<?xml version="1.0"?>
<rss version="2.0">
   <channel>
      <title>Types of Cyber Attack by al chua</title>
      <link>https://padlet.com/cdocsafcds/cyfun123</link>
      <description></description>
      <language>en-us</language>
      <pubDate>2022-05-10 01:41:10 UTC</pubDate>
      <lastBuildDate>2022-08-22 01:45:04 UTC</lastBuildDate>
      <webMaster>hello@padlet.com</webMaster>
      <image>
         <url></url>
      </image>
      <item>
         <title>Group 1</title>
         <author>cdocsafcds</author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2176718753</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-05-10 01:44:52 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2176718753</guid>
      </item>
      <item>
         <title>Group 2</title>
         <author>cdocsafcds</author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2176718931</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-05-10 01:44:58 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2176718931</guid>
      </item>
      <item>
         <title>Group 3</title>
         <author>cdocsafcds</author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2176719025</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-05-10 01:45:02 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2176719025</guid>
      </item>
      <item>
         <title>Group 5</title>
         <author>cdocsafcds</author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266809700</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:11:48 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266809700</guid>
      </item>
      <item>
         <title>Group 4</title>
         <author>cdocsafcds</author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266809950</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:12:07 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266809950</guid>
      </item>
      <item>
         <title>Group 6</title>
         <author>cdocsafcds</author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266810476</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:12:43 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266810476</guid>
      </item>
      <item>
         <title>MiTM Attacks</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266810514</link>
         <description><![CDATA[<div>-Superfish Visual Search software, a piece of adware was discovered to be preinstalled on Lenovo machines in December 2014<br>-Superfish contained universal self-signed certificate authority susceptible to MiTM to add advertisements even to encrypted content<br>-Certificate also held identical private keys, allowing eavesdropping through HTTPS transmissions without being flagged by browsers<br>-Lenovo revealed that their desktops, servers and enterprise laptops did not have Superfish installed, however with BYOD personal Lenovo devices could compromise the security in the company<br>-Microsoft released a Windows Defender update in Feb 20, 2015 which removed Superfish<br>-Incident revealed Superfish had been preinstalled in machines of other brands in the form of software bundles prior to the Lenovo security incident</div>]]></description>
         <enclosure url="https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/superfish-adware-in-lenovo-consumer-laptops-violates-ssl" />
         <pubDate>2022-08-22 01:12:46 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266810514</guid>
      </item>
      <item>
         <title>SQL Injection</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266810912</link>
         <description><![CDATA[<div>A SQL injection is a technique that attackers use to gain unauthorized access to a web application database by adding a string of malicious code to a database query. A SQL injection (SQLi) manipulates SQL code to provide access to protected resources, such as sensitive data, or execute malicious SQL statements. When executed correctly, a SQL injection can expose intellectual property, customer data or the administrative credentials of a private business. SQL injection attacks can be used to target any application that uses a SQL database, with websites being the most common prey.</div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:13:13 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266810912</guid>
      </item>
      <item>
         <title>Password Attack</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266811567</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:13:55 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266811567</guid>
      </item>
      <item>
         <title>DDOS attack</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266811770</link>
         <description><![CDATA[<div>An example would be : AWS DDoS attack in 2020<br><br>What is DDoS attack : Attackers floods a server with internet traffic to prevent users from accessing connected online services<br><br>Who was affected : <a href="https://aws-shield-tlr.s3.amazonaws.com/2020-Q1_AWS_Shield_TLR.pdf">Amazon Web Services</a>, the 800-pound gorilla of everything cloud computing, was hit by a gigantic DDoS attack in February 2020.&nbsp;<br><br>How :&nbsp; A technique called Connectionless Lightweight Directory Access Protocol (CLDAP) reflection, which relies on vulnerable third-party CLDAP servers&nbsp; (It is used to connect, search, and modify shared internet directories)  and amplifies the amount of data sent to the victim’s IP address by 56 to 70 times. The attack lasted for three days and peaked at an astounding 2.3 terabytes per second.<br><br>Why it matters : This was the most extreme recent DDoS attack ever. AWS hosting customers potentially losing revenue and suffering brand damage. When IT services in companies are down it can cost them anywhere from $300,000 to over $1,000,000 per hour which can damage their bottom line.<br><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:14:10 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266811770</guid>
      </item>
      <item>
         <title>Form-Jacking Attack</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266812910</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:15:28 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266812910</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266815012</link>
         <description><![CDATA[<div>One of the more prominent formjacking attacks occurred on <a href="https://www.bbc.com/news/technology-54568784">British Airways</a> in 2018, resulting in a fine of over £20 million pounds (approximately $26 million dollars.) British Airways only discovered the attack when a security researcher alerted them—more than two months after attack initiation.&nbsp;</div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:17:53 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266815012</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266815374</link>
         <description><![CDATA[<div>Formjacking is a type of cyber attack where hackers inject malicious JavaScript code into a webpage form–most often a payment page form. When a site visitor enters their payment card information and hits submit, that malicious code collects the payment card number–as well as other information like the customer’s name, address, and phone number. The code then sends this information to another location of the attackers’ choosing.&nbsp;<br><br></div><div>Formjacking is part of a larger group of attacks known as “supply chain attacks” where hackers target a vulnerable provider within the service/supply chain. In the case of formjacking attacks that seek to siphon credit card numbers, the provider is typically a payment processor.&nbsp;<br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:18:15 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266815374</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266816495</link>
         <description><![CDATA[<div>Password attacks are one of the most common forms of corporate and personal data breach. A password attack is simply <strong>when a hacker trys to steal your password</strong>. In 2020, 81% of data breaches were due to compromised credentials.</div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:19:21 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266816495</guid>
      </item>
      <item>
         <title>Living off the land</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266816595</link>
         <description><![CDATA[]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:19:28 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266816595</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266817603</link>
         <description><![CDATA[<div>Living off the land refers to the use of dual-use tools, which are either already installed in the victims’ environment, or are admin, forensic or system tools used maliciously.<br><br></div><div>Living off the land means surviving on what you can forage, hunt, or grow in nature. LotL cyberattack operators forage on target systems for tools, such as operating system components or installed software, they can use to achieve their goals. LotL attacks are often classified as fileless because they do not leave any artifacts behind.<br><br></div><div><br><br></div><div><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:20:29 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266817603</guid>
      </item>
      <item>
         <title>Impacts of MiTM Attacks</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266818499</link>
         <description><![CDATA[<div>-The damage a MitM attacker can cause reaches far beyond gaining access to your communications.&nbsp;<br>-The effects of a MitM attack on a small business can be outright disastrous.&nbsp;<br>-For example, a man in the middle attack often results in a breach of customers’ private data, including credit card details. According to the IBM cost of data breach report 2021, businesses faced an average loss of $18.9 million after a data breach.<br>-A man in the middle attack can also cause enormous damage to the reputation of a business. According to a study by PWC, 31% of consumers surveyed would switch to another business if a company they used suffered a data breach.<br><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:21:05 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266818499</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266818562</link>
         <description><![CDATA[<div>In February 2021, U.S. government agencies were compromised in a series of nation state attacks as a result of a supply chain attack involving software from SolarWinds. Hackers exploited a vulnerability in the cybersecurity provider’s network monitoring software, allowing them to laterally infiltrate companies that were using that software and gain access to their email communications.<br>While it hasn’t been confirmed, current and former SolarWinds employees report that the root cause of the supply chain attack was a weak password: an intern had been using the password “solarwinds123”, and that password was publicly accessible via a misconfigured GitHub repository.<br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:21:09 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266818562</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266819211</link>
         <description><![CDATA[<div>Usually, attackers go for identity theft which leads to major damage to your office’s work capabilities and equipment. However, over the past 3-4 years, there has been a recent shift from identity theft to ransomware.<br>There have been cases where a company brags about the amount of cybersecurity insurance they carry only to be ransomed for that exact amount.<br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:21:51 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266819211</guid>
      </item>
      <item>
         <title>Methodology</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266820810</link>
         <description><![CDATA[<div><strong>Scenario 1</strong></div><div><sub>1. Attacker uses packet sniffer to find insecure connections<br>2. Attacker intercepts victims' user login information<br>3. Victims are redirected to a mimic site<br>4. Attacker intercepts users' credentials on real site<br><br></sub><strong>Scenario 2</strong></div><div><sub>1. Attacker intercepts and redirects victim to a bank chat mimic<br>2. Attacker pretends to be the bank when talking to the victim<br>3. Attacker obtains victim's credentials<br>4. Attacker impersonates the victim and uses their credentials on real bank chat<br>5. Attacker gains access to victims' bank account</sub></div>]]></description>
         <enclosure url="https://padlet-uploads.storage.googleapis.com/1775745353/e1661c58d416b3b8bbf66f1fdb9595a8/image.png" />
         <pubDate>2022-08-22 01:23:31 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266820810</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266822199</link>
         <description><![CDATA[<div>Gonzalez and an uncharged conspirator found the targets on a list of Fortune 500 companies and then did reconnaissance to determine the payment-processing systems they used. They then uncovered vulnerabilities in the systems they could exploit.</div><div>Using a SQL-injection attack, the hackers broke into the 7-Eleven network in August 2007, stealing an undetermined amount of card data.</div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:25:02 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266822199</guid>
      </item>
      <item>
         <title>Brute force attacks</title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266823246</link>
         <description><![CDATA[<div>If a password is equivalent to using a key to open a door, a brute force attack is using a battering ram. A hacker can try 2.18 trillion password/username combinations in 22 seconds, and if your password is simple, your account could be easily cracked<br><br></div><div><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:26:07 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266823246</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266824014</link>
         <description><![CDATA[<div><strong>7-Eleven breach - </strong>a team of attackers used SQL injection to penetrate corporate systems at several companies, primarily the 7-Eleven retail chain, stealing 130 million credit card numbers.</div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:26:58 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266824014</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266825962</link>
         <description><![CDATA[<div>To help prevent brute force attacks:</div><ul><li>Use a complex password. The difference between an all-lowercase, all-alphabetic, six-digit password and a mixed case, mixed-character, ten-digit password is enormous.&nbsp;</li><li>Enable and configure remote access. Ask your IT department if your company uses remote access management.</li><li>Never use a dictionary word as a password. If you've read it in a book, it should never be part of your password. If you must use a password instead of an access management tool, consider using a password management system.</li></ul><div><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:28:53 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266825962</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266826068</link>
         <description><![CDATA[<div>The hackers were able to obtain more than 380,000 credit cards, allowing them to net more than $17 million. This was done by adding just 22 lines of malicious code tailor-made to the weaknesses of the British Airways site, into the British Airways baggage claim information page.</div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:28:58 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266826068</guid>
      </item>
      <item>
         <title></title>
         <author></author>
         <link>https://padlet.com/cdocsafcds/cyfun123/wish/2266827115</link>
         <description><![CDATA[<div>In February 2018, a widespread fileless attack against financial institutions around the world was reported. The attackers deployed several tools to gain control of the financial networks. To gain administrative privileges, the attackers used Mimikatz for password collection. Then, the attackers placed PowerShell scripts in the registry, and generated Metasploit scripts that were executed using the Windows SC service. In addition, the Windows NETSH tool was used for communication between the victim and the C2. This comprehensive use of tools enabled the attackers to perform a highly sophisticated attack, which remained undetected for some time.<br><br></div><div><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2022-08-22 01:30:03 UTC</pubDate>
         <guid>https://padlet.com/cdocsafcds/cyfun123/wish/2266827115</guid>
      </item>
   </channel>
</rss>
