1.1.3.4 Lab - Visualizing the Black Hats PDF

Preview

Summary

Lab – Visualizing the Black HatsObjectivesResearch and analyze cyber security incidentsBackground / ScenarioIn 2016, it was estimated that businesses lost $400 million dollars annually to cyber criminals. Governments, businesses, and individual users are increasingly the targets of cyberattacks and ...

Description

Lab – Visualizing the Black Hats Objectives Research and analyze cyber security incidents

Background / Scenario In 2016, it was estimated that businesses lost $400 million dollars annually to cyber criminals. Governments, businesses, and individual users are increasingly the targets of cyberattacks and cybersecurity incidents are becoming more common. In this lab, you will create three hypothetical cyber attackers, each with an organization, an attack, and a method for an organization to prevent or mitigate the attack. Note: You can use the web browser in virtual machine installed in a previous lab to research security issues. By using the virtual machine, you may prevent malware from being installed on your computer.

Required Resources 

PC or mobile device with Internet access

Scenario 1: a. Who is the attacker? __An employee at Target that lost his job and tends to seek revenge amongst the company. __________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ b. What organization/group is the attacker associated with? The employee is part of a skilled computer group that will use their skills to destroy confidential data. ____________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ c.

What is the motive of the attacker? _Acquire confidential data from users across the industry. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

d. What method of attack was used? __The attacker uses a phishing method for its targets. __________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Page 1 of 3

www.netacad.com

Lab – Visualizing the Black Hats e. What was the target and vulnerability used against the business? _The target was employees, managers and shareholders working at the company. They have found a lack of security of staff’s emails. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ f.

How could this attack be prevented or mitigated? _Adding a multifactor authentication onto the emails will decrease the chance of emails being hacked. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

Scenario 2: a. Who is the attacker? _An ex student from RMIT. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ b. What organization/group is the attacker associated with? The student is part a money grinding group with skilled networking workers. ____________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ c.

What is the motive of the attacker? _The attacker wants to help students at RMIT with their assignments by hacking into the network and stealing the answers. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

d. What method of attack was used? _The attacker uses the sniffing method at RMIT networks. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ e. What was the target and vulnerability used against the business? _The target was the teacher’s personal network. They had found opened loops within the network. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Page 2 of 3

www.netacad.com

Lab – Visualizing the Black Hats f.

How could this attack be prevented or mitigated? _Close any opened loops that are not associated within the network. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

Scenario 3: a. Who is the attacker? _A young intern who got fired from a networking company. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ b. What organization/group is the attacker associated with? _This person works for himself and doesn’t require a team to support him. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ c.

What is the motive of the attacker? Stealing data and information from the network to sell it for money. ____________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

d. What method of attack was used? The hacker installed a spyware onto the system while using the same account within the network. ____________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ e. What was the target and vulnerability used against the business? The target was users personal information. The hacker used the same login details from the company he used to work for. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________ f.

How could this attack be prevented or mitigated? The company needed to delete any users that are not associated with the business. This results in less users accessing the network. ___________________________________________________________________________________ ____________________________________________________________________________________ ____________________________________________________________________________________

 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Page 3 of 3

www.netacad.com...