CyberSecuirty Threats - Essay Example

Physical Security Physical security is achieved by means of various ideas. Among them is piggy backing. In the physical environment, piggybacking is achieved when an intruder gains access by using the access of authorized personnel (Peter & Allan, 180). When an individual arrives and opens an electronically or mechanically closed door using a computer like gadget, the intruder follows in as the person gains access through the door. In the computer world, this applies to terminals. A terminal may be accessed via a password (Lynch, 391).

Now the intruder has to gain access through the individual’s password and this he or she does by compromising the computer. This compromise may include a covert computer terminal is connected to the same line through the telephone switching equipment and is then used when the legitimate user is not using the terminal. The computer cannot differentiate between the two terminals; it senses only one terminal and one authorized user (Peter & Allan, 20).A user may also improperly sign off when leaving a terminal session.

Here, the intruder will find the terminal session in active state and access the user’s files as the computer believes the user is still active. The perpetrator may also use another form of piggybacking where they forward the call of the victim’s calls to the perpetrator’s phone (Peter & Allan, 120).Passwords are the other form of security verification methods implemented in computer networks and devices. With passwords, the user is required to enter secret digits or letters or both to provide access to a system or files in a system (Lynch, 401).

Passwords have been in existence since long ago and are applicable in many fields such as in automated teller machines, mobile phones and computer operating systems (Peter & Allan, 70). However, passwords have been known to be cracked and as such very in strength where alphanumeric patterns of passwords offer the strongest passwords while simple letters or digits offer weak and vulnerable passwords (Peter & Allan, 80).Phishing in internet security is a form of crime that occurs in the internet.

Here, deception is used to acquire someone’s or a company’s sensitive information such as their bank account details, credit card number, usernames and passwords. The culprit masquerades as a trustworthy party such as a bank or popular site (Lynch, 410). They in turn send emails or instant messages that are infected with malware and harm the unsuspecting victim. Once the message or email is opened the malware retrieves the user’s important and confidential information and sends it to the fraudster (Engin & Christopher, 554).

Social engineering involves psychologically manipulating people into releasing their confidential information. The various forms of social engineering include pretexting, diversion theft, phishing, tailgating, piggybacking, baiting and quid pro quo (Peter & Allan, 160). Diversion theft is carried out by professional thieves and is a con that mainly affects transport or courier companies. Here, the legitimate persons responsible for delivery of a certain consignment are requested elsewhere by the malicious persons (Engin & Christopher, 560).

Baiting is whereby an attacker schemes and leaves a malware-infected USB flash drive, CD-ROM or floppy disk in a very open area or sure location where the target persons may easily find it (Peter & Allan, 200). References Lynch, Jennifer. Identity Theft in Cyberspace: Crime Control Methods and Their Effectiveness in Combating Phishing Attacks. United States, 2005. Web.Engin, Kirda. Christopher Kruegel. Protecting Users against Phishing Attacks. Technical University of Vienna Vienna: Austria, 2005. Web. HUANG, Hua-jun.

WANG, Yao-jun. JIANG, Li-qing. Countermeasures: Technology of Phishing. College of Computer and Information Engineering, Central South University of Forestry & Technology, Changsha Hunan 410004: China, 2012. Web. Guillot, Grant J. Trespassing through Cyberspace: Should Wireless Piggybacking Constitute a Crime or Tort under Louisiana Law. Louisiana, 2008-2009. Web.Peter W. Singer, Allan, Friedman. Cybersecurity: What Everyone Needs to Know. Oxford University Press: United Kingdom, 2014. Print.