Twitter bitcoin scam_jul_2020
•
0 likes•168 views
In July 2020 a crypto scam affected millions of Twitter users. The scam used 130 public figure and company accounts to scam users to deposit money in Bitcoin wallets. Victims lost about USD 118K in two days. The scammer, is likely to have used social engineering techniques such as phishing to gain access to inside systems. The attached document deconstructs the scam and offers lessons to be learnt from this incident.
Report
Share
Report
Share
Download to read offline
Recommended
Data Privacy & Security
Short presentation for "Executive Briefing for CISA, CISM, CRISC Program" at Binus University International, Jakarta, Indonesia
Hacking
This document discusses hacking (cybercrime) and defines it as illegally accessing computer systems or networks without authorization. It outlines the history of hacking from the early positive use of the term to refer to clever programming to the modern negative connotation involving illegal activity. It describes different types of hackers (black hat, white hat, grey hat) and types of cybercrimes like hacking, denial of service attacks, and software piracy. Laws around catching and punishing hackers are also summarized.
Social Engineering,social engeineering techniques,social engineering protecti...
Social Engineering,social engineering techniques,social engineering protection techniques,stages of social engineering ,effect on organizations
Social engineering
Social engineering is a form of hacking that exploits human trust and helpfulness. It is done through impersonation, phone calls, email, or in-person interactions to obtain sensitive information. Anyone can be a target if the social engineer can build rapport and trust. Common techniques include pretending to need technical help, claiming to be from the same organization, or creating a sense of urgency or fear in the target. Education and strict security policies are needed to combat social engineering threats.
Titan branding
This document summarizes information about Titan's watch portfolio and brands. Titan leads the Indian watch market with four main brands - Titan, Sonata, Fast Track, and Xylys. Fast Track targets youth aged 18-30 and was relaunched in 2005 with a new logo and identity to distance it from its previous association with Titan. The rebranding was successful, driving 150% and 100% growth in its first two years. Titan has a wide range of watches across different price points and styles to target various customer segments.
Data Privacy and Protection Presentation
The document discusses how to protect personal information online. It notes that while the internet allows many opportunities, personal data like social security numbers, bank accounts, credit cards and health information are worth protecting. The biggest risk is identity theft, where criminals use stolen information to impersonate victims. Simple steps like using strong passwords of at least 11 characters mixing letters, numbers and symbols, being careful what personal details are shared publicly, and only entering account details on secure websites can help reduce risks. Overall the document provides tips for safe internet use while avoiding living in fear online.
Data Privacy Introduction
This document discusses data privacy fundamentals and attacks. It begins with definitions of data privacy and the need to protect personally identifiable information. It then outlines common data privacy threats like phishing, malware, and improper access. The document also examines access control models and regulations around data protection. Overall, it provides an introduction to key concepts in data privacy and security risks to consider.
Indian perspective of cyber security
How does India stand in the perspective of global terrorism and does it have enough countermeasures to tackle the ever growing threat of cyber crime
Recommended
Data Privacy & Security
Short presentation for "Executive Briefing for CISA, CISM, CRISC Program" at Binus University International, Jakarta, Indonesia
Hacking
This document discusses hacking (cybercrime) and defines it as illegally accessing computer systems or networks without authorization. It outlines the history of hacking from the early positive use of the term to refer to clever programming to the modern negative connotation involving illegal activity. It describes different types of hackers (black hat, white hat, grey hat) and types of cybercrimes like hacking, denial of service attacks, and software piracy. Laws around catching and punishing hackers are also summarized.
Social Engineering,social engeineering techniques,social engineering protecti...
Social Engineering,social engineering techniques,social engineering protection techniques,stages of social engineering ,effect on organizations
Social engineering
Social engineering is a form of hacking that exploits human trust and helpfulness. It is done through impersonation, phone calls, email, or in-person interactions to obtain sensitive information. Anyone can be a target if the social engineer can build rapport and trust. Common techniques include pretending to need technical help, claiming to be from the same organization, or creating a sense of urgency or fear in the target. Education and strict security policies are needed to combat social engineering threats.
Titan branding
This document summarizes information about Titan's watch portfolio and brands. Titan leads the Indian watch market with four main brands - Titan, Sonata, Fast Track, and Xylys. Fast Track targets youth aged 18-30 and was relaunched in 2005 with a new logo and identity to distance it from its previous association with Titan. The rebranding was successful, driving 150% and 100% growth in its first two years. Titan has a wide range of watches across different price points and styles to target various customer segments.
Data Privacy and Protection Presentation
The document discusses how to protect personal information online. It notes that while the internet allows many opportunities, personal data like social security numbers, bank accounts, credit cards and health information are worth protecting. The biggest risk is identity theft, where criminals use stolen information to impersonate victims. Simple steps like using strong passwords of at least 11 characters mixing letters, numbers and symbols, being careful what personal details are shared publicly, and only entering account details on secure websites can help reduce risks. Overall the document provides tips for safe internet use while avoiding living in fear online.
Data Privacy Introduction
This document discusses data privacy fundamentals and attacks. It begins with definitions of data privacy and the need to protect personally identifiable information. It then outlines common data privacy threats like phishing, malware, and improper access. The document also examines access control models and regulations around data protection. Overall, it provides an introduction to key concepts in data privacy and security risks to consider.
Indian perspective of cyber security
How does India stand in the perspective of global terrorism and does it have enough countermeasures to tackle the ever growing threat of cyber crime
Cyber Crime
Presentation on Cyber Crime and Cyber Laws in India including case study for Credit card fraud and Hacking crimes
Cyber security and Cyber Crime
This document discusses cyber security in banks. It begins by defining cybersecurity and its importance for financial institutions. It then outlines some major cyber security threats banks face, such as unencrypted data, automation without security, and third party services. Specific cyber crimes like phishing, ransomware, and bank fraud are explained. The document also provides examples of cyber attacks on Indian banks and discusses implementing blockchain technology for improved security. Finally, it presents a case study on a cyber attack that stole over $94 million from an Indian bank through malware.
Post It Notes (Presentation for a Product Development)
- Silver Spencer, a chemist at 3M, created an adhesive that did not stick well, which was seen as a failure until Arthur Fry used it to create bookmarks that would not fly away. This inspired the creation of Post-it Notes, a product that allowed inforformal communication through movable notes.
- Post-it Notes were initially marketed unsuccessfully until viral marketing techniques demonstrated their usefulness, inspiring demand. The commercial launch of Post-it Notes then led to a wide range of Post-it products that facilitated organization and communication through context-sensitive notes.
Social engineering attacks
This document discusses social engineering techniques used by attackers to trick people into divulging sensitive information or performing actions. It defines key terms and explains why social engineering is a threat even for organizations with strong technical security controls. Common social engineering attack methods are described in detail, including phishing emails, phone calls, dropping infected USB drives, and impersonation. The document emphasizes that education is needed to help people recognize and avoid social engineering tactics.
Social media and Security risks
There is no argument about the popularity of the social platforms such as Facebook, YouTube, twitter, etc. These platforms can be used to stay in touch with your friends, increase sales revenues for organizations and as a collaboration tool to stay connected with the public. However, each of these benefits comes at a cost, putting your private information at a risk/ exposed. We aim to discuss the common security risks associated with usage of these platforms including risk mitigation strategies.
Intro Video : https://www.youtube.com/watch?v=zxpa4dNVd3c
Presentation for Computer Society of Sri Lanka on 24 Feb 2015
Cyber security government ppt By Vishwadeep Badgujar
This document discusses cyber security issues facing government offices in India and provides recommendations. It notes that over 14,000 Indian sites were hacked in one year, banks lost money to cyber criminals, and personal data has been leaked from breaches. Proper precautions are recommended like using strong passwords, two-factor authentication, privacy settings, and firewalls. Government offices should maximize security by properly configuring firewalls and operating systems, installing essential secure software and certificates, and monitoring network activity.
Overview on data privacy
- Data privacy refers to standards protecting personal data like names, addresses, and genetic information that can identify research subjects. It is an important human right and failure to comply can result in fines and legal consequences.
- Key regulations and guidelines on data privacy include the EU Data Protection Directive, Clinical Trials Directive, General Data Protection Regulation, and ICH GCP guidelines. They require protecting subject confidentiality, obtaining consent, and having security measures for electronic and paper records.
- Clinical data managers should be trained on privacy requirements and ensure access to data is restricted and minimum personal information is collected.
Nestle's Social Media Disaster 2010
Greenpeace accused Nestlé of contributing to deforestation through its palm oil suppliers in Indonesia, which threatened orangutans. Videos on the issue received over 1.2 million views on YouTube and Nestlé's Facebook page was overwhelmed with negative comments. Though Nestlé responded by saying the supplier was terminated, social media criticism remained. The story spread on Twitter and was picked up by the Wall Street Journal, just a week before Easter which is an important sales period. The document recommends that global brands establish social media response plans to mitigate similar crises.
INFORMATION SECURITY: THREATS AND SOLUTIONS.
Information security threats include eavesdropping, malware, trojans, viruses, worms, denial of service attacks, vulnerabilities, computer crimes, and key logging. Solutions involve access control using identification and authentication, cryptography, firewalls, intrusion detection systems, and application security. The document discusses these threats and solutions in detail using examples and case studies, and emphasizes the importance of data protection and information security. It concludes that information security requires an ongoing process to protect information and systems from unauthorized access or disruption.
Titan - A brief study on Titan
Titan is India's largest watch manufacturer established in 1984 as a joint venture between Titan and TIDCO. It has three operating divisions: Time Products (watches), Jewellery (Tanishq), and International Business. Titan uses advanced manufacturing processes and quality control systems across its watch and jewellery businesses. It has a large retail presence in India with over 11,000 outlets and sells through an extensive supply chain network. Titan is focused on innovation through various initiatives like its Innovation Council.
Cyber Security
The document discusses an introduction to cyber security presented by Himansh Bhandari. It defines cyber security as the body of technologies, processes, and practices designed to protect networks, devices, programs, and data from attack, damage, or unauthorized access. It discusses the history and evolution of the internet. It also covers types of malware like viruses, worms, Trojan horses and spyware. It discusses types of hackers like white hat, grey hat and black hat hackers. It provides information on implementing cyber security for mobile phones, banking and in India. It highlights major cyber security problems like viruses, hackers, malware and password cracking and discusses solutions to prevent them.
Ethics in Cyber Space
This document discusses ethics in cyberspace and defines cyberethics as the study of ethics pertaining to computer networks and how networked computers affect individuals and society. It identifies several ethical issues in cyberspace including privacy, access rights, harmful actions, piracy, plagiarism, cyberbullying, and violating privacy. The document provides examples of each issue and outlines rules for ethical cyber activity such as not using offensive language, encouraging bullies, or breaking into computers. It emphasizes protecting privacy and guarding one's online reputation.
Social engineering-Attack of the Human Behavior
Social engineering exploits human behavior and trust to gain access to sensitive information. It includes technical attacks like phishing emails and pop-up windows, as well as non-technical attacks like dumpster diving. Common human behaviors exploited include curiosity, fear, and thoughtlessness. To help mitigate social engineering risks, organizations should educate employees, implement security policies, conduct audits, and use technical defenses like email filters and firewalls. Regular awareness training can help motivate employees to follow best practices.
CyberSecurity and Importance of cybersecurity
Cybersecurity is important because it protects all categories of data from theft and damage. This includes sensitive data, personally identifiable information (PII), protected health information (PHI), personal information, intellectual property, data, and governmental and industry information systems.
in the modern day, there are dozens or possibly even hundreds of different interconnected assets, networks, and systems that we rely on every day for the normal functioning of society. Without these various infrastructure components, we wouldn’t be able to enjoy the benefits of living in the 21st century – small-scale disruptions to these components would result in the temporary loss of crucial capabilities.
But, if escalated to a larger scale, society would be plunged into a catastrophic black sky event, resulting in cascading failures and a serious threat to human continuity. Examples include conflicts between nations where an aggressor seeks to disable their opponent’s ability to communicate or mobilize. And what better way for a domestic or international terrorist group to sow confusion and fear than to prevent our critical infrastructure from functioning and, in turn, our successful ability to respond and recover?
In other words, it is fundamental to the safety and prosperity of a nation to provide reliable critical infrastructure security.
Cyber crime and security in pakistan
Cyber crime has been on the rise in Pakistan over the past decade according to statistics from the country's Federal Investigation Agency (FIA). The number of reported cyber crime cases increased five-fold between 2007 and 2010. Common forms of cyber crime include hacking, data theft, email bombing, denial of service attacks, and financial crimes like salami attacks. The document outlines the history of some notable cyber crimes and provides an overview of different types of cyber crimes, their nature, and risks. It concludes with emphasizing the growing threat of cyber crimes in Pakistan.
Cybersecurity Awareness Training Presentation v2021.08
This free cybersecurity awareness training slide deck is meant to be used by organizations and end users to help them better understand ways they can avoid scams, cyber attacks, and become more security aware. This slide deck is based on version 2021.08 of our wildly popular slide deck we originally released as open-source in September 2019. In just over 6 months, version 1.0 was downloaded thousands of times and in over 150 countries!
On our website, you will also find several other related goodies. For example, we have free and downloadable worksheets referenced in the training. These worksheets provide material that attendees can take back home with them to try out and continue the security conversation. We also have free cybersecurity quizzes that are based directly off of this material so anyone can test their awareness knowledge. We even have a downloadable 'certificate of completion' for this training, which allows attendees to fill-in their name and date so they can then print it out to show others (or even their employer) that they are now more cyber aware.
https://www.treetopsecurity.com/cat
On our website, we also have a video/webinar presentation of this material if you would like to share it with others.
https://www.treetopsecurity.com/cat#video
Do you want to take this content and present it in your own community or business? Fantastic! You may download this slide deck as editable content. This allows you to make changes and present it at your local library, business events, co-working spaces, schools, etc. The latest version is always available on our website as a Microsoft PowerPoint presentation (.pptx) or Google Slides using ‘Make a Copy’. Those downloadable versions from our website also include speaker notes to provide talking points or tips for anyone delivering the content.
https://www.treetopsecurity.com/slides
Privacy and Data Protection
Presented by Prof. Kalamullah Ramli, Executive Team National ICT Council (DeTIKNas) in IISF 2012, Bandung, 10 Oktober 2012
Cyber crime types
This document discusses various types of cyber crimes including crimes against individuals, property, organizations and society. It describes causes of cyber crimes such as passion of youngsters, desire for recognition or money, and security issues. It then focuses on specific cyber crimes like unauthorized access, viruses, trojans, hacking, social engineering techniques like phishing and baiting, and spam. Common hacking tools are also outlined. Throughout, methods of prevention and popular examples are provided for each topic.
Titan mrktng strategy
Titan Industries was established in 1984 as a joint venture to manufacture watches in India using quartz technology. It launched multiple watch brands like Titan, Fastrack, and Sonata targeting different market segments. Titan became the market leader in watches. Titan later diversified into jewelry under the Tanishq brand and eyewear. It manufactures over 8 million watches and jewelry annually. Titan positions its brands like Titan and Tanishq as premium lifestyle brands offering high quality products. It segments the market and positions brands based on attributes, users, competitors, and prices.
Cyber Security in the Manufacturing Industry: New challenges in the informati...
Cyber Security in the Manufacturing Industry: New challenges in the informati...Ekonomikas ministrija
This document discusses cyber security challenges in the manufacturing industry. It provides background on the growth of internet connectivity and cyber attacks over time. Key points mentioned include that digitalization is driving industry 4.0 but also increasing security risks. Manufacturing is now one of the most frequently hacked sectors, with nearly half of all cyber attacks targeting small businesses. The document examines past significant cyber attacks like Stuxnet and those targeting Ukraine's power grid. It also notes that the majority of industrial organization's networks remain vulnerable to remote hackers. Finally, it raises important questions manufacturing executives should consider around protecting industrial control systems and networks from internet threats.Cyber security talks 2019 by theko moima
This document provides information about an upcoming cyber security workshop in Lesotho. The workshop will be presented by Mr. Theko Moima, a certified ethical hacker. It will be aimed at government officials from the ministries of education, defense, police, and justice. The objectives are to equip government with cyber skills, enable protection against threats, and demonstrate cyber attacks and vulnerabilities. The workshop will use both Sesotho and English and include both technical and everyday language explanations. It will involve demonstrations of attacks and defenses using attendees' own devices. The document outlines topics that will be covered including cyber crime, security, hackers, the CIA triad model, hacking methods, and examples of common attacks.
Tik tok case study
TikTok has faced scrutiny over its Chinese ownership and potential national security risks. This document outlines a plan to help TikTok build trust with stakeholders in response. It proposes creating a crisis management plan, increasing transparency online about TikTok's values and policies, and strengthening media relations through proactive outreach. The goal is for TikTok to control damage from future crises and increase transparency to build long-term trust.
More Related Content
What's hot
Cyber Crime
Presentation on Cyber Crime and Cyber Laws in India including case study for Credit card fraud and Hacking crimes
Cyber security and Cyber Crime
This document discusses cyber security in banks. It begins by defining cybersecurity and its importance for financial institutions. It then outlines some major cyber security threats banks face, such as unencrypted data, automation without security, and third party services. Specific cyber crimes like phishing, ransomware, and bank fraud are explained. The document also provides examples of cyber attacks on Indian banks and discusses implementing blockchain technology for improved security. Finally, it presents a case study on a cyber attack that stole over $94 million from an Indian bank through malware.
Post It Notes (Presentation for a Product Development)
- Silver Spencer, a chemist at 3M, created an adhesive that did not stick well, which was seen as a failure until Arthur Fry used it to create bookmarks that would not fly away. This inspired the creation of Post-it Notes, a product that allowed inforformal communication through movable notes.
- Post-it Notes were initially marketed unsuccessfully until viral marketing techniques demonstrated their usefulness, inspiring demand. The commercial launch of Post-it Notes then led to a wide range of Post-it products that facilitated organization and communication through context-sensitive notes.
Social engineering attacks
This document discusses social engineering techniques used by attackers to trick people into divulging sensitive information or performing actions. It defines key terms and explains why social engineering is a threat even for organizations with strong technical security controls. Common social engineering attack methods are described in detail, including phishing emails, phone calls, dropping infected USB drives, and impersonation. The document emphasizes that education is needed to help people recognize and avoid social engineering tactics.
Social media and Security risks
There is no argument about the popularity of the social platforms such as Facebook, YouTube, twitter, etc. These platforms can be used to stay in touch with your friends, increase sales revenues for organizations and as a collaboration tool to stay connected with the public. However, each of these benefits comes at a cost, putting your private information at a risk/ exposed. We aim to discuss the common security risks associated with usage of these platforms including risk mitigation strategies.
Intro Video : https://www.youtube.com/watch?v=zxpa4dNVd3c
Presentation for Computer Society of Sri Lanka on 24 Feb 2015
Cyber security government ppt By Vishwadeep Badgujar
This document discusses cyber security issues facing government offices in India and provides recommendations. It notes that over 14,000 Indian sites were hacked in one year, banks lost money to cyber criminals, and personal data has been leaked from breaches. Proper precautions are recommended like using strong passwords, two-factor authentication, privacy settings, and firewalls. Government offices should maximize security by properly configuring firewalls and operating systems, installing essential secure software and certificates, and monitoring network activity.
Overview on data privacy
- Data privacy refers to standards protecting personal data like names, addresses, and genetic information that can identify research subjects. It is an important human right and failure to comply can result in fines and legal consequences.
- Key regulations and guidelines on data privacy include the EU Data Protection Directive, Clinical Trials Directive, General Data Protection Regulation, and ICH GCP guidelines. They require protecting subject confidentiality, obtaining consent, and having security measures for electronic and paper records.
- Clinical data managers should be trained on privacy requirements and ensure access to data is restricted and minimum personal information is collected.
Nestle's Social Media Disaster 2010
Greenpeace accused Nestlé of contributing to deforestation through its palm oil suppliers in Indonesia, which threatened orangutans. Videos on the issue received over 1.2 million views on YouTube and Nestlé's Facebook page was overwhelmed with negative comments. Though Nestlé responded by saying the supplier was terminated, social media criticism remained. The story spread on Twitter and was picked up by the Wall Street Journal, just a week before Easter which is an important sales period. The document recommends that global brands establish social media response plans to mitigate similar crises.
INFORMATION SECURITY: THREATS AND SOLUTIONS.
Information security threats include eavesdropping, malware, trojans, viruses, worms, denial of service attacks, vulnerabilities, computer crimes, and key logging. Solutions involve access control using identification and authentication, cryptography, firewalls, intrusion detection systems, and application security. The document discusses these threats and solutions in detail using examples and case studies, and emphasizes the importance of data protection and information security. It concludes that information security requires an ongoing process to protect information and systems from unauthorized access or disruption.
Titan - A brief study on Titan
Titan is India's largest watch manufacturer established in 1984 as a joint venture between Titan and TIDCO. It has three operating divisions: Time Products (watches), Jewellery (Tanishq), and International Business. Titan uses advanced manufacturing processes and quality control systems across its watch and jewellery businesses. It has a large retail presence in India with over 11,000 outlets and sells through an extensive supply chain network. Titan is focused on innovation through various initiatives like its Innovation Council.
Cyber Security
The document discusses an introduction to cyber security presented by Himansh Bhandari. It defines cyber security as the body of technologies, processes, and practices designed to protect networks, devices, programs, and data from attack, damage, or unauthorized access. It discusses the history and evolution of the internet. It also covers types of malware like viruses, worms, Trojan horses and spyware. It discusses types of hackers like white hat, grey hat and black hat hackers. It provides information on implementing cyber security for mobile phones, banking and in India. It highlights major cyber security problems like viruses, hackers, malware and password cracking and discusses solutions to prevent them.
Ethics in Cyber Space
This document discusses ethics in cyberspace and defines cyberethics as the study of ethics pertaining to computer networks and how networked computers affect individuals and society. It identifies several ethical issues in cyberspace including privacy, access rights, harmful actions, piracy, plagiarism, cyberbullying, and violating privacy. The document provides examples of each issue and outlines rules for ethical cyber activity such as not using offensive language, encouraging bullies, or breaking into computers. It emphasizes protecting privacy and guarding one's online reputation.
Social engineering-Attack of the Human Behavior
Social engineering exploits human behavior and trust to gain access to sensitive information. It includes technical attacks like phishing emails and pop-up windows, as well as non-technical attacks like dumpster diving. Common human behaviors exploited include curiosity, fear, and thoughtlessness. To help mitigate social engineering risks, organizations should educate employees, implement security policies, conduct audits, and use technical defenses like email filters and firewalls. Regular awareness training can help motivate employees to follow best practices.
CyberSecurity and Importance of cybersecurity
Cybersecurity is important because it protects all categories of data from theft and damage. This includes sensitive data, personally identifiable information (PII), protected health information (PHI), personal information, intellectual property, data, and governmental and industry information systems.
in the modern day, there are dozens or possibly even hundreds of different interconnected assets, networks, and systems that we rely on every day for the normal functioning of society. Without these various infrastructure components, we wouldn’t be able to enjoy the benefits of living in the 21st century – small-scale disruptions to these components would result in the temporary loss of crucial capabilities.
But, if escalated to a larger scale, society would be plunged into a catastrophic black sky event, resulting in cascading failures and a serious threat to human continuity. Examples include conflicts between nations where an aggressor seeks to disable their opponent’s ability to communicate or mobilize. And what better way for a domestic or international terrorist group to sow confusion and fear than to prevent our critical infrastructure from functioning and, in turn, our successful ability to respond and recover?
In other words, it is fundamental to the safety and prosperity of a nation to provide reliable critical infrastructure security.
Cyber crime and security in pakistan
Cyber crime has been on the rise in Pakistan over the past decade according to statistics from the country's Federal Investigation Agency (FIA). The number of reported cyber crime cases increased five-fold between 2007 and 2010. Common forms of cyber crime include hacking, data theft, email bombing, denial of service attacks, and financial crimes like salami attacks. The document outlines the history of some notable cyber crimes and provides an overview of different types of cyber crimes, their nature, and risks. It concludes with emphasizing the growing threat of cyber crimes in Pakistan.
Cybersecurity Awareness Training Presentation v2021.08
This free cybersecurity awareness training slide deck is meant to be used by organizations and end users to help them better understand ways they can avoid scams, cyber attacks, and become more security aware. This slide deck is based on version 2021.08 of our wildly popular slide deck we originally released as open-source in September 2019. In just over 6 months, version 1.0 was downloaded thousands of times and in over 150 countries!
On our website, you will also find several other related goodies. For example, we have free and downloadable worksheets referenced in the training. These worksheets provide material that attendees can take back home with them to try out and continue the security conversation. We also have free cybersecurity quizzes that are based directly off of this material so anyone can test their awareness knowledge. We even have a downloadable 'certificate of completion' for this training, which allows attendees to fill-in their name and date so they can then print it out to show others (or even their employer) that they are now more cyber aware.
https://www.treetopsecurity.com/cat
On our website, we also have a video/webinar presentation of this material if you would like to share it with others.
https://www.treetopsecurity.com/cat#video
Do you want to take this content and present it in your own community or business? Fantastic! You may download this slide deck as editable content. This allows you to make changes and present it at your local library, business events, co-working spaces, schools, etc. The latest version is always available on our website as a Microsoft PowerPoint presentation (.pptx) or Google Slides using ‘Make a Copy’. Those downloadable versions from our website also include speaker notes to provide talking points or tips for anyone delivering the content.
https://www.treetopsecurity.com/slides
Privacy and Data Protection
Presented by Prof. Kalamullah Ramli, Executive Team National ICT Council (DeTIKNas) in IISF 2012, Bandung, 10 Oktober 2012
Cyber crime types
This document discusses various types of cyber crimes including crimes against individuals, property, organizations and society. It describes causes of cyber crimes such as passion of youngsters, desire for recognition or money, and security issues. It then focuses on specific cyber crimes like unauthorized access, viruses, trojans, hacking, social engineering techniques like phishing and baiting, and spam. Common hacking tools are also outlined. Throughout, methods of prevention and popular examples are provided for each topic.
Titan mrktng strategy
Titan Industries was established in 1984 as a joint venture to manufacture watches in India using quartz technology. It launched multiple watch brands like Titan, Fastrack, and Sonata targeting different market segments. Titan became the market leader in watches. Titan later diversified into jewelry under the Tanishq brand and eyewear. It manufactures over 8 million watches and jewelry annually. Titan positions its brands like Titan and Tanishq as premium lifestyle brands offering high quality products. It segments the market and positions brands based on attributes, users, competitors, and prices.
Cyber Security in the Manufacturing Industry: New challenges in the informati...
Cyber Security in the Manufacturing Industry: New challenges in the informati...Ekonomikas ministrija
This document discusses cyber security challenges in the manufacturing industry. It provides background on the growth of internet connectivity and cyber attacks over time. Key points mentioned include that digitalization is driving industry 4.0 but also increasing security risks. Manufacturing is now one of the most frequently hacked sectors, with nearly half of all cyber attacks targeting small businesses. The document examines past significant cyber attacks like Stuxnet and those targeting Ukraine's power grid. It also notes that the majority of industrial organization's networks remain vulnerable to remote hackers. Finally, it raises important questions manufacturing executives should consider around protecting industrial control systems and networks from internet threats.What's hot (20)
Post It Notes (Presentation for a Product Development)
Post It Notes (Presentation for a Product Development)
Cyber security government ppt By Vishwadeep Badgujar
Cyber security government ppt By Vishwadeep Badgujar
Cybersecurity Awareness Training Presentation v2021.08
Cybersecurity Awareness Training Presentation v2021.08
Cyber Security in the Manufacturing Industry: New challenges in the informati...
Cyber Security in the Manufacturing Industry: New challenges in the informati...
Similar to Twitter bitcoin scam_jul_2020
Cyber security talks 2019 by theko moima
This document provides information about an upcoming cyber security workshop in Lesotho. The workshop will be presented by Mr. Theko Moima, a certified ethical hacker. It will be aimed at government officials from the ministries of education, defense, police, and justice. The objectives are to equip government with cyber skills, enable protection against threats, and demonstrate cyber attacks and vulnerabilities. The workshop will use both Sesotho and English and include both technical and everyday language explanations. It will involve demonstrations of attacks and defenses using attendees' own devices. The document outlines topics that will be covered including cyber crime, security, hackers, the CIA triad model, hacking methods, and examples of common attacks.
Tik tok case study
TikTok has faced scrutiny over its Chinese ownership and potential national security risks. This document outlines a plan to help TikTok build trust with stakeholders in response. It proposes creating a crisis management plan, increasing transparency online about TikTok's values and policies, and strengthening media relations through proactive outreach. The goal is for TikTok to control damage from future crises and increase transparency to build long-term trust.
Ethics in Information Technology
The world is adopting the new technology the need of ethics arises to sustain the proper growth and to minimize the risk of wrong uses. As technology is growing good if it is in proper hands but goes totally wrong in wrong hands.
Cyber security for engg students and diploma
This document outlines the syllabus for a course on cybercrime. The 5 units cover: 1) an introduction to cybercrime, 2) cyber offenses and tools, 3) phishing and identity theft, 4) computer forensics. Each unit lists learning objectives and topics that will be covered. The course aims to explain cybercrime terms, describe offenses and botnets, illustrate cybercrime tools and methods, and justify the need for computer forensics. The document provides context on defining cybercrime, types of cybercriminals and their motives, and classifications of cybercrimes.
Cyber crime
Cyber crimes are unlawful acts where computers or the internet are used as tools or targets. Some key points covered in the document include:
- Cyber crimes have increased as internet usage has grown and include hacking, identity theft, and harassment.
- Cyber crimes are categorized as those against persons, property, or government. Crimes against persons include harassment while crimes against property include computer vandalism.
- Common cyber crimes also discussed include viruses, malware, and data theft. The document provides examples of different types of hacking and cyber criminals like organized hackers and disgruntled employees.
- Prevention methods to protect against cyber crimes are discussed like using firewalls, antivirus software, and disabling unauthorized access
Ethical hacking
Ethical hacking involves legally hacking into computer systems and networks to identify security vulnerabilities for clients, with their permission. It is part of an overall security program. Ethical hackers have strong programming and networking skills. There are three types of hackers - white hat hackers who use skills for defense, black hat hackers who engage in malicious activities, and grey hat hackers who work both offensively and defensively. Ethical hacking is important for security testing and system hardening to improve security and prevent breaches. However, there is a risk that ethical hackers could misuse knowledge or sensitive information.
Cybercrime
This document discusses cybercrime, including what it is, why we should be aware of it, and how to protect ourselves. It defines cybercrime as illegal activities involving computers and networks, such as hacking, viruses, and identity theft. The document outlines different types of cybercrimes and their impacts, describing how financial losses from data breaches are rising. It also discusses Indian laws related to cybercrime and provides tips for security measures like using strong, unique passwords and updating software. The document concludes by emphasizing the importance of awareness in protecting oneself from cybercrime.
O'leary Cyber Secutiry
Cyber security involves protecting networks, computers, programs and data from unauthorized access and damage. The National Cyber Security Awareness campaign promotes stopping to consider risks, thinking about how online actions can impact safety, and enjoying the internet with confidence by taking safety steps. Cyber threats to organizations like TVA can come from cyber terrorism, hacktivism, and scam artists seeking to steal valuable information or make political statements.
Cyber Crime
The document provides an overview of cybercrime, including its history, types, and how to protect against it. It discusses how the internet has led to new opportunities but also new crimes like identity theft. Various types of cybercrime are outlined such as hacking, phishing, and cyberbullying. The document also discusses cybercrime in Nepal and provides safety tips like using antivirus software and strong passwords. It emphasizes that awareness is key to avoiding becoming a victim of cybercrime.
What's New In CompTIA Security+ - Course Technology Computing Conference
What's New In CompTIA Security+ - Course Technology Computing Conference
Presenter: Mark Ciampa, Western Kentucky University
The new CompTIA Security+ exam (SY0-401) is projected to be rolled out in the late spring of 2014. This exam will have several significant changes from the previous exam. These include an expanded emphasis on topics such as securing mobile devices, cloud computing, cryptography, and threats and vulnerabilities. In addition, CompTIA is continuing to use performance-based questions on Security+ exams, requiring test-takers to configure firewall access control lists, match ports with services, and analyze log files. What exactly will the new Security+ exam cover? How will the updated Cengage Security+ Guide to Network Security Fundamentals 5th Edition address these changes? And what are the best ways to help students be prepared for the new Security+ exam with its performance-based questions? This session will look at what's new in CompTIA Security+ and how we can teach security to our students.
Tik Tok's Sleight of Hand: The Trojan Horse invited to reside on our smartpho...
Tik Tok has the power to modify people's behaviour and therein lies its danger. The demographic that has an interest in TikTok is young, has the time and is rewarded for being on the application.
computer misuse n criminal law
The document discusses information security practices, including the CIA principles of confidentiality, integrity and availability. It describes the information security organizational structure and processes for classifying information. The document also covers computer misuse and criminal law, summarizing categories of computer crimes like fraud, unauthorized access, and altering or stealing information.
finance and accounting
The document discusses information security practices, including the CIA principles of confidentiality, integrity and availability. It describes the information security organizational structure and processes for classifying information. The document also covers computer misuse and criminal law, summarizing categories of computer crimes like fraud, unauthorized access, and altering or stealing information.
Security risks with fake apps
Fake mobile apps are the greatest threat to your privacy. In this presentation, we help you understand:
a. The various security risks of fake mobile applications.
b. Techniques used by fake apps to steal your personal and private data.
c. How can Quick Heal help protect you from such apps.
Cyber crime and issues
Cyber crime refers to criminal activity involving computers or networks, where they are tools, targets, or places of crime. Common cyber crimes in India include phishing, fraud, and intellectual property theft. The document outlines several types of cyber crimes such as hacking, cyber stalking, and phishing. It also discusses Indian cyber laws and prevention methods. Overall, the document provides an overview of cyber crimes in India, the relevant laws, and importance of prevention through security measures and awareness.
gagan internship.pptx
Cyber security is important to protect networks, devices, and data from unauthorized access and attacks over the internet. It refers to the technologies and processes designed to safeguard computers and networks, and establishes rules to defend against cyber crimes like identity theft, data loss, and malware. Some key aspects of cyber security include using authentication like usernames and passwords, maintaining antivirus software, and being cautious of unknown links and accounts online. While no system can be completely secure, practicing cyber safety helps defend networks and keeps personal information protected.
Security Management
As a result of the recent COVID-19 pandemic, cybercrime has become such a lucrative industry that organizations around the world have had to adjust their cybersecurity postures to defend against the rise of sophisticated attack vectors. Among these attack vectors is social engineering, which, according to Fadhil (2023), is one of the most sophisticated cyber-attacks because there are no available hardware or software countermeasures to defend against it. The author further noted that the objective of social engineering tactics is to manipulate victims by taking advantage of their psychological vulnerabilities, such as fear, anxiety, trust, curiosity, or empathy, to gain access to secure facilities, systems, or data.
State of Cyber Crime in Banking Sector Today: Threats and Solutions
The document outlines a training agenda for a cyber security conference held in August 2015. Day 1 covers topics like cyber crimes, the current situation in Indonesia and globally, and identifying threats and vulnerabilities. Day 2 focuses on information security strategies across organizations and envisioning the future state. Several sessions explore defining cyber crimes, common attack types like viruses and denial of service, and who carries out cyber crimes. The document also discusses trends like the growing cyber crime marketplace, risks to mobile devices, larger attacks on retailers and banks, and more advanced targeted threats.
NYPD Twitter Strategy
Manual con lineamientos, guías y mejores prácticas del Departamento de Policía de Nueva York para Redes Sociales.
Hacker risks presentation to ACFE PR Chapter
ACFE presentation on April 30, 2013
Presented by: Enrrique J Gonzalez, Jose Arroyo, Jose Quiñones
Similar to Twitter bitcoin scam_jul_2020 (20)
What's New In CompTIA Security+ - Course Technology Computing Conference
What's New In CompTIA Security+ - Course Technology Computing Conference
Tik Tok's Sleight of Hand: The Trojan Horse invited to reside on our smartpho...
Tik Tok's Sleight of Hand: The Trojan Horse invited to reside on our smartpho...
State of Cyber Crime in Banking Sector Today: Threats and Solutions
State of Cyber Crime in Banking Sector Today: Threats and Solutions
Recently uploaded
How to Get CNIC Information System with Paksim Ga.pptx
Pakdata Cf is a groundbreaking system designed to streamline and facilitate access to CNIC information. This innovative platform leverages advanced technology to provide users with efficient and secure access to their CNIC details.
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
ここ3000字までしか入らないけどタイトルの方がたくさん文字入ると思います。
National Security Agency - NSA mobile device best practices
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
20240609 QFM020 Irresponsible AI Reading List May 2024
Everything I found interesting about the irresponsible use of machine intelligence in May 2024
OpenID AuthZEN Interop Read Out - Authorization
During Identiverse 2024 and EIC 2024, members of the OpenID AuthZEN WG got together and demoed their authorization endpoints conforming to the AuthZEN API
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Discover how MongoDB Atlas and vector search technology can revolutionize your application's search capabilities. This comprehensive presentation covers:
* What is Vector Search?
* Importance and benefits of vector search
* Practical use cases across various industries
* Step-by-step implementation guide
* Live demos with code snippets
* Enhancing LLM capabilities with vector search
* Best practices and optimization strategies
Perfect for developers, AI enthusiasts, and tech leaders. Learn how to leverage MongoDB Atlas to deliver highly relevant, context-aware search results, transforming your data retrieval process. Stay ahead in tech innovation and maximize the potential of your applications.
#MongoDB #VectorSearch #AI #SemanticSearch #TechInnovation #DataScience #LLM #MachineLearning #SearchTechnology
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...Edge AI and Vision Alliance
For the full video of this presentation, please visit: https://www.edge-ai-vision.com/2024/06/building-and-scaling-ai-applications-with-the-nx-ai-manager-a-presentation-from-network-optix/
Robin van Emden, Senior Director of Data Science at Network Optix, presents the “Building and Scaling AI Applications with the Nx AI Manager,” tutorial at the May 2024 Embedded Vision Summit.
In this presentation, van Emden covers the basics of scaling edge AI solutions using the Nx tool kit. He emphasizes the process of developing AI models and deploying them globally. He also showcases the conversion of AI models and the creation of effective edge AI pipelines, with a focus on pre-processing, model conversion, selecting the appropriate inference engine for the target hardware and post-processing.
van Emden shows how Nx can simplify the developer’s life and facilitate a rapid transition from concept to production-ready applications.He provides valuable insights into developing scalable and efficient edge AI solutions, with a strong focus on practical implementation.Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean Lotus cyber threat actors represent a sophisticated, persistent, and politically motivated group that poses a significant risk to organizations and individuals in the Southeast Asian region. Their continuous evolution and adaptability underscore the need for robust cybersecurity measures and international cooperation to identify and mitigate the threats posed by such advanced persistent threat groups.
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
Simplify your search for a reliable Python development partner! This list presents the top 10 trusted US providers offering comprehensive Python development services, ensuring your project's success from conception to completion.
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-und-domino-lizenzkostenreduzierung-in-der-welt-von-dlau/
DLAU und die Lizenzen nach dem CCB- und CCX-Modell sind für viele in der HCL-Community seit letztem Jahr ein heißes Thema. Als Notes- oder Domino-Kunde haben Sie vielleicht mit unerwartet hohen Benutzerzahlen und Lizenzgebühren zu kämpfen. Sie fragen sich vielleicht, wie diese neue Art der Lizenzierung funktioniert und welchen Nutzen sie Ihnen bringt. Vor allem wollen Sie sicherlich Ihr Budget einhalten und Kosten sparen, wo immer möglich. Das verstehen wir und wir möchten Ihnen dabei helfen!
Wir erklären Ihnen, wie Sie häufige Konfigurationsprobleme lösen können, die dazu führen können, dass mehr Benutzer gezählt werden als nötig, und wie Sie überflüssige oder ungenutzte Konten identifizieren und entfernen können, um Geld zu sparen. Es gibt auch einige Ansätze, die zu unnötigen Ausgaben führen können, z. B. wenn ein Personendokument anstelle eines Mail-Ins für geteilte Mailboxen verwendet wird. Wir zeigen Ihnen solche Fälle und deren Lösungen. Und natürlich erklären wir Ihnen das neue Lizenzmodell.
Nehmen Sie an diesem Webinar teil, bei dem HCL-Ambassador Marc Thomas und Gastredner Franz Walder Ihnen diese neue Welt näherbringen. Es vermittelt Ihnen die Tools und das Know-how, um den Überblick zu bewahren. Sie werden in der Lage sein, Ihre Kosten durch eine optimierte Domino-Konfiguration zu reduzieren und auch in Zukunft gering zu halten.
Diese Themen werden behandelt
- Reduzierung der Lizenzkosten durch Auffinden und Beheben von Fehlkonfigurationen und überflüssigen Konten
- Wie funktionieren CCB- und CCX-Lizenzen wirklich?
- Verstehen des DLAU-Tools und wie man es am besten nutzt
- Tipps für häufige Problembereiche, wie z. B. Team-Postfächer, Funktions-/Testbenutzer usw.
- Praxisbeispiele und Best Practices zum sofortigen Umsetzen
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for life science domain, where you retriever information from biomedical knowledge graphs using LLMs to increase the accuracy and performance of generated answers
June Patch Tuesday
Ivanti’s Patch Tuesday breakdown goes beyond patching your applications and brings you the intelligence and guidance needed to prioritize where to focus your attention first. Catch early analysis on our Ivanti blog, then join industry expert Chris Goettl for the Patch Tuesday Webinar Event. There we’ll do a deep dive into each of the bulletins and give guidance on the risks associated with the newly-identified vulnerabilities.
5th LF Energy Power Grid Model Meet-up Slides
5th Power Grid Model Meet-up
It is with great pleasure that we extend to you an invitation to the 5th Power Grid Model Meet-up, scheduled for 6th June 2024. This event will adopt a hybrid format, allowing participants to join us either through an online Mircosoft Teams session or in person at TU/e located at Den Dolech 2, Eindhoven, Netherlands. The meet-up will be hosted by Eindhoven University of Technology (TU/e), a research university specializing in engineering science & technology.
Power Grid Model
The global energy transition is placing new and unprecedented demands on Distribution System Operators (DSOs). Alongside upgrades to grid capacity, processes such as digitization, capacity optimization, and congestion management are becoming vital for delivering reliable services.
Power Grid Model is an open source project from Linux Foundation Energy and provides a calculation engine that is increasingly essential for DSOs. It offers a standards-based foundation enabling real-time power systems analysis, simulations of electrical power grids, and sophisticated what-if analysis. In addition, it enables in-depth studies and analysis of the electrical power grid’s behavior and performance. This comprehensive model incorporates essential factors such as power generation capacity, electrical losses, voltage levels, power flows, and system stability.
Power Grid Model is currently being applied in a wide variety of use cases, including grid planning, expansion, reliability, and congestion studies. It can also help in analyzing the impact of renewable energy integration, assessing the effects of disturbances or faults, and developing strategies for grid control and optimization.
What to expect
For the upcoming meetup we are organizing, we have an exciting lineup of activities planned:
-Insightful presentations covering two practical applications of the Power Grid Model.
-An update on the latest advancements in Power Grid -Model technology during the first and second quarters of 2024.
-An interactive brainstorming session to discuss and propose new feature requests.
-An opportunity to connect with fellow Power Grid Model enthusiasts and users.
AI 101: An Introduction to the Basics and Impact of Artificial Intelligence
Imagine a world where machines not only perform tasks but also learn, adapt, and make decisions. This is the promise of Artificial Intelligence (AI), a technology that's not just enhancing our lives but revolutionizing entire industries.
Generating privacy-protected synthetic data using Secludy and Milvus
During this demo, the founders of Secludy will demonstrate how their system utilizes Milvus to store and manipulate embeddings for generating privacy-protected synthetic data. Their approach not only maintains the confidentiality of the original data but also enhances the utility and scalability of LLMs under privacy constraints. Attendees, including machine learning engineers, data scientists, and data managers, will witness first-hand how Secludy's integration with Milvus empowers organizations to harness the power of LLMs securely and efficiently.
HCL Notes and Domino License Cost Reduction in the World of DLAU
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/
The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this!
We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model.
Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward.
These topics will be covered
- Reducing license cost by finding and fixing misconfigurations and superfluous accounts
- How do CCB and CCX licenses really work?
- Understanding the DLAU tool and how to best utilize it
- Tips for common problem areas, like team mailboxes, functional/test users, etc
- Practical examples and best practices to implement right away
Skybuffer SAM4U tool for SAP license adoption
Manage and optimize your license adoption and consumption with SAM4U, an SAP free customer software asset management tool.
SAM4U, an SAP complimentary software asset management tool for customers, delivers a detailed and well-structured overview of license inventory and usage with a user-friendly interface. We offer a hosted, cost-effective, and performance-optimized SAM4U setup in the Skybuffer Cloud environment. You retain ownership of the system and data, while we manage the ABAP 7.58 infrastructure, ensuring fixed Total Cost of Ownership (TCO) and exceptional services through the SAP Fiori interface.
Choosing The Best AWS Service For Your Website + API.pptx
Have you ever been confused by the myriad of choices offered by AWS for hosting a website or an API?
Lambda, Elastic Beanstalk, Lightsail, Amplify, S3 (and more!) can each host websites + APIs. But which one should we choose?
Which one is cheapest? Which one is fastest? Which one will scale to meet our needs?
Join me in this session as we dive into each AWS hosting service to determine which one is best for your scenario and explain why!
Recently uploaded (20)
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
National Security Agency - NSA mobile device best practices
National Security Agency - NSA mobile device best practices
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracy
AI 101: An Introduction to the Basics and Impact of Artificial Intelligence
AI 101: An Introduction to the Basics and Impact of Artificial Intelligence
Generating privacy-protected synthetic data using Secludy and Milvus
Generating privacy-protected synthetic data using Secludy and Milvus
HCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAU
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
Twitter bitcoin scam_jul_2020
- 2. WHAT happened? • Twitter users were targeted with a crypto scam. • 130 accounts were hacked, using them millions were targeted. • The accounts used for the scam were public figures like, Elon Musk, Bill Gates, and Barack Obama. • Company accounts such as Apple, Uber were also used. • Scam ran for two days (15 – 16 July) before Twitter took action. • Victims lost a total of USD 118K.
- 3. HOW it happened? • The scammer used Bitcoin wallet to remain untraceable. • The scammer used social engineering attacks on Twitter employees to gain access to internal systems and tools. • The scammer turned Twitters own tools against them to access accounts and posted tweets on their behalf. • Multi-factor authentication was bypassed. • Personal information of the account holders was accessed.
- 4. HOW Twitter responded? • Twitter support worked to investigate and mitigate the issue. • Locked affected accounts so they could not tweet. • Secured access to the internal systems. • Contacted affected users individually to regain access. • Provided updates about the scam to the community using blog post.
- 5. What is the AFTERMATH? • Twitter will have to fix gaps in the company’s security awareness program to avoid social engineering attacks in the future. • Twitter faces huge fines under the European GDPR. • Twitter may face huge fines from US FTC (fair Trade Commission). • Twitter users who fell for the scam collectively lost USD 118K in two days. • BitTorrent and Tron founder Justin Sun announced a USD 1 million bounty to track down the hackers.
- 6. What are the key TAKEAWAYS? • Social engineering attacks are best prevented by improving user awareness. Companies should regularly test and review their employees for cyber security awareness. • A tool in the wrong hands can do harm. Learning from Twitter’s mistake, companies should control access for such critical business tools to limited users. • Companies like Twitter that have a public platform must understand that the platform can be used to scam users. Content moderation must be planned and implemented. • Users should not blindly trust unvalidated content. Messages received on SMS, emails and social media must be validated before acting on.