The Value of Personal Information

2016 ◽

pp. 161-180

Author(s):

K.Y Williams ◽

Dana-Marie Thomas ◽

LaToya N. Johnson

Keyword(s):

Personal Information ◽

Cyber Attacks ◽

Insider Threat ◽

Cyber Attack ◽

Data Loss ◽

Computing Systems ◽

Types Of Information ◽

Network Software

Many cyber-attacks that result in data loss can be prevented if the target of the cyber-attack is properly prepared, has the necessary and latest defenses in place, and is constantly monitoring for attacks and intrusions. Whether those cyber-attacks occur as a result of user error; network issues (password files being created and distributed to a list of people); direct assaults (direct intrusion via a designed hack, system flaw, or exploitation of a known network/software issue); or due to an insider-threat (giving a password to a trusted co-worker who then uses it for other means) one aspect of prevention that must be addressed is the need for better security and additional layers of protection on the data that resides on the servers and in computing systems. With up-to-date protocols, reduced access to the system, and compartmentalization of information, it is possible to reduce the amount and type of data that is lost in many cyber-attacks. This chapter explores five types of information that are targeted during cyber-attacks, and discuss why this information is of importance.

Download Full-text

The invisible hole of information on SMB's cybersecurity

Online Journal of Applied Knowledge Management ◽

10.36965/ojakm.2019.7(1)14-26 ◽

2019 ◽

Vol 7 (1) ◽

pp. 14-26

Author(s):

Ruti Gafni ◽

Tal Pavel

Keyword(s):

Mass Communication ◽

Cyber Attacks ◽

Communication Media ◽

Specific Information ◽

Exploratory Research ◽

Cyber Attack ◽

Public Attention ◽

Cyber Threats ◽

Accessible Information ◽

Types Of Information

Small and Medium Businesses (SMB) use Internet and computer-based tools in their daily processes, sometimes without being aware to the cyber threats, or without knowing how to be prepared in case of a cyber-attack, although they are a major target for cyber-attacks. Specific information about cybersecurity needed by SMBs, in order to cope with cyber threats, is not always available or easily accessible. In this study, a vast search of different types of information about SMBs’ cybersecurity was performed, in order to find whether a hole of accessible information exists in this area. This exploratory research covered general mass communication media channels, technological and professional cybersecurity websites, and academic journals, and found that indeed very few studies, articles and news items were published in this matter. Leveraging knowledge and awareness, diminishing the shame for reporting cyber-attacks, and increasing mass communication media interest and public attention, may be activities to cover this “invisible hole”.

Download Full-text

Cyber-Attack Scoring Model Based on the Offensive Cybersecurity Framework

Applied Sciences ◽

10.3390/app11167738 ◽

2021 ◽

Vol 11 (16) ◽

pp. 7738

Author(s):

Kyounggon Kim ◽

Faisal Abdulaziz Alfouzan ◽

Huykang Kim

Keyword(s):

Cyber Security ◽

Personal Information ◽

Cyber Attacks ◽

The Internet ◽

Critical Infrastructures ◽

Cyber Attack ◽

Security Framework ◽

Scoring Model ◽

Advanced Persistent Threats ◽

The World

Cyber-attacks have become commonplace in the world of the Internet. The nature of cyber-attacks is gradually changing. Early cyber-attacks were usually conducted by curious personal hackers who used simple techniques to hack homepages and steal personal information. Lately, cyber attackers have started using sophisticated cyber-attack techniques that enable them to retrieve national confidential information beyond the theft of personal information or defacing websites. These sophisticated and advanced cyber-attacks can disrupt the critical infrastructures of a nation. Much research regarding cyber-attacks has been conducted; however, there has been a lack of research related to measuring cyber-attacks from the perspective of offensive cybersecurity. This motivated us to propose a methodology for quantifying cyber-attacks such that they are measurable rather than abstract. For this purpose, we identified each element of offensive cybersecurity used in cyber-attacks. We also investigated the extent to which the detailed techniques identified in the offensive cyber-security framework were used, by analyzing cyber-attacks. Based on these investigations, the complexity and intensity of cyber-attacks can be measured and quantified. We evaluated advanced persistent threats (APT) and fileless cyber-attacks that occurred between 2010 and 2020 based on the methodology we developed. Based on our research methodology, we expect that researchers will be able to measure future cyber-attacks.

Download Full-text

Impacted Cyber Attacks Assessment in Wide Range of Big Data Security Systems

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.c1125.1083s19 ◽

2019 ◽

Vol 8 (3S) ◽

pp. 625-629

Keyword(s):

Big Data ◽

Cyber Security ◽

Cyber Attacks ◽

Cyber Attack ◽

Security Systems ◽

Computing Systems ◽

Wide Range ◽

Software Platforms ◽

The Cost ◽

And Storage

The technological advancements in image storage, data processing, and signal analysis of Big Data include (a) the fastly degrade the cost of storage and CPU power in recent arena; the flexibility and cost-effectiveness of data operating platforms and cloud computing systems for flexible computation and storage; and (c) the development of new frameworks , which allow users to take advantage of these divided computing systems storing large amount of data which is almost flexible parallel processing. The proposed survey work focused on discussing the various impacted cyber-attack critics available in industry and the trending algorithms available for cyber security etc. Big data in IoT clouds handling and software platforms which allow the malware enter into the working systems are analyzed, reliable methods to avoid the miscellaneous malwares are clearly depicted here.

Download Full-text

Cyber-Attack Penetration Test and Vulnerability Analysis

International Journal of Online Engineering (iJOE) ◽

10.3991/ijoe.v13i01.6407 ◽

2017 ◽

Vol 13 (01) ◽

pp. 125 ◽

Cited By ~ 6

Author(s):

Deris Stiawan ◽

Mohd. Yazid Idris ◽

Abdul Hanan Abdullah ◽

Fahad Aljaber ◽

Rahmat Budiarto

Keyword(s):

Information Systems ◽

Personal Information ◽

Vulnerability Analysis ◽

Cyber Attacks ◽

Security System ◽

Cyber Attack ◽

Penetration Test ◽

Network Systems ◽

Defense Systems ◽

Security Officers

<p class="Abstract">Hacking attempts or cyber-attacks to information systems have recently evolved to be sophisticated and deadly, resulting in such incidents as leakage of personal information and system destruction. While various security solutions to cope with these risks are being developed and deployed, it is still necessary to systematically consider the methods to enhance the existing security system and build more effective defense systems. Under this circumstance, it is necessary to identify the latest types of attacks attempted to the primary security system.<span lang="IN"> This paper analyzes cyber attack techniques as well as the anatomy of penetration test in order to assist security officers to perform appropriate self security assesment on their network systems. </span></p>

Download Full-text

Inhibitory Control of Information in Memory Across Domains

Current Directions in Psychological Science ◽

10.1177/09637214211039857 ◽

2021 ◽

Vol 30 (5) ◽

pp. 444-453

Author(s):

M. Teresa Bajo ◽

Carlos J. Gómez-Ariza ◽

Alejandra Marful

Keyword(s):

Decision Making ◽

Problem Solving ◽

Side Effects ◽

Inhibitory Control ◽

Language Production ◽

Personal Information ◽

Control Process ◽

Control Mechanisms ◽

Types Of Information ◽

Behavioral Signature

Knowledge in memory is vast and not always relevant to the task at hand. Recent views suggest that the human cognitive system has evolved so that it includes goal-driven control mechanisms to regulate the level of activation of specific pieces of knowledge and make distracting or unwanted information in memory less accessible. This operation is primarily directed to facilitate the use of task-relevant knowledge. However, these control processes may also have side effects on performance in a variety of situations when the task at hand partly relies on access to suppressed information. In this article, we show that various types of information to be used in a variety of different contexts (problem solving, decision making based on personal information, language production) may be the target of inhibitory control. We also show that the control process may leave a behavioral signature if suppressed information turns out to be relevant shortly after being suppressed.

Download Full-text

The Structure of Cyber Attacks

International Journal of Information Security and Cybercrime ◽

10.19107/ijisc.2020.01.06 ◽

2020 ◽

Vol 9 (1) ◽

pp. 43-52

Author(s):

Silviu-Elian MITRĂ

Keyword(s):

Mode Of Action ◽

Cyber Attacks ◽

Cyber Attack ◽

Computer Viruses ◽

Unique Mode ◽

External Sources

The objective of this portfolio is to ensure a good understanding of the topic of the complex and unique mode of action of cyber attacks, as well as the study of the ways in which they occur. The content of this portfolio includes from the beginning of computer viruses to the specific modern mechanisms of cyber attack undertaken by cybercriminals in order to cause detriment, but also theft or damage to certain information. Furthermore, this paper also provides essential aspects regarding the protection methods that users must undertake so that they can prevent and at the same time face these dangers specific to our age. In the elaboration of this study, there were used both personal methods, by applying my own knowledge accumulated through the study, and accessing external sources containing information necessary to complete the insufficiently analyzed problems. In essence, the elaboration of this study ensured the coverage of all relevant domains and aspects that are based on the structure and conception of cyber attacks, as well as in the manner provided by their action and manifestation.

Download Full-text

Building a Cybersecurity Culture in the Industrial Control System Environment

International Journal of Information Security and Cybercrime ◽

10.19107/ijisc.2019.01.05 ◽

2019 ◽

Vol 8 (1) ◽

pp. 39-44

Author(s):

Claudia ARAUJO MACEDO ◽

Jos MENTING

Keyword(s):

Control System ◽

Control Systems ◽

Cyber Attacks ◽

Cyber Attack ◽

Industrial Control System ◽

Security Measures ◽

Industrial Control ◽

Industrial Control Systems ◽

System A ◽

Educational Processes

Cybersecurity in industrial control system environments has become a significant concern and is even more relevant in the context of critical infrastructures where control system disruption could have a profound impact on health, safety and the environment. This makes this type of system a major target for malicious activities. Notwithstanding an organization’s interest in protecting its industrial control systems against cyber-attacks, the implementation of security measures, whether technical, organizational or human, still faces resistance and is often seen as a constraint. Using the best technology to protect industrial control systems makes no sense if persons with access do not act attentively and protectively. Technical and human cybersecurity measures are intrinsically linked, and it is essential that all persons with access to these systems are fully aware of the inherent cyber risks. Organizations must also act so that staff receive appropriate training on how to keep systems continuously protected against cyber-attack when carrying out their daily tasks. These educational processes can contribute to building an effective cybersecurity culture fully reflective of management and staff attitudes, so that the availability, integrity and confidentiality of information in industrial control systems can be assured.

Download Full-text

Smishing Detection: Using Artificial Intelligence

International Journal for Research in Applied Science and Engineering Technology ◽

10.22214/ijraset.2021.37737 ◽

2021 ◽

Vol 9 (8) ◽

pp. 2218-2224

Author(s):

Samyak Sadanand Shravasti

Keyword(s):

Artificial Intelligence ◽

Short Message Service ◽

Personal Information ◽

Critical Issue ◽

Cyber Attacks ◽

Sensitive Information ◽

Short Message ◽

Proposed Model ◽

Message Service ◽

A Company

Abstract: Phishing occurs when people's personal information is stolen via email, phone, or text communications. In Smishing Short Message Service (SMS) is used for cyber-attacks, Smishing is a type of theft of sensitive information. People are more likely to give personal information such as account details and passwords when they receive SMS messages. This data could be used to steal money or personal information from a person or a company. As a result, Smishing is a critical issue to consider. The proposed model uses an Artificial Intelligence to detect smishing. Analysing a SMS and successfully detecting Smishing is possible. Finally, we evaluate and analyse our proposed model to show its efficacy. Keywords: Phishing, Smishing, Artificial Intelligence, LSTM, RNN

Download Full-text

SARCP - Exploiting Cyber-Attack Prediction Through Socially-Aware Recommendation

International Journal of Decision Support System Technology ◽

10.4018/ijdsst.286691 ◽

2022 ◽

Vol 14 (1) ◽

pp. 0-0

Keyword(s):

Social Network ◽

Real World ◽

Cyber Security ◽

Betweenness Centrality ◽

Cyber Attacks ◽

Experimental Results ◽

Cyber Attack ◽

Defence Mechanisms ◽

Network Measure ◽

Recommender Algorithm

In the domain of cyber security, the defence mechanisms of networks has traditionally been placed in a reactionary role. Cyber security professionals are therefore disadvantaged in a cyber-attack situation due to the fact that it is vital that they maneuver such attacks before the network is totally compromised. In this paper, we utilize the Betweenness Centrality network measure (social property) to discover possible cyber-attack paths and then employ computation of similar personality of nodes/users to generate predictions about possible attacks within the network. Our method proposes a social recommender algorithm called socially-aware recommendation of cyber-attack paths (SARCP), as an attack predictor in the cyber security defence domain. In a social network, SARCP exploits and delivers all possible paths which can result in cyber-attacks. Using a real-world dataset and relevant evaluation metrics, experimental results in the paper show that our proposed method is favorable and effective.

Download Full-text