S1 internet, secure place for business

•

0 likes•371 views

This document discusses security issues with conducting business over the internet. While the internet provides opportunities for communication and knowledge sharing, it also exposes companies to risks like hacking and data breaches. Various sectors and small to medium size businesses are all vulnerable to security problems online. The document argues that internet is good for business but companies must include security in their business plans and find a balance between risk and budget when it comes to protecting themselves online. It provides sources on specific hacking incidents and concludes by asking students to discuss in groups which sectors are most at risk and whether small businesses face security issues with internet business.

Technology News & Politics

Introduction
Seminar 1
Internet: secure place for Business ?
Josep Bardallo - 2012

INTERNET
2
/ 10
/ 2012
JOSEP BARDALLO
The most challenging tool in the managing arena ……
Main channel for communication, distribution or knowledge
networking ……
A “new” Business place for companies …………..
BUT …………..

COMPANIES HACKED: DATA BREACH & SERVICES DOWN …
2
/ 10
/ 2012
JOSEP BARDALLO

HACKING IS TODAY A BUSINESS …..
2
/ 10
/ 2012
JOSEP BARDALLO
• “Expensive cars choke the streets of Râmnicu
Vâlcea’s bustling center. Top-of-the-line BMWs,
Audis, and Mercedes driven by twenty- and
thirty-something men sporting gold chains.
• I ask my cab driver if these men all have high-
paying jobs. He laughs, then wiggles his fingers
as if typing on a keyboard…
• “They steal money on the Internet.”

AND A WEAPON …..
2
/ 10
/ 2012
JOSEP BARDALLO
http://socks-studio.com/2012/07/17/stuxnet-anatomy-of-the-first-weapon-made-entirely-out-of-code/

EVEN AGAINST THE MOST PREPARED TODAY ….
2
/ 10
/ 2012
JOSEP BARDALLO

AND ALL KIND OF DAILY USE THINGS ….
2
/ 10
/ 2012
JOSEP BARDALLO
http://www.euronews.com/2012/09/25/hacking-into-a-car

SO ………..
2
/ 10
/ 2012
JOSEP BARDALLO
Internet is a good place for business
But you need include security in the Business plan
Security is a balance between Risk and Budget

CLASS DISCUSSION AND REPORT
2
/ 10
/ 2012
JOSEP BARDALLO
Work in teams, and choose a question:
 Which sector can be more affected by Internet issues ?
 Are SMB affected by security issues in Internet business ?
 http://www.tekconn.com/news/it-support/smbs-dont-have-to-be-targeted-to-be-hacked/
5’ speak conclusions each team (to entire class), and open discussion
Report for the next day

BIBLIOGRAPHY
2
/ 10
/ 2012
JOSEP BARDALLO
http://www.forbes.com/sites/andygreenberg/2011/04/04/anonymous-hackers-bring-down-sony-websites/
http://www.wired.com/gamelife/2011/05/sony-online-entertainment-hack
http://articles.cnn.com/2012-07-12/tech/tech_web_yahoo-users-hacked_1_passwords-yahoo-accounts-hack
http://openspace.org.in/UIDaadhaarsecurity2012
http://www.wired.com/magazine/2011/01/ff_hackerville_romania/
http://socks-studio.com/2012/07/17/stuxnet-anatomy-of-the-first-weapon-made-entirely-out-of-code/
http://www.youtube.com/watch?v=uZUaZjZAy1s
http://www.huffingtonpost.com/2012/10/01/white-house-hacked-cyber-_n_1928646.html
http://www.foxnews.com/tech/2012/10/01/washington-confirms-chinese-hack-attack-on-white-house-computer/
http://www.senderbase.org/home/detail_spam_volume
http://www.theatlantic.com/technology/archive/2012/08/all-the-spammers-in-the-world-may-only-make-200-million-a-
year/260814/
http://www.computerworld.com/s/article/9229919/Car_hacking_Remote_access_and_other_security_issues
http://www.euronews.com/2012/09/25/hacking-into-a-car/
http://www.tekconn.com/news/it-support/smbs-dont-have-to-be-targeted-to-be-hacked/

Viewers also liked

Diapositivas choricasanare

marily2014

17 nov

OSCAR SEGURA

EntradaNicolas Astacio

11nov

OSCAR SEGURA

Unidad de servicios de apoyo a la educación

Jair De la Cruz

32150Shuvadip Som

Power point tics

Carla Escobar

Eduate othersaprbax5098

AsmisN-WS3A3.3CompleteSlides[1]Nestor Asmis

PERTUMBUHAN,PERKEMBANGAN,PERKECAMBAHAN

Muhammad Haj

18nnov

OSCAR SEGURA

Viewers also liked (11)

Diapositivas choricasanare

17 nov

Entrada

11nov

Unidad de servicios de apoyo a la educación

32150

Power point tics

Eduate others

AsmisN-WS3A3.3CompleteSlides[1]

PERTUMBUHAN,PERKEMBANGAN,PERKECAMBAHAN

18nnov

Recently uploaded

Mind map of terminologies used in context of Generative AI

Kumud Singh

20 Comprehensive Checklist of Designing and Developing a Website

Pixlogix Infotech

Dive into the world of Website Designing and Developing with Pixlogix! Looking to create a stunning online presence? Look no further! Our comprehensive checklist covers everything you need to know to craft a website that stands out. From user-friendly design to seamless functionality, we've got you covered. Don't miss out on this invaluable resource! Check out our checklist now at Pixlogix and start your journey towards a captivating online presence today.

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance

zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex Proofs

Alex Pruden

This paper presents Reef, a system for generating publicly verifiable succinct non-interactive zero-knowledge proofs that a committed document matches or does not match a regular expression. We describe applications such as proving the strength of passwords, the provenance of email despite redactions, the validity of oblivious DNS queries, and the existence of mutations in DNA. Reef supports the Perl Compatible Regular Expression syntax, including wildcards, alternation, ranges, capture groups, Kleene star, negations, and lookarounds. Reef introduces a new type of automata, Skipping Alternating Finite Automata (SAFA), that skips irrelevant parts of a document when producing proofs without undermining soundness, and instantiates SAFA with a lookup argument. Our experimental evaluation confirms that Reef can generate proofs for documents with 32M characters; the proofs are small and cheap to verify (under a second). Paper: https://eprint.iacr.org/2023/1886

20240605 QFM017 Machine Intelligence Reading List May 2024

Matthew Sinclair

Uni Systems Copilot event_05062024_C.Vlachos.pdf

Uni Systems S.M.S.A.

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Securing your Kubernetes cluster_ a step-by-step guide to success !

KatiaHIMEUR1

Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster. However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks. In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.

GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024

Neo4j

Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI

Vladimir Iglovikov, Ph.D.

Presented by Vladimir Iglovikov: - https://www.linkedin.com/in/iglovikov/ - https://x.com/viglovikov - https://www.instagram.com/ternaus/ This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation. Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners. This case study covers various aspects, including: People: The contributors and community that have supported Albumentations. Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions. Challenges: The hurdles in monetizing open-source projects and measuring user engagement. Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration. Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community. Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations. Mental Health: Maintaining balance and not feeling pressured by user demands. Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth. Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects. Explore more about Albumentations and join the community at: GitHub: https://github.com/albumentations-team/albumentations Website: https://albumentations.ai/ LinkedIn: https://www.linkedin.com/company/100504475 Twitter: https://x.com/albumentations

By Design, not by Accident - Agile Venture Bolzano 2024

Pierluigi Pugliese

Pushing the limits of ePRTC: 100ns holdover for 100 days

Adtran

A tale of scale & speed: How the US Navy is enabling software delivery from l...

sonjaschweigert1

Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved: - Reduction in onboarding time from 5 weeks to 1 day - Improved developer experience and productivity through actionable findings and reduction of false positives - Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO) Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production. We will cover: - How to remove silos in DevSecOps - How to build efficient development pipeline roles and component templates - How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence) - How to streamline operations with automated policy checks on container images

Epistemic Interaction - tuning interfaces to provide information for AI support

Alan Dix

Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024 https://alandix.com/academic/papers/synergy2024-epistemic/ As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.

How to Get CNIC Information System with Paksim Ga.pptx

danishmna97

Introduction to CHERI technology - Cybersecurity

mikeeftimakis1

Elizabeth Buie - Older adults: Are we really designing for our future selves?

Nexer Digital

GridMate - End to end testing is a critical piece to ensure quality and avoid...

ThomasParaiso2

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

Recently uploaded (20)

Mind map of terminologies used in context of Generative AI

20 Comprehensive Checklist of Designing and Developing a Website

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex Proofs

20240605 QFM017 Machine Intelligence Reading List May 2024

Uni Systems Copilot event_05062024_C.Vlachos.pdf

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

Securing your Kubernetes cluster_ a step-by-step guide to success !

GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024

Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI

By Design, not by Accident - Agile Venture Bolzano 2024

Pushing the limits of ePRTC: 100ns holdover for 100 days

A tale of scale & speed: How the US Navy is enabling software delivery from l...

Epistemic Interaction - tuning interfaces to provide information for AI support

How to Get CNIC Information System with Paksim Ga.pptx

Introduction to CHERI technology - Cybersecurity

Elizabeth Buie - Older adults: Are we really designing for our future selves?

GridMate - End to end testing is a critical piece to ensure quality and avoid...

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

S1 internet, secure place for business

1. Introduction Seminar 1 Internet: secure place for Business ? Josep Bardallo - 2012

2. INTERNET 2 / 10 / 2012 JOSEP BARDALLO The most challenging tool in the managing arena …… Main channel for communication, distribution or knowledge networking …… A “new” Business place for companies ………….. BUT …………..

3. COMPANIES HACKED: DATA BREACH & SERVICES DOWN … 2 / 10 / 2012 JOSEP BARDALLO

4. COMPANIES HACKED: DATA BREACH & SERVICES DOWN … 2 / 10 / 2012 JOSEP BARDALLO

5. HACKING IS TODAY A BUSINESS ….. 2 / 10 / 2012 JOSEP BARDALLO • “Expensive cars choke the streets of Râmnicu Vâlcea’s bustling center. Top-of-the-line BMWs, Audis, and Mercedes driven by twenty- and thirty-something men sporting gold chains. • I ask my cab driver if these men all have high- paying jobs. He laughs, then wiggles his fingers as if typing on a keyboard… • “They steal money on the Internet.”

6. AND A WEAPON ….. 2 / 10 / 2012 JOSEP BARDALLO http://socks-studio.com/2012/07/17/stuxnet-anatomy-of-the-first-weapon-made-entirely-out-of-code/

7. EVEN AGAINST THE MOST PREPARED TODAY …. 2 / 10 / 2012 JOSEP BARDALLO

8. AND ALL KIND OF DAILY USE THINGS …. 2 / 10 / 2012 JOSEP BARDALLO http://www.euronews.com/2012/09/25/hacking-into-a-car

9. SO ……….. 2 / 10 / 2012 JOSEP BARDALLO Internet is a good place for business But you need include security in the Business plan Security is a balance between Risk and Budget

10. CLASS DISCUSSION AND REPORT 2 / 10 / 2012 JOSEP BARDALLO Work in teams, and choose a question:  Which sector can be more affected by Internet issues ?  Are SMB affected by security issues in Internet business ?  http://www.tekconn.com/news/it-support/smbs-dont-have-to-be-targeted-to-be-hacked/ 5’ speak conclusions each team (to entire class), and open discussion Report for the next day

11. BIBLIOGRAPHY 2 / 10 / 2012 JOSEP BARDALLO http://www.forbes.com/sites/andygreenberg/2011/04/04/anonymous-hackers-bring-down-sony-websites/ http://www.wired.com/gamelife/2011/05/sony-online-entertainment-hack http://articles.cnn.com/2012-07-12/tech/tech_web_yahoo-users-hacked_1_passwords-yahoo-accounts-hack http://openspace.org.in/UIDaadhaarsecurity2012 http://www.wired.com/magazine/2011/01/ff_hackerville_romania/ http://socks-studio.com/2012/07/17/stuxnet-anatomy-of-the-first-weapon-made-entirely-out-of-code/ http://www.youtube.com/watch?v=uZUaZjZAy1s http://www.huffingtonpost.com/2012/10/01/white-house-hacked-cyber-_n_1928646.html http://www.foxnews.com/tech/2012/10/01/washington-confirms-chinese-hack-attack-on-white-house-computer/ http://www.senderbase.org/home/detail_spam_volume http://www.theatlantic.com/technology/archive/2012/08/all-the-spammers-in-the-world-may-only-make-200-million-a- year/260814/ http://www.computerworld.com/s/article/9229919/Car_hacking_Remote_access_and_other_security_issues http://www.euronews.com/2012/09/25/hacking-into-a-car/ http://www.tekconn.com/news/it-support/smbs-dont-have-to-be-targeted-to-be-hacked/

S1 internet, secure place for business

Recommended

Recommended

More Related Content

Viewers also liked

Viewers also liked (11)

More from Josep Bardallo

More from Josep Bardallo (20)

Recently uploaded

Recently uploaded (20)

S1 internet, secure place for business