background preloader

Info Security

Facebook Twitter

International Journal of Cyber-Security and Digital Forensics (IJCSDF) Cyber Security and Information Systems Information Analysis Center. CyberCIEGE Educational Video Game. An innovative video game and tool to teach computer and network security concepts CyberCIEGE enhances information assurance and cyber security education and training through the use of computer gaming techniques such as those employed in SimCity™.

In the CyberCIEGE virtual world, users spend virtual money to operate and defend their networks, and can watch the consequences of their choices, while under attack. Cyber Security Simulation In its interactive environment, CyberCIEGE covers significant aspects of computer and network security and defense. Players of this video game purchase and configure workstations, servers, operating systems, applications, and network devices. They make trade offs as they struggle to maintain a balance between budget, productivity, and security. In its longer scenarios, users advance through a series of stages and must protect increasingly valuable corporate assets against escalating attacks. Questions? Site Map. HTG Explains: The Difference Between WEP, WPA, and WPA2 Wireless Encryption (and Why It Matters) Even if you know you need to secure your Wi-Fi network (and have already done so), you probably find all the encryption acronyms a little bit puzzling.

Read on as we highlight the differences between encryption standards like WEP, WPA, and WPA2–and why it matters which acronym you slap on your home Wi-Fi network. What Does It Matter? You did what you were told to do, you logged into your router after you purchased it and plugged it in for the first time, and set a password. What does it matter what the little acronym next to the security encryption standard you chose was?

As it turns out, it matters a whole lot: as is the case with all encryption standards, increasing computer power and exposed vulnerabilities have rendered older standards at risk. WEP, WPA, and WPA2: Wi-Fi Security Through the Ages Since the late 1990s, Wi-Fi security algorithms have undergone multiple upgrades with outright depreciation of older algorithms and significant revision to newer algorithms. Expect Success With CompTIA Security+ Professor Messer Security+ Course Overview - CompTIA Security+ SY0-301: 0.0.

Secure data and data transfer

Malware. Five portable security apps you should carry on your USB drive. Could hijackers hold your electronic medical records for ransom? Erica Cohen Posted: Wednesday, September 26, 2012, 5:07 PM by Erica Cohen With data breach issues plaguing even the largest of companies, individuals are understandably concerned that their personal information could be leaked to unauthorized users. Release of personal health information is especially concerning because of the information’s private nature.

However, your medical records also face another kind of risk. Someone could “kidnap” them and hold them for ransom. This is not fantasy. This isn’t the first time EHRs have been hijacked and held for ransom. Since the Department of Health and Human Services’ Office for Civil Rights began publicly disclosing large health data breaches two years ago, 21 million individuals have reportedly been affected by large health data breaches of one sort or another.

In order to prevent an escalation of data breaches, it is essential for federal and state governments to develop stringent standards to ensure encryption of private health information. Equation Group: Meet the NSA 'gods of cyber espionage' Over the last couple of years we have been hearing about ever more sophisticated pieces of malware. From Stuxnet and Flame to Gauss and most recently Regin, all have shown increasing levels of technical prowess and all have been linked in some way with the US government. These were thought to be the pinnacle of a huge investment in offensive cyber capabilities by the world's wealthiest country. That was, until we learned about Equation. Described by Kaspersky Lab, the Moscow-based security company which uncovered it, as "an almost omnipotent cyberespionage organisation", the group has been called the "God of cyberespionage" and may have been operating undetected for almost two decades.

While Kaspersky's report reveals much about the group, it barely touches the surface of the capabilities of what is likely the most highly-prized jewel in the NSA's cyberespionage crown. What is the Equation group? Finally, an advanced keylogger known as Grok is referenced in the Equation team's source code. Carberp Family Malware Targeting the Banking Sector -HackSurfer. A challenge incident responders and fraud analysts for firms in the banking and financial services sector (BFSS) will soon be faced with is an increased incidence of customer take-over fraud from a very advanced malware family that was recently released into the wild (Cohen, 2013, July 9). After the historic ZeuS Trojan was released into the wild more sophisticated programmers transformed this already powerful banking Trojan into the very virulent Citadel Trojan.

The Citadel permutation was even more resilient, evasive, and sophisticated than the ZeuS Trojan (ibid. p.1). Many are now expressing concern about an even more notorious Russian Trojan that can easily be modified to target BFSS firms in the U.S. (Krebs, 2013, June 13). Originally known as Carberp (beginning in 2010), this malware family has gone through several evolutionary steps with the most virulent form now recognized as Win32/Hodprot (Lipovsky, 2011). Figure 1 – Account Take-Over Fraud Works by Infecting Customer Devices.

Available Home Security Sensors and Home Automation Products - 24/7 Home Security. Wondering which home security systems offer what features and accessories? Which have enough features to make them home automation systems? We’ve gathered all of the information that we could find and put it in one place to save you time. Don’t limit yourself to a system that won’t grow to fit your needs. See if the system you are considering has or supports the home security sensors or home automation products you want or might need in the future. It’s also worth noting that many of these are new companies and are developing new products very quickly, so check back regularly to see if anything has changed. Also, the question marks are for companies that don’t disclose what they offer on their website. Compare Home Security Sensors and Accessories This table will let you know which companies offer which types of sensors with their home security systems.

Compare Home Automation System Protocol Support Just take a look at the support offered by a few of the most popular systems. Kismet. Wireshark · Go Deep. GlassWire Network Security Monitor & Firewall Tool. How To Turn On 2-Factor Authentication In Gmail. You Aren't Using These 10 Simple Security Settings. Online security isn't just a good idea anymore — it's an essential safety measure for anyone using the web.

In 2012, Wired senior tech reporter Mat Honan lost more than a year's worth of pictures of his newborn daughter after his Google and Amazon accounts were hacked. Earlier in 2013, the Syrian Electronic Army allegedly hacked the Twitter accounts of The Financial Times, E! Online and The Associated Press. In response to such attacks, Internet companies are increasingly moving toward two-step verification policies. The tips below explain how to set up two-step verification on your most-used online applications. Facebook 1. Enabling Login Approval will affect apps that require your Facebook login, like Skype, Xbox or Spotify. Twitter 2. To set up two-step verification on Twitter, click the Gear icon in the top-right corner to access the Settings menu.

Before you set up two-step verification on Twitter, you must confirm your email address and add a phone number to your account. 3. 4. 5. 6. Everything You Wanted To Know About TOR And The Deep Web. Internet of Things, Cloud and Espionage of Safety. Internet of Things (IoT) is a concern not only for the security, all cloud based service providers and to the software defined approaches. Since 2010, we are mostly around the topics of core Networking and Virtualization. Gradually, we introduced Cloud Computing as a category. So, far we have the highest number of helpful information providing articles, guides on Cloud Computing as a single website.

Gradually, we are heading to a future where everything will be software defined. Today, even to an user, it is not surpassing that Heartbleed was possibly known by NSA and few software companies exploited the almost resource less, one person controlled OpenSSL project. The issue of security is an important issue which repeatedly peeps in the ICT sector and beyond. Internet of Things, offers great opportunities and services to the companies and consumers but also conceals many pitfalls; even a tool commonly used as the office printer can turn into a dangerous backdoor. Infographic: Is free Wi-Fi a friend or foe? You're Being Watched Online. October is National Cybersecurity Awareness Month - OpenDNS Blog. Wireless Network Security. Infographics : Enterprise Information Security Teams. A Short History of Hacking. If you thought hacking was a recent phenomenon think again. As this infographic reveals, a form of phone hacking was in used 40 years ago. You may be surprised to see Rusell Crowe featured on an inforgraphic about hacking but the link is the film, The Beautiful Mind in which he played John Nash, the mathematician who coined the term "hacker".

While today we think of hackers as malicious, Nash meant the term as an insult to describe those who were too lazy to solve a problem but instead avoided it. The phone hacking referred to in the second item on the graphic was also referred to as "phone phreaking" and was brought to public attention in an 1971 article entitled "Secrets of the Little Blue Box" by Ron Rosenbaum that appeared in the magazine Esquire. One the facts that isn't included in this infographic is that this article inspired Steve Jobs and Steve Wozniak to build their own blue box, something that is explored in Woz and Jobs - the blue box days. Source: How to Delete Something Permanently From Your Computer. Do you have a file on your computer that you want to obliterate? Well, it's going to take a lot more than dragging and dropping it into the little trash can at the corner of your desktop. Your computer's trash bin only removes a file from your desktop.

And even if you empty the trash bin, it only deletes the virtual pathway to it. The file is still saved in your hard drive, but now it's just more difficult to access. There are a few easy and effective ways of getting rid of that file once and for all, and they all involve overwriting the file with other data. Think of it like scribbling over written words on a piece of paper. Even if you erase pencil marks or use white out on pen, there are still things you can do to read the words. Eraser (Windows) What it does: Overwrites specific files Eraser is a free tool that allows you to pinpoint specific files on your Windows computer and overwrite them before you delete their directories. CCleaner (Windows) Secure Empty Trash (Apple) Mobile Security Infestation. Infographic: Are We Being Safe Online? Four Wireless Hack Secrets Revealed. You're using a wireless access point that has encryption so you're safe, right?

Wrong! Hackers want you to believe that you are protected so you will remain vulnerable to their attacks. Here are 4 things that wireless hackers hope you won't find out, otherwise they might not be able to break into your network and/or computer: 1. WEP encryption is useless for protecting your wireless network. WEP is easily cracked within minutes and only provides users with a false sense of security. Even a mediocre hacker can defeat Wired Equivalent Privacy (WEP)-based security in a matter of minutes, making it essentially useless as a protection mechanism. 2.

Every piece of IP-based hardware, whether it's a computer, game system, printer, etc, has a unique hard-coded MAC address in its network interface. 3. Many wireless routers have a setting that allows you to administer the router via a wireless connection. 4. Untitled. Cloud Security Solutions for Tablets and Smartphones covers the issues with lost or stolen mobile devices, accidental data deletion, App security and Malwares.

These are the practical part of owning and using a mobile device, from Apple to Samsung, no manufacturers actually points out these parts. Cloud Security Solutions for Tablets and Smartphones from most of the manufacturers are kind of offering anti malware applications. The current methods for stolen and lost mobiles are far from being perfect, ultimately the owner runs here and there for legal reasons but the data get stolen. It is quite easy to remove the SD card and format the device even if it is locked with a password. Implementing Cloud Security Solutions for Tablets and Smartphones specially running Android or Ubuntu can be difficult unless rooted. Cloud Security Solutions for Windows based Tablets and Smartphones is practically impractical.

/em This Article Has Been Shared 4247 Times! How Virtual Private Networks Work. These days there’s a lot of talk about Virtual Private Networks, or VPNs for short, and for good reason. As online privacy becomes an increasingly hot topic of discussion among politicians and activists, individuals have started to take online privacy into their own hands. While you may not have as much to hide as Edward Snowden, everyone can appreciate online privacy and should take the necessary steps to protect yourself.

One of the best things you can do to protect your privacy and establish your anonymity online is by using a Virtual Private Network. VPNs allow you to connect to a private network through your regular connection to the world wide web. Upon establishing a connection to this private network you’re able to mask your online activity, thus establishing your privacy online. Even your Internet Service Provider (ISP) won’t be able to make sense of your internet activity. How Virtual Private Networks Work Detailed Explanation on How VPNs Work. Untitled. Many IT workers feel more like firemen than like networking professionals.

They detect network attacks, respond to them and move on to the next problem. However, putting out fires is an ineffective approach because research has shown that most cyber attacks are not one-time events. They are a series of ongoing attacks designed to probe a network’s weakness and compromise it. While knowing that one’s network is constantly under attack may seem discouraging, the good news is that, the ongoing nature of attacks gives a chance to learn from the mistakes of the attackers. Much is made of zero-day attacks, but many advanced persistent threats (APT) actually use some sort of familiar malware and older exploits. Advanced network security companies can monitor your network at a deeper level, analyze attack patterns and help to recognize and filter new attacks before they can start running the exploit. Protection Tools for Recognizing Suspicious Network Traffic Patterns.

Tips for Protecting Yourself from Hackers | Infographic - UltraLinx. How to Create a Strong Password and Why You Should Do This Now [Infographic]