GBnet

Indian Business Network

Latest Posts

Network Security: Vulnerability Scans, Penetration Testing, and Social Engineering

Because of ever-changing threats and updated industry compliance, network security is now more important than ever for businesses and organizations. Not doing so makes your company’s files and information vulnerable to outside attackers, those who can illicitly enter, steal, and exploit your property. Aside from no longer maintaining industry compliance, your company likely loses business, as customers no longer trust your strategy or, worse, serve you with a lawsuit.

A network security strategy, on the other hand, goes far beyond antivirus software and a firewall. In fact, all aspects of your electronic information should be updated, recorded, and saved with security in mind.

Nevertheless, audits are an essential aspect of such a strategy, and a certified professional can conduct one, if no one on staff has the credentials to do so. Such professionals do an internal and external vulnerability audit, examining the perimeter and interior for weak points an intruder can enter; a penetration test on all vulnerabilities; and social engineering to examine the non-technical sides of your system.

Vulnerability scanning identifies hosts and their various attributes, be it outdated software, missing patches or configurations, applications, and compliance. All aspects are compared with a database of known vulnerabilities, and any targets then serve as points to address in a penetration test.

A penetration test involves ethical hacking techniques. A trained professional, one well-versed in such simulated attack protocol, must do this. During the test, he or she identifies all places an intruder could get through or around, and once identifying the vulnerabilities, he or she launches an attack on the system. As an attack progresses, the professional takes note of how well a system handles the intrusion, the complexity of techniques needed to break through the perimeter or exterior, the measures in place to reduce a system breach, and how such instances are identified and defended.

Penetration tasks have four stages: planning, discovery, attack, and reporting. Planning and discovery are preparation and encompass vulnerability scanning. The professional also gathers IP addresses, employee names and contact information, and application and service information. The attack stage verifies the vulnerabilities and ethically exploits them. For a successful attack, the professional recommends safeguards to reduce these instances in the future. However, vulnerabilities are often grouped together, and attacking one leads to another not previously identified. The attack and discovery stages, in this case, loop back and forth through the process.

Social engineering addresses the non-technical side of network security – mainly, that employees are not always aware of the latest threats. In exploiting the human side of vulnerabilities, a network security professional has conversations and interviews in person, over the telephone, instant message, or email. The professional is essentially launching a phishing scheme, attempting to get employees to unwittingly reveal usernames, passwords, account number, and other company information.

At the end of a security scan, the professional provides a report, listing all vulnerabilities and offering guidance for reducing all potential risks.



Source by Irene Test

Are You Waiting for the Government to Solve Cyber Security?

Hello My Friends:

I was reading an article on how our beloved government is intending to enter the fray against cyber security malefactors, read that cyber criminals, who have made a lifetime of hacking into our government and business computer systems. Their main purpose, of course, is to use viruses and assorted malware to intrude on your computer systems.

Of course the problem with those people is the damage they intentionally do in the computer system as well as web sites in general. Viruses and malware make your life so much more difficult. Even if these people don’t do specific damage within the cyber system, they show others how and those people are intent on damage for whatever reasons. Sometimes anger at a particular business or type of business and sometimes simply a nihilistic personality.

Our Government’s Hope to Abolish Cyber Security Intruders!

We are going to have a new government agency taking over the process of performing background checks of existing and potential government employees. They are going to create a brave and courageous band of cyber security warriors.

Yes, that’s right! We are going to end computer viruses and malware by building a new federal agency that will perform background checks to eliminate all the cyber criminals.

Think back a number of months and we all heard how the Office of Personnel management (OPM) had its files hacked and lots of personal information stolen from something like twenty-two million past and current federal employees. I also remember how this example of government ineptitude cost the Director’s job.

Anyway, OPM’s press secretary told the New York Times that they needed to utilize a large and trained cyber security work force and have them protect against and even respond to cyber criminals.

Cyber Security Specialists are going to leap up on the wall and endanger all the Malware and Viruses!

Hurrah for cyber security warriors.

Right! Kind of makes your hair all wavy, doesn’t it.

We all know now that all the cyber criminals are worried to no end.

The new agency will be called the National Background Investigations Bureau (NBIB). These cyber warriors are going to run background checks for the Department of Defense (DOD) and are going to design and build the new agency’s information technology and computer security systems to accomplish that feat.

The Federal News Radio reported that it will also operate the data storage and security of the new system. We understand that the NBIB and its healthy staff will work within the Office of Personnel Management. We are going to have a Presidential appointee to run it. It seems to be a bit unclear exactly when the new agency will actually begin, but work on the project is sure to begin sometime this year. Or so.

You probably remember how President Obama ordered a 90 day review of government’s information security policies and practices. That was in July. Most of us were thrilled at the prospect that the global problem of virus protection being solved.

Anyway, he is asking for an additional $95 million to pay for the new agency.

You probably also remember how this is the second time he has addressed the problems associated with the government’s background clearance process. After an IT contractor killed twelve people in the Washington Navy Yard office in September of 2013, he called for a complete evaluation of the security screening procedure of contract employees. In March of 2014 the administration announced it had accepted thirteen of the recommendations. These recommendations included a ongoing review of workers and contractors rather than the sporadic checks they were doing. Also they wanted better access to state and local information for federal background checks, and consistent background requirements for federal employees and contractors.

And so now you see all the solutions now available? I don’t either. If you have been waiting for the federal government to solve any of our problems with cyber criminals hacking computer systems, good luck.

Typical governmental much ado about nothing.

Thanks for coming.

Jim



Source by Jim Rush

Cyber Security Tips for Small and Medium Business

Keeping business data safe is the number one concern of business nowadays. Due to the rising security breaches on several companies, data security against unwanted intrusion is on everyone’s mind. No matter big or small, IT security is the biggest challenges organizations face. When it comes to small or medium enterprise the impact of security threat is even more severe. Cyber criminals love to target small business largely due to the fact that SMBs cannot afford to implement strong security protocols. Nothing can be hundred percentage safe, but at the same time SMEs can advance the protection environment by acquiring a strong understanding of their external web presence and ensuring it is secure by undertaking penetration testing and minimizing exposure by taking action such as regularly updating security patches.

What is Data breach and how it happens?

Data breach is an incident in which sensitive, protected or confidential data has potentially been viewed, stolen or used by an individual unauthorized to do so. The most common concept of a data breach is an attacker hacking into a network to steal sensitive data. A number of industry guidelines and government compliance regulations mandate strict governance of sensitive or personal data to avoid data breaches. It is a scenario where your company or organizations’ data is stolen. When we check into the company folder and find all information is gone, client files, logs, billing information have all been compromised. Then it is clear that your business is becoming a victim of a data breach cyber-attack.

Most common causes of data breaches

Protecting sensitive data is critical to the lifeline of an enterprise. What can be the most common causes of data breaches?

• Physical loss or theft of devices is one of the most common causes of data breaches: This is arguably the most straightforward of the common causes of data breaches. However, there are many different ways that this can occur. It could be that anyone of your laptop, external hard drive, or flash drive has been damaged, stolen, or misplaced.

• Internal threats like accidental breach (employee error) or intentional breach (employee misuse): This can occur when employees handling delicate data not clearly understanding security protocols and procedures. Data breach can also occur from a mental error, when an employee sends documents to a wrong recipient.

• Weak security controls are often top concerns for protecting an organization’s data: Incorrectly managing access to applications and different types of data can result in employees being able to view and transport information they don’t need to do their jobs. Weak or stolen password has been yet another main concern. When devices such as laptops, tablets, cell phones, computers and email systems are protected with weak passwords, hackers can easily break into the system. This exposes subscription information, personal and financial information, as well as sensitive business data.

• Operating system and application vulnerabilities: Having outdated software or web browsers is a serious security concern.

Tips to prevent Cyber threat

Amid the chaos and the hype, it can be difficult to get clear, accurate information about what’s really going on when a data breach occurs. While data breaches are certainly a complex issue, equipping yourself with basic knowledge of them can help you to navigate the news, to handle the aftermath, and to secure your data as best as you can. The increasing frequency and magnitude of data breaches is a clear sign that organizations need to prioritize the security of personal data.

Latest developments like embracing cloud, deploying BYOD etc. enhances the risk of cyber threat. Employee ignorance is also one of the major concerns. Hackers are well aware of these vulnerabilities and are organizing themselves to exploit. There is no need to panic, especially if you are a small business, but it is imperative to take a decision. Make yourself difficult to target and keep your business secure with these top 5 tips.

Here are the top 5 tips to prevent the cyber threat.

1. Encrypt your data: Data encryption is a great preventive control mechanism. If you encrypt a database or a file, you can’t decrypt it unless you have or guess the right keys, and guessing the right keys can take a long time. Managing encryption keys requires the same effort as managing other preventive controls in the digital world, like access control lists, for example. Someone needs to regularly review who has access to what data, and revoke access for those who no longer require it.

2. Choose a security that fits your business: Cracking even the most secure companies with elaborate schemes is now far greater than ever. So adopt a managed security service provider that can deliver a flexible solution cost effectively and provide a seamless upgrade path.

3. Educate employees: Educate employees about appropriate handling and protection of sensitive data. Keep employees informed about threats through brief e-mails or at periodic meetings led by IT expert.

4. Deploy security management strategy: Nowadays cyber-attacks are highly organized so organizations need to establish a strategic approach so that your entire environment works as an integrated defense, detecting, preventing and responding to attacks seamlessly and instantly.

5. Install anti-virus software: Anti-virus software can secure your systems from attacks. Anti-virus protection scans your computer and your incoming email for viruses, and then deletes them. You must keep your anti-virus software updated to cope with the latest “bugs” circulating the Internet. Most anti-virus software includes a feature to download updates automatically when you are online. In addition, make sure that the software is continually running and checking your system for viruses, especially if you are downloading files from the Web or checking your email.

Actions or measures that can be taken if any, malicious attack suspected in your network

• If when an unknown file is downloaded, the first step is to delete the file. Disconnect the computer from the network and have IT run a complete system sweep to ensure no traces are left.

• Whenever a key logger is detected on a computer, IT should immediately reset password on all related accounts.

• Businesses should have central administration capabilities on their local and cloud server. Controlling which users have access to what files/folders on the server ensures that essential business data is only accessible by authorized individuals.

• Have all business files backed up in a remote cloud server. If disaster recovery is necessary, all files backed up in the cloud can be imported back to the local server to prevent complete data loss.

Perfect Cyber Security involves:

• Determining what assets need to be secured

• Identifying the threats and risks that could affect those assets or the whole business

• Identifying what safeguards need to be in place to deal with threats and secure assets

• Monitoring safeguards and assets to prevent or manage security breaches

• Responding to cyber security issues as they occur

• Updating and adjusting to safeguards as needed

Every day businesses are under attack on multiple fronts, and realizing that data breaches can stem from several different source allows for a more comprehensive protection and response plan. Never assume that your data is safe because you have the best electronic protection, or because you don’t use POS terminals. Criminals want your data, and they will try anything to get it.



Source by Priya Sajeeth

The Advancement of Security Technology with Network Security Cameras

A network security camera is also known as IP security camera. This is a web camera, which also performs the task of a surveillance camera. This is because it is connected to the computer network of an organization. The network security camera system provides the real time images of whatever is happening in various facilities of the building premises. These cameras are being used in various organizations such as hotels, depots, retail outlets, offices premises, traffic operations, railway stations, airports, bus stands, and weather control. Besides, this network security camera system has a very wide scope into variety of other activities and organizations.

The fast changing technology has invented the digital camera replacing the earlier analog camera. And, now this latest technology has enabled this digital camera to capture the information and turn this information into a video file which is sent either to a personal computer or a server. So, lot of manual work now has been taken over by the digital technology. Then, each camera around the security network is connected with a computer and is assigned an IP address to locate the position of the camera on the monitor. Instead of an IP address, a particular number can also be assigned to the camera since the IP address might be difficult to be remembered. So, the system can identify any camera location through these numbers or the IP addresses. Without the IP address or the numbering, it will be extremely difficult to identify the camera.

You need a personal computer to operate the functions of these cameras. You can maneuver them to turn towards a particular point or area. These cameras may be ordered to turn on or off the audio, record the images for future references, and even these may be instructed to send you a video clip as an email if it identifies an unexpected motion or activity. This way, the network is well efficient to work as your reliable watchman.

Installing a network security camera system is not expensive as far as the cost of installation is concerned. The system can be connected to your existing computer network, so wiring the whole building through the video cable is not required. Whereas the installation of wireless option can be installed more easily since you can place those cameras anywhere and what you need is to connect them with an electrical outlet. Your wired or wireless network security camera can be controlled from any location even if you are away from your office premises. You just need to access a web page and enter the username and your password; your office is now in front of you, so you can really check if everything is going alright there in your absence. For this application, you only need software installed on your personal computer or laptop to enable you to watch your office activity live. At present, this network security camera software is available with Panasonic, Axis, and Recam brands.

Initially, the ip network security cameras were used to control the crime. London is the city that installed these systems in the city. Though, this system has been criticized widely as it breaks into the civil liberties and citizens’ privacy but most recently the New York and Chicago are also ready to adopt this model of installing the network security camera in the city to counter the crime and terrorism.



Source by Steve Strong

The Critical Nature of Professional Computer Network Security

In a world of ever-evolving and increasingly sophisticated Internet threats, computer network security has become an unmanageable necessity for many small businesses and homeowners.

It is more important now than it has ever been to put the needs of one's network into the hands of a highly skilled and experienced professional.
Even the small home network can benefit and save money by turning to a PC technician who has the proper software and tools for the job.

Proper computer network security takes the burden off our shoulders, and protects our small business and home networks from all threats.
Consider that these threats can expend far more energy attacking our systems than we can spend protecting them.

When one considers the ever-expanding array of network threats, it is clear that we must allow specialists to manage our defense.
How else can we have confidence that all of our precious information is secure?
Consider the following evolving Internet-based threats:

Worms & Viruses

In addition to being the original form of malware and predating the Internet, viruses are still the most common and dangerous form of security threat.
Once they gain access to the network, they begin to spread until the network is disabled, compromised or both.

The fortunately aspect of worms and viruses are that they require user intervention in order to introduce themselves to the systems.
This means that with proper and professional security and protocols in place, a business can provide them with invulnerability to these types of attacks.

Phishing

Phishing is a criminally fraudulent process of trying to acquire sensitive information, such as credit card information, usernames and passwords.
Phishing attacks generally target individuals, but this does not mean that our businesses are safe from this type of threat.

Our employees are more mobile, and more connected to our business networks than ever.
A phishing attack that compromises the employee can lead to a compromise of the business' entire computer network security.
This is why it is critical that we use professional measures to protect our employees and, in turn, protect ourselves.

Packet Sniffers

Packet sniffers capture network data streams, so allowing them to seize a business' sensitive information.
Packet sniffers are very difficult to detect, and they can gain access to the network through legitimate connection means.

In order to secure a network from this type of threat, every point within the network must have proper security protocols, and be able to transmit and receive encrypted communication.
A business must employ a network security specialist in order to implement a system such as this.

Securing All Components of Network Access Control

The common small business owner or homeowner does not appreciate the complexity of fully securing a network.
There are four primary phases:

• Authentication
• Enforcement
• Endpoint Security
• Management

Defend your business from all computer network security threats by hiring a network security consultant that will properly secure and define protocols for each of these phases. Network security is like a house of cards. If just one of these broad aspects fails, the entire structure falls apart.



Source by Arsham Mirshah

How Email Viruses Affect Network Security

A computer virus is a program that can replicate itself and spread from one machine to another with the intent to corrupt or destroy data. Many resources have reported that in 2009, the number of viruses, worms, and trojans have topped the 1 million mark.

One of the most common ways viruses are spread is through the use of email. Commonly, the viruses are programmed to spread themselves by emailing a copy of the attachment in which they’re hidden to all the other email addresses in an infected computer’s address book. This is occurring more and more frequently with the increase of computer and email users. The more users, the more people there are in address books.

The emails are usually titled with subject lines that would encourage an email user to open it. Some examples are “I love you” or “See famous person naked.” When the attachment is opened, the virus is activated, and the user’s computer becomes infected. One of the best preventative measures is to not open attachments. Not opening attachments is unavoidable for some. In that case the source of the attachment should be fully researched and the attachment should be expected by the receiver. Often, attachments that end with the.vbs extension (Visual Basic script) or the.exe extension (program files) pose the greatest threat.

It seems that the motivation behind the viruses has changed over past years. In previous years, virus writers were most often out to reap havoc and gain infamy. More recently, virus writers have appeared to be working with spammers. The motivation is now financial, and the goal is to infect machines, self circulate the infection method and take control of thousands of automated machines to conduct spam operations via open relays (Sturgeon, 2003). It appears that in recent years virus writers have been reported to be hired by spammers.

Network security has been improving over the past few years in response to the growing number of viruses. There is more awareness and investments into the use of anti-virus software, as well as spam blocking software. With the increase in critical data and sophisticated hardware and software, organizations and individuals are spending more to prevent and detect viruses and worms that can be detrimental to the day to day operations. Global revenue from anti-virus software reached almost $10 billion in 2006 and has continually grown.

In conclusion, viruses and worms are becoming more complex because virus writers are trying to push the boundaries and improve upon what was already done. The number of email users is also greatly increasing. Therefore the volume of emails is increasing. Education about the potential risks of email is not always there for the younger users, so many email viruses are also spread by the younger or less informed users. Anti-virus software has been of increasing importance to network security and is shown by global spending.

Contact Tranztec Solutions, Inc. (http://www.tranztec.com) to schedule a network security evaluation today.

Works Cited:

Karp, Jack (n.d.). Viruses Explained. TechTv.com. Retrieved November 19, 2005, from the Computer Crime Research Center at http://www.crime-research.org

Kruse, W., & Heiser, J. (2004). Computer Forensics. 9th ed. Indianapolis, IN: Pearson Education.

Sturgeon, Will (2003). Re:Viewing 2003: The return of the virus. Silicon.Com.

Retrieved November 19, 2005, from the Computer Crime Research Center at http://www.crime-research.org



Source by Joshua Maluchnik

How to Protect Your Network Using these Network Security Procedures and Tips

Network security is the new buzz word around town.

Most people think a network firewall that is setup with the default will protect

their network. The simple fact is no it will not. Not until you are hack will

you know this fact. Of course this comes a little too late. All operating systems

need ports open in order to communicate information regarding active directory,

DNS, DHCP, booting of a computer and more. Some applications need ports open to

work. So where do you reach a safe point where your applications work and they

are secure. The following will address the working ports and what to be

concerned about. Later I will address how to secure it.

Ports to be concerned about are 3389 which is

terminal services ports. If you do not have a firewall in place blocking public

IP address from forwarding to private IP address using this port then you will

want to call a security professional right away. Other ports to be concerned

about are 139 which gives access to network shares.

Another area of concern is the SMB or the

(Server Message Block) protocol. This protocol is used among other things for

file sharing in Windows NT/2000/XP. In Windows NT it ran on top of NetBT

(NetBIOS over TCP/IP), which used the famous ports 137, 138 (UDP) and 139 (TCP).

In Windows 2000/XP/2003, Microsoft added the possibility to run SMB directly

over TCP/IP, without the extra layer of NetBT. For this they use TCP port 445.

Again all these ports should remain in the private network and your firewall

should block access.

Note: The NETSTAT command will show you

whatever ports are open or in use, but it is NOT a port scanning tool! If you

want to have your computer scanned for open ports see this page instead (link

will follow shortly).

C:>netstat -an |find /i “listening”

TCP 0.0.0.0:135 0.0.0.0:0 LISTENING

TCP 0.0.0.0:445 0.0.0.0:0 LISTENING

TCP 0.0.0.0:1723 0.0.0.0:0 LISTENING

TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING

TCP 127.0.0.1:1026 0.0.0.0:0 LISTENING

TCP 127.0.0.1:4664 0.0.0.0:0 LISTENING

TCP 192.168.50.127:139 0.0.0.0:0 LISTENING

TCP 192.168.100.193:139 0.0.0.0:0 LISTENING

The netstat command will also show you who is active on your computer. This will

show you what spyware or trojan horses that may have installed on your machine.

Active Connections

Proto Local Address Foreign Address State

TCP argonas:epmap argonas:0 LISTENING

TCP argonas:microsoft-ds argonas:0 LISTENING

TCP argonas:pptp argonas:0 LISTENING

TCP argonas:3389 argonas:0 LISTENING

TCP argonas:1026 argonas:0 LISTENING

TCP argonas:2617 localhost:2618 ESTABLISHED

TCP argonas:2618 localhost:2617 ESTABLISHED

TCP argonas:2619 localhost:2620 ESTABLISHED

TCP argonas:2620 localhost:2619 ESTABLISHED

TCP argonas:4664 argonas:0 LISTENING

TCP argonas:netbios-ssn argonas:0 LISTENING

TCP argonas:2958 an-in-f104.google.com:http ESTABLISHED

TCP argonas:3011 va-in-f104.google.com:http TIME_WAIT

TCP argonas:3014 eo-in-f147.google.com:http ESTABLISHED

TCP argonas:3081 unknown.xeex.net:http TIME_WAIT

TCP argonas:3104 unknown.xeex.net:http ESTABLISHED

TCP argonas:3903 web1.allaboutsingles.com:http CLOSE_WAIT

TCP argonas:4449 static-71-116-207-166.lsanca.dsl-w.verizon.net:pptp ESTABLISHED

TCP argonas:4762 va-in-f104.google.com:http CLOSE_WAIT

TCP argonas:netbios-ssn argonas:0 LISTENING

TCP argonas:2939 192.168.100.202:1025 ESTABLISHED

TCP argonas:2957 exchange01.intercore.local:1419 ESTABLISHED

Once you have locked down all ports then you must be

concerned with internal security. No one in your organization will be allowed to

talk to anyone about any secure information. Even giving out there email

address. Next use devices like honey pots, barracuda spam appliance, Symantec

anti-virus hardware and software. A properly configured network can allow your

workers to work and disallow hackers to work.



Source by Steven Young

Why Is Remote Monitoring Important for Network Security?

There are no longer any physical files and folders that can be stolen by a perpetrator who must barge through the gates and beat up the guards to access information. In fact, a perpetrator need not even be physically present to make the theft. All information is digitally encoded and decoded in the form of data, and there is no telling who is gaining access to confidential company information at what opportune moment.

It is thus important to ensure a remote monitoring service or software at work at all hours of the day. Recent advances in computer security technologies have made it possible for system administrators to keep tabs on the exchanges and activities occurring in a particular network of computers. With such an efficient technology management in place, business owners can rest assured that company data will not be accessed extraneously.

Network security is not a one-man task. In fact, it is not even a manual task. Even if there were as many securities personnel as there are computers in a company network, there would still be a potential threat emanating from a background infiltration. Only automated network monitoring systems are capable of overseeing a million activities within a network of computers and report anything suspicious at the shortest notice.

Remote monitoring can offer business owners and network administrators the peace of mind they deserve. This process is ‘remote’ in the sense that there will be no in-house security personnel managing the operations within a computer network. If a business hires an IT services company that provides remote monitoring, the latter is not going to place an online security guard in the office. Rather, the IT services company will administer the activities of your computer network using their remote monitoring technology. They will work ‘remotely’ without disrupting the day-to-day operations of the computers, alerting the business authorities only when potential threats are encountered.

The newspapers today are rife with security breaches and anti-hacker crusades. But it is fair to say the damage has been done once the hacker has trespassed and flouted all ‘secured’ boundaries. The anonymity of the hacker makes it impossible for system administrators as well as cyber crime authorities to track down his location. It is pretty evident that cyber ethics is not enough to prick the conscience of hackers. How can businesses cope with cyber security breaches in such potentially vulnerable times? Remote monitoring seems to be the silver lining in the dark ‘clouds’ that threaten us with network security breaches.



Source by Mark Crow

Computer Network Security Software – Why You Should Never Be Feeling Too Secure

Once you hook up your computer to a network – be it at home or at the office – you are vulnerable to attacks from the internet. It is therefore essential to have some kind of network security software installed.

Sure, your PC might not get compromised without this software just like somebody riding a motorbike without a helmet is not necessarily going to die in crash because they didn’t wear a helmet. You get the picture.

The first thing that comes to mind when talking about security software is of course an antivirus program with the latest virus definitions installed. This is not only for your own safety, but also for other people’s safety. An infected computer can be manipulated by the cyber-criminal to infect other computers, all the contacts stored on your computer for example.

The “good old days” of only virus attacks are long gone now. Attackers have access to highly sophisticated spyware programs – some of them readily available for download on the net- which keep on getting better every day. The biggest pest nowadays are Trojans. These are malicous programs which often contain a variety of malware. So if you get one Trojan on your PC, you can be pretty sure it can contain a combination of worms other trojans or even worse, rootkits.

That is why you should supplement your antivirus program with a good anti-spyware program. Both do an excellent job at what there are meant for. Most antivirus software offers some malware protection, but nothing as good as a standalone anti-spyware program. This also doubles your defense if you care about computer network security.

Does it end there? Network security is a never ending process, depending on how secure you want your computer to be. For the home user there is another very important factor which often gets overlooked.

Most of you have heard about a firewall which is standard in an internet security suite. Few of you will understand the workings of a firewall. What does it mean if your firewall software asks you “program x wants to access the internet, allow once, allow always, deny?”

Just press “deny” once for the wrong program and you will have disabled your internet access. Much better to get a hardware firewall which is standard and already configured in a SOHO router and consequently will not nag you with those incomprehensible questions.

As a home user do not hook up your PC directly to the network, get a router to tunnel and control the traffic between your PC and the internet.



Source by Peter D.

Digital Network Security System Explained

Computer technology has revolutionized the way we go about our lives both professionally and socially. Nearly every organization has installed a computer network for purposes of storing, receiving and sending information. Computer usage requires a fundamental approach to security.

Networks containing personal, confidential and sensitive information place great emphasis on their security. Even simple computer usage, like the exchange of emails and storage documents, would require a digital network security system.

Importance of Secure Systems

Network security is an important aspect of government organizations as well as small and large organizations. Intruders can cause a lot of damage to a network should they breach the security buffer. Such concerns call for great awareness among all computer network users.

Computer security systems have to be constantly updated if hackers are to be kept at bay. Each new day comes with its own security flaws. According to the International Journal of Electronic Security and Digital Forensics (IJESDF) 2010 Vol. 3, everyday sees the sprouting of 1 million security threats on the Internet.

Key Areas

• The very first focal area is deterrence. The aim here is to discourage hackers from breaking into systems for malicious and illegal reasons.

• Prevention: Have measures in place that would prevent any unauthorized access. This is achieved through communication encryption, security systems update and authorizing special access.

• Detection of security breaches as they arise. This is done through the setting up of logs that record any access of the system as well as its usage.

• Correction of system flaws. The security system can be used to put measures in place to prevent reoccurrence of the flaw.

• According to the National Institute of Standards and Technology (NIST), there are four main aims of a network attacker. He or she might aim to do any of the following:

• Intercept: This is a form of system attack where the attacker attempts unauthorized entry. This might take the form of information copying or packet sniffing which entails communication eavesdropping.

• Interrupt: This aims to deny the availability of services. The end result is that resources become unavailable.

• Fabrication: This is a counterfeiting attack. Fabrication attacks leads to bypassing of authenticity checks which eventually leads to information impersonation and mimicking.

• Modification: This is an attack that reroutes information intended for a particular user.

Finally, digital network security systems analysts handle two main cyber attacks. These are active attacks and passive attacks. Active attacks are easy to detect since they result in system disruption and they take the form of:

• Reply

• Service denial

•Masquerade- impersonation of an authorized user

• Modification

Passive attacks are hard to detect as they do not alter or interrupt information flow. They take the form of traffic analysis and transmission monitoring.



Source by Paul De Vizard