BotNet News

Cyber-security is the process of protecting digital assets and networks from cyberattacks. It includes the use of software to reduce threats such as malware erasing files or hacking into a company’s network to steal sensitive information and credit card data, and attacks aimed at disrupting services such as a power grid outage, air traffic control system outages or even loss of human life (attacks aimed at physical infrastructure are known as cyber-kinetic attacks).

Cyberattacks are constantly evolving. The first computer viruses inspired the development of anti-virus solutions, but newer generation malware evades signature-based defenses. Attackers also take advantage of complex corporate IT environments, which are often sprawled across on-prem systems and multiple cloud platforms.

Many types of cyberattacks can be used to breach security including social engineering, logic bombs (malware added to legitimate programs that lies dormant until triggered) and unikernels (a minimal operating system approach that runs only the bare essentials and leaves other components like device drivers, protocol stacks and file systems in safer, less privileged user space). Hackers may gain direct access to a computer using pinging or port scanning tools and install hardware devices such as key-loggers and covert listening devices.

A robust cyber security strategy must include an active awareness program to help employees understand what they should do and not do when working online. This can help prevent accidental negligence which can lead to a breach. It can also reduce the impact of breaches when they occur by implementing policies and procedures that help to identify potential risks, such as the use of two factor authentication that requires something you know (password or PIN) and something you have (a card, dongle or cellphone). It can also be helpful to provide training on best practices through seminars and classes.