SlideShare a Scribd company logo

Intro Ch 14A.ppt

Download as PPT, PDF
K
Kaukau9

This document discusses security threats facing computer users, hardware, and data. It describes various threats such as identity theft, loss of privacy from data collection, viruses, hacking, denial of service attacks, and cyberterrorism. It also outlines countermeasures to mitigate threats, including anti-virus software, firewalls, physical security of hardware, and disaster recovery planning. The overall document provides an overview of common security risks and steps that can be taken to enhance protection.

Data & Analytics
1 of 23
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Chapter 14A Understanding the Need for Security Measures
14A-3 Basic Security Concepts • Threats – Anything that can harm a computer – Vulnerabilities are weaknesses in security – Security attempts to neutralize threats
14A-4 Basic Security Concepts • Degrees of harm – Level of potential damage – Include all parts of system • Potential data loss • Loss of privacy • Inability to use hardware • Inability to use software
14A-5 Basic Security Concepts • Countermeasures – Steps taken to block a threat – Protect the data from theft – Protect the system from theft
14A-6 Threats To Users • Identity Theft – Impersonation by private information • Thief can ‘become’ the victim – Reported incidents rising – Methods of stealing information • Shoulder surfing • Snagging • Dumpster diving • Social engineering • High-tech methods
14A-7 Threats To Users • Loss of privacy – Personal information is stored electronically – Purchases are stored in a database • Data is sold to other companies – Public records on the Internet – Internet use is monitored and logged – None of these techniques are illegal
14A-8 Threats to Users • Cookies – Files delivered from a web site – Originally improved a site’s function – Cookies now track history and passwords – Browsers include cookie blocking tools
14A-9 Threats to Users • Spyware – Software downloaded to a computer – Designed to record personal information – Typically undesired software – Hides from users – Several programs exist to eliminate
14A-10 Threats to Users • Web bugs – Small programs embedded in gif images – Gets around cookie blocking tools – Companies use to track usage – Blocked with spyware killers
14A-11 Threats to Users • Spam – Unsolicited commercial email – Networks and PCs need a spam blocker • Stop spam before reaching the inbox – Spammers acquire addresses using many methods – CAN-SPAM Act passed in 2003
14A-12 Threats to Hardware • Affect the operation or reliability • Power-related threats – Power fluctuations • Power spikes or browns out – Power loss – Countermeasures • Surge suppressors • Line conditioners • Uninterruptible power supplies • Generators
14A-13 Threats to Hardware • Theft and vandalism – Thieves steal the entire computer – Accidental or intentional damage – Countermeasures • Keep the PC in a secure area • Lock the computer to a desk • Do not eat near the computer • Watch equipment • Chase away loiterers • Handle equipment with care
14A-14 Threats to Hardware • Natural disasters – Disasters differ by location – Typically result in total loss – Disaster planning • Plan for recovery • List potential disasters • Plan for all eventualities • Practice all plans
14A-15 Threats to Data • The most serious threat – Data is the reason for computers – Data is very difficult to replace – Protection is difficult • Data is intangible
14A-16 Threats to Data • Viruses – Software that distributes and installs itself – Ranges from annoying to catastrophic – Countermeasures • Anti-virus software • Popup blockers • Do not open unknown email
14A-17 Threats to Data • Trojan horses – Program that poses as beneficial software – User willingly installs the software – Countermeasures • Anti-virus software • Spyware blocker
14A-18 Threats to Data • Cybercrime – Using a computer in an illegal act – Fraud and theft are common acts
14A-19 Threats to Data • Internet fraud – Most common cybercrime – Fraudulent website – Have names similar to legitimate sites
14A-20 Threats to Data • Hacking – Using a computer to enter another network – Cost users $1.3 trillion in 2003 – Hackers motivation • Recreational hacking • Financial hackers • Grudge hacking – Hacking methods • Sniffing • Social engineering • Spoofing
14A-21 Threats to Data • Distributed denial of service attack – Attempt to stop a public server – Hackers plant the code on computers – Code is simultaneously launched – Too many requests stops the server
14A-22 Threats to Data • Cyber terrorism – Attacks made at a nations information – Targets include power plants – Threat first realized in 1996 – Organizations combat cyber terrorism • Computer Emergency Response Team (CERT) • Department of Homeland Security
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Chapter 14A End of Chapter

More Related Content

PPT
Understanding the need for security measures
joy grace bagui
 
PPT
Viruses (Lecture) IT Slides # 3
Muhammad Talha Zaroon
 
PPTX
Understanding computer attacks and attackers - Eric Vanderburg - JURINNOV
Eric Vanderburg
 
PPT
Hackers
Mohamed Boudchiche
 
PDF
Information Systems Audit - Auditing Information Systems
ssuser557ea5
 
PPT
How to become Hackers .
Greater Noida Institute Of Technology
 
PPTX
Security_Awareness_Primer.pptx
Faith Shimba
 
PPTX
Cyber security
Sabir Raja
 
Understanding the need for security measures
joy grace bagui
 
Viruses (Lecture) IT Slides # 3
Muhammad Talha Zaroon
 
Understanding computer attacks and attackers - Eric Vanderburg - JURINNOV
Eric Vanderburg
 
Hackers
Mohamed Boudchiche
 
Information Systems Audit - Auditing Information Systems
ssuser557ea5
 
How to become Hackers .
Greater Noida Institute Of Technology
 
Security_Awareness_Primer.pptx
Faith Shimba
 
Cyber security
Sabir Raja
 

Similar to Intro Ch 14A.ppt (20)

PPT
Hackers
Alvaro Cipriano
 
PPT
Hackers
yozusaki
 
PPT
Hackers
guesta04f59b
 
PDF
2.Security (1).pdfccccccccccccccccccccccccccccccccccccccccccccc
jacobdiriba
 
PPT
Intro ch 14_b
محمد گلزار
 
PPTX
Computer Security and their social effect and their usage.
rizwanshafique4321
 
PPT
Hackers Cracker Network Intruder
Erdo Deshiant Garnaby
 
PDF
Unit14-Computer Security and ethics -downloaded.pdf
Alefya1
 
PPTX
Computer security & ethics
samina khan
 
PPTX
Need for security attacks and threats Chap 2.pptx
sania82678
 
PPTX
c13 Security and Ethics(1)(1)(1).pptsasdax
ShaonKhan12
 
PPT
Security and ethical challenges in mis
I P Abir
 
PPTX
USG_Security_Awareness_Primer (1).pptx
ssuser59e4b8
 
PPTX
USG_Security_Awareness_Primer.pptx
BilmyRikas
 
PPTX
Awareness Security 123.pptx
RajuSingh730938
 
PPTX
USG_Security_Awareness_Primer.pptx
sumita02
 
PPTX
Chapter-2 (1).pptx
PaulaRodalynMateo1
 
PPTX
IT Threats and Computer Security
KongChunLeong1
 
PPT
Sahilmod 120315100301-phpapp01
Nelito Systems Ltd
 
DOCX
Chapter 10.0
Adebisi Tolulope
 
Hackers
Alvaro Cipriano
 
Hackers
yozusaki
 
Hackers
guesta04f59b
 
2.Security (1).pdfccccccccccccccccccccccccccccccccccccccccccccc
jacobdiriba
 
Intro ch 14_b
محمد گلزار
 
Computer Security and their social effect and their usage.
rizwanshafique4321
 
Hackers Cracker Network Intruder
Erdo Deshiant Garnaby
 
Unit14-Computer Security and ethics -downloaded.pdf
Alefya1
 
Computer security & ethics
samina khan
 
Need for security attacks and threats Chap 2.pptx
sania82678
 
c13 Security and Ethics(1)(1)(1).pptsasdax
ShaonKhan12
 
Security and ethical challenges in mis
I P Abir
 
USG_Security_Awareness_Primer (1).pptx
ssuser59e4b8
 
USG_Security_Awareness_Primer.pptx
BilmyRikas
 
Awareness Security 123.pptx
RajuSingh730938
 
USG_Security_Awareness_Primer.pptx
sumita02
 
Chapter-2 (1).pptx
PaulaRodalynMateo1
 
IT Threats and Computer Security
KongChunLeong1
 
Sahilmod 120315100301-phpapp01
Nelito Systems Ltd
 
Chapter 10.0
Adebisi Tolulope
 

Recently uploaded (20)

PDF
.pdf is not working space design for the following data for the following dat...
jerinjoy242
 
PPTX
Microsoft-Fabric-Unifying-Analytics-for-the-Modern-Enterprise Solution.pptx
Mahesh Reddy
 
PDF
BF and FI - Blockchain, fintech and Financial Innovation Lesson 2.pdf
JamesWilliams752225
 
PPTX
IB Computer Science - Internal Assessment.pptx
agarwal18harsh08
 
PPTX
MODULE 8 - DISASTER risk PREPAREDNESS.pptx
AceAquino4
 
PPTX
The THESIS FINAL-DEFENSE-PRESENTATION.pptx
hshakobe3
 
PPTX
ALIMENTARY AND BILIARY CONDITIONS 3-1.pptx
chepkoitcheruiyot
 
PDF
Fluorescence-microscope_Botany_detailed content
dollydoll12
 
PDF
Clinical guidelines as a resource for EBP(1).pdf
MashalKhan626345
 
PPTX
SAP 2 completion done . PRESENTATION.pptx
POORNIMAN26
 
PDF
Galatica Smart Energy Infrastructure Startup Pitch Deck
Shahzaib Ajmal
 
PDF
"Python Programming for Geospatial Data Science." ...
institute of Geoinformatics and Earth Observation at PMAS ARID Agriculture University of Rawalpindi
 
PDF
[EN] Industrial Machine Downtime Prediction
Mônica N. de Resende
 
PPTX
IBA_Chapter_11_Slides_Final_Accessible.pptx
SrikantKapoor1
 
PPT
Reliability_Chapter_ presentation 1221.5784
abobaker13
 
PPTX
01_intro xxxxxxxxxxfffffffffffaaaaaaaaaaafg
Vittaya Boon Suwansiri
 
PPTX
1_Introduction to advance data techniques.pptx
AshutoshDeshmukh33
 
PPTX
climate analysis of Dhaka ,Banglades.pptx
rrawjatun
 
PPTX
Introduction to machine learning and Linear Models
ShivanshMehta17
 
PDF
Introduction to Data Science and Data Analysis
Suraj Patil
 
.pdf is not working space design for the following data for the following dat...
jerinjoy242
 
Microsoft-Fabric-Unifying-Analytics-for-the-Modern-Enterprise Solution.pptx
Mahesh Reddy
 
BF and FI - Blockchain, fintech and Financial Innovation Lesson 2.pdf
JamesWilliams752225
 
IB Computer Science - Internal Assessment.pptx
agarwal18harsh08
 
MODULE 8 - DISASTER risk PREPAREDNESS.pptx
AceAquino4
 
The THESIS FINAL-DEFENSE-PRESENTATION.pptx
hshakobe3
 
ALIMENTARY AND BILIARY CONDITIONS 3-1.pptx
chepkoitcheruiyot
 
Fluorescence-microscope_Botany_detailed content
dollydoll12
 
Clinical guidelines as a resource for EBP(1).pdf
MashalKhan626345
 
SAP 2 completion done . PRESENTATION.pptx
POORNIMAN26
 
Galatica Smart Energy Infrastructure Startup Pitch Deck
Shahzaib Ajmal
 
"Python Programming for Geospatial Data Science." ...
institute of Geoinformatics and Earth Observation at PMAS ARID Agriculture University of Rawalpindi
 
[EN] Industrial Machine Downtime Prediction
Mônica N. de Resende
 
IBA_Chapter_11_Slides_Final_Accessible.pptx
SrikantKapoor1
 
Reliability_Chapter_ presentation 1221.5784
abobaker13
 
01_intro xxxxxxxxxxfffffffffffaaaaaaaaaaafg
Vittaya Boon Suwansiri
 
1_Introduction to advance data techniques.pptx
AshutoshDeshmukh33
 
climate analysis of Dhaka ,Banglades.pptx
rrawjatun
 
Introduction to machine learning and Linear Models
ShivanshMehta17
 
Introduction to Data Science and Data Analysis
Suraj Patil
 

Intro Ch 14A.ppt

  • 1. Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved.
  • 2. Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Chapter 14A Understanding the Need for Security Measures
  • 3. 14A-3 Basic Security Concepts • Threats – Anything that can harm a computer – Vulnerabilities are weaknesses in security – Security attempts to neutralize threats
  • 4. 14A-4 Basic Security Concepts • Degrees of harm – Level of potential damage – Include all parts of system • Potential data loss • Loss of privacy • Inability to use hardware • Inability to use software
  • 5. 14A-5 Basic Security Concepts • Countermeasures – Steps taken to block a threat – Protect the data from theft – Protect the system from theft
  • 6. 14A-6 Threats To Users • Identity Theft – Impersonation by private information • Thief can ‘become’ the victim – Reported incidents rising – Methods of stealing information • Shoulder surfing • Snagging • Dumpster diving • Social engineering • High-tech methods
  • 7. 14A-7 Threats To Users • Loss of privacy – Personal information is stored electronically – Purchases are stored in a database • Data is sold to other companies – Public records on the Internet – Internet use is monitored and logged – None of these techniques are illegal
  • 8. 14A-8 Threats to Users • Cookies – Files delivered from a web site – Originally improved a site’s function – Cookies now track history and passwords – Browsers include cookie blocking tools
  • 9. 14A-9 Threats to Users • Spyware – Software downloaded to a computer – Designed to record personal information – Typically undesired software – Hides from users – Several programs exist to eliminate
  • 10. 14A-10 Threats to Users • Web bugs – Small programs embedded in gif images – Gets around cookie blocking tools – Companies use to track usage – Blocked with spyware killers
  • 11. 14A-11 Threats to Users • Spam – Unsolicited commercial email – Networks and PCs need a spam blocker • Stop spam before reaching the inbox – Spammers acquire addresses using many methods – CAN-SPAM Act passed in 2003
  • 12. 14A-12 Threats to Hardware • Affect the operation or reliability • Power-related threats – Power fluctuations • Power spikes or browns out – Power loss – Countermeasures • Surge suppressors • Line conditioners • Uninterruptible power supplies • Generators
  • 13. 14A-13 Threats to Hardware • Theft and vandalism – Thieves steal the entire computer – Accidental or intentional damage – Countermeasures • Keep the PC in a secure area • Lock the computer to a desk • Do not eat near the computer • Watch equipment • Chase away loiterers • Handle equipment with care
  • 14. 14A-14 Threats to Hardware • Natural disasters – Disasters differ by location – Typically result in total loss – Disaster planning • Plan for recovery • List potential disasters • Plan for all eventualities • Practice all plans
  • 15. 14A-15 Threats to Data • The most serious threat – Data is the reason for computers – Data is very difficult to replace – Protection is difficult • Data is intangible
  • 16. 14A-16 Threats to Data • Viruses – Software that distributes and installs itself – Ranges from annoying to catastrophic – Countermeasures • Anti-virus software • Popup blockers • Do not open unknown email
  • 17. 14A-17 Threats to Data • Trojan horses – Program that poses as beneficial software – User willingly installs the software – Countermeasures • Anti-virus software • Spyware blocker
  • 18. 14A-18 Threats to Data • Cybercrime – Using a computer in an illegal act – Fraud and theft are common acts
  • 19. 14A-19 Threats to Data • Internet fraud – Most common cybercrime – Fraudulent website – Have names similar to legitimate sites
  • 20. 14A-20 Threats to Data • Hacking – Using a computer to enter another network – Cost users $1.3 trillion in 2003 – Hackers motivation • Recreational hacking • Financial hackers • Grudge hacking – Hacking methods • Sniffing • Social engineering • Spoofing
  • 21. 14A-21 Threats to Data • Distributed denial of service attack – Attempt to stop a public server – Hackers plant the code on computers – Code is simultaneously launched – Too many requests stops the server
  • 22. 14A-22 Threats to Data • Cyber terrorism – Attacks made at a nations information – Targets include power plants – Threat first realized in 1996 – Organizations combat cyber terrorism • Computer Emergency Response Team (CERT) • Department of Homeland Security
  • 23. Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Chapter 14A End of Chapter