• Log In
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • HomePage
  • About
  • Structure
  • Schedule
    • First Half of the Semester
      • Week 1: Overview of Course
      • Week 2: TCP/IP and Network Architecture
      • Week 3: Reconnaissance
      • Week 4: Vulnerability scanning
      • Week 5: System and User enumeration
      • Week 6: Sniffers
      • Week 7: NetCat, Hellcat
    • Second Half of the Semester
      • Week 8: Social Engineering, Encoding, and Encryption
      • Week 9: Malware
      • Week 10: Web application hacking, Intercepting Proxies, and URL Editing
      • Week 11: SQL injection
      • Week 12: Web Services
      • Week 13: Evasion Techniques
      • Week 14: Review of all topics and wrap up discussion
  • Assignments
    • Analysis Reports
    • Quizzes & Tests
  • Webex
  • Harvard Coursepack
  • Gradebook

ITACS 5211: Introduction to Ethical Hacking

Wade Mackay

Ioannis S. Haviaras

Your Biggest Cybersecurity Weakness Is Your Phone

September 24, 2016 by Ioannis S. Haviaras 4 Comments

Chief Information Officers should start making sure that mobile devices on their network as secure as possible. In this article Larry Dignan, describes that the biggest threat to corporate security stems from employees bringing their own devices on the network. Its not necessarily the devices that aren’t secure its the people that own the devices that are negligent. Many people still do not have PIN codes on their devices and if users were to open spam on their phone many devices automatically download messages in their entirety allowing for malware to  install itself. CISOs must implement BYOD policies and enforce mandatory PIN codes and software that allows remote wiping if a phone were to be lost. Since the internet of things is become more prevalent people need to be aware that the more devices they have connecting to the internet the more vulnerable they are. Dignan says that devices should have auto-lock enabled, should be kept within sight at all times and to have auto-discover Bluetooth turned off. This is some of the advice he gives to securing devices in an organization. He also states that malware will get more significant in the years to come as more and more devices become available to hackers on the internet.

Article: https://hbr.org/2016/09/your-biggest-cybersecurity-weakness-is-your-phone

Reconnaissance Assignment – Wayne Wilson & Yanni Haviaras

September 21, 2016 by Ioannis S. Haviaras 1 Comment

Link for SlideShow

Link for Paper

https://youtu.be/srn1JoLsXZE

Backdoor Government Decryption Hurts My Business and Yours

September 17, 2016 by Ioannis S. Haviaras 4 Comments

This article written by the CEO of Carbonite, a business that backs up more than 1.5 million businesses worldwide, would have to give up their encryption technology if the legislation proposed by Senators Burr and Feinstein is passed. The legislation they are proposing makes companies provide a “backdoor” to their encryption if a judge deems it necessary. Ali explains that if cyber criminals were to discover these backdoors that it would be like “…building a home with state-of-the-art alarm systems, but then cutting off the power to them.” Ali also says that it would essentially undermine years of progress by engineers in encryption technologies back tracking their progress and making systems ultimately more vulnerable. The government needs to strongly think about cyber security as a whole and see how something like this could plague both the internet and the US economy.

Article: https://hbr.org/2016/09/backdoor-government-decryption-hurts-my-business-and-yours

A $50 device and an app can easily steal your PC’s log-in

September 8, 2016 by Ioannis S. Haviaras 3 Comments

From iOS and OS X security issues that forced Apple to push out an important update this past week, to this vulnerability in both Windows and OS X, goes to show how hackers keep expanding their arsenal everyday. In this article a simple USB stick can be inserted into a computer (even when locked) and will mount onto the computer obtaining the password within seconds and unmount. The way it works is when the USB stick is plugged in it starts up a DHCP server which is recognized by the computer as an Ethernet adapter. This then monitors traffic and since it is considered a local network it is trusted. The authentication services are then able to put the password on the USB key which can then later be deciphered.

Article Link
https://www.engadget.com/2016/09/08/usb-device-pc-login-theft/

Video Link:
https://www.youtube.com/watch?v=Oplubg5q7ao

Feds Warn States to Batten Down Hatches Following Election System Attacks

September 2, 2016 by Ioannis S. Haviaras

With the election coming up shortly, many hackers have been trying to exploit election databases to get PII about voters. Both Illinois and Arizona had to perform extensive security reviews regarding their vulnerabilities in their systems. An SQL injection attack was discovered to be hitting the voter registration database for 24 hours a day from June 23 to August 12, showing that an attack can go under the radar for so long. Department of Homeland Security Secretary have been pressed about the issue and are still investigating how to prevent this from happening in the future.

Article Link:
http://www.technewsworld.com/story/83866.html

  • « Go to Previous Page
  • Page 1
  • Page 2

Primary Sidebar

Weekly Discussions

  • Uncategorized (133)
  • Week 01: Overview (1)
  • Week 02: TCP/IP and Network Architecture (8)
  • Week 03: Reconnaisance (25)
  • Week 04: Vulnerability Scanning (19)
  • Week 05: System and User Enumeration (15)
  • Week 06: Sniffers (9)
  • Week 07: NetCat and HellCat (11)
  • Week 08: Social Engineering, Encoding and Encryption (12)
  • Week 09: Malware (14)
  • Week 10: Web Application Hacking (12)
  • Week 11: SQL Injection (11)
  • Week 12: Web Services (10)
  • Week 13: Evasion Techniques (7)
  • Week 14: Review of all topics (5)

Copyright © 2025 · Magazine Pro Theme on Genesis Framework · WordPress · Log in