Cyber Security

of all cyber-attacks are successful

50%

What is cyber self-defense, what are its tactics (understand the specifics here), and what is the cyber self-defense golden rule?

- Don't Click - Seriously... stop clicking - Use strong passwords - Don't reuse passwords - Stop using passwords (turn on two-factor) - Patch yourself - Golden Rule: "Trust, but verify"

What are some tools to help prevent cyber-attacks? Are they sufficient to help prevent the modern cyber-attack? Why or why not? If not, what else can help?

- It's the layered defense model that is the most effective - Education and training

Estimated cost of the average data breach rose is

3.79 million

compromised email addresses, passwords, and credit card incidents

32 Million

f all attack targets fall victim and do so within the first hour

50%

What is cyber security?

The practice of protecting systems, networks, and programs from digital attacks.

What are the main aims of cyber-attacks?

aimed at accessing, changing, or destroying sensitive information; extorting money from users; or interrupting normal business processes.

Processes

organizations must have a framework for how they deal with both attempted and successful cyber-attacks. One well-respected framework can guide you. It explains how you can identify attacks, protect systems, detect and respond to threats, and recover from successful attacks.

2. Why are phishing and social engineer attacks so successful?

they appear to come from a credible source, deceiving the end user into thinking it's a piece of communication they can trust.

According to the article, what has become a major weak point for an organization's information security, and what number backs this up?

- Human error is a major point of weakness - As much as 90% of cyberattacks are caused by human behavior.

What are the parts of a successful cyber security approach and what does it involve?

- In an organization, the people, processes, and technology must all complement one another to create an effective defense from cyber-attacks. - Three main entities must be protected: endpoint devices like computers, smart devices, and routers; networks; and the cloud. -next-generation firewalls, DNS filtering, malware protection, antivirus software, and email security solutions.

What should a solid security awareness training program cover?

- Phishing and social engineering - Access, passwords, and connection - Device security - Physical security

What are the security best-practices the article mentions?

-Technical -Data -Human Safeguards

What is social engineering, and what tactics do hackers use when attempting a social engineering attack?

-gaining your trust -Phishing: Trying to get you to take an action to install malware on your computer

Technology

essential to giving organizations and individuals the computer security tools needed to protect themselves from cyber-attacks.

People

users must understand and comply with basic data security principles like choosing strong passwords, being wary of attachments in email and backing up data.