Threats to Data | IGCSE Information and Communication Technology Preparation - Year 11 PDF Download

Introduction

• Hacking: Unauthorized access to computer systems or networks to gain control, steal information, or cause damage.
• Phishing: Deceptive emails or messages, often impersonating trusted sources, aimed at tricking individuals into divulging personal data.
• Pharming: Manipulation of the Domain Name System (DNS) to redirect users to fraudulent websites, typically for the purpose of stealing personal data.
• Smishing: Phishing attacks conducted via SMS or text messages.
• Vishing: Phishing attacks conducted through voice calls or Voice over Internet Protocol (VoIP) systems.
• Viruses and malware: Malicious software crafted to disrupt, damage, or gain unauthorized access to computer systems or networks.
• Card fraud: Unauthorized utilization of credit or debit card information for fraudulent activities.

Protection from Hacking

• Use Strong and Unique Passwords: It is essential to create passwords that are both strong and unique for each online account you have. A strong password typically consists of a combination of letters (both uppercase and lowercase), numbers, and special characters. Avoid using easily guessable information like birthdays or common words. For example, instead of using "password123," opt for a more complex combination like "P@ssw0rd!23".
• Employ Two-Factor Authentication: Two-factor authentication adds an extra layer of security to your accounts by requiring not only a password and username but also something that only the user has on them. This could be a code sent to a mobile device or generated by an authenticator app. By enabling two-factor authentication, even if someone obtains your password, they would still need the second factor to access your account.
• Keep Software Updated: It is crucial to regularly update your software and operating systems. Updates often contain patches for newly discovered security vulnerabilities. By keeping your software up to date, you decrease the chances of falling victim to cyber attacks that exploit known weaknesses.
• Utilize Firewalls and Antivirus Software: Firewalls act as a barrier between your computer/network and potential threats from the internet. They monitor incoming and outgoing traffic and block anything suspicious. Antivirus software, on the other hand, helps detect and remove malware that could compromise your system's security. By using both firewalls and antivirus software, you create a robust defense against cyber threats.
• Regularly Back Up Data: Regularly backing up your data is crucial for ensuring its availability and protecting against potential loss. This practice involves making copies of your important files and storing them in a separate location, either physically or in the cloud. In the event of data loss due to cyber attacks or hardware failures, having backups ensures that you can recover your information without significant disruptions.

Protection from phishing, pharming, smishing, and vishing attacks

• Exercise Caution with Unsolicited Communication: Be cautious when dealing with unsolicited emails, messages, or calls that ask for personal or sensitive information. These could be potential phishing attempts where attackers try to obtain confidential data such as passwords, credit card numbers, or other personal details. For instance, if you receive an unexpected email asking for your bank account information, it's crucial to question its legitimacy before sharing any sensitive data.
• Verify Website Authenticity: It's essential to verify the authenticity of websites before sharing any personal information or engaging in transactions. One way to do this is by checking for secure connections indicated by "HTTPS" in the website URL. Additionally, look for trust indicators like SSL certificates, which ensure that the website encrypts data transmitted between your browser and the site's server. For example, when making online purchases, always ensure that the website address starts with "https://" and displays a padlock icon in the address bar to guarantee a secure connection.
• Avoid Suspicious Links and Downloads: Stay vigilant and avoid clicking on suspicious links or downloading attachments from unknown sources. Malicious links or downloads can contain malware or lead to phishing websites aimed at stealing your personal information. For instance, if you receive an email from an unfamiliar sender with a link or attachment, refrain from interacting with it until you can verify its authenticity.
• Verify Legitimacy: When in doubt about the authenticity of a communication or request, it's best to err on the side of caution. If you are unsure about a message or call, it's advisable to end the communication and reach out to the company or contact directly through trusted channels to confirm the legitimacy of the request. For instance, if you receive a suspicious call claiming to be from your bank requesting sensitive information, hang up and contact your bank using the official phone number listed on their website to verify the caller's identity.

Protection from viruses and malware

• Ensure Your Antivirus Software is Updated: It is crucial to install and regularly update antivirus software on your devices. This software helps protect your system from various malware, viruses, and other online threats. By keeping it up to date, you ensure that your computer is equipped to combat the latest security risks.
• Download Files from Reliable Sources: When downloading files from the internet, it's important to only use trusted sources. Before opening or running any downloaded files, scan them with your antivirus software to check for potential threats. This practice reduces the risk of inadvertently installing malicious software on your device.
• Avoid Suspicious Websites and Pop-up Ads: Be cautious while browsing the internet and avoid visiting suspicious websites or clicking on pop-up ads. These can be sources of malware and phishing attempts that may compromise your security and privacy. It's best to stick to reputable websites and exercise caution when interacting with online advertisements.
• Regularly Update Software for Security: Keeping all your software, including web browsers and plugins, up to date is essential for maintaining a secure digital environment. Software updates often include patches for known vulnerabilities, making it harder for cyber attackers to exploit weaknesses in your system. By staying updated, you enhance your overall cybersecurity posture.

Protection from card fraud

• Shielding PIN Entry: Shielding your PIN entry at ATMs and payment terminals is crucial to prevent shoulder surfing, where individuals may try to steal your PIN.
• Online Payment Security: When using payment cards online, it's important to be cautious and only use secure and trusted websites to avoid falling victim to online scams.
• Monitoring Bank Statements: Regularly checking your bank statements allows you to detect any suspicious transactions promptly and report them to your bank.
• Secure Payment Methods: Utilizing secure payment methods like chip and PIN or contactless payments adds an extra layer of security to your transactions.
• Awareness of Skimming Devices: Being vigilant about potential skimming devices on ATMs and payment terminals helps in identifying and reporting any suspicious activity that could compromise your financial data.