SlideShare a Scribd company logo

Lecture 3.pptx

Download as PPTX, PDF
M
MuhammadRehan856177

This document provides an overview of various cyber attacks, including malware attacks, phishing, password attacks, man-in-the-middle attacks, SQL injection, denial-of-service attacks, insider threats, cryptojacking, zero-day exploits, and watering hole attacks. For each type of attack, the document discusses how the attack works and recommendations for prevention, such as using antivirus software, strong passwords, encryption, firewalls, intrusion detection, and limiting access privileges. The document also outlines the four stages of a computer virus: dormant, propagation, triggering, and execution.

Career
Related topics:
Cyber Attacks
1 of 25
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Lecture 3 Part I: Introduction to Cyber Attacks Author: Muhammad Rehan
Objective • Overview of Cyber-attacks • Cyber-attacks prevention • How Cyber-attacks applied to IT systems and their initialization • Classification of malwares • Four stages/phases of computer viruses (Dormant phase, Triggering stage, Execution phase, Propagation phase)
What is a Cyber Attack? When there is an unauthorized system/network access by a third party, we term it as a cyber attack. The person who carries out a cyberattack is termed as a hacker/attacker. Cybersecurity is the method of safeguarding networks, computer systems, and their components from unauthorized digital access.
Types of Cyber Attacks Let’s start with the different types of cyberattacks on our list: 1. Malware Attack 2. Phishing Attack 3. Password Attack 4. Man-in-the-Middle Attack 5. SQL Injection Attack 6. Denial-of-Service Attack 7. Insider Threat 8. Crypto jacking 9. Zero-Day Exploit 10. Watering Hole Attack
Malware Attack This is one of the most common types of cyberattacks. “Malware” refers to malicious software viruses including worms, spyware, ransomware, adware, and Trojans. 1. The Trojan virus disguises itself as legitimate software. 2. Ransomware blocks access to the network's key components. 3. Spyware is software that steals all your confidential data without your knowledge. 4. Adware is software that displays advertising content such as banners on a user's screen. Malware breaches a network through a vulnerability. When the user clicks a dangerous link, it downloads an email attachment or when an infected pen drive is used.
Malware Attack Prevention • Use antivirus software. It can protect your computer against malware. • Use firewalls. Firewalls filter the traffic that may enter your device. Windows and Mac OS X have their default built-in firewalls, named Windows Firewall and Mac Firewall. • Stay alert and avoid clicking on suspicious links. • Update your OS and browsers, regularly.
Phishing Attack Phishing attacks are one of the most prominent widespread types of cyberattacks. It is a type of social engineering attack wherein an attacker impersonates to be a trusted contact and sends the victim fake mails. Unaware of this, the victim opens the mail and clicks on the malicious link or opens the mail's attachment. By doing so, attackers gain access to confidential information and account credentials. They can also install malware through a phishing attack.
Phishing Attack Prevention Phishing attacks can be prevented by following the below-mentioned steps: • Scrutinize the emails you receive. Most phishing emails have significant errors like spelling mistakes and format changes from that of legitimate sources. • Make use of an anti-phishing toolbar. • Update your passwords regularly.
Password Attack It is a form of attack wherein a hacker cracks your password with various programs and password cracking tools like Aircrack, Cain, Abel, John the Ripper, Hashcat, etc. Types of password attacks: 1. Brute force attacks 2. Dictionary attacks 3. keylogger attacks.
Password Attack Prevention Listed below are a few ways to prevent password attacks: • Use strong alphanumeric passwords with special characters. • Abstain from using the same password for multiple websites or accounts. • Update your passwords; this will limit your exposure to a password attack. • Do not have any password hints in the open.
Man-in-the-Middle Attack A Man-in-the-Middle Attack (MITM) is also known as an eavesdropping attack. In this attack, an attacker comes in between a two-party communication, i.e., the attacker hijacks the session between a client and host. By doing so, hackers steal and manipulate data.
Man-in-the-Middle Attack Prevention MITM attacks can be prevented by following the below-mentioned steps: • Be mindful of the security of the website you are using. Use encryption on your devices. • Refrain from using public Wi-Fi networks.
SQL Injection Attack A Structured Query Language (SQL) injection attack occurs on a database-driven website when the hacker manipulates a standard SQL query. It is carried by injecting a malicious code into a vulnerable website search box, thereby making the server reveal crucial information.
SQL Injection Attack Prevention To prevent a SQL injection attack: • Use an Intrusion detection system, as they design it to detect unauthorized access to a network. • Carry out a validation of the user-supplied data. With a validation process, it keeps the user input in check.
Denial-of-Service Attack • A Denial-of-Service Attack is a significant threat to companies. Here, attackers target systems, servers, or networks and flood them with traffic to exhaust their resources and bandwidth. • When this happens, catering to the incoming requests becomes overwhelming for the servers, resulting in the website it hosts either shut down or slow down. This leaves the legitimate service requests unattended. • It is also known as a DDoS (Distributed Denial-of-Service) attack when attackers use multiple compromised systems to launch this attack.
Denial-of-Service Attack Prevention Let’s now look at how to prevent a DDoS attack: • Run a traffic analysis to identify malicious traffic. • Understand the warning signs like network slowdown, intermittent website shutdowns, etc. At such times, the organization must take the necessary steps without delay. • Formulate an incident response plan, have a checklist and make sure your team and data center can handle a DDoS attack. • Outsource DDoS prevention to cloud-based service providers.
Insider Threat • As the name suggests, an insider threat does not involve a third party but an insider. In such a case; it could be an individual from within the organization who knows everything about the organization. Insider threats have the potential to cause tremendous damages. • Insider threats are rampant in small businesses, as the staff there hold access to multiple accounts with data. Reasons for this form of an attack are many, it can be greed, malice, or even carelessness. Insider threats are hard to predict and hence tricky.
Insider Threat Prevention To prevent the insider threat attack: • Organizations should have a good culture of security awareness. • Companies must limit the IT resources staff can have access to depending on their job roles. • Organizations must train employees to spot insider threats. This will help employees understand when a hacker has manipulated or is attempting to misuse the organization's data.
Cryptojacking • The term Cryptojacking is closely related to cryptocurrency. Cryptojacking takes place when attackers access someone else’s computer for mining cryptocurrency. • The access is gained by infecting a website or manipulating the victim to click on a malicious link. They also use online ads with JavaScript code for this. Victims are unaware of this as the Crypto mining code works in the background; a delay in the execution is the only sign they might witness.
Cryptojacking Prevention Cryptojacking can be prevented by following the below-mentioned steps: • Update your software and all the security apps as cryptojacking can infect the most unprotected systems. • Have cryptojacking awareness training for the employees; this will help them detect crypotjacking threats. • Install an ad blocker as ads are a primary source of cryptojacking scripts. Also have extensions like MinerBlock, which is used to identify and block crypto mining scripts.
Zero-Day Exploit • A Zero-Day Exploit happens after the announcement of a network vulnerability; there is no solution for the vulnerability in most cases. Hence the vendor notifies the vulnerability so that the users are aware; however, this news also reaches the attackers. • Depending on the vulnerability, the vendor or the developer could take any amount of time to fix the issue. Meanwhile, the attackers target the disclosed vulnerability. They make sure to exploit the vulnerability even before a patch or solution is implemented for it.
Zero-Day Exploit Prevention Zero-day exploits can be prevented by: • Organizations should have well-communicated patch management processes. Use management solutions to automate the procedures. Thus it avoids delays in deployment. • Have an incident response plan to help you deal with a cyberattack. Keep a strategy focusing on zero-day attacks. By doing so, the damage can be reduced or completely avoided.
Watering Hole Attack • The victim here is a particular group of an organization, region, etc. In such an attack, the attacker targets websites which are frequently used by the targeted group. Websites are identified either by closely monitoring the group or by guessing. • After this, the attackers infect these websites with malware, which infects the victims' systems. The malware in such an attack targets the user's personal information. Here, it is also possible for the hacker to take remote access to the infected computer.
Watering Hole Attack Prevention Let's now see how we can prevent the watering hole attack: • Update your software and reduce the risk of an attacker exploiting vulnerabilities. Make sure to check for security patches regularly. • Use your network security tools to spot watering hole attacks. Intrusion prevention systems(IPS) work well when it comes to detecting such suspicious activities. • To prevent a watering hole attack, it is advised to conceal your online activities. For this, use a VPN and also make use of your browser’s private browsing feature. A VPN delivers a secure connection to another network over the Internet. It acts as a shield for your browsing activity. NordVPN is a good example of a VPN.
Four stages/phases of computer viruses Let's now see how we can prevent the watering hole attack: 1. Dormant phase. • The virus is idle. 2. Propagation phase. • The virus places an identical copy of itself into other programs or into certain system areas on the disk. 3. Triggering phase. • The Virus is activated to perform the function for which it was intended. • Caused by a variety of system events. 4. Execution phase. • The virus function is performed.

More Related Content

PPTX
Cybersecurity
A. Shamel
 
PDF
Guarding the Digital Fortress.pdf
Mverve1
 
PDF
Guarding the Digital Fortress Unmasking 10 Common Types of Cybersecurity Thre...
Mverve1
 
PDF
Implications of Misuse and Cyber Security.pdf
srtwgwfwwgw
 
PPTX
Cybersecurity Training
WindstoneHealth
 
PDF
Cybersecurity Threats & Trends: Key Insights for Businesses
GrapesTech Solutions
 
PDF
Cybersecurity - Webinar Session
Kalilur Rahman
 
PPTX
Cyber security
ZwebaButt
 
Cybersecurity
A. Shamel
 
Guarding the Digital Fortress.pdf
Mverve1
 
Guarding the Digital Fortress Unmasking 10 Common Types of Cybersecurity Thre...
Mverve1
 
Implications of Misuse and Cyber Security.pdf
srtwgwfwwgw
 
Cybersecurity Training
WindstoneHealth
 
Cybersecurity Threats & Trends: Key Insights for Businesses
GrapesTech Solutions
 
Cybersecurity - Webinar Session
Kalilur Rahman
 
Cyber security
ZwebaButt
 

Similar to Lecture 3.pptx (20)

PPTX
Cyber Security Awareness Session for Executives and Non-IT professionals
Krishna Srikanth Manda
 
PPTX
Common Types of Cyber Attacks & How to Prevent Them.pptx
KalponikPrem
 
PPTX
TheCyberThreatAndYou2_deck.pptx
KevinRiley83
 
PPTX
Cyber Security and Data Privacy in Information Systems.pptx
Roshni814224
 
PPTX
cyber security.pptx
Tapan Khilar
 
PPTX
types of cyber attack by taufiqurrahman.pptx
taufiq463421
 
PPTX
Cyberattacks.pptx
SonakshiMundra
 
PPTX
Top 8 Types Of Cybersecurity Attacks.pptx
BluechipComputerSyst
 
PPTX
Malware attack Social engineering attack
taufiq463421
 
PPTX
Cyber security
ankit yadav
 
PPTX
week2-cybersecurityOverview of social engineering attacks.pptx
christianaolusegun22
 
PPTX
DOC-20250311-WA00nnjnnnnnnnnnnnnnnnnnn..pptx
AlishbaAbbasi5
 
PDF
Network security
Md. Asifur Rahman Siddiki
 
PPTX
Cyber Attacks and Defences - JNTUH,Cyber Attacks and Defences
NiharikaGuptas
 
PPTX
Cyber security
Sabir Raja
 
PPTX
cyber security and threats.pptx
VSAM Technologies India Private Limited
 
PPTX
Lecture 2.pptx
MuhammadRehan856177
 
PPTX
Cyber Security Briefing
Marshall Frett Jr.
 
PPTX
Lecture 2.pptx
MuhammadRehan856177
 
PPTX
CYBERSECURITY | Why it is important?
RONIKMEHRA
 
Cyber Security Awareness Session for Executives and Non-IT professionals
Krishna Srikanth Manda
 
Common Types of Cyber Attacks & How to Prevent Them.pptx
KalponikPrem
 
TheCyberThreatAndYou2_deck.pptx
KevinRiley83
 
Cyber Security and Data Privacy in Information Systems.pptx
Roshni814224
 
cyber security.pptx
Tapan Khilar
 
types of cyber attack by taufiqurrahman.pptx
taufiq463421
 
Cyberattacks.pptx
SonakshiMundra
 
Top 8 Types Of Cybersecurity Attacks.pptx
BluechipComputerSyst
 
Malware attack Social engineering attack
taufiq463421
 
Cyber security
ankit yadav
 
week2-cybersecurityOverview of social engineering attacks.pptx
christianaolusegun22
 
DOC-20250311-WA00nnjnnnnnnnnnnnnnnnnnn..pptx
AlishbaAbbasi5
 
Network security
Md. Asifur Rahman Siddiki
 
Cyber Attacks and Defences - JNTUH,Cyber Attacks and Defences
NiharikaGuptas
 
Cyber security
Sabir Raja
 
cyber security and threats.pptx
VSAM Technologies India Private Limited
 
Lecture 2.pptx
MuhammadRehan856177
 
Cyber Security Briefing
Marshall Frett Jr.
 
Lecture 2.pptx
MuhammadRehan856177
 
CYBERSECURITY | Why it is important?
RONIKMEHRA
 
Ad

More from MuhammadRehan856177 (8)

PPTX
Lecture 10.pptx
MuhammadRehan856177
 
PPT
Event Programming JavaScript
MuhammadRehan856177
 
PPT
Intrusion .ppt
MuhammadRehan856177
 
PPTX
Botnets Attacks.pptx
MuhammadRehan856177
 
PPT
Lecture 2.ppt
MuhammadRehan856177
 
PPT
Introduction to JavaScript (1).ppt
MuhammadRehan856177
 
PPT
3. HTML Forms.ppt
MuhammadRehan856177
 
PPT
2. HTML Tables.ppt
MuhammadRehan856177
 
Lecture 10.pptx
MuhammadRehan856177
 
Event Programming JavaScript
MuhammadRehan856177
 
Intrusion .ppt
MuhammadRehan856177
 
Botnets Attacks.pptx
MuhammadRehan856177
 
Lecture 2.ppt
MuhammadRehan856177
 
Introduction to JavaScript (1).ppt
MuhammadRehan856177
 
3. HTML Forms.ppt
MuhammadRehan856177
 
2. HTML Tables.ppt
MuhammadRehan856177
 
Ad

Recently uploaded (20)

PDF
servsafecomprehensive-ppt-full-140617222538-phpapp01.pdf
theamackinnon
 
PPTX
microtomy kkk. presenting to cryst in gl
weardp3
 
PPT
pwm ppt .pdf long description of pwm....
gp239736
 
PPTX
AREAS OF SPECIALIZATION AND CAREER OPPORTUNITIES FOR COMMUNICATORS AND JOURNA...
Marimar830371
 
PPTX
ChandigarhUniversityinformationcareer.pptx
MshMsh19
 
PPTX
The Stock at arrangement the stock and product.pptx
awanganiqkmal191
 
PPT
2- CELL INJURY L1 Medical (2) gggggggggg
princessbliss09
 
PDF
Shopify Store Management_ Complete Guide to E-commerce Success.pdf
codiepilimited99
 
PDF
MCQ Practice CBT OL Official Language 1.pptx.pdf
navilasatheesh
 
PPT
NO000387 (1).pptsbsnsnsnsnsnsnsmsnnsnsnsjsnnsnsnsnnsnnansnwjwnshshshs
PriyamManna2
 
PDF
LSR CASEBOOK 2024-25.pdf. very nice casbook
ssuser3b3cab1
 
PPTX
Definition and Relation of Food Science( Lecture1).pptx
JyotiSharma572976
 
PDF
CV of Architect Professor A F M Mohiuddin Akhand.pdf
ArchitectAFMMohiuddi
 
PPTX
Prokaryotes v Eukaryotes PowerPoint.pptx
Marimar830371
 
PPTX
CYBER SECURITY PPT.pptx CYBER SECURITY APPLICATION AND USAGE
badalkumarmuduli2023
 
PPT
Gsisgdkddkvdgjsjdvdbdbdbdghjkhgcvvkkfcxxfg
abhishekg770306
 
PDF
Parts of Speech Quiz Presentation in Orange Blue Illustrative Style.pdf.pdf
kimrm950
 
PPTX
Digital Education Presentation for students.
ignousc28157rbccw
 
PPTX
PE3-WEEK-3sdsadsadasdadadwadwdsdddddd.pptx
JovenReyes5
 
PPTX
Core Characteristics and Abilities of an Effective Teacher_0.pptx
sbappau10
 
servsafecomprehensive-ppt-full-140617222538-phpapp01.pdf
theamackinnon
 
microtomy kkk. presenting to cryst in gl
weardp3
 
pwm ppt .pdf long description of pwm....
gp239736
 
AREAS OF SPECIALIZATION AND CAREER OPPORTUNITIES FOR COMMUNICATORS AND JOURNA...
Marimar830371
 
ChandigarhUniversityinformationcareer.pptx
MshMsh19
 
The Stock at arrangement the stock and product.pptx
awanganiqkmal191
 
2- CELL INJURY L1 Medical (2) gggggggggg
princessbliss09
 
Shopify Store Management_ Complete Guide to E-commerce Success.pdf
codiepilimited99
 
MCQ Practice CBT OL Official Language 1.pptx.pdf
navilasatheesh
 
NO000387 (1).pptsbsnsnsnsnsnsnsmsnnsnsnsjsnnsnsnsnnsnnansnwjwnshshshs
PriyamManna2
 
LSR CASEBOOK 2024-25.pdf. very nice casbook
ssuser3b3cab1
 
Definition and Relation of Food Science( Lecture1).pptx
JyotiSharma572976
 
CV of Architect Professor A F M Mohiuddin Akhand.pdf
ArchitectAFMMohiuddi
 
Prokaryotes v Eukaryotes PowerPoint.pptx
Marimar830371
 
CYBER SECURITY PPT.pptx CYBER SECURITY APPLICATION AND USAGE
badalkumarmuduli2023
 
Gsisgdkddkvdgjsjdvdbdbdbdghjkhgcvvkkfcxxfg
abhishekg770306
 
Parts of Speech Quiz Presentation in Orange Blue Illustrative Style.pdf.pdf
kimrm950
 
Digital Education Presentation for students.
ignousc28157rbccw
 
PE3-WEEK-3sdsadsadasdadadwadwdsdddddd.pptx
JovenReyes5
 
Core Characteristics and Abilities of an Effective Teacher_0.pptx
sbappau10
 

Lecture 3.pptx

  • 1. Lecture 3 Part I: Introduction to Cyber Attacks Author: Muhammad Rehan
  • 2. Objective • Overview of Cyber-attacks • Cyber-attacks prevention • How Cyber-attacks applied to IT systems and their initialization • Classification of malwares • Four stages/phases of computer viruses (Dormant phase, Triggering stage, Execution phase, Propagation phase)
  • 3. What is a Cyber Attack? When there is an unauthorized system/network access by a third party, we term it as a cyber attack. The person who carries out a cyberattack is termed as a hacker/attacker. Cybersecurity is the method of safeguarding networks, computer systems, and their components from unauthorized digital access.
  • 4. Types of Cyber Attacks Let’s start with the different types of cyberattacks on our list: 1. Malware Attack 2. Phishing Attack 3. Password Attack 4. Man-in-the-Middle Attack 5. SQL Injection Attack 6. Denial-of-Service Attack 7. Insider Threat 8. Crypto jacking 9. Zero-Day Exploit 10. Watering Hole Attack
  • 5. Malware Attack This is one of the most common types of cyberattacks. “Malware” refers to malicious software viruses including worms, spyware, ransomware, adware, and Trojans. 1. The Trojan virus disguises itself as legitimate software. 2. Ransomware blocks access to the network's key components. 3. Spyware is software that steals all your confidential data without your knowledge. 4. Adware is software that displays advertising content such as banners on a user's screen. Malware breaches a network through a vulnerability. When the user clicks a dangerous link, it downloads an email attachment or when an infected pen drive is used.
  • 6. Malware Attack Prevention • Use antivirus software. It can protect your computer against malware. • Use firewalls. Firewalls filter the traffic that may enter your device. Windows and Mac OS X have their default built-in firewalls, named Windows Firewall and Mac Firewall. • Stay alert and avoid clicking on suspicious links. • Update your OS and browsers, regularly.
  • 7. Phishing Attack Phishing attacks are one of the most prominent widespread types of cyberattacks. It is a type of social engineering attack wherein an attacker impersonates to be a trusted contact and sends the victim fake mails. Unaware of this, the victim opens the mail and clicks on the malicious link or opens the mail's attachment. By doing so, attackers gain access to confidential information and account credentials. They can also install malware through a phishing attack.
  • 8. Phishing Attack Prevention Phishing attacks can be prevented by following the below-mentioned steps: • Scrutinize the emails you receive. Most phishing emails have significant errors like spelling mistakes and format changes from that of legitimate sources. • Make use of an anti-phishing toolbar. • Update your passwords regularly.
  • 9. Password Attack It is a form of attack wherein a hacker cracks your password with various programs and password cracking tools like Aircrack, Cain, Abel, John the Ripper, Hashcat, etc. Types of password attacks: 1. Brute force attacks 2. Dictionary attacks 3. keylogger attacks.
  • 10. Password Attack Prevention Listed below are a few ways to prevent password attacks: • Use strong alphanumeric passwords with special characters. • Abstain from using the same password for multiple websites or accounts. • Update your passwords; this will limit your exposure to a password attack. • Do not have any password hints in the open.
  • 11. Man-in-the-Middle Attack A Man-in-the-Middle Attack (MITM) is also known as an eavesdropping attack. In this attack, an attacker comes in between a two-party communication, i.e., the attacker hijacks the session between a client and host. By doing so, hackers steal and manipulate data.
  • 12. Man-in-the-Middle Attack Prevention MITM attacks can be prevented by following the below-mentioned steps: • Be mindful of the security of the website you are using. Use encryption on your devices. • Refrain from using public Wi-Fi networks.
  • 13. SQL Injection Attack A Structured Query Language (SQL) injection attack occurs on a database-driven website when the hacker manipulates a standard SQL query. It is carried by injecting a malicious code into a vulnerable website search box, thereby making the server reveal crucial information.
  • 14. SQL Injection Attack Prevention To prevent a SQL injection attack: • Use an Intrusion detection system, as they design it to detect unauthorized access to a network. • Carry out a validation of the user-supplied data. With a validation process, it keeps the user input in check.
  • 15. Denial-of-Service Attack • A Denial-of-Service Attack is a significant threat to companies. Here, attackers target systems, servers, or networks and flood them with traffic to exhaust their resources and bandwidth. • When this happens, catering to the incoming requests becomes overwhelming for the servers, resulting in the website it hosts either shut down or slow down. This leaves the legitimate service requests unattended. • It is also known as a DDoS (Distributed Denial-of-Service) attack when attackers use multiple compromised systems to launch this attack.
  • 16. Denial-of-Service Attack Prevention Let’s now look at how to prevent a DDoS attack: • Run a traffic analysis to identify malicious traffic. • Understand the warning signs like network slowdown, intermittent website shutdowns, etc. At such times, the organization must take the necessary steps without delay. • Formulate an incident response plan, have a checklist and make sure your team and data center can handle a DDoS attack. • Outsource DDoS prevention to cloud-based service providers.
  • 17. Insider Threat • As the name suggests, an insider threat does not involve a third party but an insider. In such a case; it could be an individual from within the organization who knows everything about the organization. Insider threats have the potential to cause tremendous damages. • Insider threats are rampant in small businesses, as the staff there hold access to multiple accounts with data. Reasons for this form of an attack are many, it can be greed, malice, or even carelessness. Insider threats are hard to predict and hence tricky.
  • 18. Insider Threat Prevention To prevent the insider threat attack: • Organizations should have a good culture of security awareness. • Companies must limit the IT resources staff can have access to depending on their job roles. • Organizations must train employees to spot insider threats. This will help employees understand when a hacker has manipulated or is attempting to misuse the organization's data.
  • 19. Cryptojacking • The term Cryptojacking is closely related to cryptocurrency. Cryptojacking takes place when attackers access someone else’s computer for mining cryptocurrency. • The access is gained by infecting a website or manipulating the victim to click on a malicious link. They also use online ads with JavaScript code for this. Victims are unaware of this as the Crypto mining code works in the background; a delay in the execution is the only sign they might witness.
  • 20. Cryptojacking Prevention Cryptojacking can be prevented by following the below-mentioned steps: • Update your software and all the security apps as cryptojacking can infect the most unprotected systems. • Have cryptojacking awareness training for the employees; this will help them detect crypotjacking threats. • Install an ad blocker as ads are a primary source of cryptojacking scripts. Also have extensions like MinerBlock, which is used to identify and block crypto mining scripts.
  • 21. Zero-Day Exploit • A Zero-Day Exploit happens after the announcement of a network vulnerability; there is no solution for the vulnerability in most cases. Hence the vendor notifies the vulnerability so that the users are aware; however, this news also reaches the attackers. • Depending on the vulnerability, the vendor or the developer could take any amount of time to fix the issue. Meanwhile, the attackers target the disclosed vulnerability. They make sure to exploit the vulnerability even before a patch or solution is implemented for it.
  • 22. Zero-Day Exploit Prevention Zero-day exploits can be prevented by: • Organizations should have well-communicated patch management processes. Use management solutions to automate the procedures. Thus it avoids delays in deployment. • Have an incident response plan to help you deal with a cyberattack. Keep a strategy focusing on zero-day attacks. By doing so, the damage can be reduced or completely avoided.
  • 23. Watering Hole Attack • The victim here is a particular group of an organization, region, etc. In such an attack, the attacker targets websites which are frequently used by the targeted group. Websites are identified either by closely monitoring the group or by guessing. • After this, the attackers infect these websites with malware, which infects the victims' systems. The malware in such an attack targets the user's personal information. Here, it is also possible for the hacker to take remote access to the infected computer.
  • 24. Watering Hole Attack Prevention Let's now see how we can prevent the watering hole attack: • Update your software and reduce the risk of an attacker exploiting vulnerabilities. Make sure to check for security patches regularly. • Use your network security tools to spot watering hole attacks. Intrusion prevention systems(IPS) work well when it comes to detecting such suspicious activities. • To prevent a watering hole attack, it is advised to conceal your online activities. For this, use a VPN and also make use of your browser’s private browsing feature. A VPN delivers a secure connection to another network over the Internet. It acts as a shield for your browsing activity. NordVPN is a good example of a VPN.
  • 25. Four stages/phases of computer viruses Let's now see how we can prevent the watering hole attack: 1. Dormant phase. • The virus is idle. 2. Propagation phase. • The virus places an identical copy of itself into other programs or into certain system areas on the disk. 3. Triggering phase. • The Virus is activated to perform the function for which it was intended. • Caused by a variety of system events. 4. Execution phase. • The virus function is performed.