Please enable JavaScript.
Coggle requires JavaScript to display documents.
network threats (brute force ((A system can try to prevent a brute force…
network threats
brute force
-
The more characters in a password, the more difficult it is to guess.
-
Having strict rules when creating a password (least 8 characters, one number, one symbol and one capital)
-
-
poor network policy
-
-
Without precautions and guidance/training, there is a risk users may introduce threats to a network without meaning to.
-
-
social engineering
-
-
-
-
Phoning a user at work and convincing them to break policy to gain information they want (e.g. patient records etc).
SQL injection
-
deliberate addition of malicious SQL code into a web form in order to view/modify/delete database records or gain unauthorised access.
can protect by:
-
Add an escape character. This forces the input to be treated as characters only rather than commands
Write the database code in such a way that raw input does not allow direct access to the queries being run to access the database information.
-
phishing
-
Attacker will pretend to be someone in authority (bank manager, Windows technician etc). This fake authority is used to convince users to given up sensitive information such as passwords, bank account details etc.