lecture - 1 - introduction to the course

7/30/2019 Lecture - 1 - Introduction to the Course

1/41

I M E D I Q S P L J O I N T C E R T I F I C A T I O NC O U R S E O N C Y B E R S E C U R I T Y

Cyber Crime and You

Intelligent Quotient System Pvt. Ltd.


2/41

DO YOU USE COMPUTERS?

DO YOU HAVE INTERNET

CONNECTION?

DO YOU HAVE EMAIL ACCOUNT?

DO YOU HAVE PRESENCE ON

SOCIAL NETWORKING SITES?

DO YOU USE CELLPHONE/S?

Some questions before we go

ahead!



3/41

If you spend more on coffee than on IT security, then

you will be hacked.

What's more, you deserve to be hacked.

Richard Clarke,

Special Adviser on

cybersecurity to the US President.



4/41

What is Cyber Crime?

An unlawful act wherein the Cyberspace is used eitheras:-

a tool or

a target or

both



5/41

Cyberspace



6/41

Do cyber crimes affect your life?



7/41

Do cyber crime affect his life?



8/41

Air Traffic Control



9/41

Some statistics



10/41

Cases registered under the IT Act(NCRB report)

2011 - 1791

2010 966

2009 420

2008 2882007 - 217



11/41

Websites defaced in 2011Approx. 15,300

Websites defaced in first 5

months of 2012Approx. 11,000



12/41

Wardriving stats

2011



13/41

Case studies



14/41

0010 0600 1200 18000000 2400

Identify

unsanitized code

File case with local

police in a far off city

Directors / senior

management in jail or

absconding or applying

for bail

Upload child

pornography on

compromised server

Leak the news

to the press

Company loses

reputation, clients and

employees

How a company was killed in 24 hrs



15/41

Source code theft

Young System admin meets beautifulwoman!

Social engineering attack

Crores worth of source code stolen Log analysis

Interrogation of sys admin

Testimony of waiter



16/41

Trojan attack

Obscene photos of a lady reporter were published on24hr live webcam sites

Unknown chat friend

Trojan through email Webcam

Email tracing, Email tracking, Real timeinvestigation



17/41

Data Theft

iPods allowed to be carried into sensitive areas ofcompany

Employee copies files onto iPod and then deletedthem

Recovers them later using forensic software



18/41

Social Networking related Crimes



19/41

Russian Wife Scam



20/41

Step 1

Target is selected from social networking sites



21/41

Hello!!!

I liked your profile and would liketo get to know you better. I will tell you more aboutmyself below. First of all my name is Larisa I amsingle and have no any children.

I live in city Novocheboksarsk, it is little city in Russia, mycity, not so big, but it is very beautiful, it is located in theVolga river bank... ohhh, I know you are surprised, in myprofile I wrote your country, I will not write a lot today and ifyou are still interesting I hope to hear from you soon, tell memore about yourself and send me your picture, here is apicture of me so you can see how I look like.

Have a good day, byeLarisa



22/41

Hello my dear!!!

I would like to tell you that your letters bring memuch joy and makeme happier day by day! You are the dearest man tomy heart, I amalways looking forward to your letters.When I received your letter today, I was very

happy.



23/41

Hi honey,

I wait for the day of our meeting more and more day by day and can'tstop thinking about that. Me, as I told you before it would be not soeasy to get a tourist visa for me, but in the travel agency they told me

that they will help,but there is a one problem itwill cost me 300 USD, honey,

I see that I don't have enough money topay.

Dear, I am little upset today, and not sure what to do honey, I amnot going ask you for any money or help.



24/41



25/41



26/41


27/41



28/41

Email Frauds



29/41

Credit Card frauds

NameCard number

Expiry dateCVV number



30/41

How do crooks get your information?

Social Networks

Lost/stolen wallets / Laptops

Theft from mailboxes

Shoulder surfing at ATMs or AirPort

Phishing / SPAM / Vishing

Verbal - *Lose lips sink ships*


Yes Maam Im calling


31/41

31

Yes Ma am, I m callingfrom your local utilitystore.

To confirm someinformation could Ihave your date of

birth, social securitynumber and any creditcard or bank accounts

please?


32/41

Cyber Laws

The Information Technology Act, 2000 (amendment of 2008)

Indian Penal Code

Indian Evidence Act

Bankers Books Evidence Act

RBI Act



33/41

Recent Rules under IT Act

The Information Technology (Electronic Service Delivery) Rules,2011

The Information Technology (Reasonable security practices andprocedures and sensitive personal data or information) Rules, 2011

The Information Technology (Guidelines for Cyber Cafe) Rules,2011

The Information Technology (Intermediaries guidelines) Rules,2011



34/41



35/41

Cybersecurity

Avenuesopen StepsComputer Forensics,Investigations & LawOffensive Security

-Networking Security

-Information Security

-Penetration Testing

-Cyber Forensics

-Cyber Crime Investigation

-Cyber Law

-Ethical Hacker

-IT Auditing

-Forensics consultant

-Fraud Investigator

-Cyber Law consultant

-Information Security

Consultant

-Choose specialized

area

-Learn related fields

Good networking


36/41

"The modern thief can steal more with a computerthan with a gun. Tomorrow's terrorist may beable to do more damage with a keyboard thanwith a bomb- National Research Council,

USA


37/41

@ - [email protected]# - 09623444448
mailto:[email protected]:[email protected]


38/41

Course structure

Two semesters ONE BOOK +CD

Two hours every week

Theory + practicals (wherever necessary)

Periodic assessments


39/41

Semester I

Introduction to cyber security

Physical security

Cryptography

Steganography

Virus attacks & security

Email frauds & security

Browser safety

Security for online banking

Course structure


40/41

Semester II

Mobile security

Ethical hacking

Computer forensics

ISO auditing

Cyber laws

Information system contingency planning (Risk management)

Strategic management of technology

Course structure


41/41

Assessment pattern

Course structure

lecture - 1 - introduction to the course

Documents