Even though technical solutions for security problems are widespread, there are no adequate security measures against precarious user behavior. Even if hashing and encrypting are used correctly in masking the passwords, attackers can bypass these strongpoints by going for the weakest link. Most likely this will happen through sharing a password, using an already leaked password, or creating an feasibly guessable password (Olmstead & Smith, 2017). Furthermore, people seem to feel safe in cyberspace, even if they engage in risky behaviors (Vozmediano, San-Juan, Vergara & Lenneis, 2013).
Series: The CSIAC Podcast
The CSIAC Podcast features discussions with Subject Matter Experts on emerging topics in the fields of cybersecurity, modeling and simulation, software engineering and knowledge management. One-on-one and round-table discussions are held to provide insight into highly technical topics and increase user awareness.
VPNFilter Router Attack
In late May 2018, security researchers announced that specific consumer-grade electronic devices had been infected by a type of malware referred to as the VPNFilter. Only a couple of days after this information was disclosed, several agencies of the United States Government issued a warning to users of these compromised devices, strongly advising them of specific…
TrickBot
Cybercriminals have developed many methods to exploit browser applications in order to obtain individual’s credentials. One such method, Emotet is a Trojan malware that targets windows-based computers and was originally designed to steal sensitive, private information from banking customers. Later versions of this software were modified to enable Emotet to be spread via spam emails.…
Data Manipulation
What is data manipulation? A misconception is that hackers always steal data, but this assumption is incorrect. Data manipulation attacks occur when an adversary does not take data, but instead makes subtle, stealthy tweaks to data for some type of gain or effect. These subtle modifications of data could be as crippling to organizations as…
Reducing Your Digital Footprint
Every activity a person carries out on the Internet leaves behind a trail of data commonly known as a digital footprint. The information left behind can have real-world consequences. As such it is essential that users understand how their digital footprint is created, the magnitude of that digital trail, and the steps they can take…
5th Generation (5G) Technology
The 5th generation (5G) of wireless technology will soon be available with the launching of 5G wireless networks along with compatible cellular technologies. 5G is built on the 802.11ac Institute of Electrical and Electronics Engineers (IEEE) wireless networking standard. Speeds are anywhere from 10x to 100x faster than 4G. CSIAC discusses this further along with the impacts of IoT and mobile devices that 5G will or may cause.
Malvertising Explored
In this episode, Nicholas Maida, a Cybersecurity Analyst, describes the importance of understanding malvertising. Malvertising is a malicious form of online advertisement used to inject malware into legitimate online advertising networks and webpages. This podcast reveals the infection process, campaigns, cyber attributions, and preventive measures that everyday users can take to avoid being exploited by malvertising.
Cyber Situational Awareness
This podcast is a breakdown episode where the CSIAC discusses current topics in further depth. CSIAC tries to breakdown the complexity of the topic. In this episode, Cully Patch, a Senior Cybersecurity Analyst, describes the importance of situational awareness in cybersecurity. Cyber leadership needs to understand its environment and accurately predict and respond to…
The State of Cyber Security Education
Cybersecurity education ranging from grade schools to colleges and universities is evolving to meet the overwhelming demand for cybersecurity professionals and for the increasing necessity for acting safely in a modern digital world. However, this evolution, driven by a number of factors, produces a variety of educational paths all labeled with a variety of cyber…
CS Digest Roundtable #5: GitHub DDoS, Marine Breach, iPhone Unlocking, and Battlefield of Things
In this episode of the CSIAC Podcast, SMEs discuss a DDos attack on GitHub, a data breach suffered by the U.S. Marine Forces Reserve, an iPhone hack, and an Army Research Lab contract for “Internet of Battlefield Things”.
