There’s been no shortage of scandals surrounding internet security within recent months. A seemingly endless stream of websites appear to be hacked, with companies such as vTech, Ashley Madison and TalkTalk, to give a few high-profile examples, having their databases compromised.
These security breaches have been detrimental to the image of these companies. TalkTalk was perhaps hit the hardest, with 101,000 customers leaving on the back of the hacking scandal.
But what do hackers have to gain from breaching a website’s security?
Well, that depends on the data stolen. But data, generally, can be sold and used for nefarious activity. In the case of the TalkTalk breach, customers’ addresses and bank details were put up for sale on the dark web. In the wrong hands, this data could be used to make illegitimate purchases or money transfers.
How do hackers gain access to sensitive data?
There are a number of ways in which hackers can penetrate a website’s security. One of the most common attack types is SQL injection (SQLi), which involves manipulating a website’s database to show restricted information.
Another method involves tricking site users into supplying the data themselves through a submission form or email which looks legitimate but is actually a ploy for cyber criminals to capture your details. This is known as phishing and it targets the individual directly, rather than attacking an internal website database.
The UK Daily Telegraph have highlighted how one such ‘honeypot’ was set up as part of a security experiment to expose the most frequently used passwords, and how easy it is for hackers to gain access to accounts by simply knowing these insecure passwords.
In more complex attacks, phishing attacks can be used in conjunction with malicious files to target an entire network of computers, turning an infected machine into a harvester of information.
Read More: http://www.easier.com/133572-is-the-internet-becoming-less-secure.html
These security breaches have been detrimental to the image of these companies. TalkTalk was perhaps hit the hardest, with 101,000 customers leaving on the back of the hacking scandal.
But what do hackers have to gain from breaching a website’s security?
Well, that depends on the data stolen. But data, generally, can be sold and used for nefarious activity. In the case of the TalkTalk breach, customers’ addresses and bank details were put up for sale on the dark web. In the wrong hands, this data could be used to make illegitimate purchases or money transfers.
How do hackers gain access to sensitive data?
There are a number of ways in which hackers can penetrate a website’s security. One of the most common attack types is SQL injection (SQLi), which involves manipulating a website’s database to show restricted information.
Another method involves tricking site users into supplying the data themselves through a submission form or email which looks legitimate but is actually a ploy for cyber criminals to capture your details. This is known as phishing and it targets the individual directly, rather than attacking an internal website database.
The UK Daily Telegraph have highlighted how one such ‘honeypot’ was set up as part of a security experiment to expose the most frequently used passwords, and how easy it is for hackers to gain access to accounts by simply knowing these insecure passwords.
In more complex attacks, phishing attacks can be used in conjunction with malicious files to target an entire network of computers, turning an infected machine into a harvester of information.
Read More: http://www.easier.com/133572-is-the-internet-becoming-less-secure.html
No comments:
Post a Comment