visit
Cybersecurity basics: common types of cybersecurity attacks by@turbulence
256 reads
Cybersecurity basics: common types of cybersecurity attacks
by Amy Pravin ShahSeptember 16th, 2024
Too Long; Didn't Read
This is an article on the basic cybersecurity topic of common types of cybersecurity attacks.
-
Social Engineering
Social engineering is the art of manipulating people so they give up confidential information. The types of information these criminals are seeking can vary, but when individuals are targeted, the criminals are usually trying to trick you into giving them your passwords or bank information, or access your computer to secretly install malicious software—that will give them access to your passwords and bank information as well as giving them control over your computer.
More advanced reading://phoenixnap.com/blog/social-engineering-examples
-
Phishing Phishing attacks are the process of attempting to acquire sensitive information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in an electronic communication. Typically carried out through email or instant messaging, it often directs users to enter personal information at a fake website which matches the look and feel of the legitimate site.
- Spear Phishing Spear phishing is a more sophisticated form of phishing, where the attack is tailored and directed towards specific individuals or companies. These emails may appear to come from a trusted source and often incorporate personal information to bypass initial skepticism.
-
Whaling A whaling attack is a form of phishing targeted at senior executives and other high-profile targets within businesses. Here, the content will be crafted to target an upper manager and the message might look like a legal subpoena, customer complaint, or executive issue.
-
Vishing Vishing is the telephone equivalent of phishing. It is described as using voice communication to scam the user into surrendering private information that will be used for identity theft. The scammer usually pretends to be a legitimate business, and fools the victim into thinking they will profit.
-
Tailgating and Piggybacking These methods involve an unauthorized person physically following an authorized person into a restricted area. In tailgating, the unauthorized person follows without the authorized person’s knowledge; in piggybacking, the authorized person actually helps the unauthorized one gain access.
-
Impersonation: Fake Identities This involves an attacker pretending to be someone else to gain unauthorized access to systems, data, or networks. Impersonation can be as simple as stealing a user ID and password or as complex as creating a fabricated identity to infiltrate an organization.
-
Dumpster Diving In this attack, hackers sift through trash bins to find discarded but sensitive information that can be used in further attacks—this could include paperwork containing personal details, passwords, corporate information, etc.
-
Shoulder Surfing This occurs when someone watches you enter sensitive information on a keypad or computer screen. It is a direct observation technique, such as looking over someone's shoulder, to get information like passwords and PIN numbers.
- Hoaxes and Watering Hole Attacks Hoaxes are messages that trick the recipient into believing something false and often prompt them to part with confidential information or infect their systems with malware. Meanwhile, watering hole attacks target entire groups by infecting websites they are known to use with malware.
References
- Human generated text revision by ChatGPT
- Various videos from - links provided above
- Cybersecurity articles as linked above
L O A D I N G
. . . comments & more!
. . . comments & more!
About Author
TOPICS
RELATED STORIES
10 Ideas to Create a Daily Writing Habit #writing
Feb 09, 2023
