ct logo wslogan

i-medIT Blog

At i-medIT, we provide a comprehensive range of computer and technology solutions to small business owners and Ambulatory Health Care entities. We specialize in helping companies focus on their business by leveraging IT to serve their goals and objectives rather than being a distraction.
Customers come to us for managed services, healthcare IT, project management, IT consulting, HIPAA Compliance, PCI Compliance, server virtualization, and data backup. These core services help our customers run their own companies and take their business goals to the next level.

5 Security Analogies to Help You Better Understand Hacking

5 Security Analogies to Help You Better Understand Hacking

How often do you read a blog article about network security only to be blown away by all of the overly complicated and confusing jargon of the industry? We know that it’s not necessarily your specialty, but it’s still important that you understand how network security works for your organization. While the complicated details should be left to IT professionals, we can help you better understand the general idea of security by comparing it to a locked door.

Brute Force Attacks
Let’s say that a robber wants to break into your home. He will try to go through a door, but he might not have the keys required to get in. In this case, he will have to use everything at his disposal to get in. He might try to kick the door down or smash a window. In other words, he’s getting into your house by brute force.

Brute force in computing can consist of a hacker trying to use as many passwords as possible in a short period of time to get in. There are programs that can randomly generate countless passwords in seconds, making this method of attack quite devastating when it’s effective.

Social Engineering
Let’s say that you have a new neighbor on your street. They ask you over for dinner and you get to know them. You feel like you are getting along with them quite well--well enough to trust them to water your plants while you’re out of the state on vacation for a few weeks. You give them a key, but when you come home, all of the plants are dead and you’re missing some furniture or technology. Yup, they’ve robbed you--you’re sure of it.

Social engineering takes a calculated approach to hacking and data theft. Hackers will make personalized attempts to steal your passwords and information by taking on the identity of someone you think you can trust with this information, like an “old friend” or “your elderly grandmother.”

Security Exploits
Robbers may try to find weak points in your front door. Maybe the door doesn’t quite lock all the way due to a defect in the manufacturing process. In this case, the robber may research what the weak points of the door are so that they can know the best and most efficient way of getting past your defenses.

Security exploits are weaknesses in software on your computer that allow hackers to sneak into your system and get into all sorts of trouble. These can range from weaknesses in the way that sensitive information is handled, to particular lines of code that create problems for your organization. Ultimately, it only takes a single crack in your defenses--a security exploit--to allow a hacker into your infrastructure.

Trojan Horse
Someone might knock on your door and tell you that something within your household is in need of repair. Maybe they know that you have a leaky faucet that needs to be addressed, or they know that you have some concerns about your furnace. They are then invited into your home and go about their business. You may then notice that you’re missing important items afterward, hinting that the off-the-street good Samaritan was, in reality, a scammer.

Trojans work like this in many ways. Just like the Greek horse of old, a Trojan sneaks onto your system and plants a backdoor, allowing for secret re-entry at a later date. Often times, a Trojan will use a larger data breach to mask its presence, and then continue to steal information in small doses as time goes on.

Two-Factor Authentication
Two locks are better than one in most circumstances. For example, you can have one lock on the doorknob and another on the deadbolt, which keeps the door fastened in place even if the door is forced open near the doorknob. Basically, having two types of locks makes it twice as hard to get to anything of value.

Two-factor authentication can be used to provide this secondary credential to your digital assets, including online accounts or network logins. A secondary code can be sent to an email address or mobile device, which allows your employees to access important information only when both of these are present.

Does your organization need help with network security? i-medIT can help. To learn more, reach out to us at 630-549-6199.

 

Comments

No comments made yet. Be the first to submit a comment

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Best Practices Privacy Google Hackers Microsoft Cloud Backup Business Computing Small Business Hardware Android Business Email Smartphones Innovation Data Backup Cybercrime Software Ransomware Efficiency VoIP Windows How To Malware Data User Tips Productivity Social Engineering Cybersecurity Business Management Managed IT Services Computers Internet Network Security Business Continuity Chrome Mobile Devices App Browser Server Two-factor Authentication Automation Disaster Recovery Money Safety Bring Your Own Device Law Enforcement Mobile Device Management Gadgets Cloud Computing Data Recovery Outsourced IT Upgrade Alert Windows 10 Communication Collaboration Managed IT Services Telephone Systems Smartphone Computer Operating System Spam Data Breach Social Media Data Security Saving Money Vulnerability Network Internet Exlporer Data storage Router Passwords Government Save Money Redundancy BDR Avoiding Downtime Miscellaneous The Internet of Things Data Storage Hosted Solutions Bandwidth IT Management OneNote Physical Security Artificial Intelligence Unsupported Software Private Cloud Google Drive Downtime Wi-Fi Phishing Public Cloud Windows 10 Spam Blocking Recovery Communications Quick Tips Office 365 Word Voice over Internet Protocol Touchpad Conferencing Hiring/Firing Samsung Office Identity Theft Windows Server 2008 IBM History Workers Patch Management Managed IT HBO Emails Password Value Relocation Credit Cards Windows 7 Solid State Drive Data loss DDoS Supercomputer Infrastructure Scam Botnet Multi-Factor Security Fraud Outlook Flash Audit Screen Mirroring Budget User Error Password Manager Travel Trending Gmail Computer Fan HaaS Amazon Humor YouTube Cast IT Services Reputation Comparison Netflix FENG Virtualization Apple Amazon Web Services Sync Holiday Current Events End of Support Customer Specifications IT Support Flexibility iPhone Online Shopping Monitor Remote Monitoring Going Green Uninterrupted Power Supply Knowledge Internet exploMicrosoft Hacking Business Intelligence Black Market Marketing Managed Service Provider Evernote Telephony NarrowBand Update IT Plan Office Tips Network Congestion Advertising Millennials Internet of Things Automobile Settings Wireless Charging Skype Wireless Technology Cleaning IT Consultant Productivity Workforce Frequently Asked Questions Work/Life Balance Sports Root Cause Analysis Health Cortana Start Menu Keyboard Google Docs Software Tips Tech Support Charger Telecommuting Robot Excel Microsoft Office Facebook Google Apps Tools Website Laptop BYOD Apps Shadow IT webinar Hybrid Cloud Computer Care Remote Work Tip of the week Windows 10s Chromecast Meetings Networking Files Employer-Employee Relationship Battery PDF Remote Computing Scalability Education Information Technology Employer Employee Relationship Content Workplace Tips Computing Infrastructure Webinar Thank You Computer Accessories Techology Loyalty Audiobook Instant Messaging Transportation Applications IT solutions Congratulations Bluetooth SaaS Entertainment Business Mangement Benefits Users Wireless IT Support Recycling Firewall Worker Virtual Reality Assessment Wearable Technology eWaste Smart Technology Rootkit Worker Commute Mobility Data Management Television USB Risk Management Search Two Factor Authentication Training CrashOverride Legal Public Computer Troubleshooting Politics WiFi How to Vendor Management Best Practice Big Data Electronic Medical Records Experience Mobile Device Books Save Time VPN Music Video Games Emergency