System security and Security Threats

Krishnendhu A
2 min readNov 4, 2022

--

System security

System security is about protecting information and assets against theft, corruption, and other types of damage, and allowing information and assets to remain accessible and functional.

Firewall

Firewalls include software and hardware that are implemented between the internal computer network and the Internet. Computer Network Manager defines firewall rules to filter out unwanted intrusions.

Encryption

Encryption is the process of encrypting messages so that only authorized people can see them.

Password

A password is a string of characters used to authenticate users accessing the system. Passwords must be kept secret and only for specific users. In a computer system, each password is associated with a specific user name because many people can access the same system.

Security Threats

Cyber security threats are acts committed by individuals with malicious intent, the purpose of which is to steal data, damage or disrupt computer systems.

Cyber ​​threats can come from a variety of sources, from terrorist groups to individual hackers, to trusted individuals such as employees or contractors, who abuse their privileges to carry out their actions. malicious behavior.

Types of Cyber security Threats

Malware attacks

Malware is short for “malicious software,” which includes viruses, worms, Trojan horses, spyware, and ransomware. This is the most common type of cyber attack. Malware enters the system, often through a link on an untrusted website or email, or through downloading unwanted software.

Social engineering attacks

Social engineering involves tricking users into providing an entry point for malware. Victims provide sensitive information or accidentally install malware on their devices because the attacker is impersonating a legitimate actor. Here are some of the main types of social engineering attacks:

Baiting — an attacker lures users into a social engineering trap, often with the promise of something enticing like a free gift card.

Phishing: An attacker sends an email claiming to be from a trusted source.

Smishing (scam via SMS) — attackers use text messages as a way to fool victims. Overlay — an authorized user that provides physical access to another person who “overlays” the user’s credentials.

Tailgating — unauthorized person tracking an authorized user through a location, such as quickly ducking through a protected door after the authorized user opens it.

Man in the middle attack

A Man-in-the-Middle (MitM) attack involves intercepting communication between two endpoints, such as a user and an application. An attacker can eavesdrop on communications, steal sensitive data, and impersonate each party to the communication.

Denial of service attack

Denial of Service (DoS) attacks overload the target system with a large amount of traffic, hindering the system’s ability to function normally.

Injection attacks

Injection attacks exploit various vulnerabilities to inject malicious input directly into the web application’s code.

Cyber security is a great career to enter, as there is a high demand for professionals with these skills. There were a number of place for CEH training in Cochin. To become an expert in cyber security, you can join the Best Ethical Hacking training in Kochi.

--

--