Discussion Week 5
Response Posts ( to two classmates; 100 words each ) and a Summary Post 200 words exactly:
- response post (30%)
- Responds to 2 students. Responses provide additional insights and/or raise questions that require reflection. Shares multiple points of view. References are listed in the required style. Tone is professional.
- Summary post (10%)
- Provides meaningful summary and response. Demonstrates reflection and further analysis. Supports statements with citations and references.
- Grammar and mechanics (10%)
- No spelling or grammatical errors. Clearly and succinctly expressed thoughts.
IMPORTANT!!! In your response post, comment on whether you agree or disagree with your classmates, raise relevant questions, and share additional resources.
Britteny Petersen posted Sep 13, 2024 9:05 AM
In todays digital age, denial of service (DoS) attacks and intrusions pose significant threats to many organizations, including the Virgin Islands Housing Finance Authority (VIHFA). Like most organizations, VIHFA relies heavily on internet-based services, making it vulnerable to DoS attacks, which could disrupt operations, delay critical services, and compromise sensitive data. The most significant vulnerabilities are often due to outdated security protocols, lack of employee awareness regarding phishing schemes, and insufficient monitoring of network traffic for anomalies.
To mitigate these vulnerabilities, VIHFA should implement several key measures. First, upgrading and regularly patching security systems is essential to protect against known vulnerabilities. Deploying intrusion detection and prevention systems (IDPS) can help identify and block potential threats before they become critical. Additionally, employee training on identifying phishing emails and suspicious links can reduce the likelihood of internal breaches caused by human error.
Achieving perfect IT system security is impossible due to the constantly evolving nature of cyber threats and the complexity of modern IT environments. New vulnerabilities are discovered regularly, and even with advanced security tools, zero-day attacks and insider threats can still occur.
Given that perfect protection is unattainable, organizations should adopt a layered security approach, often referred to as defense-in-depth. This includes implementing firewalls, encryption, multi-factor authentication, and regular security audits. Additionally, having a robust incident response plan ensures that the organization can react swiftly to minimize damage in the event of an attack.
References
Austin, R. D., O’Donnell, S., & Nolan, R. L. (2016). The Adventures of an IT Leader, Updated Edition with a New Preface by the Authors. Harvard Business Review Press.
I. Andrea, C. Chrysostomou and G. Hadjichristofi, “Internet of Things: Security vulnerabilities and challenges,” 2015 IEEE Symposium on Computers and Communication (ISCC), Larnaca, Cyprus, 2015, pp. 180-187, doi: 10.1109/ISCC.2015.7405513
Tatianna Khadoo Denial of Service (DoS) Attack or Intrusion
Contains unread posts
Tatianna Khadoo posted Sep 9, 2024 12:26 PM
An organization’s IT infrastructure, network architecture, security procedures, and staff awareness are just a few of the variables that can significantly affect how vulnerable it is to a denial of service (DoS) assault or incursion. Below is a summary of typical vulnerabilities:
Absence of Network Segmentation: Denial-of-service (DoS) assaults are more likely to target companies with inadequately segmented networks. An effective attack on one sector of the network might quickly expand and affect other regions. Insufficient DDoS Protection: A company is more susceptible to frequent attacks intended to overwhelm and interfere with operations if it does not have sophisticated DDoS defenses in place. Hardware and Software Outdatedness: Unpatched vulnerabilities that can be exploited by attackers are more common on systems with hardware or software that is obsolete.
Badly Configured Routers and Firewalls: Network equipment that are not configured correctly can lead to security holes that hackers can take advantage of to obtain unauthorized access or initiate denial-of-service attacks. Absence of Intrusion Detection Systems (IDS): Malicious behavior may get away with it until it does a lot of harm if an IDS isn’t installed correctly. Implement Redundancy and Failover Systems: To preserve service availability in the event of a DoS attack, make sure that essential systems are equipped with redundancy and failover mechanisms. Take Advantage of DDoS Protection Services: Make use of specialist services like Cloudflare or Akamai that are able to identify and neutralize massive DoS attacks. Frequent applications Updates and Patch Management: Apply the most recent patches to all systems and applications to address known vulnerabilities. Segmenting your network appropriately will help to contain potential threats, and firewall configuration will help to stop malicious traffic. Install Intrusion Detection and Prevention Systems (IDPS): IDPS can be used to keep an eye on and identify suspicious activities in network traffic. Training for Employees: To stop social engineering attacks, regularly provide training for staff members on security best practices and awareness. Due to a number of intrinsic difficulties, achieving ideal IT system security is practically impossible:
The threat landscape is always changing because attackers are always coming up with new tactics and ways to take advantage of undiscovered weaknesses, which makes it challenging to foresee and stop all possible attacks. Complexity of IT Systems: There is a greater chance of security flaws in today’s highly integrated IT environments due to their complexity. Human Error: Human error, whether from incorrect configuration, bad judgment, or disregard for protocols, frequently compromises security. Resource constraints: Companies might not have enough money to put in place and keep up extensive security measures on all of their systems. Use Layered Security Techniques: A strong security posture can be achieved by utilizing several levels of defense, such as firewalls, intrusion detection systems, and endpoint protection. Incident Response Plan: Create and maintain an incident response plan on a regular basis to address security breaches promptly and lessen their effects. Continuous Testing and Monitoring: Use continuous testing to identify and address threats instantly. Perform routine penetration tests and security assessments to find and fix vulnerabilities. Risk management is the process of ranking and controlling risks according to their likelihood and possible impact while concentrating resources on safeguarding the most important assets. Backup and Recovery: To guarantee that operations continue even in the event of an attack, keep frequent backups of important data and establish a recovery plan.
Reference
Stallings, W., & Brown, L. (2017). Computer Security: Principles and Practice. Pearson
