SlideShare a Scribd company logo

IntroCyberv2.1_Chp2_Instructor_Supplemental_Material.pptx

Download as PPTX, PDF
F
fuebf

dbwifdbef

Education
1 of 23
Instructor Materials Chapter 2: Attacks, Concepts and Techniques Introduction to Cybersecurity v2.1
3 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Chapter 2: Attacks, Concepts and Techniques Introduction to Cybersecurity v2.1 Planning Guide
Chapter 2: Attacks, Concepts and Techniques Introduction to Cybersecurity v2.1
10 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential  2.1 Analyzing a Cyberattack • Explain the characteristics and operation of a cyber attack. • Explain how a security vulnerability is exploited. • Identify examples of security vulnerabilities. • Describe types of malware and their symptoms. • Describe methods of infiltration. • Describe methods used to deny service.  2.2 The Cybersecurity Landscape • Explain trends in the cyberthreat landscape. • Describe a blended attack. • Describe the importance of impact reduction. Chapter 2 - Sections & Objectives
11 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2.1 Analyzing a Cyberattack
12 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Security Vulnerability and Exploits Finding Security Vulnerabilities  An exploit is the term used to describe a program written to take advantage of a known vulnerability.  An attack is the act of using an exploit against a vulnerability.  Software vulnerability • Errors in OS or application code • SYNful Knock – Vulnerability in Cisco IOS • allows attackers to gain control of the routers • monitor network communication • infect other network devices. • Project Zero – Google formed a permanent team dedicated to finding software vulnerabilities.  Hardware vulnerability • Hardware design flaws • Rowhammer - RAM memory exploit allows data to be retrieved from nearby address memory cells.
13 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Security Vulnerabilities Categorizing Security Vulnerabilities  Buffer Overflow • Data is written beyond the limits of a buffer  Non-validated Input • Force programs to behave in an unintended way  Race Conditions • Improperly ordered or timed events  Weaknesses in Security Practices • Protect sensitive data through authentication, authorization, and encryption  Access-control Problems • Access control to physical equipment and resources • Security practices
14 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Malware and Symptoms Types of Malware  Malware is used to steal data, bypass access controls, cause harm to, or compromise a system.  Types of Malware • Spyware - track and spy on the user • Adware - deliver advertisements, usually comes with spyware • Bot - automatically perform action • Ransomware - hold a computer system or the data captive until a payment is made • Scareware - persuade the user to take a specific action based on fear. Initial Code Red Worm Infection
15 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Malware and Symptoms Types of Malware (Cont.)  Types of Malware (Cont.) • Rootkit - modify the operating system to create a backdoor • Virus - malicious executable code that is attached to other executable files • Trojan horse - carries out malicious operations under the guise of a desired operation • Worm - replicate themselves by independently exploiting vulnerabilities in networks • Man-in-The-Middle or Man-in-The-Mobile – take control over a device without the user’s knowledge Code Red Worm Infection 19 Hours Later
16 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Malware and Symptoms Symptoms of Malware  There is an increase in CPU usage.  There is a decrease in computer speed.  The computer freezes or crashes often.  There is a decrease in Web browsing speed.  There are unexplainable problems with network connections.  Files are modified.  Files are deleted.  There is a presence of unknown files, programs, or desktop icons.  There are unknown processes running.  Programs are turning off or reconfiguring themselves.  Email is being sent without the user’s knowledge or consent.
17 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Social Engineering  Social Engineering – manipulation of individual into performing actions or divulging confidential information • Pretexting - an attacker calls an individual and lies to them in an attempt to gain access to privileged data. • Tailgating - an attacker quickly follows an authorized person into a secure location. • Something for something (Quid pro quo) - an attacker requests personal information from a party in exchange for something
18 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Wi-Fi Password Cracking  Wi-Fi Password Cracking – Password discovery • Social engineering - The attacker manipulates a person who knows the password into providing it. • Brute-force attacks - The attacker tries several possible passwords in an attempt to guess the password. • Network sniffing - The password maybe discovered by listening and capturing packets send on the network.
19 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Phishing  Phishing • malicious party sends a fraudulent email disguised as being from a legitimate, trusted source • trick the recipient into installing malware on their device or sharing personal or financial information  Spear phishing • a highly targeted phishing attack
20 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Vulnerability Exploitation  Vulnerability Exploitation – scan to find vulnerability to exploit • Step 1 - Gather information about the target system using port scanner or social engineering • Step 2 - Determine learned information from step 1 • Step 3 - Look for vulnerability • Step 4 - Use a known exploit or write a new exploit  Advanced Persistent Threats – a multi-phase, long term, stealthy and advanced operation against a specific target • usually well-funded • deploy customized malware
21 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Denial of Service DoS  DoS is a disruption of network services • Overwhelming quantity of traffic - a network, host, or application is sent an enormous quantity of data at a rate which it cannot handle • Maliciously formatted packets - maliciously formatted packet is sent to a host or application and the receiver is unable to handle it
22 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Denial of Service DDoS  Similar to DoS, from multiple, coordinated sources  Botnet - a network of infected hosts  Zombie - infected hosts  The zombies are controlled by handler systems.  The zombies continues to infect more hosts, creating more zombies.
23 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Denial of Service SEO Poisoning  SEO • Search Engine Optimization • Techniques to improve a website’s ranking by a search engine  SEO Poisoning • Increase traffic to malicious websites • Force malicious sites to rank higher
24 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2.2 The Cybersecurity Landscape
25 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Blended Attack What is a Blended Attack?  Uses multiple techniques to compromise a target  Uses a hybrid of worms, Trojan horses, spyware, keyloggers, spam and phishing schemes  Common blended attack example • spam email messages, instant messages or legitimate websites to distribute links • DDoS combined with phishing emails  Examples: Nimbda, CodeRed, BugBear, Klez, Slammer, Zeus/LICAT, and Conficker
26 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Impact Reduction What is Impact Reduction?  Communicate the issue  Be sincere and accountable  Provide details  Understand the cause of the breach  Take steps to avoid another similar breach in the future  Ensure all systems are clean  Educate employees, partners and customers
27 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2.3 Chapter Summary
28 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Chapter Summary Summary  Identify examples of security vulnerabilities.  Explain how a security vulnerability is exploited.  Describe types of malware and their symptoms, methods of infiltration, methods used to deny service.  Describe a blended attack and the importance of impact reduction.
IntroCyberv2.1_Chp2_Instructor_Supplemental_Material.pptx

Recommended

Need for cybersecurity
Need for cybersecurityNeed for cybersecurity
Need for cybersecuritySri Manakula Vinayagar Engineering College
 
Network security
Network securityNetwork security
Network securitySri Manakula Vinayagar Engineering College
 
Joomla Security Simplified —  Seven Easy Steps For a More Secure Website
Joomla Security Simplified —  Seven Easy Steps For a More Secure WebsiteJoomla Security Simplified —  Seven Easy Steps For a More Secure Website
Joomla Security Simplified —  Seven Easy Steps For a More Secure WebsiteImperva Incapsula
 
ENSA_Module_3.pptx
ENSA_Module_3.pptxENSA_Module_3.pptx
ENSA_Module_3.pptxSkyBlue659156
 
30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.ppt
30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.ppt30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.ppt
30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.pptKaukau9
 
Webinar 2.1 - Network protection and devices.pptx
Webinar 2.1 - Network protection and devices.pptxWebinar 2.1 - Network protection and devices.pptx
Webinar 2.1 - Network protection and devices.pptxRoyMurillo4
 
cyber security and threats.pptx
cyber security and threats.pptxcyber security and threats.pptx
cyber security and threats.pptxVSAM Technologies India Private Limited
 
A DevOps Guide to Web Application Security
A DevOps Guide to Web Application SecurityA DevOps Guide to Web Application Security
A DevOps Guide to Web Application SecurityImperva Incapsula
 

Recommended

Need for cybersecurity
Need for cybersecurityNeed for cybersecurity
Need for cybersecuritySri Manakula Vinayagar Engineering College
 
Network security
Network securityNetwork security
Network securitySri Manakula Vinayagar Engineering College
 
Joomla Security Simplified —  Seven Easy Steps For a More Secure Website
Joomla Security Simplified —  Seven Easy Steps For a More Secure WebsiteJoomla Security Simplified —  Seven Easy Steps For a More Secure Website
Joomla Security Simplified —  Seven Easy Steps For a More Secure WebsiteImperva Incapsula
 
ENSA_Module_3.pptx
ENSA_Module_3.pptxENSA_Module_3.pptx
ENSA_Module_3.pptxSkyBlue659156
 
30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.ppt
30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.ppt30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.ppt
30ITSecurityThreatsVulnerabilitiesandCountermeasuresV1.pptKaukau9
 
Webinar 2.1 - Network protection and devices.pptx
Webinar 2.1 - Network protection and devices.pptxWebinar 2.1 - Network protection and devices.pptx
Webinar 2.1 - Network protection and devices.pptxRoyMurillo4
 
cyber security and threats.pptx
cyber security and threats.pptxcyber security and threats.pptx
cyber security and threats.pptxVSAM Technologies India Private Limited
 
A DevOps Guide to Web Application Security
A DevOps Guide to Web Application SecurityA DevOps Guide to Web Application Security
A DevOps Guide to Web Application SecurityImperva Incapsula
 
LIFT OFF 2017: Ransomware and IR Overview
LIFT OFF 2017: Ransomware and IR OverviewLIFT OFF 2017: Ransomware and IR Overview
LIFT OFF 2017: Ransomware and IR OverviewRobert Herjavec
 
Two for Attack: Web and Email Content Protection
Two for Attack: Web and Email Content ProtectionTwo for Attack: Web and Email Content Protection
Two for Attack: Web and Email Content ProtectionCisco Canada
 
CA_Module_13.pdf
CA_Module_13.pdfCA_Module_13.pdf
CA_Module_13.pdfEhabRushdy1
 
Ethical Hacking justvamshi .pptx
Ethical Hacking justvamshi .pptxEthical Hacking justvamshi .pptx
Ethical Hacking justvamshi .pptxvamshimatangi
 
Cyber security
Cyber securityCyber security
Cyber securityvishakha bhagwat
 
Pervasive Security Across Your Extended Network
Pervasive Security Across Your Extended NetworkPervasive Security Across Your Extended Network
Pervasive Security Across Your Extended NetworkCisco Security
 
Chapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedChapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedBule Hora University
 
DEVSECOPS_the_beginning.ppt
DEVSECOPS_the_beginning.pptDEVSECOPS_the_beginning.ppt
DEVSECOPS_the_beginning.pptschwarz10
 
Secure by design and secure software development
Secure by design and secure software developmentSecure by design and secure software development
Secure by design and secure software developmentBill Ross
 
Cloud Security.pptx
Cloud Security.pptxCloud Security.pptx
Cloud Security.pptxBinod Rimal
 
Web Security
Web SecurityWeb Security
Web SecurityGerald Villorente
 
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptx
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptxEthical hacking seminardk fas kjfdhsakjfh askfhksahf.pptx
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptxGovandJamalSaeed
 
Cyber Crime and Security Ch 1 .ppt
Cyber Crime and Security Ch 1 .pptCyber Crime and Security Ch 1 .ppt
Cyber Crime and Security Ch 1 .pptwaleejhaider1
 
Lecture 3.pptx
Lecture 3.pptxLecture 3.pptx
Lecture 3.pptxMuhammadRehan856177
 
Compliance made easy. Pass your audits stress-free.
Compliance made easy. Pass your audits stress-free.Compliance made easy. Pass your audits stress-free.
Compliance made easy. Pass your audits stress-free.AlgoSec
 
Cyber Security
Cyber SecurityCyber Security
Cyber Securityfrcarlson
 
Malware
MalwareMalware
MalwareSetiya Nugroho
 
Cisco connect winnipeg 2018 anatomy of an attack
Cisco connect winnipeg 2018 anatomy of an attackCisco connect winnipeg 2018 anatomy of an attack
Cisco connect winnipeg 2018 anatomy of an attackCisco Canada
 
Cyber security slideshare_oct_2020
Cyber security slideshare_oct_2020Cyber security slideshare_oct_2020
Cyber security slideshare_oct_2020Arun Velayudhan
 
Cyber Security
Cyber SecurityCyber Security
Cyber Securityparveen837153
 
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"National Information Standards Organization (NISO)
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)eniolaolutunde
 

More Related Content

Similar to IntroCyberv2.1_Chp2_Instructor_Supplemental_Material.pptx

LIFT OFF 2017: Ransomware and IR Overview
LIFT OFF 2017: Ransomware and IR OverviewLIFT OFF 2017: Ransomware and IR Overview
LIFT OFF 2017: Ransomware and IR OverviewRobert Herjavec
 
Two for Attack: Web and Email Content Protection
Two for Attack: Web and Email Content ProtectionTwo for Attack: Web and Email Content Protection
Two for Attack: Web and Email Content ProtectionCisco Canada
 
CA_Module_13.pdf
CA_Module_13.pdfCA_Module_13.pdf
CA_Module_13.pdfEhabRushdy1
 
Ethical Hacking justvamshi .pptx
Ethical Hacking justvamshi .pptxEthical Hacking justvamshi .pptx
Ethical Hacking justvamshi .pptxvamshimatangi
 
Pervasive Security Across Your Extended Network
Pervasive Security Across Your Extended NetworkPervasive Security Across Your Extended Network
Pervasive Security Across Your Extended NetworkCisco Security
 
Chapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedChapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedBule Hora University
 
DEVSECOPS_the_beginning.ppt
DEVSECOPS_the_beginning.pptDEVSECOPS_the_beginning.ppt
DEVSECOPS_the_beginning.pptschwarz10
 
Secure by design and secure software development
Secure by design and secure software developmentSecure by design and secure software development
Secure by design and secure software developmentBill Ross
 
Cloud Security.pptx
Cloud Security.pptxCloud Security.pptx
Cloud Security.pptxBinod Rimal
 
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptx
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptxEthical hacking seminardk fas kjfdhsakjfh askfhksahf.pptx
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptxGovandJamalSaeed
 
Cyber Crime and Security Ch 1 .ppt
Cyber Crime and Security Ch 1 .pptCyber Crime and Security Ch 1 .ppt
Cyber Crime and Security Ch 1 .pptwaleejhaider1
 
Compliance made easy. Pass your audits stress-free.
Compliance made easy. Pass your audits stress-free.Compliance made easy. Pass your audits stress-free.
Compliance made easy. Pass your audits stress-free.AlgoSec
 
Cyber Security
Cyber SecurityCyber Security
Cyber Securityfrcarlson
 
Cisco connect winnipeg 2018 anatomy of an attack
Cisco connect winnipeg 2018 anatomy of an attackCisco connect winnipeg 2018 anatomy of an attack
Cisco connect winnipeg 2018 anatomy of an attackCisco Canada
 
Cyber security slideshare_oct_2020
Cyber security slideshare_oct_2020Cyber security slideshare_oct_2020
Cyber security slideshare_oct_2020Arun Velayudhan
 

Similar to IntroCyberv2.1_Chp2_Instructor_Supplemental_Material.pptx (20)

LIFT OFF 2017: Ransomware and IR Overview
LIFT OFF 2017: Ransomware and IR OverviewLIFT OFF 2017: Ransomware and IR Overview
LIFT OFF 2017: Ransomware and IR Overview
 
Two for Attack: Web and Email Content Protection
Two for Attack: Web and Email Content ProtectionTwo for Attack: Web and Email Content Protection
Two for Attack: Web and Email Content Protection
 
CA_Module_13.pdf
CA_Module_13.pdfCA_Module_13.pdf
CA_Module_13.pdf
 
Ethical Hacking justvamshi .pptx
Ethical Hacking justvamshi .pptxEthical Hacking justvamshi .pptx
Ethical Hacking justvamshi .pptx
 
Cyber security
Cyber securityCyber security
Cyber security
 
Pervasive Security Across Your Extended Network
Pervasive Security Across Your Extended NetworkPervasive Security Across Your Extended Network
Pervasive Security Across Your Extended Network
 
Chapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganisedChapter1 intro network_security_sunorganised
Chapter1 intro network_security_sunorganised
 
DEVSECOPS_the_beginning.ppt
DEVSECOPS_the_beginning.pptDEVSECOPS_the_beginning.ppt
DEVSECOPS_the_beginning.ppt
 
Secure by design and secure software development
Secure by design and secure software developmentSecure by design and secure software development
Secure by design and secure software development
 
Cloud Security.pptx
Cloud Security.pptxCloud Security.pptx
Cloud Security.pptx
 
Web Security
Web SecurityWeb Security
Web Security
 
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptx
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptxEthical hacking seminardk fas kjfdhsakjfh askfhksahf.pptx
Ethical hacking seminardk fas kjfdhsakjfh askfhksahf.pptx
 
Cyber Crime and Security Ch 1 .ppt
Cyber Crime and Security Ch 1 .pptCyber Crime and Security Ch 1 .ppt
Cyber Crime and Security Ch 1 .ppt
 
Lecture 3.pptx
Lecture 3.pptxLecture 3.pptx
Lecture 3.pptx
 
Compliance made easy. Pass your audits stress-free.
Compliance made easy. Pass your audits stress-free.Compliance made easy. Pass your audits stress-free.
Compliance made easy. Pass your audits stress-free.
 
Cyber Security
Cyber SecurityCyber Security
Cyber Security
 
Malware
MalwareMalware
Malware
 
Cisco connect winnipeg 2018 anatomy of an attack
Cisco connect winnipeg 2018 anatomy of an attackCisco connect winnipeg 2018 anatomy of an attack
Cisco connect winnipeg 2018 anatomy of an attack
 
Cyber security slideshare_oct_2020
Cyber security slideshare_oct_2020Cyber security slideshare_oct_2020
Cyber security slideshare_oct_2020
 
Cyber Security
Cyber SecurityCyber Security
Cyber Security
 

Recently uploaded

Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)eniolaolutunde
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfAyushMahapatra5
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Celine George
 
Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfciinovamais
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Krashi Coaching
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphThiyagu K
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Sapana Sha
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfAdmir Softic
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 
1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdfQucHHunhnh
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpinRaunakKeshri1
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfchloefrazer622
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfsanyamsingh5019
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfagholdier
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationnomboosow
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactdawncurless
 
social pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajansocial pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajanpragatimahajan3
 

Recently uploaded (20)

Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdf
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17
 
Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdf
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot Graph
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1
 
1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpin
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdf
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdf
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communication
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impact
 
social pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajansocial pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajan
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 

IntroCyberv2.1_Chp2_Instructor_Supplemental_Material.pptx

  • 1. Instructor Materials Chapter 2: Attacks, Concepts and Techniques Introduction to Cybersecurity v2.1
  • 2. 3 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Chapter 2: Attacks, Concepts and Techniques Introduction to Cybersecurity v2.1 Planning Guide
  • 3. Chapter 2: Attacks, Concepts and Techniques Introduction to Cybersecurity v2.1
  • 4. 10 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential  2.1 Analyzing a Cyberattack • Explain the characteristics and operation of a cyber attack. • Explain how a security vulnerability is exploited. • Identify examples of security vulnerabilities. • Describe types of malware and their symptoms. • Describe methods of infiltration. • Describe methods used to deny service.  2.2 The Cybersecurity Landscape • Explain trends in the cyberthreat landscape. • Describe a blended attack. • Describe the importance of impact reduction. Chapter 2 - Sections & Objectives
  • 5. 11 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2.1 Analyzing a Cyberattack
  • 6. 12 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Security Vulnerability and Exploits Finding Security Vulnerabilities  An exploit is the term used to describe a program written to take advantage of a known vulnerability.  An attack is the act of using an exploit against a vulnerability.  Software vulnerability • Errors in OS or application code • SYNful Knock – Vulnerability in Cisco IOS • allows attackers to gain control of the routers • monitor network communication • infect other network devices. • Project Zero – Google formed a permanent team dedicated to finding software vulnerabilities.  Hardware vulnerability • Hardware design flaws • Rowhammer - RAM memory exploit allows data to be retrieved from nearby address memory cells.
  • 7. 13 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Security Vulnerabilities Categorizing Security Vulnerabilities  Buffer Overflow • Data is written beyond the limits of a buffer  Non-validated Input • Force programs to behave in an unintended way  Race Conditions • Improperly ordered or timed events  Weaknesses in Security Practices • Protect sensitive data through authentication, authorization, and encryption  Access-control Problems • Access control to physical equipment and resources • Security practices
  • 8. 14 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Malware and Symptoms Types of Malware  Malware is used to steal data, bypass access controls, cause harm to, or compromise a system.  Types of Malware • Spyware - track and spy on the user • Adware - deliver advertisements, usually comes with spyware • Bot - automatically perform action • Ransomware - hold a computer system or the data captive until a payment is made • Scareware - persuade the user to take a specific action based on fear. Initial Code Red Worm Infection
  • 9. 15 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Malware and Symptoms Types of Malware (Cont.)  Types of Malware (Cont.) • Rootkit - modify the operating system to create a backdoor • Virus - malicious executable code that is attached to other executable files • Trojan horse - carries out malicious operations under the guise of a desired operation • Worm - replicate themselves by independently exploiting vulnerabilities in networks • Man-in-The-Middle or Man-in-The-Mobile – take control over a device without the user’s knowledge Code Red Worm Infection 19 Hours Later
  • 10. 16 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Types of Malware and Symptoms Symptoms of Malware  There is an increase in CPU usage.  There is a decrease in computer speed.  The computer freezes or crashes often.  There is a decrease in Web browsing speed.  There are unexplainable problems with network connections.  Files are modified.  Files are deleted.  There is a presence of unknown files, programs, or desktop icons.  There are unknown processes running.  Programs are turning off or reconfiguring themselves.  Email is being sent without the user’s knowledge or consent.
  • 11. 17 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Social Engineering  Social Engineering – manipulation of individual into performing actions or divulging confidential information • Pretexting - an attacker calls an individual and lies to them in an attempt to gain access to privileged data. • Tailgating - an attacker quickly follows an authorized person into a secure location. • Something for something (Quid pro quo) - an attacker requests personal information from a party in exchange for something
  • 12. 18 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Wi-Fi Password Cracking  Wi-Fi Password Cracking – Password discovery • Social engineering - The attacker manipulates a person who knows the password into providing it. • Brute-force attacks - The attacker tries several possible passwords in an attempt to guess the password. • Network sniffing - The password maybe discovered by listening and capturing packets send on the network.
  • 13. 19 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Phishing  Phishing • malicious party sends a fraudulent email disguised as being from a legitimate, trusted source • trick the recipient into installing malware on their device or sharing personal or financial information  Spear phishing • a highly targeted phishing attack
  • 14. 20 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Methods of Infiltration Vulnerability Exploitation  Vulnerability Exploitation – scan to find vulnerability to exploit • Step 1 - Gather information about the target system using port scanner or social engineering • Step 2 - Determine learned information from step 1 • Step 3 - Look for vulnerability • Step 4 - Use a known exploit or write a new exploit  Advanced Persistent Threats – a multi-phase, long term, stealthy and advanced operation against a specific target • usually well-funded • deploy customized malware
  • 15. 21 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Denial of Service DoS  DoS is a disruption of network services • Overwhelming quantity of traffic - a network, host, or application is sent an enormous quantity of data at a rate which it cannot handle • Maliciously formatted packets - maliciously formatted packet is sent to a host or application and the receiver is unable to handle it
  • 16. 22 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Denial of Service DDoS  Similar to DoS, from multiple, coordinated sources  Botnet - a network of infected hosts  Zombie - infected hosts  The zombies are controlled by handler systems.  The zombies continues to infect more hosts, creating more zombies.
  • 17. 23 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Denial of Service SEO Poisoning  SEO • Search Engine Optimization • Techniques to improve a website’s ranking by a search engine  SEO Poisoning • Increase traffic to malicious websites • Force malicious sites to rank higher
  • 18. 24 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2.2 The Cybersecurity Landscape
  • 19. 25 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Blended Attack What is a Blended Attack?  Uses multiple techniques to compromise a target  Uses a hybrid of worms, Trojan horses, spyware, keyloggers, spam and phishing schemes  Common blended attack example • spam email messages, instant messages or legitimate websites to distribute links • DDoS combined with phishing emails  Examples: Nimbda, CodeRed, BugBear, Klez, Slammer, Zeus/LICAT, and Conficker
  • 20. 26 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Impact Reduction What is Impact Reduction?  Communicate the issue  Be sincere and accountable  Provide details  Understand the cause of the breach  Take steps to avoid another similar breach in the future  Ensure all systems are clean  Educate employees, partners and customers
  • 21. 27 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2.3 Chapter Summary
  • 22. 28 © 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Chapter Summary Summary  Identify examples of security vulnerabilities.  Explain how a security vulnerability is exploited.  Describe types of malware and their symptoms, methods of infiltration, methods used to deny service.  Describe a blended attack and the importance of impact reduction.