| Network based Security Attacks | | | | Carefully handle your mail – whenever you get |
| Network is a collection of nodes connected to each | | | | mail regarding - providing any vital information like |
| other. These nodes can be a computer or computing | | | | account no. and password, don’t jump on any |
| devices (like mobile and PDA), peripheral devices (like | | | | conclusion. Mail the responsible authority with a copy of |
| printer, scanner), other networks (connect via bridge or | | | | that mail and get what you have to do. Check that the |
| router) or any service (like directory service, mailing | | | | link given and the URL text written are same. If you |
| service) etc. As the boom in networking has joined | | | | find something fraudulent, immediately contact police or |
| whole world in one network called the Internet, we | | | | responsible certification authority. |
| have also joined with many new problems. These are | | | | When you are about to purchase something through |
| due to malicious activity peoples who – | | | | Internet, make sure that the seller is certified by CA |
| intentionally or unintentionally and for profit or without | | | | (certifying authority) like VeriSign or any other |
| profit trying to harm us. To be protected and to be | | | | renowned CA of your country. Also read the |
| secure it is necessary to understand their way of | | | | certificate and check if the certificate is not invalid and |
| action. This small note will help you understand these | | | | is not invoked by the CA. |
| attacks. | | | | Software that can help you |
| Types of Attack – | | | | Many free software and patches for vulnerability are |
| Network based security attacks can be categorized in | | | | available. The best to have is a good virus scanner like |
| following. This list is based on a server, a user | | | | AVG free virus scanner, running on your computer in |
| accessing data on the server and data that the server | | | | real time. You should also know that virus scanner |
| holds. | | | | work on the basis virus available at the moment, so |
| 1. Attack on availability – making any part or | | | | any old virus scanner will not find newly created |
| whole network unavailable to users. Distributed Denial | | | | viruses. For this you must install the updates time to |
| of Service (DDOS) is one of the best examples of | | | | time. |
| network attack. In this the server is clogged in such a | | | | Other than virus scanners, there are many other |
| way that the server starts denying services to | | | | softwares working against network based security |
| legitimate users. | | | | attacks. I will not give any name of software but I will |
| 2. Attack on confidentiality – unauthorized access | | | | give you types of software that can be used. You |
| of any data. It can be active or passive. | | | | can search them at |
| Eavesdropping is one of the best examples of such | | | | Firewalls – there are many typed of firewalls that |
| attack. In this network line is tapped or gained access. | | | | one can run, but we are concerned here about proxy |
| 3. Attack on Integrity – attack on confidentiality | | | | based firewalls. Such a firewall setup a proxy server |
| and then modifying any part or whole data. One of the | | | | on your computer, this proxy scans all out going |
| famous attack in this category is changing the secure | | | | requests and incoming responses from your computer. |
| HTTP content by using some local proxy. | | | | This way they block any unauthorized access to your |
| 4. Attack on authenticity – creating data and | | | | computer. |
| sending it to users by faking themselves as authentic. | | | | Spyware sweeper – Spywares can be small |
| Now days a very famous spamming technique called | | | | software installed on your computer or cookies based |
| scams is cheating users world wide. In this a mail that | | | | online spy of your system. A Spyware sweeper first |
| is believed to be sent from any authorized bank is | | | | searches all possible locations of Spywares like |
| send. In the mail request of data is asked and a link | | | | cookies, your system registry, start up folder of your |
| that seems authentic in url text is given. The url can be | | | | Windows and system’s root. After finding that, |
| like but the url is something like [ which is incorrect. | | | | they ask you what action they should take, like, |
| Many users are trapped by these scammers. | | | | deleting, shielding or blocking such Spywares. If you |
| 5. Attack on access control – faking as an | | | | browse the Internet using low security software like |
| authentic user and utilizing all resource provided to that | | | | Internet Explorer, this is highly recommended that you |
| user. It is very common sometimes active sometimes | | | | should use a Spyware sweeper. |
| passive, many users try to enter server’s | | | | Network block – even if your computer is secure |
| computer and also many of hackers gained access in | | | | and virus – Spyware free, other computer |
| computers from defense labs to PC’s. A fresh | | | | attached to your computer network can setup them. |
| case of this is use of Robots. These are small | | | | This can be cured by using network blockers. These |
| programs which were entered in the victim computer. | | | | are firewall software that runs in real time and alert |
| These programs are capable of taking commands | | | | you with all LAN based packets coming to your |
| from network and then executing them on the | | | | system. Such software provide you facility to unblock |
| victim’s computer. A teenager group has caught, | | | | few parts of your network also. |
| since they break up in a hospital’s ICU | | | | Conclusion |
| computers and damaged vital schedules of it. | | | | Finally, I can say that never curse others who |
| 6. Attack on privacy – Gaining access of | | | | damaged your computer or information, curse yourself |
| user’s computer and spy on its usage and then | | | | that you were not able to block them. |
| selling this information to many business bodies, so that | | | | “If you actively not attack them, they will actively |
| they can target their customers. It is now becoming | | | | attack you.” |
| one of the most common attacks. Spywares are | | | | Be careful, be updated and know all moves of your |
| installed on the victim’s computer and all surfing | | | | opponents (malicious software) before they even |
| information is uploaded to some desired marketing site. | | | | have taken any step. If you want to be simple user of |
| This is later used as weapon of mass advertisement. | | | | network based system, them you are candidate of |
| How to secure our data | | | | being victim also. A smart move can thwart your |
| There is no one panacea solution for this. Better | | | | opponents and help you stand unaffected in swamp |
| practice of security can help. Some attacks can be | | | | of malicious software. |
| reduced by using software and some by being careful. | | | | |