Scribd Logo
Upload

Welcome to Scribd!

  • 7 views

    Threats To Data Security

    Uploaded by

    arunimajoy
    The document discusses threats to data security including accidental losses from human error, software/hardware failures, theft and fraud, loss of privacy and confidentiality, loss of data integrity, and loss of availability. Specific threats mentioned are unauthorized data deletion/changes by users, lack of proper access rights and passwords, not using encryption or regular backups, and leaving computers in unsecured areas. New threats include botnets, phishing attacks posing as legitimate entities to steal information, and pharming which uses DNS poisoning to divert traffic to fake websites. Education is needed to prevent social engineering attacks.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Threats To Data Security

    Uploaded by

    arunimajoy
    7 views13 pages
    The document discusses threats to data security including accidental losses from human error, software/hardware failures, theft and fraud, loss of privacy and confidentiality, loss of data integrity, and loss of availability. Specific threats mentioned are unauthorized data deletion/changes by users, lack of proper access rights and passwords, not using encryption or regular backups, and leaving computers in unsecured areas. New threats include botnets, phishing attacks posing as legitimate entities to steal information, and pharming which uses DNS poisoning to divert traffic to fake websites. Education is needed to prevent social engineering attacks.

    Original Description:

    Original Title

    cdbms1

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses threats to data security including accidental losses from human error, software/hardware failures, theft and fraud, loss of privacy and confidentiality, loss of data integrity, and loss of availability. Specific threats mentioned are unauthorized data deletion/changes by users, lack of proper access rights and passwords, not using encryption or regular backups, and leaving computers in unsecured areas. New threats include botnets, phishing attacks posing as legitimate entities to steal information, and pharming which uses DNS poisoning to divert traffic to fake websites. Education is needed to prevent social engineering attacks.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    7 views13 pages

    Threats To Data Security

    Uploaded by

    arunimajoy
    The document discusses threats to data security including accidental losses from human error, software/hardware failures, theft and fraud, loss of privacy and confidentiality, loss of data integrity, and loss of availability. Specific threats mentioned are unauthorized data deletion/changes by users, lack of proper access rights and passwords, not using encryption or regular backups, and leaving computers in unsecured areas. New threats include botnets, phishing attacks posing as legitimate entities to steal information, and pharming which uses DNS poisoning to divert traffic to fake websites. Education is needed to prevent social engineering attacks.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    of 13

    THREATS TO DATA SECURITY

    DATA SECURITY
     Database Security: Protection of the data
    against accidental or intentional loss,
    destruction, or misuse
     Increased difficulty due to Internet access
    and client/server technologies
    WHAT IS A THREAT?
     Threat is defined as a computer program, a
    person, or an event that violates the security
    system.
     It causes loss of data and attacks the data
    privacy
    POSSIBLE LOCATIONS OF DATA SECURITY
    THREATS
    THE THREATS ARE:
     Accidental losses, including human error,
    software and hardware-caused breaches
     Theft and fraud
     Loss of privacy and confidentiality
     Loss of data integrity
     Loss of availability
     Accidental losses attributable to:
     Human error
     Software failure
     Hardware failure
     Theft and fraud
     Improper data access:
     Loss of privacy (personal data)
     Loss of confidentiality (corporate data)
     Loss of data integrity
     Loss of availability (through, e.g.
    sabotage)
    THE FOLLOWING ARE THE MAIN
    THREATS TO DATA SECURITY. 
     Some authorized user of the data may unintentionally delete or change
    sensitive data. There are two solutions to this problem.
     Firstly, the users must be assigned proper rights to minimize such
    events. Only the authorized user with certain rights may be allowed to
    delete or modify data after following a step-by-step process.
     Secondly, periodic backup of data should be taken to recover the
    deleted data.
     A proper password protection should be used to use any resource. A log
    file should also be maintained to keep track of all the activities
    performed on the data.
     Some strong encryption algorithm should be used, so that if any one gets
    access to the data, he could not be able to make any sense out of it.
     Latest antivirus software should be used to scan all data coming into the
    organization.
     Computers and all backing storage devices should be placed in locked
    rooms. Only authorized users can access these resources.
     Authorized users must be asked to change their passwords periodically.
     Data Protection 
    Data protection means making sure that
    private data belonging to a person or
    organization is kept hidden from those who
    are not authorized to use it.
    NEW THREATS TO CORPORATE
    DATA SECURITY
     The main threat in these new generation issues is the
    emergence of Botnets.
     Botnets use the power of distributed computing and
    connectivity provided by the internet.
     It is mainly used for attacks like distributed denial of
    service.
     Every computer that gets infected with the said virus
    and is not healed in time becomes a part of the
    Botnets.

     Storm Worm has been the widest spread Botnet


    PHISHING
     Phishing attacks are another form of
    emergent threats to data security
    management.
     The concept behind phishing emerged on
    AOL network. The main reason why phishing
    is becoming a very critical threat is because
    the attacker poses as the official entity.
     Phishing attacks have been launched against
    banking institutions
     Another threat to corporate data security is
    Pharming.
     This attack works on the principle of DNS
    poisoning which allows the attacker to divert
    the traffic coming to a corporate web site to
    any other web site.
     The main victims of Pharming are again
    banking institutions but they are also known to
    be used for intra organizational social
    engineering to steal crucial company data.
    CONCLUSION
     A number of technologies are in development
    to prevent the damage dealt by these
    corporate data security threats.
     The best solution as of now is to educate the
    users and make sure that they do not fall
    victim to social engineering

    You might also like