(a)    Sniffer is a type of eavesdropping program that monitors information travelling over a network. Which help identify potential network trouble spots or criminal’s activity on network. 

 

(b)   Phishing is involves setting up fake Web sites or sending e-mail messages that look like those of legitimate business to ask users for conditional personal data. The e-mail message instructs recipients to update or confirm records by providing social security number and etc. 

 

(c)    Pharming is redirects users to a bogus Web page, even when the individual types the correct Web page address into his or her browser. This is possible if pharming perpetrators gain access to the internet address information stored by Internet service providers to speed up Web browsing. 

 

(d)   Spoofing is involve redirected a Web link to an address different from the intended one with the site masquerading as the intended destination. It will provide more detail on other forms of spoofing in our discussion of computer crime.

 

Question 2

(a)    Two methods for encrypting network traffic on the Web. 

1.      Secure Sockets Layer (SSL)

Enable clients and server computers to manage encryption and decryption activities as they communicate with each other during a secure Web session.

2.      Secure Hypertext Transfer Protocol (S-HTTP)

 

Used for encrypting data flowing over the Internet, but it is limited to individual messages, whereas SSL and TSL are designed to establish a secure connection between two computers. 

 

(b)   Cyber warfare is a state-sponsored activity designed to cripple and defeat another state or nation by penetrating its computers or networks for the purpose of causing damage and disruption. 

 

Computer Forensic is the scientific collection, examination, authentication, preservation and analysis of data held on or retrieved from computer storage media in such a way that the information can be used as evidence in a court of law. 

Question 3

(a)    Three tools 

1.      Firewalls is preventing unauthorized users from accessing private networks Is a combination of hardware and software that controls the flows of incoming and outgoing network traffic. 

2.      Instruction detection systems is full time feature full-time monitoring tools placed at the most vulnerable points or “hot spots” of corporate networks to detect and deter intruders continually. 

3.      Antivirus software is to prevents, detects, and removes malware, including computers viruses, computer worms, Trojan horses, spyware and adware. 

 

(b)   General Controls is there are policies and procedures that relate to many applications and support the effective functioning of application controls by helping to ensure the continued proper operation of information systems. General controls apply to all areas of the organization including the IT infrastructure and support services. The objectives to ensure the proper development and implementation of application, as well as the integrity of programs, data files and computer operations. 

 

Meanwhile application control is controlling specific to a particular accounting application. Application controls are to ensure the completeness and accuracy of all processing and the validity of the accounting entries made. Refer to the transactions and data relating to each computer-based application system. Therefore, they are specific to each application. The objectives to completeness of input and update, accuracy of input and update, validity (proper authorization), and lastly maintenance (complete and correct over time). 

1.      Viruses is a rouge software program that attaches itself to other software programs or data files in order to be executed usually without user knowledge or permission. It may be highly destructive by destroying programs or data or causing programs to run improperly. 

 

2.      Worms which are independent computer programs that copy themselves from one computers to other computers over a network. Worm can operate on their own without attaching to other computer program files and rely less on human behavior in order to spread from computer to computers. 

 

3.      Trojan horse is a software program that appears to be benign but then does something other than expected. Trojan horse is not itself a virus because it does something other than expected. 

 

4.      Spyware, these small programs install themselves surreptitiously on computers to monitor user Web surfing activity and serve up advertising. Thousands of forms pf spyware has been documented. 

Question 5

(a)    Computers crime as any violations of criminal law that involve a knowledge of computer technology for their perpetration, investigation, or prosecution. For example, breaching the confidentiality of protected computerized data, accessing a computer system without authority and etc. 

 

(b)   Three reasons why information systems are vulnerable

1.      When large amounts of data are stored in electronic form they are vulnerable to many more kind of threats than when they existed in manual form.

 

2.      Through communication networks, information systems in different locations are interconnected. The potential for unauthorized access, abuse, or fraud is not limited to a single location but can occur at any access point in the network 

 

3.      Vulnerability exist at each layer and in the communications between the layers. Users at the client layer can cause harm by introducing errors or by accessing systems without authorization. 

 

(c)    Three most important tools and technology for safeguarding information resources

1.      Identity management and authentication

The process of software automates the process of keeping track of all these users and their system privileges, assigning each other user a minute digital identity for accessing each system. 

 

2.      Ensuring system availability 

They need to take additional steps to ensure that their systems and applications are always available. Forms such as those airlines and financial services industries with critical applications requiring online transaction processing have traditionally used. 

 

3.      Ensuring software quality

Can improve system quality and reliability by employing software metrics and rigorous software testing. Software metrics are objectively assessment of the system in the form of qualified measurement. 

Question 6 

(a)    Authentication refer to the ability to know that a person is who he or she claims to be. 

 

(b)   Four authentication 

1.      Is often established by using the passwords known only to the authorized users. An end user uses a password to log on to a computer system and for accessing specific systems and files 

 

2.      A token is a physical device, similar to an identification card, that is designed to prove the identity of a single user.

 

3.      A smart card is a device about the size of a card credit that contains a chip formatted with the access permission and other data.

 

Biometric authentication uses system that read and interpret individual human traits, such as fingerprints, irises, and voices, in order to grant or deny access 

(a)    Ransomware is proliferating on both desktop and mobile devices. Trying to extort money from users by taking control of their computers or displaying annoying pop-up messages. 

 

(b)   How to prevent and protect, you can download ransomware from downloading and infected attachment, clicking a link inside an email or by visiting the wrong Web sites. 

 

(c)    Effects of computer crime to an organization

 

1.      Damaged reputation: Counterproductive to building a brand

The web is an interesting place: Once information has been put out, it’s likely to live there forever, no matter how hard one tries to erase it. Think about the last email that you sent that contained confidential information. The email probably had an intended recipient. You probably don’t want that information to be seen by anyone except the recipient. Sadly, it could easily be made public if your account is hacked. If you store anything online: pictures, files, documents, you risk that data being exposed to the public should your data center (or cloud) be breached.

 

 

2.      Damage to intellectual property resulting in the loss of a competitive edge

Without diminishing the effects of the exposure of sensitive customer information, cybercrime and data leaks can also have a negative impact on a company's competitive edge. Consider the effects of having intellectual property like business ideas, marketing campaigns or business expansion plans stolen or exposed. This breach might render any of these ideas useless or ineffective and result in serious damage towards business growth and revenue gains, especially if they land up in the hands of one’s competitors.

Question 1: Security isn't simply a technology issue it's a business issue. Discuss.

Information or data is a business enabler, it enables operations and productivity so, the security of it should be viewed as essential and promoted throughout the company but, in most cases it is not. This because we instinctively protect what we can see in front of us like buildings, personnel, hardware, the tangible assets but, we neglect the intangibles. IT Security should be seen as a task to minimize risk for an organization. This risk management is not just limited to the IT department or within the office because let’s face it, many of us do work a little when we get home even if it’s just checking our emails.

‘As many as 49% of individuals would use their personal device for work, found in a recent Norton Report’. Employees use of unauthorized personal mobile devices can be a threat because it is an unknown object on the IT network. For example, if a user was to save business data onto an unauthorized device and then it was infected by malware, the data could end up in the wrong hands! However, it is not about the IT department forbidding personal devices if devices are approved then it is safe to have on the network. It’s all about having policies in place and training employees on how to access business data securely. The training should not be limited to the use of mobile devices but, general IT security practices i.e. always encrypt email containing sensitive data or never write login credentials on a piece of paper.

There will always be a possibility of a breach in security for every company, it could be due to a cyber-attack, human error, social engineering etc. but, if risk management is a common goal amongst every employee not just the IT department, it can help manage and minimize security risks in the long run.

Cyberattacks against EU servers saw a sharp increase in 2016, with a total of 110 separate attempts to gain access to its data. Of this number of attacks, officials have said that 80pc could be described as being harmful, warning that many could have completely compromised the organization’s valuable data. In short, online threats are abundant, and difficult to consistently defend against. However, a good start would be to know where they are most likely coming from: inside or outside?

A recent infographic from Digital Guardian looking into the various threats posed by outside actors as well as those employed in your office makes for interesting reading. While state-sponsored hacking dominates today’s news cycle, other attacks orchestrated from within affected companies are perhaps a hidden problem. According to Digital Guardian’s findings, the motive changes when the source of the attack is discovered, with outsiders far more likely to be incentivized by financial gains than insiders. While outsiders use DDoS attacks or malicious USB drops, insiders have knowledge of systems, can physically steal data and, more often than many would care to admit, cause problems due to basic human error.

Question 3: Discuss the major security threats to this Web sites and their potential impact. What can be done to minimize these threats? 

E-commerce involves transactions of any kind of business done over an electronic system. This kind of business involves transactions that take place over Internet. E-commerce utilizes internal networks that interface with the World Wide Web. The nature of this kind of business, introduces internal and external risks to both the website and the business systems to which it is connected too. An E-commerce website can be faced some security threats that have to be addressed, to avoid any losses and intrusions. According to my e-commerce website, things have been run well but then later have to face some security threats. Here are some of them.

E-commerce websites are vulnerable to fraud from internal and external sources. Fraud incidents include credit card fraud, which exposes the website to threat from clients and any other external sources and internal fraud. Any fraudulent transactions being entered into the system from employees. Such transactions can also be introduced into the system by hackers or Trojan Horses, which resemble the real customers’ transactions. To prevent fraud, Fraud scoring must be used. It is a system of predictive fraud detection models or technologies that payment processors use to identify the highest-risk transactions in card-not-present environment that require additional verification. All card-not-present transactions must be authorized before they are processed. The authorization response will typically be approval or decline. You should develop a process for handling transactions after the authorization response has been received and apply it consistently.

A website that has been invaded by viruses and malicious software, can come crushing which will make the website lose the entire information causing losses to the e-commerce business. This can cause the clients to lose trust in the business, and as a result they can close their accounts on the website. Loss of information on a website can be devastating for both the business owner and the client especially if the information was not backed up.

One of the greatest threats to an e-commerce is poor management. When the management is not committed to ensuring security and does not support budgets for purchase of anti-virus software licenses, that keep internal networks robust will cause pose a big security threat. The lack of proper anti-virus makes the e-commerce vulnerable to viral attacks. To minimize or reduce this threat, Management should commit to regular IT security audits of the e-commerce website to ensure that security is optimized and all potential problems are dealt with as soon as they occur.

E-commerce security issues relate to internal business networks and an interface between transactions done by the customer and the network. Hackers pose a threat to the security of the network, because they can gain access to internal systems via the e-commerce website. Such threats can be avoided by using a firewall between the website and the internal network, and by encrypting all the transaction data.

Malicious software and computer viruses are some of the biggest security threats to any E-commerce website. Viruses are normally from external sources and can corrupt files on website if introduced into the internal network. Viruses can completely destroy a computer system and disrupt the operations of the website. Trojan horse is malicious software that has the ability to capture the clients’ information, before any encryption software can take effect. They can also impersonate a customer and pass over bad and malicious codes into the server running the website.to avoid these viruses, Users should exercise reasonable precautions in order to minimize the introduction and spread of computer viruses onto the Rhodes networks. Virus scanning software should be used to check any software downloaded from the Internet or obtained from any questionable source. Virus protection software has to be installed on the computer; check frequently for virus signature updates; and actually scan the files on the PC. 

Case Study

Question 1: Is cyberwarfare a serious problem? Why or why not?

Cyberwarfare is a serious problem that should be addressed.  With technology being utilized worldwide to control missiles and warfare, having a cyber-threat is as serious if not more serious than a physical threat.  Cyberwarfare can also act as a catalyst and induce an all-out strike of terror on other countries

Question 2: What solution are available for this problem? Do you think they will be effective? Why or why not?

Several different agencies, including the Pentagon and the National Security Agency (NSA), have their sights on being the leading agency in the ongoing efforts to combat cyberwarfare. The first headquarters designed to coordinate government cybersecurity efforts, called Cybercom, was activated in May 2010 in the hope of resolving this organizational tangle. In May 2011 President Barack Obama signed executive orders weaving cyber capabilities into U. S. military strategy.  I believe this will have very little effectiveness.  The best way to prevent these problems would be to decrease the reliance of technology and revert to keeping vital information and controls to a bare minimum.