Ana Meskovska, profile picture
Uploaded byAna Meskovska
PPT, PDF45,038 views

3 Most Common Threats Of Information Security

The document discusses the most common threats to information security, including malware, email threats, spam, social engineering (phishing), and the top 10 internet threats. It provides details on each threat such as possible consequences and recommended protections. Some key threats mentioned are viruses, worms, Trojan horses, spyware, phishing scams seeking personal/financial information, and social engineering attacks. The document stresses the importance of user education, strong passwords/authentication, antivirus software, and caution when sharing information or opening email attachments.

Embed presentation

Downloaded 933 times
Most common threats to information security Ana Meskovska [email_address] ELSA Conference Strumica, 27.11.2008
Contents Introduction What is an information security threat? Information security threats Internet security threats Most common threats, possible consequences and protection Top 10 internet threats
Introduction Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction through implementation of ISMS i.e. implementation of controls (policies and procedures) the CIA aspect - Confidentiality, Integrity and Availability Computer security is a branch of technology known as information security as applied to computers. ensuring the availability and correct operation of a computer system
What is an information security threat? A threat is any circumstance or event with the potential to harm an information system through unauthorized access, destruction, disclosure, modification of data, and/or denial of service. Threats can be: Natural or Human Deliberate or Accidental
Information security threats People / employees Low awareness for information security aspects Advancing the IT infrastructure, networking and distributive working Improvement of complexity and effectiveness of hackers and viruses Electronic mail (e-mail) Fire, flood, earthquake
Information Security Breaches Survey 2008 1/3 What type of breaches did UK business suffer?
Information Security Breaches Survey 2008 2/3 How many UK businesses have disaster recovery plans? How many UK businesses have disaster recovery plans?
Information Security Breaches Survey 2008 3/3 How did UK businesses address the weakness that caused their worst incident?
Internet security threats Malware Threat Threats to the Security of E-mail SPAM Associated Threats Social Engineering Threat (Phishing)
Most common internet threats, consequences and protection Malware threats
Malware threat Malware is software designed to destroy, steal private information or spy on a computer system without the consent of the user. Malwares - malicious codes, malicious programs or malicious software The most popular categories are Trojan Horses, viruses, adwares, spywares, spams, worms and root kits.
Security and productivity threats posed by malware Stolen user ID and passwords Unauthorized access to confidential information Loss of intellectual property Remote control of company’s PC Theft of customer data Reduced network performance and bandwidth Increased internet traffic and changes to browser homes pages and search engines
Protection against malwares Good user education is vital in fighting against malwares Keep your operating system up to date by installing OS security fixes and program patches. Use firewall protection Install anti-spyware softwares Monitor logs for unusual traffic
Most common internet threats, consequences and protection E-mail threats
Threats to the security of e-mail Disclosure of sensitive information Loss of confidentiality Loss of integrity Exposure of systems to malicious code Denial-of-Service (DoS) Unauthorized accesses
Countermeasures to e-mail security Secure the server to client connections POP, IMAP over ssh, SSL https access to webmail Protection against insecure wireless access Secure the end-to-end email delivery The PGPs of the world Still need to get the other party to be PGP aware Practical in an enterprise intra-network environment
When using an e-mail Ensure you are addressing the right person prior to sending email Beware of e-mails from unknown parties (unsolicited e-mails) Do not open unsolicited emails Do not click on links in unsolicited emails Never respond to unsolicited emails e.g. ‘ You have won $1,000,000. Kindly send your bank details for crediting your account.’ These are scams also known as social engineering attacks
Precautions when using a e-mail Suspicious attachments must NOT be opened e.g. Executable files (with .exe, .com, .bat, .reg extensions) Regularly purge unnecessary emails (including emptying the ‘Deleted Items’) to free storage space Do not open/reply to spam messages Avoid registering unnecessarily to mailing lists Use properly configured & regularly updated spam filter, antivirus and antispyware software Use firewall as well
Most common internet threats, consequences and protection SPAM
Security threats from SPAM SPAM provides a cover for spreading of: Viruses Worms Trojans Spyware Phishing
Countermeasures Spam Filters MS Outlook, Outlook Express…(e.g. SPAMFight) Spamfighter for Outlook and Outlook express Antivirus AVG, Symantec, McAfee, F-Secure, VIRUSfighter…. Antispyware McAfee Antispyware module, S&D , Ad-Adaware SE personal, SPYWAREfighter….
Most common internet threats, consequences and protection Social Engineering Threat (Phishing)
Social Engineering Social engineering is the art of manipulating people into performing actions or divulging confidential information “ Employees without security awareness are security liabilities.” Gartner Group, 2002
Security threats from phishing Phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication Use of Email messages and Web pages that are replicas of existing sites to fool users into submitting: personal, financial or password data
Prevention Don't give out personal information Ensure you are on the right website with the right web address Use anti-phishing software – IE7 and Mozilla, McAfee, Firefox 2.0 (includes a form of anti - phishing technology) Research shows that employees who are sensitive and knowledgeable about information security provide the most cost-effective countermeasure against information security violations
Top 10 internet threats
TOP 10 threats SPAM mail  Phishing mail  Wireless attack Hacker attack Web exploits  Adware Viruses  Spyware/Trojans Identity theft Social engineering
Conclusion Avoid giving unnecessary information online (e.g. subscribing to a newsletter whereby your personal details are requested) Be sure you are dealing with someone or a site that you know and trust before giving out personal information Use regularly updated antivirus and antispyware software Use client filters or ISPs based filters

More Related Content

PPSX
Security Awareness Training
byWilliam Mann
 
PPT
information security management
byGurpreetkaur838
 
PPT
Computer Security
byKlynveld Peat Marwick Goerdeler Global Services
 
PPTX
Cyber security presentation
bysweetpeace1
 
PPTX
Information Security Awareness Training Open
byFred Beck MBA, CPA
 
PPT
Cyber Security and Cyber Awareness
byJay Nagar
 
PPTX
Information Security Awareness
bySnapComms
 
PPTX
Cyber Crime and Cyber Security
bySazed Salman
 
Security Awareness Training
byWilliam Mann
 
information security management
byGurpreetkaur838
 
Computer Security
byKlynveld Peat Marwick Goerdeler Global Services
 
Cyber security presentation
bysweetpeace1
 
Information Security Awareness Training Open
byFred Beck MBA, CPA
 
Cyber Security and Cyber Awareness
byJay Nagar
 
Information Security Awareness
bySnapComms
 
Cyber Crime and Cyber Security
bySazed Salman
 

What's hot

PPTX
Cybersecurity
byForam Gosai
 
PDF
Customer information security awareness training
byAbdalrhmanTHassan
 
PPTX
Cyber Security Awareness Program.pptx
byDinesh582831
 
PPT
Information security in todays world
bySibghatullah Khattak
 
PPTX
Cyber Security Introduction.pptx
byANIKETKUMARSHARMA3
 
PPTX
Information security awareness - 101
bymateenzero
 
PPTX
CYBER SECURITY
byVaishak Chandran
 
PPT
Basics of Information System Security
bychauhankapil
 
PPTX
Phishing awareness
byPhishingBox
 
PPTX
Cybersecurity Attack Vectors: How to Protect Your Organization
byTriCorps Technologies
 
PPSX
Cyber crime
bySanket Gogoi
 
PDF
Information Security Awareness Training
byRandy Bowman
 
PPTX
Hyphenet Security Awareness Training
byJen Ruhman
 
PDF
Cyber Security Vulnerabilities
bySiemplify
 
PDF
Information Security Risk Management
byErsoy AKSOY
 
PPTX
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
PDF
What is Social Engineering? An illustrated presentation.
byPratum
 
PPTX
Phishing
bySouganthikaSankaresw
 
PPTX
Cybersecurity Awareness Training
byDave Monahan
 
PDF
Application Security | Application Security Tutorial | Cyber Security Certifi...
byEdureka!
 
Cybersecurity
byForam Gosai
 
Customer information security awareness training
byAbdalrhmanTHassan
 
Cyber Security Awareness Program.pptx
byDinesh582831
 
Information security in todays world
bySibghatullah Khattak
 
Cyber Security Introduction.pptx
byANIKETKUMARSHARMA3
 
Information security awareness - 101
bymateenzero
 
CYBER SECURITY
byVaishak Chandran
 
Basics of Information System Security
bychauhankapil
 
Phishing awareness
byPhishingBox
 
Cybersecurity Attack Vectors: How to Protect Your Organization
byTriCorps Technologies
 
Cyber crime
bySanket Gogoi
 
Information Security Awareness Training
byRandy Bowman
 
Hyphenet Security Awareness Training
byJen Ruhman
 
Cyber Security Vulnerabilities
bySiemplify
 
Information Security Risk Management
byErsoy AKSOY
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
What is Social Engineering? An illustrated presentation.
byPratum
 
Phishing
bySouganthikaSankaresw
 
Cybersecurity Awareness Training
byDave Monahan
 
Application Security | Application Security Tutorial | Cyber Security Certifi...
byEdureka!
 

Viewers also liked

PPTX
Security threats
byQamar Farooq
 
PPTX
INFORMATION SECURITY
byAhmed Moussa
 
PPT
Network Security Threats and Solutions
byColin058
 
PDF
Computer Security Threats
byQuick Heal Technologies Ltd.
 
PPTX
Information Security Lecture #1 ppt
byvasanthimuniasamy
 
PPTX
Threats to information security
byswapneel07
 
PPTX
Threats to Information Resources - MIS - Shimna
byChinnu Shimna
 
PDF
Data center Building & General Specification
byAli Mirfallah
 
PPTX
Security issues in cloud database
byأحلام انصارى
 
PDF
Electronic Filing and Payment System For Entrepreneurs, Self-Employed Individ...
byelizabeth costales
 
PPTX
Ethical issues in business
byDanish Musthafa
 
PDF
Cloud Computing v.s. Cyber Security
byBahtiyar Bircan
 
PPTX
Data Warehouse Optimization
byCloudera, Inc.
 
PPTX
Mis case study - Procter & Gamble
byNightfurry Faysal
 
PPTX
Calibration & Testing of Electronic Meters
bySnehpal Singh
 
PPTX
The Fashion Channel
byshiva chegini
 
PDF
CUDA performance study on Hadoop MapReduce Cluster
byairbots
 
PPTX
Energy conservation week celebration
bySudha Arun
 
PPTX
Unit 1 Task 1
byBiteableAtom
 
DOCX
Penyajian Data dalam Bentuk Diagram Batang, Lambang, Garis dan Lingkaran
byHariyatunnisa Ahmad
 
Security threats
byQamar Farooq
 
INFORMATION SECURITY
byAhmed Moussa
 
Network Security Threats and Solutions
byColin058
 
Computer Security Threats
byQuick Heal Technologies Ltd.
 
Information Security Lecture #1 ppt
byvasanthimuniasamy
 
Threats to information security
byswapneel07
 
Threats to Information Resources - MIS - Shimna
byChinnu Shimna
 
Data center Building & General Specification
byAli Mirfallah
 
Security issues in cloud database
byأحلام انصارى
 
Electronic Filing and Payment System For Entrepreneurs, Self-Employed Individ...
byelizabeth costales
 
Ethical issues in business
byDanish Musthafa
 
Cloud Computing v.s. Cyber Security
byBahtiyar Bircan
 
Data Warehouse Optimization
byCloudera, Inc.
 
Mis case study - Procter & Gamble
byNightfurry Faysal
 
Calibration & Testing of Electronic Meters
bySnehpal Singh
 
The Fashion Channel
byshiva chegini
 
CUDA performance study on Hadoop MapReduce Cluster
byairbots
 
Energy conservation week celebration
bySudha Arun
 
Unit 1 Task 1
byBiteableAtom
 
Penyajian Data dalam Bentuk Diagram Batang, Lambang, Garis dan Lingkaran
byHariyatunnisa Ahmad
 

Similar to 3 Most Common Threats Of Information Security

PPTX
Awareness Security 123.pptx
byRajuSingh730938
 
PPTX
Cyber Security Awareness Session for Executives and Non-IT professionals
byKrishna Srikanth Manda
 
PPTX
Cyber Security and Data Privacy in Information Systems.pptx
byRoshni814224
 
PPTX
Cyber security
byZwebaButt
 
PPTX
Cyber-savvy Cyber-safety
byTawose Olamide Timothy
 
PDF
Ethical Hacking and Cyber Security
byNeeraj Negi
 
PPTX
Understanding Internet and Cyber Security Presentation .pptx
byShruthiVikas3
 
PDF
Type of Security Threats and its Prevention
byijsrd.com
 
PPT
DNR-Security-Awareness-Training expert.ppt
bypdffree25
 
PPTX
USG_Security_Awareness_Primer (1).pptx
byssuser59e4b8
 
PPTX
TheCyberThreatAndYou2_deck.pptx
byKevinRiley83
 
PPTX
USG_Security_Awareness_Primer.pptx
byBilmyRikas
 
PPT
Rainer+3e Student Pp Ts Ch03
bykbzdox ivanovich
 
PDF
Introduction to information security
byHarish Jangid
 
PDF
Frontier Secure: Handout for small business leaders on "How to be Secure"
byFrontier Small Business
 
PDF
Sip 140208055023-phpapp02
bymark scott
 
PPT
Social Engineering: Protecting Yourself on the Campus Network
bythowell
 
ODP
The Net is Dangerous
byGihan Dias
 
PPTX
BUILDING AWARENESS AND AWARENESS PROGRAM - Vasil Tsvimitidze
byDataExchangeAgency
 
PPTX
USG_Security_Awareness_Primer.pptx
bysumita02
 
Awareness Security 123.pptx
byRajuSingh730938
 
Cyber Security Awareness Session for Executives and Non-IT professionals
byKrishna Srikanth Manda
 
Cyber Security and Data Privacy in Information Systems.pptx
byRoshni814224
 
Cyber security
byZwebaButt
 
Cyber-savvy Cyber-safety
byTawose Olamide Timothy
 
Ethical Hacking and Cyber Security
byNeeraj Negi
 
Understanding Internet and Cyber Security Presentation .pptx
byShruthiVikas3
 
Type of Security Threats and its Prevention
byijsrd.com
 
DNR-Security-Awareness-Training expert.ppt
bypdffree25
 
USG_Security_Awareness_Primer (1).pptx
byssuser59e4b8
 
TheCyberThreatAndYou2_deck.pptx
byKevinRiley83
 
USG_Security_Awareness_Primer.pptx
byBilmyRikas
 
Rainer+3e Student Pp Ts Ch03
bykbzdox ivanovich
 
Introduction to information security
byHarish Jangid
 
Frontier Secure: Handout for small business leaders on "How to be Secure"
byFrontier Small Business
 
Sip 140208055023-phpapp02
bymark scott
 
Social Engineering: Protecting Yourself on the Campus Network
bythowell
 
The Net is Dangerous
byGihan Dias
 
BUILDING AWARENESS AND AWARENESS PROGRAM - Vasil Tsvimitidze
byDataExchangeAgency
 
USG_Security_Awareness_Primer.pptx
bysumita02
 

More from Ana Meskovska

PDF
How to implement effective ITSM System
byAna Meskovska
 
PPT
2 Security And Internet Security
byAna Meskovska
 
PPT
5 Standards And Recommendations For Information Security On Internet
byAna Meskovska
 
PPT
1 The Notion Information And Basic Types Of Information
byAna Meskovska
 
PPTX
Proposal for cross border cooperation
byAna Meskovska
 
PPT
Integration of ICT Standards
byAna Meskovska
 
PPT
Stimulating management innovation through knowledge management
byAna Meskovska
 
PPT
Information Security for increased usage of e-services - Masit Open Days 2010
byAna Meskovska
 
PPTX
Experience from Implementation of ISO 20000
byAna Meskovska
 
PDF
Increasing trust towards governmental e-services
byAna Meskovska
 
PPTX
Assessing the institutionalisation of knowledge in an automotive factory at Fiat
byAna Meskovska
 
PPT
4 System For Information Security
byAna Meskovska
 
PPTX
Increasing trust towards government e-services
byAna Meskovska
 
PPT
ITSM Qualification Schemes
byAna Meskovska
 
PPTX
E-prototype bazaar - Makedonija
byAna Meskovska
 
PDF
Business Process Modeling
byAna Meskovska
 
PDF
E-educational games in formal education - Poster
byAna Meskovska
 
PDF
E-educational games in formal education - ePrototype Bazaar 2011
byAna Meskovska
 
How to implement effective ITSM System
byAna Meskovska
 
2 Security And Internet Security
byAna Meskovska
 
5 Standards And Recommendations For Information Security On Internet
byAna Meskovska
 
1 The Notion Information And Basic Types Of Information
byAna Meskovska
 
Proposal for cross border cooperation
byAna Meskovska
 
Integration of ICT Standards
byAna Meskovska
 
Stimulating management innovation through knowledge management
byAna Meskovska
 
Information Security for increased usage of e-services - Masit Open Days 2010
byAna Meskovska
 
Experience from Implementation of ISO 20000
byAna Meskovska
 
Increasing trust towards governmental e-services
byAna Meskovska
 
Assessing the institutionalisation of knowledge in an automotive factory at Fiat
byAna Meskovska
 
4 System For Information Security
byAna Meskovska
 
Increasing trust towards government e-services
byAna Meskovska
 
ITSM Qualification Schemes
byAna Meskovska
 
E-prototype bazaar - Makedonija
byAna Meskovska
 
Business Process Modeling
byAna Meskovska
 
E-educational games in formal education - Poster
byAna Meskovska
 
E-educational games in formal education - ePrototype Bazaar 2011
byAna Meskovska
 
In this document
Powered by AI

Overview of information security, its importance, types of threats, and their impacts.

2008 UK business survey on breaches, recovery plans, and measures taken to address weaknesses.

Various types of internet threats including malware, email security, and consequences.

Definition and types of malware, their consequences, and protective measures against them.

E-mail threats, their consequences, and precautionary measures to ensure email security.

SPAM's role in spreading malware and security concerns, and countermeasures to mitigate risks.

Definition of social engineering, phishing threats, and prevention strategies against such attacks.

A summary of the most pressing internet threats such as SPAM, phishing, and identity theft.

Best practices to avoid unnecessary information sharing and maintain security online.

3 Most Common Threats Of Information Security

  • 1.
    Most common threatsto information security Ana Meskovska [email_address] ELSA Conference Strumica, 27.11.2008
  • 2.
    Contents Introduction Whatis an information security threat? Information security threats Internet security threats Most common threats, possible consequences and protection Top 10 internet threats
  • 3.
    Introduction Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction through implementation of ISMS i.e. implementation of controls (policies and procedures) the CIA aspect - Confidentiality, Integrity and Availability Computer security is a branch of technology known as information security as applied to computers. ensuring the availability and correct operation of a computer system
  • 4.
    What is aninformation security threat? A threat is any circumstance or event with the potential to harm an information system through unauthorized access, destruction, disclosure, modification of data, and/or denial of service. Threats can be: Natural or Human Deliberate or Accidental
  • 5.
    Information security threatsPeople / employees Low awareness for information security aspects Advancing the IT infrastructure, networking and distributive working Improvement of complexity and effectiveness of hackers and viruses Electronic mail (e-mail) Fire, flood, earthquake
  • 6.
    Information Security BreachesSurvey 2008 1/3 What type of breaches did UK business suffer?
  • 7.
    Information Security BreachesSurvey 2008 2/3 How many UK businesses have disaster recovery plans? How many UK businesses have disaster recovery plans?
  • 8.
    Information Security BreachesSurvey 2008 3/3 How did UK businesses address the weakness that caused their worst incident?
  • 9.
    Internet security threatsMalware Threat Threats to the Security of E-mail SPAM Associated Threats Social Engineering Threat (Phishing)
  • 10.
    Most common internetthreats, consequences and protection Malware threats
  • 11.
    Malware threat Malwareis software designed to destroy, steal private information or spy on a computer system without the consent of the user. Malwares - malicious codes, malicious programs or malicious software The most popular categories are Trojan Horses, viruses, adwares, spywares, spams, worms and root kits.
  • 12.
    Security andproductivity threats posed by malware Stolen user ID and passwords Unauthorized access to confidential information Loss of intellectual property Remote control of company’s PC Theft of customer data Reduced network performance and bandwidth Increased internet traffic and changes to browser homes pages and search engines
  • 13.
    Protection against malwaresGood user education is vital in fighting against malwares Keep your operating system up to date by installing OS security fixes and program patches. Use firewall protection Install anti-spyware softwares Monitor logs for unusual traffic
  • 14.
    Most common internetthreats, consequences and protection E-mail threats
  • 15.
    Threats to thesecurity of e-mail Disclosure of sensitive information Loss of confidentiality Loss of integrity Exposure of systems to malicious code Denial-of-Service (DoS) Unauthorized accesses
  • 16.
    Countermeasures to e-mailsecurity Secure the server to client connections POP, IMAP over ssh, SSL https access to webmail Protection against insecure wireless access Secure the end-to-end email delivery The PGPs of the world Still need to get the other party to be PGP aware Practical in an enterprise intra-network environment
  • 17.
    When using ane-mail Ensure you are addressing the right person prior to sending email Beware of e-mails from unknown parties (unsolicited e-mails) Do not open unsolicited emails Do not click on links in unsolicited emails Never respond to unsolicited emails e.g. ‘ You have won $1,000,000. Kindly send your bank details for crediting your account.’ These are scams also known as social engineering attacks
  • 18.
    Precautions when usinga e-mail Suspicious attachments must NOT be opened e.g. Executable files (with .exe, .com, .bat, .reg extensions) Regularly purge unnecessary emails (including emptying the ‘Deleted Items’) to free storage space Do not open/reply to spam messages Avoid registering unnecessarily to mailing lists Use properly configured & regularly updated spam filter, antivirus and antispyware software Use firewall as well
  • 19.
    Most common internetthreats, consequences and protection SPAM
  • 20.
    Security threats fromSPAM SPAM provides a cover for spreading of: Viruses Worms Trojans Spyware Phishing
  • 21.
    Countermeasures Spam FiltersMS Outlook, Outlook Express…(e.g. SPAMFight) Spamfighter for Outlook and Outlook express Antivirus AVG, Symantec, McAfee, F-Secure, VIRUSfighter…. Antispyware McAfee Antispyware module, S&D , Ad-Adaware SE personal, SPYWAREfighter….
  • 22.
    Most common internetthreats, consequences and protection Social Engineering Threat (Phishing)
  • 23.
    Social Engineering Socialengineering is the art of manipulating people into performing actions or divulging confidential information “ Employees without security awareness are security liabilities.” Gartner Group, 2002
  • 24.
    Security threats fromphishing Phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication Use of Email messages and Web pages that are replicas of existing sites to fool users into submitting: personal, financial or password data
  • 25.
    Prevention Don't giveout personal information Ensure you are on the right website with the right web address Use anti-phishing software – IE7 and Mozilla, McAfee, Firefox 2.0 (includes a form of anti - phishing technology) Research shows that employees who are sensitive and knowledgeable about information security provide the most cost-effective countermeasure against information security violations
  • 26.
  • 27.
    TOP 10 threatsSPAM mail  Phishing mail  Wireless attack Hacker attack Web exploits  Adware Viruses  Spyware/Trojans Identity theft Social engineering
  • 28.
    Conclusion Avoid givingunnecessary information online (e.g. subscribing to a newsletter whereby your personal details are requested) Be sure you are dealing with someone or a site that you know and trust before giving out personal information Use regularly updated antivirus and antispyware software Use client filters or ISPs based filters

Editor's Notes

  • #4 These differences lie primarily in the approach to the subject, the methodologies used, and the areas of concentration. Information security is concerned with the confidentiality, integrity and availability of data regardless of the form the data may take: electronic, print, or other forms. Computer security can focus on ensuring the availability and correct operation of a computer system without concern for the information stored or processed by the computer.
  • #12 A rootkit is malware which consists of a program (or combination of several programs) designed to take fundamental control (in Unix terms "root" access, in Windows terms, "Administrator" or "Admin" access) of a computer system, without authorization by the system's owners and legitimate managers
  • #16 A denial-of-service attack ( DoS attack ) is an attempt to make a computer resource unavailable to its intended users. Although the means to carry out, motives for, and targets of a DoS attack may vary, it generally consists of the concerted, malevolent efforts of a person or persons to prevent an Internet site or service from functioning efficiently or at all, temporarily or indefinitely. Perpetrators of DoS attacks typically target sites or services hosted on high-profile web servers such as banks, credit card payment gateways, and even DNS root servers . Loss of confidentiality E-mails are sent in clear over open networks E-mails stored on potentially insecure clients and mail servers Loss of integrity No integrity protection on e-mails; body can be altered in transit or on mail server
  • #17 POP, IMAP over ssh, SSL – protokoli PGP – enkripcija I dekripcija
  • #21 Viruses Programs that can be attached to emails and are spread as files from individual to individual. Viruses are intentionally destructive Worms Self replicating computers programs, similar to computer viruses however do not require other programs or documents to spread. Trojans non-replicating malicious programs which appears harmless or even useful to the user but when executed harms the user’s System Spyware Programs installed on computers which record and send your personal information – includes marketing info( visited sites, lists of your software, your interests ,etc…) Phishing attempt to fraudulently acquire sensitive information, such as password and financial information, through email or an instant message
  • #24 In computer security, social engineering is a term that describes a non-technical kind of intrusion that relies heavily on human interaction and often involves tricking other people to break normal security procedures. A social engineer runs what used to be called a "con game". Social Engineering is clever manipulation of the natural human tendency to trust. As a rule, public sector employees care about the jobs they do and try their best to be helpful. “ Social engineering attacks are mostly financially driven, with the attacker looking to obtain confidential information. Some of the common tactics used for such attacks are forging identities, exploiting the inability of people to realize the value of the data held by them or the know-how to protect data. Most users perceive a false sense of security once they install an anti-virus or anti spam solution. That’s why along with providing security solutions, we look to educate our customers on the various current and evolving security threats that take place and how to be immune from them.” said Govind Rammurthy CEO, MicroWorld.