Wednesday, December 14, 2016

Major issues and challenges in computer security, & the student’s awareness levels about the computer security

Online payment is vulnerable there are millions of attacks against financial institutions daily. Most people don’t think about there online shopping and put their card information in without checking to see if the site is secured. Personal information surfing the web and allowing the hackers to monitor your activities and get into your pc which causes virus. 
 Student awareness levels of computer security should be at least average. Students use the internet on a daily basic, for pleasure also for work. The spams in emails, pop ups, etc. Are seen by students frequently. These problems along with those pesky scammers and hackers cause a lot of damage computers. 

Password resets will become more disciplined

The security blogger Brian Krebs wrote in late December about how his PayPal account was hacked by cybercriminals linked to ISIS, through PayPal's "lazy authentication." An attacker called PayPal’s customer service call center and managed to impersonate Krebs and reset his password by providing the last four digits of his Social Security number and the last four numbers of an old credit card account. PayPal had given Krebs a key fob that generates security passcodes for two-factor authentication, but did not require the passcode for a password reset.

PayPal said in a statement that its standard procedures were not followed in this case. "While the funds remained secure, we are sorry that this unacceptable situation arose and we are reviewing the matter in order to prevent it from happening again," the company wrote.
The story illustrates one of the many places where the balance between convenience and security is delicate.

"The way to solve that problem is to take a very harsh stance — for instance, 'if we've issued you a multifactor token and you lose it, we can't help you get access to your account,'" said Dominic Venturo, chief innovation officer at U.S. Bank. "That wouldn't go over well in the banking industry. So as a result, you've got to balance that carefully."

Consumers are starting to be aware of and demand two-factor authentication, and bank regulators are starting to demand it too (especially in New York). Challenge questions (such as your first pet's name) are no longer enough to provide that second factor, because the answers are too easy to find on the Internet. In 2016, we’ll see more banks adopt mobile authentication, sending a passcode to the user’s smartphone via text message or email.

Monday, December 12, 2016

Project Report

My team and I are generating an project about The Mapping Between the Supply and Demand of Cyber Security. The reasoning of our choice is because of the high demand on Cyber Security specialists who has the skills to analyze and detect cyber attacks. We have finished our abstract, and now we are working on the introduction/body of the paper.

Monday, November 28, 2016

Is certification the only criteria to fill in demand cyber security professional position?
-       Certifications are major criteria because it notifies the employer that you are certified in certain areas. Other requirements are work experiences, degrees, and your soft and hard skills.

Is eligibility requirements for security related certification align with demand?

-       Yes, security related certifications are required for most commercial cybersecurity careers. The employers are mostly looking for certifications in Cisco, RSA, Symantec are just to name a few.

Sunday, November 27, 2016

Tips for Cyber Monday

  1. Use a unique password for each website, especially sensitive accounts.
  2. Enable two-step verification for sensitive websites and services.
  3. Check out as a guest whenever possible.
  4. Use a credit care instead of a debit card.
  5. Monitor your bank and credit card statements.
  6. Monitor your credit report, identities are more valuable than credit cards, and have no expiration date. 

Wednesday, October 19, 2016

HIPPA Law vs. Cyber Security

The health insurance portability and accountability act of 1996. The purpose of HIPPA Law is to make it easier for people to keep health insurance protected and confidentiality and security of healthcare information. HIPPA security rule establishes a national set of security standards for the confidentiality, integrity, and availability of electronic protected health information. Cybersecurity is referred to as information security the word “cyber” is just the overall act of the web surfing. It is the body of technologies. Cybersecurity focuses on protecting computer, networks, programs and data (which is information) from attacks, or unauthorized access and or change. So therefore it protects the data and the integrity of computing assets that connects to an organization network. It is designed to defend those assets against all threats. HIPPA Law and Cyber Security tie in together, they both are protecting confidential information.