ITACS 5211: Introduction to Ethical Hacking
Wade Mackay
Yahoo claims that around 500 million accounts were hacked in 2014 by what it believed was a state-sponsored actor, a theft that appeared to be the world’s biggest known cyber breach by far
https://www.yahoo.com/news/yahoo-set-confirm-massive-data-breach-recode-112614946–finance.html?ref=gs
Chief Information Officers should start making sure that mobile devices on their network as secure as possible. In this article Larry Dignan, describes that the biggest threat to corporate security stems from employees bringing their own devices on the network. Its not necessarily the devices that aren’t secure its the people that own the devices that are negligent. Many people still do not have PIN codes on their devices and if users were to open spam on their phone many devices automatically download messages in their entirety allowing for malware to install itself. CISOs must implement BYOD policies and enforce mandatory PIN codes and software that allows remote wiping if a phone were to be lost. Since the internet of things is become more prevalent people need to be aware that the more devices they have connecting to the internet the more vulnerable they are. Dignan says that devices should have auto-lock enabled, should be kept within sight at all times and to have auto-discover Bluetooth turned off. This is some of the advice he gives to securing devices in an organization. He also states that malware will get more significant in the years to come as more and more devices become available to hackers on the internet.
Article: https://hbr.org/2016/09/your-biggest-cybersecurity-weakness-is-your-phone
The link to my written analysis: aramark-recon
The link to my presentation slides: recon-presentation
The link to my presentation recording: https://youtu.be/K2B2VxsBJTg
Apparently, the latest development on the Wells Fargo controversy takes interesting new twists.
Last Tuesday (9/20/16), John Stumpf, CEO of Wells Fargo, spoke to the Senate Banking Committee to apologize for the bank’s opening as many as 2 million bogus customer accounts to generate fees for the lender. “I accept full responsibility for all unethical sales practices,” CEO John Stumpf told a congressional panel. Another ripple effect of Wells Fargo’s scandal includes John’s resignation from a national panel that discusses financial matters with the Federal Reserve. These are perfect examples of what an organization can face by simply failing to apply strong policy controls and business processes. Poor risk evaluation to describe potential business impact can also lead to such unfortunate outcomes. See below for articles’ links.
http://www.huffingtonpost.com/entry/wells-fargo-hearing_us_57e02afee4b0071a6e08b170?
I performed my Reconnaissance exercise on Beneficial Bank in Philadelphia, PA. They operate 57 branches across PA and NJ and hold ~$5 billion in assets.
Please see video, executive summary, and PowerPoint presentation below.
Beneficial Reconnaissance Video
Created by Mengxue Ni and Mengqi He
by 1 Comment
Executive Summary:
PowerPoint:
WebEx Presentation: