User Account

All Pages

Write review about article - internet security threat report

Assignment Help Computer Engineering
Reference no: EM131932716

Write review about this article with references in APA format

In their 2018 Internet Security Threat Report, Symantec (2018) states that "Spear phishing is the number one infection vector employed by 71 percent of organized groups in 2017.

Spear phishing relies on duping the recipient into opening an attachment or following a malicious link and its popularity illustrates how often the person sitting behind a computer can be the weakest link in an organization's security."

This is one of the many reasons that both Ifinedo (2014) and Dodge Jr. et al. (2007) have also asserted that users are the weakest link in IS security. Harrison et al. (2015) found that training to increase users' attention to phishing was not effective because it tended to make users more suspicious of all emails temporarily and more likely to categorize both real and fake emails as phishing. They concluded that a better approach was to teach users to pay attention to a few key elements in the message, such as knowing where to find the actual sender's address and noting red flags like hyperlinks.

On a more technological level, though, the research by Chuchra & Seth (2015) may prove interesting. They detailed an innovative approach for storing passwords. In their process, the password is hashed and then used as a key to encrypt an image selected by the user. This encrypted image is what is stored. The benefits outlined by Chuchra & Seth (2015) were that the stored image eliminated many database attacks, such as SQL Injection.

However, I think this could also help with phishing attempts. Man-in-the-middle attacks would be more difficult, but still be successful. In this scenario, the adversary would have to build their fake login page dynamically to present the user with the images provided by the real site so that the user could pick the correct image.

This would stop an offline attack because it would require the adversary to know not only the password, but the image to be decrypted. About the only real way I can see to resolve the "Mafia owned ISP" scenario is to ensure all communications are handled through a secure channel in which a trusted certificate authority is used. The best advice one can give a user with respect to phishing is "Be serious! Be alert! Your adversary the Devil is prowling around like a roaring lion, looking for anyone he can devour." (1 Peter 5:8, HCSB) Unless you're absolutely sure with whom you are communicating, it must be treated with suspicion and the responses must be provided with an abundance of caution.

Sources:

Ifinedo, P. (2014). Information systems security policy compliance: An empirical study of the effects of socialisation, influence, and cognition. Information & Management, 51(1), 69-79.

Dodge Jr., R, Carver, C., & Ferguson, A. (2007). Phishing for user security awareness. Computers & Security, 26(1), 73-80.

Chuchra, R. & Seth, R. K. (2015). Modeling Implementation of TSEA - Three Step Encryption Algorithm for Enhancing Password Security.

International Journal of Computer Applications, 126(13), 1-6. DOI: 10.5120/ijca2015905879 Harrison, B., Svetieva, E., & Vishwanath, A. (2015).

Individual processing of phishing emails: How attention and elaboration protect against phishing. Online Information Review, 40(2), 265-281. DOI: 10.1108/OIR-04-2015-0106 Internet Security Threat Report. Vol. 23. (2018). Symantec.

Verified Expert

The assignment is about article review. An article on spear phishing is given by the client with references. I have analyzed it and provided my review. Towards the end, suitable reference is also given.

Reference no: EM131932716

Questions Cloud

Determine the areas of the criminal justice process : Provide support for your rationale on why you feel that they are vital as they relate to the criminal justice process.
What is the purpose of the exclusionary rule : Does the rule deter law enforcement from conducting illegal searches and searches in violation of the U.S. Constitution and the Fourth Amendment?
Null and alternative hypotheses for the test : a. Set up the null and alternative hypotheses for the test. b. Find the rejection region for the test using a=0.05
What was your real rate of return : The inflation rate during that time was 3 percent. What was your real rate of return?
Write review about article - internet security threat report : Illustrates how often the person sitting behind a computer can be the weakest link in an organizations security - Write review about this article
Why do police officers become involved in misconduct : Do the interviewees feel that there is enough training offered in ethics at the police academy level? If not, why is that?
What competitive advantages can our businesses gain : What competitive advantages can our businesses gain from utilizing Data Mining? What caveats do businesses need to account for when utilizing this data?
Discuss the strengths and weaknesses of the tsa : Write a short paper (2-4 pages doubled spaced) assessing the role and the effectiveness of the TSA in providing airport security.
Convertible bonds as opposed to straight bond issue : Explain the potential advantages and disadvantages of a firm issuing convertible bonds as opposed to a straight bond issue.

Reviews

Write a Review

Computer Engineering Questions & Answers

  Mathematics in computing

Binary search tree, and postorder and preorder traversal Determine the shortest path in Graph

  Ict governance

ICT is defined as the term of Information and communication technologies, it is diverse set of technical tools and resources used by the government agencies to communicate and produce, circulate, store, and manage all information.

  Implementation of memory management

Assignment covers the following eight topics and explore the implementation of memory management, processes and threads.

  Realize business and organizational data storage

Realize business and organizational data storage and fast access times are much more important than they have ever been. Compare and contrast magnetic tapes, magnetic disks, optical discs

  What is the protocol overhead

What are the advantages of using a compiled language over an interpreted one? Under what circumstances would you select to use an interpreted language?

  Implementation of memory management

Paper describes about memory management. How memory is used in executing programs and its critical support for applications.

  Define open and closed loop control systems

Define open and closed loop cotrol systems.Explain difference between time varying and time invariant control system wth suitable example.

  Prepare a proposal to deploy windows server

Prepare a proposal to deploy Windows Server onto an existing network based on the provided scenario.

  Security policy document project

Analyze security requirements and develop a security policy

  Write a procedure that produces independent stack objects

Write a procedure (make-stack) that produces independent stack objects, using a message-passing style, e.g.

  Define a suitable functional unit

Define a suitable functional unit for a comparative study between two different types of paint.

  Calculate yield to maturity and bond prices

Calculate yield to maturity (YTM) and bond prices

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd