WHAT IS A CYBERATTACK?  A cyberattack is a malicious and deliberate attempt by an individual or organization to breach the information system of another individual or organization.  Usually, the attacker seeks some type of benefit from disrupting the victim’s network. WHY DO PEOPLE LAUNCH CYBER ATTACKS?  Cybercrime has increased every year as people try to benefit from weak business systems. Often, attackers are looking for ransom: 53 percent of cyber attacks resulted in damages of $500,000 or more.  Some attackers look to obliterate (destroy) systems and data as a form of“hacktivism. ” (1) John Chambers WHAT IS A BOTNET?  A botnet is a network of devices that has been infected with malicious software, such as a virus.  Attackers can control a botnet as a group without the owner’s knowledge with the goal of increasing the magnitude of their attacks. (1) John Chambers WHAT ARE THE MOST COMMON CYBERATTACKS? 1- Malware  Malware is a term used to describe malicious software, including spyware, ransomware, viruses, and worms.  Malware breaches a network through a vulnerability, typically when a user clicks a dangerous link or email attachment that then installs risky software. (1) John Chambers Continuous…  Once inside the system, malware can do the following : • Blocks access to key components of the network (ransomware) • Installs malware or additional harmful software • Covertly obtains information by transmitting data from the hard drive (spyware) WHAT ARE THE MOST COMMON CYBERATTACKS? 2- Phishing  Phishing is the practice of sending fraudulent communications that appear to come from trusted source, usually through email or by phone.  The goal is to steal sensitive data like credit card and login information or to install malware on the victim’s machine. WHAT ARE THE MOST COMMON CYBERATTACKS? 3- Man-in-the-middle attack  Man-in-the-middle (MitM) attacks, also known as eavesdropping attacks, occur when attackers insert themselves into a two-party transaction. Once the attackers interrupt the traffic, they can filter and steal data. 11111110000 000 0100 11000007 Continuous… Two common points of entry for MitM attacks: 1. On unsecure public Wi-Fi, attackers can insert themselves between a visitor’s device and the network. Without knowing, the visitor passes all information through the attacker. 2. Once malware has breached a device, an attacker can install software to process all of the victim’s information. WHAT ARE THE MOST COMMON CYBERATTACKS? 4- Denial-of-service attack ➢ A denial-of-service attack floods systems, servers, or networks with traffic to exhaust resources and bandwidth. ➢ Attackers can also use multiple compromised devices to launch this attack. This is known as a distributed-denial-of-service (DDoS) attack. WHAT ARE THE MOST COMMON CYBERATTACKS?  SQL injection A Structured Query Language (SQL) injection occurs when an attacker that uses SQL and forces the server to reveal information it normally would not. inserts malicious code into a server WHAT ARE THE MOST COMMON CYBERATTACKS? • DNS Tunnelin