Presentation is loading. Please wait.

Presentation is loading. Please wait.

3.6 Fundamentals of cyber security

Published byJosephine Armstrong Modified over 6 years ago

Similar presentations

Presentation on theme: "3.6 Fundamentals of cyber security"— Presentation transcript:

1 3.6 Fundamentals of cyber security
3.6.1 Cyber security threats Lesson Unit Objective Be able to define the term cyber security and be able to describe the main purposes of cyber security

2 TIME UP Starter activity In pairs…
Using the cards, arrange the words into a definition of ‘cyber security’. You have three minutes to complete the task, but you must not speak to your partner! TIME UP Click on ‘Start’ to start the 3 minute timer. Answer: Protecting networks, computers, programs and data from attack, damage or unauthorised access through the use of technologies, processes and practices. Start

3 Starter activity: Answer
Cyber security is: Protecting networks, computers, programs and data from attack, damage or unauthorised access through the use of technologies, processes and practices.

4 Discussion Did you guess correctly? What threats would organisations have to protect themselves from? Can you think of examples of cyber security threats? In what ways could cyber security threats be eliminated or reduced?

5 Objectives Understand and be able to explain cyber security threats.
Explain what penetration testing is and what it is used for.

6 Cyber security threats
social engineering techniques Click box to watch video malicious code weak and default passwords misconfigured access rights removable media unpatched and/or outdated software Social Engineering techniques Hackers use human interaction in this non-technical method of invasion. People are often tricked into disclosing information or doing something that leaves them at risk. Normal procedures for security are broken. For example a customer receives an from their bank asking to confirm the password as they make upgrades the an account. Barclays advertising campaign 2016 (0:30 minutes long) Malicious code This is when code is used to cause damage to a computer system or network, or cause a malfunction or breach security. The code could be part of a script e.g. Sent in an attachment that is opened, or it could be part of a software system that is downloaded and installed. This threat is can often affect a PC or network and it can be difficult to control with only antivirus software. (BBC news article - consider printing for students to read later) Weak and default passwords Weak passwords are short, less than 8 characters. They are often pet’s or children’s names, birthdays or word patterns eg. qwerty or Many people use the same password, write it down or never change it. Some give them out to friends or co-workers (social engineering again). Default passwords (where a device leaves a factory after it has been manufactured with a default password or username) are used so the user can set up the device and change user name or password to something unique upon installation. Many users do not change the username or password and leave themselves at risk of being hacked. Misconfigured access rights Many people in a company have access rights to machinery or devices, e.g. a computer that is connected to the company network. People’s accounts must be configured to the correct level. As people change level in an organisation and increase or decrease their responsibilities, their account should be changed to mirror this. Often in organisations this is overlooked and can lead to people having unauthorised access to areas that should be restricted. Removable media In an organisation where removable media isn’t controlled an employee could use a USB stick for example to open or save an infected file onto the computer network. This could cause damage or harm and could jeopardise the organisation’s network security or data. Unpatched and/or out of date software. Networks and devices within an organisation should have the most up to date version of software running on them. Companies that have produced and written the software often publish updates (sometimes daily) as vulnerabilities (weakness in the software that could be exploited) are discovered.

7 Watch the video clip on cyber security:
youtube.com/watch?v=sdpxddDzXfE Video 3:52 minutes.

8 Cyber security activity
Cyber security lab This is an excellent resource that demonstrates to students how an organisation can come under attack from a variety of cyber security threats. It includes programming challenges, password challenges, identification of social engineering techniques and use of removable media to threaten an organisation. Select – play game. Complete up to 3 levels.

9 Penetration testing A company will identify weaknesses in their computer systems by attempting to hack into it as if they were a real cyber criminal. This can also include checking for threats from use inside of the company. It allows a company to prevent loss and identify potential exploitation before it happens for real.

10 Activity Complete the cyber security threats worksheet.
Extension task: Find news stories with examples of organisations being attacked through these cyber security threats. Suggest ways in which you think they could have prevented the attacks.

11 Plenary 3,2,1 Identify: 3 categories of cyber security threats 2 examples of cyber security threats 1 reason for penetration testing.

Download ppt "3.6 Fundamentals of cyber security"

Similar presentations

Data Security and legal issues Starter :- 5 Minutes Make a list of all the companies and organisations that you believe holds data on you. Write down what.

Data Security and legal issues Starter :- 5 Minutes Make a list of all the companies and organisations that you believe holds data on you. Write down what.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
Viruses,Hacking and Backups By Grace Mackay 8K Viruses Hacking and Hackers Backups.

Viruses,Hacking and Backups By Grace Mackay 8K Viruses Hacking and Hackers Backups.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Computer Viruses.

Computer Viruses.
Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.

Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Threats to I.T Internet security By Cameron Mundy.

Threats to I.T Internet security By Cameron Mundy.
Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.

Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.
Security The Kingsway School. Accidental Data Loss Data can be lost or damaged by: Hardware failure such as a failed disk drive Operator error e.g. accidental.

Security The Kingsway School. Accidental Data Loss Data can be lost or damaged by: Hardware failure such as a failed disk drive Operator error e.g. accidental.
Viruses & Security Threats Unit 1 – Understanding Computer Systems JMW 2012.

Viruses & Security Threats Unit 1 – Understanding Computer Systems JMW 2012.
UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.

UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.
GCSE ICT Viruses, Security & Hacking. Introduction to Viruses – what is a virus? Computer virus definition - Malicious code of computer programming How.

GCSE ICT Viruses, Security & Hacking. Introduction to Viruses – what is a virus? Computer virus definition - Malicious code of computer programming How.
IT Security for Users By Matthew Moody.

IT Security for Users By Matthew Moody.
1.1 System Performance Security Module 1 Version 5.

1.1 System Performance Security Module 1 Version 5.
GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Liam Bradford.

GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Liam Bradford.
Section 6 Theory Software Copyright, Viruses and Hacking.

Section 6 Theory Software Copyright, Viruses and Hacking.
Computing Revision Notes. Index Software System Software Internet.

Computing Revision Notes. Index Software System Software Internet.
IT security By Tilly Gerlack.

IT security By Tilly Gerlack.
By Ramneek Hundal.. 5 types of Virus.. I LOVE YOUI LOVE YOU. WormsWorms.TROJEN HORES.MELISSA.HAPPY 99 What is a virus. A computer virus is a computer.

By Ramneek Hundal.. 5 types of Virus.. I LOVE YOUI LOVE YOU. WormsWorms.TROJEN HORES.MELISSA.HAPPY 99 What is a virus. A computer virus is a computer.

Similar presentations

Ads by Google