<?xml version="1.0"?>
<rss version="2.0">
   <channel>
      <title>CSC 408 by Faridah Alwani</title>
      <link>https://padlet.com/faridahalwani5/mvmt6epov35</link>
      <description>NUR FARIDAH ALWANI AM228 4C</description>
      <language>en-us</language>
      <pubDate>2018-12-27 07:44:34 UTC</pubDate>
      <lastBuildDate>2025-11-03 14:22:55 UTC</lastBuildDate>
      <webMaster>hello@padlet.com</webMaster>
      <image>
         <url></url>
      </image>
      <item>
         <title>Chapter 7/8</title>
         <author>faridahalwani5</author>
         <link>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316721767</link>
         <description><![CDATA[<div>Question 1 <br><br></div><div>Briefly explain the following computer crimes.<br><br></div><div>a)      Sniffer<br><br></div><div>Sniffing is a process of monitoring and capturing all data packets passing through given network. Sniffers are used by network/system administrator to monitor and troubleshoot network traffic. Attackers use sniffers to capture data packets containing sensitive information such as password, account information etc. Sniffers can be hardware or software installed in the system. By placing a packet sniffer on a network in promiscuous mode, a malicious intruder can capture and analyze all of the network traffic.<br><br></div><div>b)      Phishing<br><br></div><div>Phishers attempt to steal your personal information. They send out e-mails that appear to come from legitimate websites such as eBay, PayPal, or other banking institutions. The e-mails state that your information needs to be updated or validated and ask that you enter your username and password, after clicking a link included in the e-mail. Some e-mails will ask that you enter even more information, such as your full name, address, phone number, social security number, and credit card number. However, even if you visit the false website and just enter your username and password, the phisher may be able to gain access to more information by just logging in to account.<br><br></div><div>Phishing is a con game that scammers use to collect personal information from unsuspecting users. The false e-mails often look surprisingly legitimate, and even the Web pages where you are asked to enter your information may look real. However, the URL in the address field can tell you if the page you have been directed to is valid or not. For example, if you are visiting an Web page on eBay, the last part of the domain name should end with "ebay.com." Therefore, "http://www.ebay.com" and "http://cgi3.ebay.com" are valid Web addresses, but "http://www.ebay.validate-info.com" and "http://ebay.login123.com" are false addresses, which may be used by phishers. If URL contains an IP address, such as 12.30.229.107, instead of a domain name, you can almost be sure someone is trying to phish for your personal information.<br><br></div><div>c)       Pharming<br><br></div><div>Pharming is yet another way hackers attempt to manipulate users on the Internet. While phishing attempts to capture personal information by getting users to visit a fake website, pharming redirects users to false websites without them even knowing it.<br><br></div><div>While a typical website uses a domain name for its address, its actual location is determined by an IP address. When a user types a domain name into his or her Web browser's address field and hits enter, the domain name is translated into an IP address via a DNS server. The Web browser then connects to the server at this IP address and loads the Web page data. After a user visits a certain website, the DNS entry for that site is often stored on the user's computer in a DNS cache. This way, the computer does not have to keep accessing a DNS server whenever the user visits the website.<br><br></div><div>One way that pharming takes place is via an e-mail virus that "poisons" a user's local DNS cache. It does this by modifying the DNS entries, or host files. For example, instead of having the IP address 17.254.3.183 direct to www.apple.com, it may direct to another website determined by the hacker. Pharmers can also poison entire DNS servers, which means any user that uses the affected DNS server will be redirected to the wrong website. Fortunately, most DNS servers have security features to protect them against such attacks. Still, they are not necessarily immune, since hackers continue to find ways to gain access to them.<br><br></div><div>d)      Spoofing<br><br></div><div>The word "spoof" means to hoax, trick, or deceive. Therefore, in the IT world, spoofing refers tricking or deceiving computer systems or other computer users. This is typically done by hiding one's identity or faking the identity of another user on the Internet.<br><br></div><div>Spoofing can take place on the Internet in several different ways. One common method is through e-mail. E-mail spoofing involves sending messages from a bogus e-mail address or faking the e-mail address of another user. Fortunately, most e-mail servers have security features that prevent unauthorized users from sending messages. However, spammers often send spam messages from their own SMTP, which allows them to use fake e-mail addresses. Therefore, it is possible to receive e-mail from an address that is not the actual address of the person sending the message.<br><br></div><div>Another way spoofing takes place on the Internet is via IP spoofing. This involves masking the IP address of a certain computer system. By hiding or faking a computer's IP address, it is difficult for other systems to determine where the computer is transmitting data from. Because IP spoofing makes it difficult to track the source of a transmission, it is often used in denial-of-service attacks that overload a server. This may cause the server to either crash or become unresponsive to legitimate requests. Fortunately, software security systems have been developed that can identify denial-of-service attacks and block their transmissions.<br><br></div><div>Finally, spoofing can be done by simply faking an identity, such as an online username. For example, when posting on an Web discussion board, a user may pretend he is the representative for a certain company, when he actually has no association with the organization. In online chat rooms, users may fake their age, gender, and location.<br><br><br>Question 2 <br><br></div><div>a)      Distinguish the TWO (2) methods for encrypting network traffic on the Web<br><br></div><ul><li><strong>Secure Sockets Layer (SSL) </strong></li></ul><div><br></div><div>SSL and its successor Transport Layer Security (TLS) enable client and server computers to establish a secure connection session and manage encryption and decryption activities. <br><br></div><ul><li><strong>Secure Hypertext Transfer Protocol (S-HTTP)</strong></li></ul><div><br></div><div>Another protocol used for encrypting data flowing over the Internet, but it is limited to individual messages. <br><br>b)      Briefly explain the following terms.</div><div> </div><ul><li><strong>Cyber warfare</strong></li></ul><div><br></div><div>Cyber warfare is computer- or network-based conflict involving politically motivated attacks by a nation-state on another nation-state. In these types of attacks, nation-state actors attempt to disrupt the activities of organizations or nation-states, especially for strategic or military purposes and cyber espionage. Although cyber warfare generally refers to cyber-attacks perpetrated by one nation-state on another, it can also describe attacks by terrorist groups or hacker groups aimed at furthering the goals of particular nations. It can be difficult to definitively attribute cyber-attacks to a nation-state when those attacks are carried out by advanced persistent threat (APT) actors, but such attacks can often be linked to specific nations. Cyber warfare can take many forms, including: <br><br></div><ul><li>viruses, computer worms and malware that can take down water supplies, transportation systems, power grids, critical infrastructure and military systems;</li><li>denial-of-service (DoS) attacks, cyber security events that occur when attackers take action that prevents legitimate users from accessing targeted computer systems, devices or other network resources;</li><li>hacking and theft of critical data from institutions, governments and businesses; and</li><li>Ransomware that holds computer systems hostage until the victims pay ransom.</li></ul><div> </div><ul><li><strong>Computer Forensic</strong></li></ul><div><br></div><div>Computer forensics is the application of investigation and analysis techniques to gather and preserve evidence from a particular computing device in a way that is suitable for presentation in a court of law. The goal of computer forensics is to perform a structured investigation while maintaining a documented chain of evidence to find out exactly what happened on a computing device and who was responsible for it. Forensic investigators typically follow a standard set of procedures: After physically isolating the device in question to make sure it cannot be accidentally contaminated, investigators make a digital copy of the device's storage media. Once the original media has been copied, it is locked in a safe or other secure facility to maintain its pristine condition. All investigation is done on the digital copy. Investigators use a variety of techniques and proprietary software forensic applications to examine the copy, searching hidden folders and unallocated disk space for copies of deleted, encrypted, or damaged files. Any evidence found on the digital copy is carefully documented in a "finding report" and verified with the original in preparation for legal proceedings that involve discovery, depositions, or actual litigation.<br><br><br><br></div><div><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2018-12-27 07:49:06 UTC</pubDate>
         <guid>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316721767</guid>
      </item>
      <item>
         <title></title>
         <author>faridahalwani5</author>
         <link>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316722202</link>
         <description><![CDATA[<div>Question 3<br><br></div><div>a)      Without protection against malware and intruders, connecting to the Internet could be very dangerous. Firewalls, intrusion detection system and antivirus software have become the tools to overcome this problem. Briefly explain these THREE (3) tools.<br><br></div><ul><li><strong>Firewalls</strong></li></ul><div>A firewall is software used to maintain the security of a private network. Firewalls block unauthorized access to or from private networks and are often employed to prevent unauthorized Web users or illicit software from gaining access to private networks connected to the Internet. A firewall may be implemented using hardware, software, or a combination of both. A firewall is recognized as the first line of defense in securing sensitive information. For better safety, the data can be encrypted. Firewalls generally use two or more of the following methods:</div><div> </div><ul><li>Packet Filtering: Firewalls filter packets that attempt to enter or leave a network and either accept or reject them depending on the predefined set of filter rules.</li><li>Application Gateway: The application gateway technique employs security methods applied to certain applications such as Telnet and File Transfer Protocol servers.</li><li>Circuit-Level Gateway: A circuit-level gateway applies these methods when a connection such as Transmission Control Protocol is established and packets start to move.</li><li>Proxy Servers: Proxy servers can mask real network addresses and intercept every message that enters or leaves a network.</li><li>Stateful Inspection or Dynamic Packet Filtering: This method compares not just the header information, but also a packet’s most important inbound and outbound data parts. These are then compared to a trusted information database for characteristic matches. This determines whether the information is authorized to cross the firewall into the network.</li></ul><div> </div><ul><li><strong>Intrusion detection system</strong></li></ul><div>An intrusion detection system (IDS) is a system that monitors network traffic for suspicious activity and issues alerts when such activity is discovered. While anomaly detection and reporting is the primary function, some intrusion detection systems are capable of taking actions when malicious activity or anomalous traffic is detected, including blocking traffic sent from suspicious IP addresses. Although intrusion detection systems monitor networks for potentially malicious activity, they are also prone to false alarms (false positives). Consequently, organizations need to fine-tune their IDS products when they first install them. That means properly configuring their intrusion detection systems to recognize what normal traffic on their network looks like compared to potentially malicious activity. Intrusion detection systems come in different flavors and detect suspicious activities using different methods, including the following:<br><br></div><ul><li> A network intrusion detection system (NIDS) is deployed at a strategic point or points within the network, where it can monitor inbound and outbound traffic to and from all the devices on the network.</li><li>Host intrusion detection systems (HIDS) run on all computers or devices in the network with direct access to both the internet and the enterprise internal network. HIDS have an advantage over NIDS in that they may be able to detect anomalous network packets that originate from inside the organization or malicious traffic that a NIDS has failed to detect. HIDS may also be able to identify malicious traffic that originates from the host itself, as when the host has been infected with malware and is attempting to spread to other systems.</li><li>Signature-based intrusion detection systems monitor all the packets traversing the network and compare them against a database of signatures or attributes of known malicious threats, much like antivirus software.</li><li>Anomaly-based intrusion detection systems monitor network traffic and compare it against an established baseline, to determine what is considered normal for the network with respect to bandwidth, protocols, ports and other devices. This type of IDS alerts administrators to potentially malicious activity.</li></ul><div> </div><ul><li><strong>Antivirus Software</strong></li><li> Antivirus software is a type of utility used for scanning and removing viruses from your computer. While many types of antivirus (or "anti-virus") programs exist, their primary purpose is to protect computers from viruses and remove any viruses that are found. Most antivirus programs include both automatic and manual scanning capabilities. The automatic scan may check files that are downloaded from the Internet, discs that are inserted into the computer, and files that are created by software installers. The automatic scan may also scan the entire hard drive on a regular basis. The manual scan option allows you to scan individual files or your entire system whenever you feel it is necessary. Since new viruses are constantly being created by computer hackers, antivirus programs must keep an updated database of virus types. This database includes a list of "virus definitions" that the antivirus software references when scanning files. Since new viruses are frequently distributed, it is important to keep your software's virus database up-to-date. Fortunately, most antivirus programs automatically update the virus database on a regular basis. While antivirus software is primarily designed to protect computers against viruses, many antivirus programs now protect against other types of malware, such as spyware, adware, and rootkits as well. Antivirus software may also be bundled with firewall features, which helps prevent unauthorized access to your computer. Utilities that include both antivirus and firewall capabilities are typically branded "Internet Security" software or something similar.</li><li>While antivirus programs are available for Windows, Macintosh, and Unix platforms, most antivirus software is sold for Windows systems. This is because most viruses are targeted towards Windows computers and therefore virus protection is especially important for Windows users. If you are a Windows user, it is smart to have at least one antivirus program installed on your computer. Examples of common antivirus programs include Norton Antivirus, Kaspersky Anti-Virus, and Zone Alarm Antivirus.</li></ul><div> </div><div>b)      Information systems controls are the one of the components of an organizational framework for security and control. Information systems controls consist of two – general and application control. A company must know how and where to deploy security tools and security personnel must know what controls a company must have in place to protect its information system. Contrast between General Controls and Application Controls. </div><div> </div><ul><li><strong>General Controls</strong></li></ul><div>General controls are those that control the design, security, and use of computer programs and the security of data files in general throughout the organization. On the whole, general controls apply to all computerized applications and consist of a combination of system software and manual procedures that create an overall control environment<br><br></div><ul><li><strong>Application Controls</strong></li></ul><div>Application controls are specific controls within each separate computer application, such as payroll or order processing. They include both automated and manual procedures that ensure that only authorized data are completely and accurately processed by that application. The controls for each application should take account of the whole sequence of processing, manual and computer, from the first steps taken to prepare transactions to the production and use of final output. Not all of the application controls discussed here are used in every information system. Some systems require more of these controls than others, depending on the importance of the data and the nature of the application. Application controls focus on the following objectives:<br><br></div><div>1. Completeness of input and update. All current transactions must reach the computer and be recorded on computer files.<br><br></div><div>2. Accuracy of input and update. Data must be accurately captured by the computer and correctly recorded on computer files.<br><br></div><div>3. Validity. Data must be authorized or otherwise checked with regard to the appropriateness of the transaction. (In other words, the transaction must reflect the right event in the external world. The validity of an address change, for example, refers to whether a transaction actually captured the right address for a specific individual.)<br><br></div><div>4. Maintenance. Data on computer files must continue to remain correct and current. Application controls can be classified as (1) input controls, (2) processing controls, and (3) output controls.<br><br></div><div><br></div><div>Question 4<br><br></div><div>Malicious Software programs are referred to as Malware. Describe FOUR (4) types of malicious software. <br><br></div><ul><li><strong>Spyware</strong></li></ul><div>Spyware is any technology that aids in gathering information about a person or organization without their knowledge. On the Internet (where it is sometimes called a Spybot or tracking software), Spyware is programming that is put in someone's computer to secretly gather information about the user and relay it to advertisers or other interested parties. Spyware can get in a computer as a software virus or as the result of installing a new program.</div><ul><li><strong>Virus</strong></li></ul><div>Virus is a program or programming code that replicates by being copied or initiating its copying to another program, computer boot sector or document. Viruses can be transmitted as attachments to an e-mail note or in a downloaded file, or be present on a diskette or CD</div><ul><li><strong>Worm</strong></li></ul><div>A worm is a self-replicating virus that does not alter files but duplicates itself. It is common for worms to be noticed only when their uncontrolled replication consumes system resources, slowing or halting other tasks.</div><ul><li><strong>Trojan (Trojan horse) </strong></li></ul><div>Trojan horse is a program in which malicious or harmful code is contained inside apparently harmless programming or data in such a way that it can get control and do its chosen form of damage, such as ruining the certain area on your hard disk. A Trojan horse may be widely redistributed as part of a computer virus.<br><br></div><div>Question 5 <br><br></div><div>a)      Nowadays, securing information systems has become an important issue in organization to protect itself against computer crime. Define computer crime and provide an appropriate example. </div><div>·         Computer crime is alternatively referred to as cyber-crime, e-crime, electronic crime, or hi-tech crime. Computer crime is an act performed by a knowledgeable computer user, sometimes referred to as a hacker that illegally browses or steals a company's or individuals private information. In some cases, this person or group of individuals may be malicious and destroy or otherwise corrupt the computer or data files.</div><div>·         Examples of computer crime include: </div><div>1.       Child pornography - Making or distributing child pornography.</div><div>2.       Copyright violation - Stealing or using another person's Copyrighted material without permission.</div><div>3.       Cracking - Breaking or deciphering codes that are being used to protect data.</div><div>4.       Cyber terrorism - Hacking, threats, and blackmailing towards a business or person.</div><div>5.       Cyberbully or Cyberstalking - Harassing or stalking others online.</div><div>6.       Cybersquatting - Setting up a domain of another person or company with the sole intentions of selling it to them later at a premium price.<br><br>b)  Briefly explain THREE (3) reasons why information systems are vulnerable to destruction, error and abuse? </div><ul><li>Corporate systems using the Internet are especially vulnerable because the Internet is designed to be an open system and makes internal corporate systems more vulnerable to actions from outsiders. </li><li>Hackers can unleash denial of service (DoS) attacks or penetrate corporate networks to cause serious system disruptions. </li><li>Wi-Fi networks can easily be penetrated by intruders using sniffer programs to obtain an address to access the resources of the network.</li></ul><div>·          </div><div>c)  Discuss the THREE (3) most important tools and technology for safeguarding information resources. <br><br></div><ul><li>They can use fault-tolerant computer systems or create high-availability computing environments to make sure that their information systems are always available and performing without interruptions.</li><li>Firewalls are placed between an organization's private network and external networks such as the Internet to prevent unauthorized users from accessing the private network. </li><li>Intrusion detection systems monitor private networks for suspicious network traffic and attempts to access corporate systems. </li></ul><div><br></div><div>Question 6 <br><br></div><div>a)      Identify management software automates the process of keeping track of all information systems users and their system privileges, assigning each user a unique digital identity for accessing each system. Define authentication. <br><br></div><ul><li>Authentication is the technique by which a system checks the identification of a end User who wants to access it. Since entrance or access control is normally based on the identification of the User who demands access to a resource. </li><li>Authentication is essential to effective Security.</li></ul><div> </div><div>b)      Identify and briefly describe FOUR (4) authentication technologies.<br><br></div><div><strong>1.</strong>       <strong>Password Based Technologies</strong></div><div>Passwords are the most common form of authentication. Password may be of any form (String of alphabets, numbers and special characters). This password is necessarily to be known by the entity or the thing or a person that is being authenticated. This authentication process takes places (password) by: <br><br></div><div>·         Prompts for user id and password.</div><div>·         User enters user id and password.</div><div>·         User id and password validation.</div><div>·         Authentication result back to the server.</div><div>·         Inform user accordingly.<br><br></div><div><strong>2.</strong>       <strong>Certificate Based Technologies</strong></div><div>It is a digital document which digitally signed by a reliable third party known as the Certificate Authority (CA). Then these Digital Certificates can be reused for user authentication. Certificate based authentication is stable as compared to password based authentication because here end user is supposed to have something (CERTIFICATE) rather than to know something (PASSWORD). Electronic document contains information of “The Entity it belongs to”, “The Entity it was issued by”, “Unique serial number or some other unique identification”, or “Digital fingerprint”. This authentication process takes places (certificate) by:<br><br></div><div>·         Creation, storage and distribution of DC(Digital Certificate).</div><div>·         Login request (user to server).</div><div>·         Server creates a random challenge.</div><div>·         User signs the random challenge.</div><div>·         Server returns an appropriate message back to the user.<br><br></div><div><strong>3.</strong>       <strong> E-Token Based Technologies</strong></div><div>An E-Token authentication is small devices that develop/generates a new odd/random value every time it is used. This random value becomes the basis for authentication (an alternative to a password). It can be implemented on a USB key fob or on a smart card. Data is protected on the device itself. Many store credentials such as passwords, digital signatures and certificates, and private keys. E-Token has different components or features like Processor, LCD for displaying outputs or random values, Battery, Small keypad for entering information, Real-time clock. This Authentication Process takes places (e-token) by: <br><br></div><div>·         Creation of a token.</div><div>·         Use of token.</div><div>·         Token validation.</div><div>·         Server returns an appropriate message back to the user.<br><br></div><div>4.       <strong> Biometric Based Technologies:</strong></div><div>Biometric authentication refers to the realization/recognition/identification of humans by their personality/characteristics such as Face, fingerprint, human voice, Retina, Iris pattern of the eye, vein pattern etc. It's used in computer science as a form of realization/recognition and access control. It is also used to find/select persons in groups that are under consideration/measurement. This Authentication Process takes places (Biometric) by:<br><br></div><div>·         Database consist of a sample of users biometric characteristics.</div><div>·         During Authentication process, User is compulsory/mandatory to give a new pattern/sample of the users biometric.</div><div>·         This pattern is sent to encryption.</div><div>·         This patters/sample is decrypted &amp; related/compared.(if pattern matches)</div><div>·         User is treated as valid one.<br><br></div><div>Question 7<br><br></div><div>a)      Describe ransomware.<br><br></div><ul><li>Ransomware is a subset of malware in which the data on a victim's computer is locked, typically by encryption, and payment is demanded before the ransomed data is decrypted and access returned to the victim. The motive for ransomware attacks is nearly always monetary, and unlike other types of attacks, the victim is usually notified that an exploit has occurred and is given instructions for how to recover from the attack. Payment is often demanded in a virtual currency, such as bitcoin, so that the cybercriminal's identity isn't known.</li></ul><div> </div><div>b)      State how do we prevent and protect our computer from ransomware.<br><br></div><div><strong>1. Make sure you have installed an up-to-date anti-malware or anti-virus tool</strong></div><div>Anti-malware tools like Malware bytes or McAfee Anti-Malware are an important part of your computer’s security system. Make sure that you have one installed and are running the most current version on your computer.<br><br></div><div><strong>2. Scan attachments</strong></div><div>Most malware tools give you the ability to scan any emails or attachments before opening them. Emails and email attachments should be scanned before for malware before you open them – especially if they’re coming from an unknown sender.<br><br></div><div><strong>3. Ask before you open</strong></div><div>If you’re not sure about an email attachment or link in an email, send a quick note to the person who sent it and ask them if it is legitimate. If the person doesn’t respond or gives you a cryptic answer, do not open it.</div><div> </div><div>c)       Discuss the effects of the computer crime to an organization.  <br><br></div><div>·         <strong>Damaged reputation: Counterproductive to building a brand</strong></div><div>The web is an interesting place: Once information has been put out, it’s likely to live there forever, no matter how hard one tries to erase it. Think about the last email that you sent that contained confidential information. The email probably had an intended recipient. You probably don’t want that information to be seen by anyone except the recipient. Sadly, it could easily be made public if your account is hacked. If you store anything online: pictures, files, documents, you risk that data being exposed to the public should your data center (or cloud) be breached.<br><br></div><div>·         <strong>Damage to intellectual property resulting in the loss of a competitive edge</strong></div><div>Without diminishing the effects of the exposure of sensitive customer information, cybercrime and data leaks can also have a negative impact on a company's competitive edge. Consider the effects of having intellectual property like business ideas, marketing campaigns or business expansion plans stolen or exposed. This breach might render any of these ideas useless or ineffective and result in serious damage towards business growth and revenue gains, especially if they land up in the hands of one’s competitors.<br><br></div><div> <br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2018-12-27 08:01:41 UTC</pubDate>
         <guid>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316722202</guid>
      </item>
      <item>
         <title></title>
         <author>faridahalwani5</author>
         <link>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316722879</link>
         <description><![CDATA[<div><strong>CASE STUDY ANSWERS: <br></strong><br></div><div><strong>1.</strong>  <strong>Security isn’t simply a technology issue, it’s a business issue. Discuss.<br></strong><br></div><div>Employees use of unauthorized personal mobile devices can be a threat because it is an unknown object on the IT network. For example, if a user was to save business data onto an unauthorized device and then it was infected by malware, the data could end up in the wrong hands.<br><br><strong>2.  Who poses the biggest security threat: insiders or outsiders?<br></strong><br></div><ul><li>An insider attack is one of the biggest threats faced by organizations since these types of hacks can be very difficult for IT teams to identify. This is because an insider – whether he’s an employee or a contractor – is already entrusted with authorized access to at least some systems and applications on a corporate network. It can be very hard for those in IT to decipher whether he’s just performing his regular job tasks, or carrying out something sinister.</li></ul><div><br></div><ul><li>Insiders have been responsible for some interesting breaches or hostage scenarios in recent history, whether intentional or not. Consider Terry Childs in San Francisco who held the city hostage for two weeks while sitting in a jail cell or Edward Snowden, formerly of the NSA.</li></ul><div><br></div><div><strong>3.  Suppose your business had an e-commerce Web site where it sold goods and accepted credit card payments. Discuss the major security threats to this Web site and their potential impact. What can be done to minimize these threats? </strong><br> </div><ul><li>E-commerce involves transactions of any kind of business done over an electronic system. This kind of business involves transactions that take place over Internet. E-commerce utilizes internal networks that interface with the World Wide Web. The nature of this kind of business, introduces internal and external risks to both the website and the business systems to which it is connected too. An E-commerce website can be faced some security threats that have to be addressed, to avoid any losses and intrusions. According to my e-commerce website, things have been run well but then later have to face some security threats .here are some of them.</li><li>E-commerce websites are vulnerable to fraud from internal and external sources. Fraud incidents include credit card fraud, which exposes the website to threat from clients and any other external sources and internal fraud. Any fraudulent transactions being entered into the system from employees. Such transactions can also be introduced into the system by hackers or Trojan Horses, which resemble the real customers’ transactions. To prevent fraud, Fraud scoring must be used. It is a system of predictive fraud detection models or technologies that payment processors use to identify the highest-risk transactions in card-not-present environment that require additional verification. All card-not-present transactions must be authorized before they are processed. The authorization response will typically be approval or decline. You should develop a process for handling transactions after the authorization response has been received and apply it consistently.</li><li>A website that has been invaded by viruses and malicious software, can come crushing which will make the website lose the entire information causing losses to the e-commerce business. This can cause the clients to lose trust in the business, and as a result they can close their accounts on the website. Loss of information on a website can be devastating for both the business owner and the client especially if the information was not backed up.</li><li>One of the greatest threats to an e-commerce is poor management. When the management is not committed to ensuring security and does not support budgets for purchase of anti-virus software licenses, that keep internal networks robust will cause pose a big security threat. The lack of proper anti-virus makes the e-commerce vulnerable to viral attacks. To minimize or reduce this threat, Management should commit to regular IT security audits of the e-commerce website to ensure that security is optimized and all potential problems are dealt with as soon as they occur.</li><li>E-commerce security issues relate to internal business networks and an interface between transactions done by the customer and the network. Hackers pose a threat to the security of the network, because they can gain access to internal systems via the e-commerce website. Such threats can be avoided by using a firewall between the website and the internal network, and by encrypting all the transaction data.</li><li> Malicious software and computer viruses are some of the biggest security threats to any E-commerce website. Viruses are normally from external sources and can corrupt files on website if introduced into the internal network. Viruses can completely destroy a computer system and disrupt the operations of the website. Trojan horse is malicious software that has the ability to capture the clients’ information, before any encryption software can take effect. They can also impersonate a customer and pass over bad and malicious codes into the server running the website.to avoid these viruses, Users should exercise reasonable precautions in order to minimize the introduction and spread of computer viruses onto the Rhodes networks. Virus scanning software should be used to check any software downloaded from the Internet or obtained from any questionable source. Virus protection software has to be installed on the computer; check frequently for virus signature updates; and actually scan the files on the PC. </li></ul><div><br><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2018-12-27 08:21:42 UTC</pubDate>
         <guid>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316722879</guid>
      </item>
      <item>
         <title>CASE STUDY 1: THE LOOMING THREAT OF CYBER</title>
         <author>faridahalwani5</author>
         <link>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316722920</link>
         <description><![CDATA[<div><br></div><div>1. <strong>Is cyber-warfare a serious problem? Why or why not?</strong></div><div><strong> </strong></div><div>Cyber-warfare is a set of challenges for security experts, not only in detecting and preventing intrusions but also in tracking down perpetrators and bringing them to justice. The most prominent threats so far include, successful attacks on the FAA airline system, including one in 2006 that partially shut down air traffic data systems in Alaska. Intruders successfully penetrated the Pentagon’s $300 billion Joint Strike Fighter project and stole several terabytes of data related to design and electronics systems. Cyber spies infiltrated the U.S. electrical grid in April 2009 and left behind software programs whose purpose is unclear. In Iraq, insurgents intercepted Predator drone feeds using software downloaded from the Internet. An act of cyber-war against a critical resource such as the electric grid, financial system, or communication systems would likely be devastating.</div><div> </div><div>2. <strong>What solutions have been proposed? Do you think they will be effective? Why or why not?</strong></div><div><strong>Proposed solutions include the following along with an assessment of their effectiveness:</strong></div><div><strong> </strong></div><div> Congress is considering legislation that would require all critical infrastructure companies to meet newer, tougher cyber security standards. As cyber warfare technologies develop and become more advanced, the standards imposed by this legislation will likely be insufficient to defend against attacks.</div><div>Furthemore, Secretary of Defense Gates ordered the creation of Cyber com, the first headquarters designed to coordinate government cyber security efforts. It was activated in May 2010. It will coordinate the operation and protection of military and Pentagon computer networks. It will coordinate efforts to restrict access to government computers and protect systems that run the stock exchanges, clear global banking transactions, and manage the air traffic control system. Its ultimate goal will be to prevent catastrophic cyber attacks against the U.S. Some insiders suggest that it might not be able to effectively organize the governmental agencies without direct access to the President, which it currently lacks.</div><div> </div>]]></description>
         <enclosure url="" />
         <pubDate>2018-12-27 08:22:52 UTC</pubDate>
         <guid>https://padlet.com/faridahalwani5/mvmt6epov35/wish/316722920</guid>
      </item>
   </channel>
</rss>
