Hacking
docx
keyboard_arrow_up
School
University of Maryland, University College *
*We aren’t endorsed by this school
Course
321
Subject
Information Systems
Date
Dec 6, 2023
Type
docx
Pages
12
Uploaded by justinbucelato
Hacking
is the activity of identifying weaknesses in a computer system or a
network to exploit the security to gain access to personal data or business
data. An example of computer hacking can be: using a password cracking
algorithm to gain access to a computer system.
Computers have become mandatory to run a successful businesses. It is not
enough to have isolated computers systems; they need to be networked to
facilitate communication with external businesses. This exposes them to the
outside world and hacking. System hacking means using computers to
commit fraudulent acts such as fraud, privacy invasion, stealing
corporate/personal data, etc. Cyber crimes cost many organizations millions
of dollars every year. Businesses need to protect themselves against such
attacks.
A
Hacker
is a person who finds and exploits the weakness in computer
systems and/or networks to gain access. Hackers are usually skilled
computer programmers with knowledge of computer security.
Type of Cybercrime
The following list presents the common types of cybercrimes:
Computer Fraud:
Intentional deception for personal gain via the use
of computer systems.
Privacy violation:
Exposing personal information such as email
addresses, phone number, account details, etc. on social media,
hacking a websites, etc.
Identity Theft:
Stealing personal information from somebody and
impersonating that person.
Sharing copyrighted files/information:
This involves distributing
copyright protected files such as eBooks and computer programs etc.
Electronic funds transfer:
This involves gaining an un-authorized
access to bank
computer networks
and making illegal fund transfers.
Electronic money laundering:
This involves the use of the computer
to launder money.
ATM Fraud:
This involves intercepting ATM card details such as
account number and PIN numbers. These details are then used to
withdraw funds from the intercepted accounts.
Denial of Service Attacks:
This involves the use of computers in
multiple locations to attack servers with a view of shutting them down.
Spam:
Sending unauthorized emails. These emails usually contain
advertisements.
What is Ethical Hacking?
Ethical Hacking is identifying weakness in computer systems and/or
computer networks and coming with countermeasures that protect the
weaknesses. Ethical hackers must abide by the following rules.
Get
written permission
from the owner of the computer system
and/or computer network before hacking.
Protect the privacy of the organization
been hacked.
Transparently report
all the identified weaknesses in the computer
system to the organization.
Inform
hardware
and
software
vendors
of
the
identified
weaknesses
.
Why Ethical Hacking?
Information is one of the most valuable assets of an organization.
Keeping information secure can protect an organization’s image and
save an organization a lot of money.
Fake hacking can lead to loss of business for organizations that deal in
finance such as PayPal. Ethical hacking puts them a step ahead of the
cyber criminals who would otherwise lead to loss of business.
Legality of Ethical Hacking
Ethical Hacking is legal if the hacker abides by the rules stipulated
in the above section on the definition of ethical hacking
.
The
International Council of E-Commerce Consultants (EC-Council)
provides a
certification program that tests individual’s skills. Those who pass the
examination are awarded with certificates. The certificates are supposed to
be renewed after some time.
Summary
Hacking is identifying and exploiting weaknesses in computer systems
and/or computer networks.
Cybercrime is committing a crime with the aid of computers and
information technology infrastructure.
Ethical Hacking is about improving the security of computer systems
and/or computer networks.
Ethical Hacking is legal.
What Devices Are Most Vulnerable to Hackers?
Many different devices are vulnerable to cyber hackers, but some of the most
common include:
Computers –
Common computer systems like laptops and PCs are
prime targets for hackers due to the vast amount of personal and sensitive
information they contain, such as financial data, login credentials, and
personal documents. Computer systems are particular targets of cyber
attacks on a commercial and enterprise level, given the value of assets
associated with them.
Mobile Devices –
Mobile devices such as smartphones and tablets are
also at risk of being hacked, as they often store sensitive information,
including personal photos, messages, and emails. They can be particularly
susceptible to hackers when using public
Wi-Fi
and shared networks.
Internet of Things (IoT) Devices –
IoT
devices such as smart home
appliances, security cameras, and even medical devices are common
targets for hackers. These devices are often poorly secured and typically
hacked to gain access to personal information or even to control the
device remotely.
Network Routers –
Network routers, responsible for distributing Wi-Fi
signals, are often targeted by hackers. Hacked routers provide a means to
gain access to entire networks of devices, enabling hackers to access
sensitive data and valuable digital assets.
ATM Machines –
Bank ATMs are also vulnerable targets to hackers
motivated by financial incentives, as many ATMs often operate on
outdated software and may be connected to an unsecured network. Flaws
in card reader technology can also be used as a means of cyber hacking.
Additional devices vulnerable to cyber hackers that are often overlooked are
things like internet-connected security cameras and IP cameras, smart TVs
and smart appliances, and even
baby monitors
. It's critical to acknowledge
that any device connected to the Internet is potentially susceptible to
hacking, so it's important to take necessary precautions to ensure your
technology is protected with whatever means possible.
Effects and Impact of Hackers
Hackers can have significant effects and consequential impacts on
individuals, businesses, and even entire countries, regions, and
municipalities. Here are some of the most common effects of hacking at
large.
Financial Loss –
Hackers that breach bank accounts can steal money
or commit fraud, leading to substantial financial loss for individuals or
businesses. The damages hackers introduce to computer systems can also
result in costly repairs.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help
Identity Theft –
Hackers have been known to hijack sensitive
personal information, such as birth dates, Social Security numbers,
addresses, and credit card numbers, to maliciously commit various cyber
crimes that fall under the category of identity theft.
Data Breaches –
Data breaches are one of the most detrimental
forms of hacking, especially when data gets leaked to malicious parties.
With these attacks, hackers can gain unauthorized access to confidential
or sensitive data, like financial records, medical records, or intellectual
property.
Disruption of Services –
In a hacked computer or network, the
immediate outcome disrupts the normal function of websites, computer
systems, or entire networks. Not only does this disrupt standard
operations, but it can damage critical infrastructure.
Cyber Espionage –
Hackers can steal valuable information, such as
government data, confidential information, or sensitive trade secrets, to
gain a competitive advantage with political interests and foreign affairs or
by putting national security at risk.
Spread of Malware –
The creation and distribution of malware, such
as viruses or ransomware, are common ways for hackers to infect and
damage computer systems, steal data, or demand ransom payments from
organizations or individuals.
The impact of hackers can range from minor inconveniences to major
disruptions. That's why individuals and organizations must take steps to
prevent and mitigate the effects of hacking.
All-Time Historic Hacks
Although the sheer volume of hacking cases reaches the tens of thousands
annually, a few monumental hacks stand out in history as the most
damaging and impactful.
PlayStation Network Hack
Sony PlayStation's gaming network was hacked in 2011, resulting in an epic
case that impacted 77 million consoles and almost a month-long shutdown
on the gaming system's network. Although they never identified the hacker
responsible for the data breach, Sony estimated $171 million in financial
losses from the incident.
DoD and NASA Hacks
In 1999, a teenager hacked into NASA's computer networks and the
Department of Defense (DoD). The hacker downloaded software from NASA
that was valued at $1.7 million. While this historic hack against two of the
most prominent U.S. governmental organizations had little damaging impact
overall, the teenager's actions resulted in NASA's networks shutting down for
three weeks.
Yahoo Data Breach
In 2013, Yahoo encountered two hacking incidents that resulted in one of the
largest data breaches in history, impacting over 3 billion user accounts. The
breach was executed by four Russian agents that were recruited through a
hacker-for-hire scheme. While the breach affected billions of accounts, the
biggest concern involved targeted attacks on high-profile U.S. Intelligence
officials, opening the door to potential cyber espionage.
How to Prevent Hackers
There are many ways that individuals and organizations can effectively
protect their digital assets from hackers. For individuals looking to prevent
hackers from hacking personal computers and devices, several cybersecurity
best practices can be employed.
Maintain strong, complex passwords –
According to
UC Santa
Barbara Information Technology
, the longer a password is, the better.
Whenever possible, use at least 16 characters.
Set up multifactor authentication –
In addition to a strong
password, include a layer of security protection using two-factor
or
multifactor authentication
.
Install antivirus and anti-malware software –
Software programs
that detect and remove viruses and malware are essential in protecting
your computer system and ensuring your data is safe.
Stay alert about suspicious emails –
Avoid clicking questionable
links or opening attachments to emails you don't recognize.
Minimize your online footprint –
While not always applicable to
certain individuals, reducing the amount of information available about
you online can make you less of a target to hackers.
Avoid public Wi-Fi networks for personal or financial data
–
Never use public Wi-Fi to access sensitive personal accounts, like bank
accounts, online wallets, or trade accounts where financial exchanges
occur.
Backup your computer –
Backing up your data is critical to quickly
recovering in the instance hackers do succeed in hacking your computer.
Properly dispose of electronic devices –
Make sure to properly
erase and dispose of old computers and devices that may have contained
personal information and login credentials.
For businesses, institutions, and governmental agencies, additional cyber
security protocols should be leveraged to prevent hackers effectively.
Use firewall protection –
Firewalls
are a fundamental cybersecurity
measure for businesses. They're the first line of defense in preventing
unauthorized access to a network and alerting your team when any
intrusion attempts occur.
Leverage encryption –
Even if hackers successfully access an
organization's network,
encryption
can effectively prevent them from
breaching or accessing any data.
Establish a dedicated insider threat role –
In larger organizations,
insider threats are a genuine concern. Creating a dedicated insider threat
role can help unify teams to quickly identify, investigate, and respond to
inside threats when they occur.
Conduct phishing simulations –
Investing in phishing simulations
enables teams to effectively test employees and help them understand
how phishing attacks occur. These simulations are usually part of a more
comprehensive cybersecurity awareness training program.
Educate remote employees on cybersecurity policies –
With
remote and hybrid working dynamics now the new normal, employees
working from home need as much awareness and understanding of
cybersecurity best practices as those in the office.
Make employee privacy a high priority –
Anonymize any data
collected from employees for
insider threat prevention
and clearly
communicate policies and guidelines about the organization's
cybersecurity standards.
Create a cybersecurity awareness training program –
Critical for
all types of organizations,
cybersecurity awareness training
helps equip
employees with the awareness and understanding to effectively identify
potential threats and attacks.
Monitor user and file activity –
Implementing the right user and file
activity monitoring solution in an organization's network is one of the most
effective methods of hacker prevention.
ybersecurity is critical for businesses of all sizes. These 18 tips can
help you secure your computers and mobile devices from malicious
actors.
Criminal hackers gain unauthorized access to networks and devices to
steal sensitive data, including financial information and company secrets.
Use firewalls and antivirus software and follow best practices around
computer use to protect your business.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help
Protect mobile devices by turning off Bluetooth when not in use, being
mindful of the Wi-Fi networks you connect to, and using security applications
to improve monitoring and protection.
This article is for business leaders and IT admins seeking ways
to protect their devices and networks from hackers.
The World Wide Web’s growth in the 1990s introduced new possibilities and
spawned new industries. However, connectivity also brought new threats.
Spam infiltrated email accounts, and computer viruses wreaked havoc on
business networks. Hacking emerged, extending the definition of thievery to
include infiltrating computers to steal personal information and tricking
people into revealing private data. Business secrets, bank account
credentials and even people’s identities were at risk.
Unfortunately, hacking threats are even more severe and complex today. The
stakes become higher the more businesses rely on technology. Fortunately,
organizations have multiple ways to help defend themselves — and protect
crucial data — from hackers.
How can you secure your computer from hackers?
Despite the prevalence of hacking threats like
ransomware
,
business email
compromise scams
and
data breaches
, most businesses rely on the internet
for a number of things. This includes: tracking finances, ordering and
maintaining inventory, conducting marketing and PR campaigns, connecting
with customers, using social media, and performing critical operations.
Massive computer breaches affect big corporations with robust security
measures. However, hackers also target small businesses that may
underestimate cybercrime risks and lack the resources to employ expensive
cybersecurity solutions.
Lax cybersecurity standards
can derail a company. To give your business the
best chance of preventing and mitigating cyberattacks, follow these tips to
protect your devices and safeguard sensitive data.
Cyberattacks are costly
for small businesses. You may need to pay ransom
costs, provide customers with free credit monitoring, hire customer service
personnel to handle calls, pay fines and more.
1. Use a firewall to secure your computers from hackers.
Windows and macOS have built-in firewalls — software designed to create a
barrier between your information and the outside world. Firewalls prevent
unauthorized access to your business network and alert you to intrusion
attempts.
Ensure the firewall is enabled before going online. You can also purchase a
hardware firewall from companies like Cisco, Sophos or Fortinet, depending
on your broadband router, which also has a built-in firewall that protects your
network. If you have a larger business, you can purchase an additional
business networking firewall.
2. Install antivirus software to thwart hackers.
Antivirus software is a
small business cybersecurity
necessity. Computer
viruses and malware are everywhere. Antivirus programs like Bitdefender,
Panda Free Antivirus, Malwarebytes, and Avast protect your computer
against unauthorized code or software that may threaten your operating
system. Viruses may have easy-to-spot effects — for example, they might
slow your computer or delete critical files — or be less conspicuous.
Antivirus software plays a major role in protecting your system by detecting
real-time threats to ensure your data is safe. Some advanced antivirus
programs provide automatic updates, further protecting your machine from
the new viruses that emerge daily.
Antivirus software doesn’t have to be expensive.
Free and legal antivirus
solutions
can protect your company without denting your budget.
3. Install an antispyware package to protect your business.
Spyware is software that secretly monitors and collects personal or
organizational information. It’s hard to detect and remove and usually
delivers unwanted ads or search results intended to direct you to specific
(often malicious) websites. Some spyware records every keystroke to gain
access to passwords and other financial information.
Antispyware concentrates exclusively on this threat but is often included in
major antivirus packages, including Webroot, McAfee, and Norton.
Antispyware packages provide real-time protection by scanning all incoming
information and blocking threats.
4. Use complex passwords to prevent network intrusions.
Using
strong passwords
is a crucial way to prevent network intrusions. The
more secure your passwords are, the harder it is for hackers to invade your
system.
Secure passwords are usually longer and more complex. Use a password with
at least eight characters and a combination of numbers, uppercase and
lowercase letters, and computer symbols. Hackers have an arsenal of tools to
break short, easy passwords in minutes.
Don’t use recognizable words or combinations representing birthdays or
other information hackers can connect to you. Don’t reuse passwords, either.
If you have too many passwords to remember, consider using a
password
manager
, such as Dashlane, Sticky Password, LastPass, or Password Boss.
5. Keep your OS, apps and browser updated.
Always install operating system updates. Most updates include security fixes
that prevent hackers from accessing and exploiting your data. The same
goes for apps.
Today’s web browsers are increasingly sophisticated, especially regarding
privacy and security. Review your browser security settings in addition to
installing all new updates. For example, you can use your browser to prevent
websites from tracking your movements, which increases your online privacy.
You can also use a private browsing mode or install a browser specifically
focused on security, like DuckDuckGo or Epic Privacy Browser.
6. Ignore spam to stop hackers from infiltrating your system.
Beware of email messages from unknown parties, and never click on links or
open attachments that accompany them. Inbox spam filters have become
good at catching the most conspicuous spam. But more sophisticated
phishing emails that mimic your friends, associates and trusted businesses
(like your bank) have become common, so keep your eyes open for anything
that looks or sounds suspicious.
7. Back up your computer to rebuild if necessary.
If your business is not already backing up its hard drive, begin immediately.
Backing up your information is critical if hackers successfully get through and
trash your system.
Always ensure you can rebuild as quickly as possible after suffering any data
breach or loss. Backup utilities built into macOS (Time Machine) and Windows
(File History) are good places to start. An external backup hard drive can also
provide enough space for these utilities to operate properly.
Additionally,
backing up to Google’s cloud
backup system is seamless and
straightforward.
8. Shut machines down to become a less visible hacker target.
Many businesses, especially those operating a web server, are “all systems
go” all the time. However, if you’re not operating a complex internet-based
company, switch off your machine overnight or during long stretches when
not working. When it’s always on, your computer is a more visible and
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help
available hacker target. Shutting down breaks the connection a hacker may
have established with your network and disrupts any possible mischief.
9. Use virtualization to protect your network.
Not everyone needs to take this route. However, if you visit sketchy
websites, expect to be bombarded with spyware and viruses. While the best
way to avoid browser-derived intrusions is to steer clear of unsafe
sites,
virtualization
allows you to run your browser in a virtual environment,
like Parallels or VMware Fusion, that sidesteps your operating system to keep
it safer.
10. Secure your network to hold intruders at bay.
Routers don’t usually come with the highest security settings enabled. When
you set up your network, log in to the router and choose a password using a
secure, encrypted setup. This prevents intruders from infiltrating your
network and messing with your settings.
11. Use two-factor authentication as an additional defense layer.
Passwords are the first line of defense against computer hackers. However, a
second layer boosts protection. Many sites let you enable two-factor
authentication, which boosts security because it requires you to type in a
numerical code — sent to your phone or email address — in addition to your
password when logging in.
Two-factor authentication also helps protect against
payment fraud
— that is,
when hackers steal a customer’s payment information and try to access their
online banking or credit accounts.
12. Use encryption to hide information from hackers.
Even if cybercriminals gain access to your network and files,
computer
encryption
can prevent them from accessing that information. You can
encrypt your Windows or macOS hard drive with BitLocker (Windows) or
FileVault (Mac), encrypt USB flash drives with sensitive information, and
use
a VPN
to encrypt web traffic.
Additionally, only shop at encrypted websites; you can spot them
immediately by the “https” in the address bar accompanied by a closed-
padlock icon.
How can you secure your phone from hackers?
The rest of our tips will address securing mobile devices from hackers, which
requires unique security measures. Consider the following
mobile device
management
tips.
13. Turn off Bluetooth to protect your mobile device.
When you’re not using Bluetooth, turn it off. Keeping your Bluetooth on but
dormant opens another back door for computer hackers.
14. Don’t use unsecured public Wi-Fi.
Unsecured Wi-Fi is a severe
cybersecurity risk when traveling
for business or
working away from the office. Password-free, widely used Wi-Fi networks
have no security features. As such, they’re prime targets for computer
hackers.
15. Download a security app on your phone or mobile device.
Install a security app on your phone, just as you should install a firewall,
antivirus software, and an antispyware package on your computer. Popular
options include Avast and Bitdefender.
16. Use a better passcode to protect your phone.
Unlock codes like 0000 and 1234 are easy to remember, but they’re also
easy to guess. Instead, opt for a randomly generated six-number passcode.
17. Switch off autocomplete on your mobile device.
Autocomplete is the feature that guesses what you’re typing and completes
the word, phrase or other information for you. While convenient, this tool all
but hands your email address, mailing address, phone number, and other
important information to hackers. Switch it off.
18. Clear your browsing history on your mobile device.
Your mobile web browser has a browsing history just as your computer does.
Clear it often — including cookies and cached files — to give hackers as little
information as possible to work with if they do break into your phone.
Mobile cyberattacks
are on the rise — and they can be just as devastating to
SMBs as computer and network hacks. It’s crucial to include mobile devices
in cybersecurity plans for comprehensive security coverage.
What are computer hackers?
Computer hackers break into internet-connected devices like computers,
tablets and smartphones to steal, change, or delete information. Hackers
usually find their way into devices for nefarious purposes. (However, one
exception is so-called
white hat hackers
, whom companies hire to break into
their devices to find security flaws that must be fixed.)
Hackers often install malware to steal, alter, or delete information in your
devices; you might not even know it’s there. They may access your precious
data before you know about a break-in.
Why do hackers break into devices and networks?
Here are some reasons computer hackers break into devices:
Hackers commit financial crimes.
We’ve all heard the classic story
of somebody checking their credit card statement and finding
transactions they didn’t make. These false transactions are often the
result of computer hackers stealing credit card numbers, checking
account info, or gaining access to other financial data.
Hackers commit vandalism.
Hacking has a unique subculture, so
some hackers may want to vandalize specific websites to make a point
or show off to other hackers. Take this motivation seriously; it’s fairly
common.
Hackers commit hacktivism.
Hacktivism is similar to vandalism.
Some hackers may want to alter or destroy specific websites for
politically motivated reasons.
Hackers commit corporate espionage.
Spying existed long before
the internet era; hacking has only made espionage more accessible to
the everyday person. With much of the world constantly connected to
the internet, one company can hack into other companies’ devices to
steal their information or
intellectual property
and use it to build an
unfair competitive advantage.
Cultivate cyber awareness
As technology continues to change rapidly — particularly with the advent of
generative AI systems — hackers and their attack methods will likely shift.
While many of the above tips will help SMBs protect themselves, keep in
mind that security methods must also adapt.
One of the best ways to stay ahead of possible attacks is to cultivate
a
company culture
of cyber awareness, where
effective employee
training
includes cybersecurity training. The more security-conscious every
member of a business is, the harder it becomes for hackers to target them —
no matter what tech advances arrive.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help