Although it is widely believed that hackers will not wear headscarves or ensure that their ties are correct before beginning a silent attack on our infrastructure. However, it seems to link this hacker to computer security (cyber security courses).

In today’s world, safety is the way of life for all of us. Just go to the airport and we will remind you how bad it is. For technicians, data security is definitely a regular business, but as we develop more sophisticated ways to present our services and allow users to interact with them, the risk is greater.

How safe is it?

Protecting your infrastructure can take a lot of effort, and getting the right level of security at the right level is critical. Over-engineering solutions that can affect the overall user experience is easy. On the other hand, poorly designed solutions require more effort to maintain and monitor, and may even lead to sleepless nights

When designing a method, you must think of the infrastructure, applications, and data layers as a whole, or you can protect one layer while allowing another layer to be attacked. Some questions to consider: Do you want to use the DMZ in your internal firewall and open the port for each required service? Or do you just want to put everything in it so you don’t turn your firewall into a “Swiss cheese”? Then there is the CMZ (“Military Division”), which has been selected to contain confidential data for monitoring to the fullest extent to ensure that it is protected at all costs. When displaying data, do you use temporary databases in different subnets to limit the possibility of connecting directly to the server data layer? Will they consider proactive monitoring tools for emerging databases such as Fortinet’s FortiDB?

Of course, your approach will depend on the services you provide, and each provider will have a different set of options to choose from.

Good practice

While annual security reviews and PenTest are still important, they are giving way to more “real-time” security reporting and analysis to keep your data safe. Many security (cyber security courses) vendors now proactively monitor their external services to ensure that known firewall vulnerabilities are not accidentally opened.

Some simple best practices can make a real difference, for example, ensuring that firewalls from multiple vendors separate your network. This may seem like an expensive luxury, but it means that any potential attacker must overcome two very complex firewall technologies, not just one. This also means that in the special case where the vendor’s firewall has a known weakness, it is impossible for the second vendor to have the same feat, reducing the chances of an attacker’s success.

Ensuring that your system is updated at the current level is also an important activity in the fight against hackers.

But without limiting this technology, “change control” is a process that opposes “human error,” otherwise we may lose a lot of important defensive weapons. Knowing the need to change, getting approval, what work and time you plan to do, and ensuring that the complete impact assessment has done something, you will suffer a lot in the future.

Who are these bad guys?

So who is your possible attacker? Well, they can take a variety of forms of amateurs and students who experiment with port scanners and look for a look at whether there are open ports on their firewalls for hackers who can manage scripts that are open for SQL injection. Some people do it for fun, some do it for prestige, but serious hackers are often associated with organized crime and even cyber terrorism. Due to the data being robbed, serious money can be transferred.

In most cases, the attack vector will be your database. This is where an attacker can collect personal data about their customers, collect passwords and login information, collect credit card data, and even medical history and other “confidential” data. . While these data can be cut and marinated using sophisticated encryption techniques, the reality is that many companies suffer huge reputational damage for publicly acknowledging data theft, even if there is no possibility of data being unencrypted.

Internal attacks by staff are now commonplace. Taking the recent Aviva account as an example, two employees obtained the most recent insurance claim data from the customer and sold it to the claims management company.

It is wise not to assume that hackers will always attack from the perimeter of your network from a dark eastern country. Keep the door closed, but opening the back door may be a good way for a given hacker to gain access. Local attacks are as dangerous as long-range attacks

Tiger hunting

For example, if a hacker knows where his office is (to be honest, Google will tell you the front door!) You can try to access your installation as a service technician for an air conditioner or printer. Of course, it does not appear on the list of prospective visitors, so at the reception desk, the scores of the management facilities are obtained, leaving the reception unattended. Our hacker service technician pulled the WiFi router out and placed it on the back of the receiving PC and hid it behind the desktop. The receptionist came back and told us that the hacker repair technician had no scheduled repairs “The headquarters must be very confused,” he said politely. Now he goes to his car and connects to the router he just planted via WiFi, now he can access his local network and the attack begins This activity is usually led by “ethical hackers” to which companies to pay. The weakness of its security (cyber security courses) process is known as the “tiger attack.” However, if your data is valuable enough for an organized criminal group or someone who wants to undermine your company’s reputation, this could be a real event.

Unfortunately, the weakest link in data security is almost always a human factor. Social engineering attacks are the first weapon in a hacker’s arsenal. With this solution, they can introduce themselves as local service desk teams and send emails to unsuspecting employees to inform them of “emergency security attacks” that require immediate password changes. Its employees are well trained in security and data protection, and the emails carry a company logo that looks real, so security personnel click on the link to change their password. Once completed, the staff is proud to work hard to follow the security tips and may begin to encourage other members of the team to do the same they know they have entered their name in the phishing user and password, our hacker Services such as Outlook Web Access will be collected and used to access confidential email or VPN services for remote access to the network.

However, since we still use different passwords for all Internet accounts, our hackers will never use the same information collected to access our personal eBay, PayPal or other financial related websites.