Cyber Security

Description

Mind Map on Cyber Security, created by Anya BOULTON on 08/06/2020.
Anya BOULTON
Mind Map by Anya BOULTON, updated more than 1 year ago
Anya BOULTON
Created by Anya BOULTON over 4 years ago
15
0

Resource summary

Cyber Security
  1. Key terms
    1. Attack
      1. An attack is a deliberate action targeting an organisations digital system or data.
      2. Threat
        1. Internal
          1. Caused by an incident inside an organisation
          2. External
            1. Caused outside the organisation
            2. Is an incident or action which is deliberate or unintended that results in disruption, down time or data loss.
            3. Cyber Security
              1. Refers to the range of measures that can be taken to protect computer systems, networks and data from unauthorised access or cyber attack.
              2. Unauthorised access
                1. This refers to someone gaining entry without permission to an organisation’s system, software or data. This achieved by exploiting a security vulnerability.
              3. Hacker
                1. Is someone who seeks out and exploits these vulnerabilities.
                  1. Black hat hacker
                    1. Is someone who tries to inflict damage by compromising security systems.
                    2. Grey hat hacker
                      1. Is someone who does it for fun and not with malicious intent.
                      2. White hat hacker
                        1. Is someone who works with organizations to strengthen the security of a system.
                      3. Types of threats
                        1. Malware
                          1. This is an umbrella term given to software that is designed to harm a digital system, damage data or harvest sensitive information.
                            1. Virus
                              1. A piece of malicious code that attaches to a legitimate program. It is capable of reproducing itself and usually capable of causing great harm to files or other programs on the same computer.
                              2. Worm
                                1. Worms get around by exploiting vulnerabilities in operating systems and attaching themselves to emails. They self replicate at a tremendous rate, using up hard drive space and bandwidth, overloading servers.
                                2. Trojan horse
                                  1. Users are tricked into downloading it to their computer. Once installed the Trojan works undercover to carry out a predetermined task.
                                  2. Rootkit
                                    1. Designed to remotely access and control a computer system without being detected by security software or the user.
                                    2. Ransomware
                                      1. Encrypts files stored on a computer to extort/demand or steal money from organisations.
                                      2. Spyware
                                        1. Is secretly installed to collect information from someone else's computer.
                                        2. Keyloggers
                                          1. Spyware that records every keystroke made on a computer to steal personal information.
                                          2. Adware
                                            1. Automatically shows adverts such as popups. Most adware is harmless but some contain spyware such as keyloggers.
                                            2. Botnet
                                              1. Bots take control of a computer system, without the user’s knowledge. A botnet is a large collection of malware-infected devices (zombies). An attacker (‘bot herder’) chooses when to ‘wake’ the zombies to perform an attack.
                                              2. Distributed Denial-of-Service attack (DDoS attack)
                                                1. Flooding a website with useless traffic to inundate and overwhelm the network .
                                            3. Social Engineering
                                              1. Is a set of methods used by cybercriminals to deceive individuals into handing over information that they can use for fraudulent purposes.
                                                1. Shouldering
                                                  1. It involves the attacker watching the victim while they provide sensitive information.
                                                  2. Phishing
                                                    1. Is an attack in which the victim receives an email disguised to look as if it has come from a reputable source, in order to trick them into giving up valuable data.
                                                    2. Pharming
                                                      1. Is when a victim redirects the user from a genuine website to a fake one.
                                                      2. Blagging
                                                        1. Is an attack in which the perpetrator invents a scenario in order to convince the victim to give them data or money.
                                                        2. Tailgating
                                                          1. Trying to gain access to a secure room or building.
                                                          2. Baiting
                                                            1. Cyber criminals make a promise of goods to get the information that they need.
                                                            2. Quid pro quo
                                                              1. Cyber criminals make a promise of a service to get the information that they need.
                                                            Show full summary Hide full summary

                                                            Similar

                                                            CyberSecurity
                                                            Stephen Williamson
                                                            CSS exam
                                                            Andy Oung
                                                            cyber security
                                                            Samuel Melendez
                                                            Certified Information Systems Security Professional (CISSP)
                                                            GoAsk Chaz
                                                            Artificial Intellegence
                                                            nicky elin
                                                            Pears of Wisdom - Security Concepts
                                                            Alex Poiry
                                                            CSS exam_1
                                                            Andy Oung
                                                            Phishing Mindmap Salvy
                                                            Salvy Ganpatsingh
                                                            cyber security
                                                            Jacqui Breeds
                                                            Globalisation Case Studies
                                                            annie
                                                            IGCSE Chemistry Revision
                                                            sachakoeppen