Network Security

 

Introduction

Network security is the practice of protecting sensitive information and systems from unauthorized access and attacks. With today’s increased connectivity, threats can exploit both technical flaws and the human element through deception. This post will highlight the importance of security, explain how ping commands can be abused in attacks, and discuss two common threats malware/ransomware and phishing. 

Ping Based Attacks

While ping command is a great tool for testing connectivity, it can be exploited by attackers. An example is (Ping of Death) this is where an attack can send a large amount of packets to crash a system. I have experienced this in real-life while gaming, another term used for this is a "lag switch". Causing the gaming server to freeze while in a match for opposing teams so they can't keep up with movements. 

Malware and Ransomware

A big issue today in cyber treats is ransomware, a form of malware that locks users out of files until the attackers needs get met. 

Vulnerabilities: 

• Human error in clicking into links or downloads that are infected

• Third party software or plugins 

• Unsecured networks 

Effects from Infection: 

• Files locked 

• System becomes disabled

• Data is stolen leading to future consequences

Defending Attacks: 

• Downloading software from trusted providers

• Automatic updates for apps to patch gaps in security

Phishing 

Another issue in the cyber world is users being tricked into providing sensitive information to attackers. These include emails or messages acting as other companies asking for information to update policies or accounts. 

Phishing Attack Outcome: 

• Stolen data 

• System compromised 

• Malware can be installed through these links or downloaded files

Defending Attacks: 

• Don't click into links from unknown senders 

• Using multiple step login method