My second initial idea (Penetration Testing)

Penetration testing (pen testing) is called also as ethnic hacking. It means, some people try to find weaknesses in the security systems of computer networks, applications etc. and give feedback about it to the companies. That helps with solving the issues with security and developing them. In the difference to real hackers attack, penetration testing is legal and confidential data is safe. Pen testing may also show, on which part of the security system the companies should be focused to improve.

 

Penetration testing process usually can be separated into five steps:

  1. Planning and reconnaissance - defining the goals, choosing the testing method.
  2. Scanning - checking, how the tested application will respond with different attempts.
  3. Gaining access - trying to find backdoors or other ways to access to the system
  4. Maintaining access - checking, how the hackers can deal with access to the system, what kind of data they can steal etc.
  5. Analysis - checking the results of the penetration test.

 

 

Resources:

Learning Center. 2020. What Is Penetration Testing | Step-By-Step Process & Methods | Imperva.

SearchSecurity. 2020. What Is Pen Test (Penetration Testing)? - Definition From Whatis.Com.

 

Comments

  1. Reema 30 October 2020 at 08:32

    Hi Daniel,
    I enjoyed reading your post. However, I think your missing the in-text citation .

    ReplyDelete

Post a Comment

Popular posts from this blog

SSL Asymmetric Encryption (Diagram 2)

Image
SSL Cryptography bases two types of encription, which is Asymmetric Encryption and Symmetric Encryption (Johansen, 2020). Asymetric Encription: This type of encryption is the most popular one, which is using usually. In this technology, client and server to connect use two different keys, public and private. Public key is using only for encryption. It means, anyone can use this key to encrypt the message. Private key is secret and is using only for decryption.   Asymmetric encryption (Author's work) Resources: Johansen, A., 2020. What Is Encryption And How Does It Protect Your Data? . [online] Us.norton.com. Available at: <https://us.norton.com/internetsecurity-privacy-what-is-encryption.html> [Accessed 20 November 2020].
Read more

Opinion about safety (Survey Analysis)

Image
In my questionnaire, I asked people about their feeling of internet safety. The question was "How safe do you feel with using internet services?" Author's work, 1 - not safe, 5 - very safe         As we can see, the majority of the group is feeling safe on the Internet. Only 6 of the responders are feeling completely safe, which is negative, because they may be less focused during using the Internet, which can cause an opportunity to be charmed by hackers. Development of cybersecurity technologies is possibly a reason, why nobody feels completely unsafe on the Internet. Author's work, 1 - not safe, 5 - very safe   However, the general feeling of safety on the Internet is not related to using online payments. As we can see in the diagram, more people are worried about their safety in case of online payments. Comparison of these 2 diagrams may suggest, people are more worried about their money, than their sensitive data such as name, address, location etc.
Read more

How Ransomware attack works? (Models & Methodologies)

Image
The history of ransomware attacks starts in 1989. The first known attack targeted the healthcare industry (De Groot, 2020). Currently, ransomware attacks are one of the most popular cyber attacks. It is as one of the biggest threats to cybersecurity (Thomas, 2019).   Ransomware is a type of malware, which is basing on files encryption. To do this type of attack, hackers are using different software. However, the method of the attack is usually the same.     Ransomware attack process (The Asean Post, 2019)       1. Spam attachment The most popular method of spreading ransomware is sending the email spam with infected link or attachment inside. Usually, a message in the email is telling an action is required. For example, the hacker is sending an email with an infected file named as "invoice" to the business owner (De Groot, 2020).    2. Malware execution The user, which is aware of receiving infected email is opening the attachment. The virus start...
Read more