of IR preparation including:
- IR Underpinnings
- Flexible Frameworks
- Leadership Challenges
Our featured speakers for this webinar will be:
- Ted Julian, Chief Marketing Officer, Co3 Systems
- Sean Mason, Global Incident Response Leader, CSC
Data Leak Protection Using Text Mining and Social Network AnalysisIJERD Editor
Data Leak prevention is a research field which deals with study of potential security threats to
organizational data and strategies to prevent such threats. Data leaks involve the release of sensitive information
to an untrusted third party, intentionally or otherwise while data loss on the other hand is disappearance or
damage of data, inwhich a correct data copy isno longer available to the organization.Thesecorrespond toa
compromise of data integrity oravailability. Data leak/loss has led to huge loss of revenue in the affected
organisation and a threat to their continued existence. All organisations using electronic data storage are
vulnerable to this attack. This research work is targeted at organisations with sensitive datasuch as Bank,
Manufacturing industries, GSM operators, research centres, Military, Higher Educational Institutions and so
on.The authorsanalyse the possible threats to organisational data and the parties that are involved in such threat,
the impact of successful attack on an organisation,and current approaches to DLP.The authorsalso design a DLP
modelusing “text mining” and “social network analysis”, and suggested further research into “text mining” and
“social network analysis”for effective future solution to DLP problems.In conclusion, implementation of this
design with adherence to good data security practices and proactive strategies suggested in thispaper will
significantly reduce the risk of such security threats.
ARES focuses on the Sweet Spot of threat intelligence and continuous monitoring datasets, enabling you to identify and act on the most relevant and critical threats and findings at cyber speed
ENISA - EU strategies for cyber incident responseKevin Duffey
ENISA is the EU Agency for Network & Information Security. In this presentation, the Head of Stakeholder Relations shares lessons for CEOs from over 200 cyber simulations and other research conducted by ENISA.
Boxing legend Joe Louis famously said, "Everyone has a plan... until they get hit." While grizzled incident response veterans can relate to this sentiment, they all know that thorough preparation is crucial to success. Response procedures that are so thoroughly ingrained that executing them is like muscle memory have a chance, even in the fog of battle.
Have you thoroughly prepared your organization to respond when the inevitable happens? How confident are you that it will work in a real-world situation? Proper incident response preparation is key to answering these questions and is frankly the foundation of any incident response capability.
This webinar will review critical components of IR preparation including:
- IR Underpinnings
- Flexible Frameworks
- Leadership Challenges
Our featured speakers for this webinar will be:
- Ted Julian, Chief Marketing Officer, Co3 Systems
- Sean Mason, Global Incident Response Leader, CSC
What's New In CompTIA Security+ - Course Technology Computing ConferenceCengage Learning
What's New In CompTIA Security+ - Course Technology Computing Conference
Presenter: Mark Ciampa, Western Kentucky University
The new CompTIA Security+ exam (SY0-401) is projected to be rolled out in the late spring of 2014. This exam will have several significant changes from the previous exam. These include an expanded emphasis on topics such as securing mobile devices, cloud computing, cryptography, and threats and vulnerabilities. In addition, CompTIA is continuing to use performance-based questions on Security+ exams, requiring test-takers to configure firewall access control lists, match ports with services, and analyze log files. What exactly will the new Security+ exam cover? How will the updated Cengage Security+ Guide to Network Security Fundamentals 5th Edition address these changes? And what are the best ways to help students be prepared for the new Security+ exam with its performance-based questions? This session will look at what's new in CompTIA Security+ and how we can teach security to our students.
Incident handling of intrusions related to cyber espionage operations is a complex and challenging task. As a national CERT with a unique national early warning detection system, NSM NorCERT has detected and responded to incidents that vary from traditional incident response and abuse handling to counter-intelligence operations. Based on some real-world examples, this talk will be about incident handling of cyber espionage intrusions. What are the most common pitfalls and how can companies be better prepared?
Not-For-Profit Cybersecurity and Privacy Disrupters During COVID-19Citrin Cooperman
To help not-for-profit entities protect their information during these unprecedented times, this webinar will cover challenges organizations face in preventing, detecting, and responding to cybersecurity-related activities. We discussed recent cyber breaches within not-for-profit organizations and considerations and actions you can take.
Designing an Incident Response Plan is difficult. On one hand, you have the extremely detailed "Best Practices" while on the other hand you have real world resource constraints.
Prosecuting Cybercrime and Regulating the WebDarius Whelan
‘Prosecuting Cybercrime and Regulating the Web’, at seminar on the current State of Cybercrime and Cyberwar seminar, organised by the MA in Journalism with New Media class, in conjunction with CIT Development Office, Cork Institute of Technology, March 2014
How'd we do in 2013 from a data breach perspective? As we close out the year, are the cupboards / budgets bare and will it be a lean holiday season? Or should we be budgeting a holiday celebration with all of the trappings and a sumptuous New Year?
Borrowing themes from the Charles Dickens holiday classic, this webinar will review industry statistics and other indicators to evaluate how we did in 2013 from a privacy breach and security incident response perspective. Will our mythical CSO and CPO get the Scrooge-like CFO to approve their budget increases? And what will 2014 hold from a security, privacy, and regulatory perspective? Register below to find out.
Our featured speakers for this Dickensian webinar will be:
- Ebenezer Scrooge, Chief Financial Officer, Acme Inc. played by Ted Julian, Chief Marketing Officer, Co3 Systems
- Bob Cratchit, Chief Privacy Officer, Acme Inc. played by Gant Redmon, General Counsel, Co3 Systems
- Tiny Tim, Chief Security Officer, Acme Inc. played by "Tiny" Tim Armstrong, Incident Response Specialist, Co3 Systems
Ransomware: Prevention, privacy and your options post-breachGowling WLG
Ransomware (cyber attack software that holds its targets’ data for ransom) has become an increasing danger to businesses and institutions this year.
This presentation will explore the nature and extent of the problem, legal options for and regulatory obligations of victims of ransomware, and emergent insurance options for dealing with the fallout from ransomware attacks.
Learn what cyber security means for your law firm, your employees, and your bottom line. This presentation will provide a snapshot of the IT Security threats facing law firms today, as well as the knowledge and tools you can use to prevent them.
Don Maclean, Chief Cybersecurity Technologist, DLT Solutions, and Mav Turner, IT Security Business Unit, SolarWinds, share the most important things you can do to keep your networks and data safe, and what tools are available to help.
YUDU - Managing a Breach (LDSC Cyber Themed Evening)Tom Lejava
Cyber Themes 2018: https://londondsc.co.uk/cyberthemes2018/
Use "#ManagingABreach" on Twitter to join in the conversation
---
YUDU is the leading publishing platform for content delivery to web and Native Apps using advanced publishing software for distributing and controlling business.
---
We are a not for profit organisation, founded as a joint venture by the Mayor of London, the Metropolitan Police Service (MPS) and the City of London Police (CoLP). We work in partnership with private industry and academia to help businesses, primarily SME business (less than 249 employees), to embrace digital innovations and operate in a secure online environment protecting themselves against cyber criminals.
What is our purpose?
- To provide simple, measurable and effective digital security solutions to businesses.
- To enable businesses to operate in a secure digital environment.
- To target victims of cyber crime and provide support to prevent repeat victimisation.
- To evidence a positive shift in the digital security of businesses.
---
Find out more information via:
Website ▶ https://londondsc.co.uk/
Twitter ▶ https://twitter.com/LondonDSC
LinkedIn ▶ https://www.linkedin.com/company/london-digital-security-centre/
Instagram ▶ https://www.instagram.com/londondigititalsecuritycentre
The latest massive IoT DDoS attack from the Mirai botnet that took major websites like Twitter and Reddit offline for hours – has already gained notoriety as one of the worst DDoS strikes in history.
In this webinar Manish Rai & Ty Powers of Great Bay Software will help you understand exactly how the enterprise IoT landscape is changing, and what it means for the assumptions organizations have been making in regards to safeguarding against IoT cyberattacks. You will:
Gain insights into how the recent IoT-based DDoS attacks were launched
How similar attacks could be launched inside enterprise networks
How to safeguard against IoT device compromises
How to reduce your risk, whose job is it anyway?
Learn about what your peers are doing for IoT device security, relevant findings from the 2016 Great Bay Software IoT Security Survey
Watch this ondemand webinar with this link: https://go.greatbaysoftware.com/owb-safeguarding-against-iot-ddos-attacks
UMS Cybersecurity Awareness Seminar: Cybersecurity - Lessons learned from sec...APNIC
APNIC Senior Security Specialist Adli Wahid provides some useful findings of lessons learned from security incidents at the UMS Cybersecurity Awareness Seminar, held online on 25 October 2021.
Top 3 MAC Spoofing Challenges You Cannot Afford to IgnoreGreat Bay Software
MAC spoofing is an easy way for hackers to access your network. Just search the term and the top results link to simple steps and how-to guides.
Many organizations know this is a problem and have implemented security solutions to help protect their networks. But despite these defenses, data breaches continue to happen.
This presentation covers:
- The top three issues that face organizations
- Why these challenges continue to persist
- How to better secure your network against these threats
This chapter describes how to conduct a digital forensics investigation. It shows the possible relation between information Security Triad and the investigation Triad. the chapter presents how to conduct an interview during investigations, and the disposition to take for adequate recording. The bit-by-bit stream copy process is mentioned. Disposition to take when finalizing the investigation is also discussed.
What's New In CompTIA Security+ - Course Technology Computing ConferenceCengage Learning
What's New In CompTIA Security+ - Course Technology Computing Conference
Presenter: Mark Ciampa, Western Kentucky University
The new CompTIA Security+ exam (SY0-401) is projected to be rolled out in the late spring of 2014. This exam will have several significant changes from the previous exam. These include an expanded emphasis on topics such as securing mobile devices, cloud computing, cryptography, and threats and vulnerabilities. In addition, CompTIA is continuing to use performance-based questions on Security+ exams, requiring test-takers to configure firewall access control lists, match ports with services, and analyze log files. What exactly will the new Security+ exam cover? How will the updated Cengage Security+ Guide to Network Security Fundamentals 5th Edition address these changes? And what are the best ways to help students be prepared for the new Security+ exam with its performance-based questions? This session will look at what's new in CompTIA Security+ and how we can teach security to our students.
Incident handling of intrusions related to cyber espionage operations is a complex and challenging task. As a national CERT with a unique national early warning detection system, NSM NorCERT has detected and responded to incidents that vary from traditional incident response and abuse handling to counter-intelligence operations. Based on some real-world examples, this talk will be about incident handling of cyber espionage intrusions. What are the most common pitfalls and how can companies be better prepared?
Not-For-Profit Cybersecurity and Privacy Disrupters During COVID-19Citrin Cooperman
To help not-for-profit entities protect their information during these unprecedented times, this webinar will cover challenges organizations face in preventing, detecting, and responding to cybersecurity-related activities. We discussed recent cyber breaches within not-for-profit organizations and considerations and actions you can take.
Designing an Incident Response Plan is difficult. On one hand, you have the extremely detailed "Best Practices" while on the other hand you have real world resource constraints.
Prosecuting Cybercrime and Regulating the WebDarius Whelan
‘Prosecuting Cybercrime and Regulating the Web’, at seminar on the current State of Cybercrime and Cyberwar seminar, organised by the MA in Journalism with New Media class, in conjunction with CIT Development Office, Cork Institute of Technology, March 2014
How'd we do in 2013 from a data breach perspective? As we close out the year, are the cupboards / budgets bare and will it be a lean holiday season? Or should we be budgeting a holiday celebration with all of the trappings and a sumptuous New Year?
Borrowing themes from the Charles Dickens holiday classic, this webinar will review industry statistics and other indicators to evaluate how we did in 2013 from a privacy breach and security incident response perspective. Will our mythical CSO and CPO get the Scrooge-like CFO to approve their budget increases? And what will 2014 hold from a security, privacy, and regulatory perspective? Register below to find out.
Our featured speakers for this Dickensian webinar will be:
- Ebenezer Scrooge, Chief Financial Officer, Acme Inc. played by Ted Julian, Chief Marketing Officer, Co3 Systems
- Bob Cratchit, Chief Privacy Officer, Acme Inc. played by Gant Redmon, General Counsel, Co3 Systems
- Tiny Tim, Chief Security Officer, Acme Inc. played by "Tiny" Tim Armstrong, Incident Response Specialist, Co3 Systems
Ransomware: Prevention, privacy and your options post-breachGowling WLG
Ransomware (cyber attack software that holds its targets’ data for ransom) has become an increasing danger to businesses and institutions this year.
This presentation will explore the nature and extent of the problem, legal options for and regulatory obligations of victims of ransomware, and emergent insurance options for dealing with the fallout from ransomware attacks.
Learn what cyber security means for your law firm, your employees, and your bottom line. This presentation will provide a snapshot of the IT Security threats facing law firms today, as well as the knowledge and tools you can use to prevent them.
Don Maclean, Chief Cybersecurity Technologist, DLT Solutions, and Mav Turner, IT Security Business Unit, SolarWinds, share the most important things you can do to keep your networks and data safe, and what tools are available to help.
YUDU - Managing a Breach (LDSC Cyber Themed Evening)Tom Lejava
Cyber Themes 2018: https://londondsc.co.uk/cyberthemes2018/
Use "#ManagingABreach" on Twitter to join in the conversation
---
YUDU is the leading publishing platform for content delivery to web and Native Apps using advanced publishing software for distributing and controlling business.
---
We are a not for profit organisation, founded as a joint venture by the Mayor of London, the Metropolitan Police Service (MPS) and the City of London Police (CoLP). We work in partnership with private industry and academia to help businesses, primarily SME business (less than 249 employees), to embrace digital innovations and operate in a secure online environment protecting themselves against cyber criminals.
What is our purpose?
- To provide simple, measurable and effective digital security solutions to businesses.
- To enable businesses to operate in a secure digital environment.
- To target victims of cyber crime and provide support to prevent repeat victimisation.
- To evidence a positive shift in the digital security of businesses.
---
Find out more information via:
Website ▶ https://londondsc.co.uk/
Twitter ▶ https://twitter.com/LondonDSC
LinkedIn ▶ https://www.linkedin.com/company/london-digital-security-centre/
Instagram ▶ https://www.instagram.com/londondigititalsecuritycentre
The latest massive IoT DDoS attack from the Mirai botnet that took major websites like Twitter and Reddit offline for hours – has already gained notoriety as one of the worst DDoS strikes in history.
In this webinar Manish Rai & Ty Powers of Great Bay Software will help you understand exactly how the enterprise IoT landscape is changing, and what it means for the assumptions organizations have been making in regards to safeguarding against IoT cyberattacks. You will:
Gain insights into how the recent IoT-based DDoS attacks were launched
How similar attacks could be launched inside enterprise networks
How to safeguard against IoT device compromises
How to reduce your risk, whose job is it anyway?
Learn about what your peers are doing for IoT device security, relevant findings from the 2016 Great Bay Software IoT Security Survey
Watch this ondemand webinar with this link: https://go.greatbaysoftware.com/owb-safeguarding-against-iot-ddos-attacks
UMS Cybersecurity Awareness Seminar: Cybersecurity - Lessons learned from sec...APNIC
APNIC Senior Security Specialist Adli Wahid provides some useful findings of lessons learned from security incidents at the UMS Cybersecurity Awareness Seminar, held online on 25 October 2021.
Top 3 MAC Spoofing Challenges You Cannot Afford to IgnoreGreat Bay Software
MAC spoofing is an easy way for hackers to access your network. Just search the term and the top results link to simple steps and how-to guides.
Many organizations know this is a problem and have implemented security solutions to help protect their networks. But despite these defenses, data breaches continue to happen.
This presentation covers:
- The top three issues that face organizations
- Why these challenges continue to persist
- How to better secure your network against these threats
This chapter describes how to conduct a digital forensics investigation. It shows the possible relation between information Security Triad and the investigation Triad. the chapter presents how to conduct an interview during investigations, and the disposition to take for adequate recording. The bit-by-bit stream copy process is mentioned. Disposition to take when finalizing the investigation is also discussed.
How to Make a Field invisible in Odoo 17Celine George
It is possible to hide or invisible some fields in odoo. Commonly using “invisible” attribute in the field definition to invisible the fields. This slide will show how to make a field invisible in odoo 17.
Francesca Gottschalk - How can education support child empowerment.pptxEduSkills OECD
Francesca Gottschalk from the OECD’s Centre for Educational Research and Innovation presents at the Ask an Expert Webinar: How can education support child empowerment?
2024.06.01 Introducing a competency framework for languag learning materials ...Sandy Millin
http://sandymillin.wordpress.com/iateflwebinar2024
Published classroom materials form the basis of syllabuses, drive teacher professional development, and have a potentially huge influence on learners, teachers and education systems. All teachers also create their own materials, whether a few sentences on a blackboard, a highly-structured fully-realised online course, or anything in between. Despite this, the knowledge and skills needed to create effective language learning materials are rarely part of teacher training, and are mostly learnt by trial and error.
Knowledge and skills frameworks, generally called competency frameworks, for ELT teachers, trainers and managers have existed for a few years now. However, until I created one for my MA dissertation, there wasn’t one drawing together what we need to know and do to be able to effectively produce language learning materials.
This webinar will introduce you to my framework, highlighting the key competencies I identified from my research. It will also show how anybody involved in language teaching (any language, not just English!), teacher training, managing schools or developing language learning materials can benefit from using the framework.
Read| The latest issue of The Challenger is here! We are thrilled to announce that our school paper has qualified for the NATIONAL SCHOOLS PRESS CONFERENCE (NSPC) 2024. Thank you for your unwavering support and trust. Dive into the stories that made us stand out!
The Roman Empire A Historical Colossus.pdfkaushalkr1407
The Roman Empire, a vast and enduring power, stands as one of history's most remarkable civilizations, leaving an indelible imprint on the world. It emerged from the Roman Republic, transitioning into an imperial powerhouse under the leadership of Augustus Caesar in 27 BCE. This transformation marked the beginning of an era defined by unprecedented territorial expansion, architectural marvels, and profound cultural influence.
The empire's roots lie in the city of Rome, founded, according to legend, by Romulus in 753 BCE. Over centuries, Rome evolved from a small settlement to a formidable republic, characterized by a complex political system with elected officials and checks on power. However, internal strife, class conflicts, and military ambitions paved the way for the end of the Republic. Julius Caesar’s dictatorship and subsequent assassination in 44 BCE created a power vacuum, leading to a civil war. Octavian, later Augustus, emerged victorious, heralding the Roman Empire’s birth.
Under Augustus, the empire experienced the Pax Romana, a 200-year period of relative peace and stability. Augustus reformed the military, established efficient administrative systems, and initiated grand construction projects. The empire's borders expanded, encompassing territories from Britain to Egypt and from Spain to the Euphrates. Roman legions, renowned for their discipline and engineering prowess, secured and maintained these vast territories, building roads, fortifications, and cities that facilitated control and integration.
The Roman Empire’s society was hierarchical, with a rigid class system. At the top were the patricians, wealthy elites who held significant political power. Below them were the plebeians, free citizens with limited political influence, and the vast numbers of slaves who formed the backbone of the economy. The family unit was central, governed by the paterfamilias, the male head who held absolute authority.
Culturally, the Romans were eclectic, absorbing and adapting elements from the civilizations they encountered, particularly the Greeks. Roman art, literature, and philosophy reflected this synthesis, creating a rich cultural tapestry. Latin, the Roman language, became the lingua franca of the Western world, influencing numerous modern languages.
Roman architecture and engineering achievements were monumental. They perfected the arch, vault, and dome, constructing enduring structures like the Colosseum, Pantheon, and aqueducts. These engineering marvels not only showcased Roman ingenuity but also served practical purposes, from public entertainment to water supply.
Embracing GenAI - A Strategic ImperativePeter Windle
Artificial Intelligence (AI) technologies such as Generative AI, Image Generators and Large Language Models have had a dramatic impact on teaching, learning and assessment over the past 18 months. The most immediate threat AI posed was to Academic Integrity with Higher Education Institutes (HEIs) focusing their efforts on combating the use of GenAI in assessment. Guidelines were developed for staff and students, policies put in place too. Innovative educators have forged paths in the use of Generative AI for teaching, learning and assessments leading to pockets of transformation springing up across HEIs, often with little or no top-down guidance, support or direction.
This Gasta posits a strategic approach to integrating AI into HEIs to prepare staff, students and the curriculum for an evolving world and workplace. We will highlight the advantages of working with these technologies beyond the realm of teaching, learning and assessment by considering prompt engineering skills, industry impact, curriculum changes, and the need for staff upskilling. In contrast, not engaging strategically with Generative AI poses risks, including falling behind peers, missed opportunities and failing to ensure our graduates remain employable. The rapid evolution of AI technologies necessitates a proactive and strategic approach if we are to remain relevant.
Model Attribute Check Company Auto PropertyCeline George
In Odoo, the multi-company feature allows you to manage multiple companies within a single Odoo database instance. Each company can have its own configurations while still sharing common resources such as products, customers, and suppliers.
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdfTechSoup
In this webinar you will learn how your organization can access TechSoup's wide variety of product discount and donation programs. From hardware to software, we'll give you a tour of the tools available to help your nonprofit with productivity, collaboration, financial management, donor tracking, security, and more.
A Strategic Approach: GenAI in EducationPeter Windle
Artificial Intelligence (AI) technologies such as Generative AI, Image Generators and Large Language Models have had a dramatic impact on teaching, learning and assessment over the past 18 months. The most immediate threat AI posed was to Academic Integrity with Higher Education Institutes (HEIs) focusing their efforts on combating the use of GenAI in assessment. Guidelines were developed for staff and students, policies put in place too. Innovative educators have forged paths in the use of Generative AI for teaching, learning and assessments leading to pockets of transformation springing up across HEIs, often with little or no top-down guidance, support or direction.
This Gasta posits a strategic approach to integrating AI into HEIs to prepare staff, students and the curriculum for an evolving world and workplace. We will highlight the advantages of working with these technologies beyond the realm of teaching, learning and assessment by considering prompt engineering skills, industry impact, curriculum changes, and the need for staff upskilling. In contrast, not engaging strategically with Generative AI poses risks, including falling behind peers, missed opportunities and failing to ensure our graduates remain employable. The rapid evolution of AI technologies necessitates a proactive and strategic approach if we are to remain relevant.
Synthetic Fiber Construction in lab .pptxPavel ( NSTU)
Synthetic fiber production is a fascinating and complex field that blends chemistry, engineering, and environmental science. By understanding these aspects, students can gain a comprehensive view of synthetic fiber production, its impact on society and the environment, and the potential for future innovations. Synthetic fibers play a crucial role in modern society, impacting various aspects of daily life, industry, and the environment. ynthetic fibers are integral to modern life, offering a range of benefits from cost-effectiveness and versatility to innovative applications and performance characteristics. While they pose environmental challenges, ongoing research and development aim to create more sustainable and eco-friendly alternatives. Understanding the importance of synthetic fibers helps in appreciating their role in the economy, industry, and daily life, while also emphasizing the need for sustainable practices and innovation.
3. Main incident and motivation.
• The Government Department had an Application Server running an
extremely Critical Application, which processed hundreds of requests a day.
• We were informed that the Critical Application had become non-operational
a few days earlier, and that a large number of service recipients had begun to
queue outside the Office as a result.
10/19/2020Case Study: “The Worm – Episode 1”
3
4. • The IT team of the Department had identified the situation several days
earlier and had attempted to resolve the issue using internal resources.
• As part of their response, they had used a virus removal tool on the
Application Server to remove files which the Anti Virus software showed
as being infected by a Virus, but the problem persisted.
• The situation had continued to deteriorate, and the senior management
had decided to ask for external assistance.
10/19/2020Case Study: “The Worm – Episode 1”
4
5. How they identified the real attacker ?
• They initially collected some basic information over the phone and via E-mail from the
official who contacted us to establish a background for the affected Department, so as
to establish contacts and escalation and reporting points within the Department.
10/19/2020Case Study: “The Worm – Episode 1”
5
6. Other reasons
• The Department’s network was not protected with up-to- date Antivirus software.
• There was no documented Security Policy in place governing such security related
procedures and actions.
• Users were accessing the Application Server system using a common password.
10/19/2020Case Study: “The Worm – Episode 1”
6
7. The methods they used to carry out the
attack
• Verify that this was indeed an incident.
• Initially collected some basic information over the phone and via E-mail
• Ask four critical questions.
• Gather there are own information's from the victim site
10/19/2020Case Study: “The Worm – Episode 1”
7
8. Steps they have taken to unmask the real attacker
8
• The presence of the CME-24 was detected on the Application
Server, by the Department’s IT team, under the alias
W32.Blackmal.E.
• Gather there are own information from the victim site.
Case Study: “The Worm – Episode 1” 10/19/2020
9. Steps they have taken to prove the real
attacker's identity
• Most of the client machines had detected a virus infection in the Shared folder of the
Application Server.
• Analysis of the gathered information began to give us a clear picture of the Department
network setup, and the potential weaknesses that may have led to the incident.
10/19/2020Case Study: “The Worm – Episode 1”
9
10. The best security practices they can take to avoid future attacks
10
• Ensured that Anti Virus & Operating System software were
regularly updated.
• Access to critical systems was restricted using a strong password
policy.
• Clear audit trails were maintained using system access logs.
Case Study: “The Worm – Episode 1” 10/19/2020