National College of Computer Studies

Paknajol, Kathmandu

Report on
Cyber Security
Submitted by: Submitted to:
Sameer Maharjan Dadhi Ram Ghimire
Programme: BIM 1st Semester TU Lecturer
Roll. No: 20
Email:[email protected]
Abstract
In the current digital era, cybersecurity has emerged as a critical issue due to our
increasing dependence on technology. This paper offers a thorough analysis of
cybersecurity, covering major issues, emerging trends, and risk-reduction tactics. It starts
off by outlining the layers, types and importance of cybersecurity along with wide range
of cyberthreats that affect people, companies, and countries; these include everything
from malware assaults to highly skilled social engineering schemes.

The report also explores the significance of implementing proactive defense strategies in
order to successfully fend off these attacks. It talks on the need of safeguarding digital
assets and maintaining data integrity with tools like encryption, firewall, and VPN.
Understanding how cyber dangers are changing can help people and organizations better
prepare for risk mitigation and potential.

i
Table of Contents

1. Introduction......................................................................................................................1

2. Importance of Cyber Security..........................................................................................2

3. Layers of Cyber Security.................................................................................................3

4. Types of Cyber Security...................................................................................................5

5. Cyber Threats...................................................................................................................6

6. Cybersecurity Technologies and Strategies......................................................................8

7. Impacts of Emerging technologies on Cybersecurity......................................................9

8. Future of Cybersecurity..................................................................................................10

9. Conclusion......................................................................................................................12

10. References....................................................................................................................13

ii
1. Introduction
The activity of defending internet-connected systems, including hardware, software, and
data, against cyberthreats is known as cybersecurity. To prevent unwanted access to data
centers and other electronic systems, both individuals’ businesses employ it.

An good cybersecurity plan can provide a strong defense against harmful assaults that
attempt to access, alter, delete, destroy, or extort an organization's or user's systems and
sensitive data. Cybersecurity can also help avoid attacks that aim to disable or impair the
operations of a system or device.

An effective cybersecurity strategy should include many layers of defense across all
potential access points and attack surfaces. This includes a layer that protects data,
software, hardware, and network connections. Furthermore, all personnel in a business
who have access to any of these endpoints should be taught in the correct compliance and
security procedures. Organizations also employ solutions like unified threat management
systems to add another layer of security against threats. These technologies can detect,
isolate, and remediate potential problems while also notifying users if further action is
required.

Cyberattacks can disrupt or immobilize their victims in a variety of ways, therefore

developing a robust cybersecurity plan is a critical component of any firm. Organizations
should also have a disaster recovery plan in place to ensure speedy recovery in the case of
a successful cyberattack.

Fig 1,1 Cyber Security

1
2. Importance of Cyber Security
Cyber security is important because it safeguards individuals and organizations against
cyber-attacks and theft or loss of sensitive and confidential information. Cybersecurity
can monitor systems to protect personal data (PII, PHI, financial details etc.), trade
secrets, intellectual property and any sensitive government information.

The following are some of the importance of it:

i. Protection of Data

In today's digital age, data is one of the most precious assets for both individuals and
corporations. Cybersecurity procedures protect sensitive data from theft, illegal access,
and tampering while maintaining confidentiality, integrity, and availability.

ii. Prevention of Financial Loss

Cyberattacks can cause considerable financial losses for firms by stealing funds, extorting
them, or disrupting their activities. Effective cybersecurity solutions help to reduce these
risks by preventing unwanted access to financial systems and transactions.

iii. Safeguarding of Personal Privacy

Cybersecurity protects people's privacy by preventing illegal access to personal

information saved online, such as social security numbers, credit card information, and
medical histories. This protects people from identity theft, fraud, and other privacy
violations.

iv. Maintenance of Business Continuity

Cyberattacks can interrupt business operations, causing downtime, loss of productivity,

and reputational harm. Organizations can mitigate the impact of cyber catastrophes and
preserve operational continuity by employing cybersecurity measures such as backup and
recovery strategies.

v. Helps to Preserve Reputation

Customer retention and brand loyalty are years-long processes for any firm. Data
breaches have a significant negative impact on a business's reputation. Organizations that
implement a cyber security system can avoid unexpected setbacks.

2
Network and cloud security technologies can help to tighten access and authentication.
This can pave the way for future recommendations, ventures, and expansions.

vi. Enhances Productivity

As technology advances, fraudsters use complex methods to breach data.

Viruses reduce productivity by disrupting networks, workflows, and functionality. The
organization may come to a halt due to the firm's downtime. Firms can increase
productivity by implementing measures such as automatic backups and enhanced
firewalls, making this one of the most promising cybersecurity benefits.

vii. Protection of Intellectual Property

Protection of Intellectual Property: Intellectual property (IP), including patents, trade

secrets, and proprietary information, is an asset for businesses. Cybersecurity helps
prevent theft or unauthorized disclosure of IP by securing networks, systems, and digital
assets from cyber threats.

3. Layers of Cyber Security

Cyber security isn't confined to a single architecture; instead, it's based on hierarchical
layers to guarantee strong security. Following are the seven layers of cyber security:

Fig 1.2 Layers of Cyber Security

i. Human layer

3
This layer is concerned with human behavior toward the system and how they secure the
system's data. To strengthen security at this layer, humans must be fully aware of the
potential harm that threats can cause to the system. They should follow solid security
practices, such as employing strong passwords, identifying phishing attempts, and dealing
with risks if the system is compromised. Concisely, this layer incorporates the user's
management controls.

ii. Perimeter security layer

This is the point at which other devices or networks can retrieve and access all data. This
comprises all of the devices connected to a specific network. It ensures that the system is
protected by both physical and digital security procedures, which are often implemented
with firewalls, intrusion detection systems, and other technologies.

iii. Network Layer

This is the point at which other devices or networks can retrieve and access all data. This
comprises all of the devices connected to a specific network. It ensures that the system is
protected by both physical and digital security procedures, which are often implemented
with firewalls, intrusion detection systems, and other technologies.

iv. Application security layer

This layer contains all of the security mechanisms necessary to protect the network from
unauthorized access. Restricted access is granted to the user so that if an attack occurs, it
does not affect the entire network and is limited to that network domain.

v. Endpoint security layer

This layer prevents attackers from exploiting the endpoints (devices). Installing antivirus
software, for example, can safeguard mobile devices, desktops, and laptop computers.
This layer can be implemented on the network or in the cloud, depending on the needs of
the system. Endpoint encryption is the foundation of security at this layer, ensuring that
devices operate in a secure environment.

vi. Data security layer

This layer implements security techniques to protect data transport and storage. Data loss
can be prevented by using backup security measures. For example, disk encryption and
two-factor authentication protect data transport and storage.

4
vii. Mission-critical assets

This is the most important data to secure (user credentials, personal and essential
information), thus all security measures are maintained and created around it. Users can
secure their data by creating frequent backups and recovery strategies.

4. Types of Cyber Security

Cybersecurity can be categorized into various types, each focusing on different aspects of
protecting digital systems, networks, and data. Here are some common types of
cybersecurity:

i. Network Security

The goal of network security is to protect computer networks from unauthorized access,
misuse, and attacks. Firewalls, intrusion detection and prevention systems (IDS/IPS),
VPNs, and network segmentation are among the techniques used to protect against cyber
threats and assure the confidentiality, integrity, and availability of network resources.

ii. Endpoint Security

Endpoint security tries to defend specific devices, such as desktops, laptops, smartphones,
and tablets, against cybersecurity attacks. It entails installing antivirus software, host-
based intrusion detection/prevention systems (HIDS/HIPS), and device encryption to
prevent malware infections, illegal access, and data breaches on end points.

iii. Application Security

Application security is concerned with the security of software programs and the
prevention of security vulnerabilities that attackers may exploit. Secure coding methods,
vulnerability assessments, penetration testing, and web application firewalls (WAFs) are
used to detect and remediate application security issues.

iv. Cloud Security

Cloud security is concerned with securing data, apps, and infrastructure hosted in cloud
environments against cyber attacks. Encryption, access controls, data loss prevention
(DLP), and security monitoring are among the safeguards used to maintain the security
and compliance of cloud-based resources.

5
v. Data Security

The goal of data security is to secure sensitive information from unauthorized access,
disclosure, alteration, and destruction. It uses encryption, access controls, data masking,
and data loss prevention (DLP) technologies to protect data at rest, in transit, and in use.

vi. Identity and Access Management (IAM)

IAM focuses on managing user identities, permissions, and access privileges to ensure
that only authorized users have access to resources and data. It includes authentication
mechanisms, such as passwords, biometrics, and multi-factor authentication (MFA), as
well as access control policies and user provisioning/de-provisioning processes.

vii. Security Operations (SecOps)

SecOps monitors, detects, and responds to security problems in real time to guard against
cyber threats. It combines security information and event management (SIEM), threat
intelligence, incident response planning, and security orchestration and automation to
improve the organization's security posture and resilience.

viii. Internet of Things (IoT) Security

IoT security aims to protect connected devices, sensors, and systems in the Internet of
Things (IoT) ecosystem from cyber threats. It comprises methods such as device
authentication, encryption, firmware updates, and network segmentation to reduce the
security concerns associated with IoT deployments.

5. Cyber Threats
Cyber threats are harmful behaviors or strategies used to exploit weaknesses in digital
systems, networks, and data. These dangers offer major hazards to individuals,
organizations, and governments, resulting in financial losses, reputational damage, and
disruptions to essential infrastructure. Here are some typical cyber threats:

6
 Fig 1.3 Cybersecurity Threats

i. Malware

Malware, or malicious software, is any software designed to infiltrate, damage, or disrupt

computer systems or networks. Malware kinds include viruses, worms, Trojans,
ransomware, spyware, and adware. Malware can spread through email attachments, rogue
websites, portable media, and software downloads.

ii. Phishing

Phishing is a social engineering attack in which cybercriminals imitate genuine entities

such as banks, government agencies, or trusted businesses in order to fool people into
disclosing personal information such as usernames, passwords, or financial details.
Phishing assaults are frequently carried out using email, SMS messaging, or fraudulent
websites.

iii. Ransomware

Ransomware is a type of software that encrypts files or locks computers, making them
inaccessible to users until a ransom is paid. Ransomware attacks frequently target
individuals, businesses, and organizations, demanding cryptocurrency in exchange for
decryption keys. Ransomware can be spread by phishing emails, malicious attachments,
or corrupted websites.

iv. DNS Attacks

7
A DNS attack is a hostile attempt to disrupt the Domain Name System, which converts
domain names to IP addresses. These assaults, including DNS spoofing, amplification,
flooding, and tunneling, seek to alter or overwhelm DNS infrastructure for malicious
objectives. To prevent these threats, corporations use data integrity protections such as
DNSSEC, as well as firewalls and monitoring systems to detect and counteract malicious
behavior.

v. Man-in-the-Middle (MitM) Attacks

MitM attacks include intercepting and eavesdropping on communications between two

parties, which allows attackers to obtain sensitive information such as login credentials,
financial transactions, or secret data.

vi. SQL Injection

SQL injection is a form of online application attack that uses weaknesses in the database
layer to execute malicious SQL queries. SQL injection can be used by attackers to
overcome authentication systems, extract sensitive data, and change database entries.

6. Cybersecurity Technologies and Strategies

Cybersecurity technology and strategies are critical components in protecting digital
assets from emerging cyber attacks. Firewalls, encryption, intrusion detection systems,
and security awareness training all work together to safeguard systems, networks, and
data from unwanted access, breaches, and malicious activity. Organizations can improve
their cybersecurity posture and prevent risks by combining proactive protection and
reactive reaction systems.

Some of the popular technologies and strategies are discussed below:

i. Firewalls

A firewall is a sort of network security device that monitors and controls incoming and
outgoing network traffic in accordance with predetermined security rules. It acts as a
firewall between the internal and external networks, preventing unauthorized access.
Firewalls can be hardware-based, software-based, or a hybrid of both. They can prevent
hackers from gaining access to the internal network and are considered the first line of
defense against cyber threats.

ii. Encryption:
8
Encrypting text entails converting plain text into ciphertext, which can only be decrypted
using a secret key. Encryption protects sensitive data such as passwords, financial details,
and personal information. It is widely used for email communication, internet commerce,
and data storage. Depending on the level of protection required, encryption can be
conducted at the file, disk, or network level.

iii. Virtual Private Network

A virtual private network (VPN), or secure network, allows users to safely connect to the
internet or an internal network. It encrypts data transferred over the internet, preventing
hackers from intercepting and reading it. VPNs establish a secure connection between
remote employees, branch offices, or business partners and the organization's network.
They can also be used to access geo-restricted information or get around internet
censorship.

iv. Two factor Authentication

When employing the security feature known as two-factor authentication (2FA), users
must produce two distinct forms of identification to gain access to an account. A
password or PIN is typically used as the first authentication factor, followed by a security
token or mobile device as the second authentication factor. 2FA provides an extra degree
of security to prevent password-based attacks.

7. Impacts of Emerging technologies on Cybersecurity

Emerging technologies such as artificial intelligence (AI), machine learning (ML),
blockchain, quantum computing, and the Internet of Things (IoT) are revolutionizing
many industries, but they also present new cybersecurity challenges. AI and machine
learning, for example, enable cybersecurity systems to better detect and respond to attacks
by analyzing large volumes of data and recognizing trends. However, they are prone to
adversarial attacks, raising questions about transparency and bias in automated decision-
making systems. Blockchain technology enables decentralized and tamper-resistant data
storage, which improves data integrity and authentication in cybersecurity applications.
However, it also introduces risks, such as smart contract weaknesses and regulatory
difficulties.

Quantum computing has the potential to undermine standard cryptographic techniques,

necessitating the development of quantum-resistant encryption technologies to protect

9
digital communications. Meanwhile, the Internet of Things (IoT) provides new attack
surfaces and vulnerabilities as linked devices with poor security safeguards proliferate.
Securing IoT devices and networks is critical for preventing unauthorized access and data
breaches. Overall, while emerging technologies provide tremendous opportunity for
innovation, companies must carefully assess their security implications and invest in
proactive steps to successfully manage growing cyber threats. To maintain cybersecurity
in the continuously changing digital ecosystem, stakeholders must work together, conduct
research and development, and implement best practices.

8. Future of Cybersecurity
Cybersecurity has been in existence since 1971, when the first computer virus was
created.

That was the "creeper" virus, an innocuous application that replicates and spreads from
computer to computer. Every day, "threat actors" build new malware in an attempt to
develop new tools for frequently evil goals.

Cybersecurity professionals try to stop them, with each investing to outperform the other
in a cat-and-mouse battle.

Over the decades, the sophistication of all sides in the game has improved.

"Cyberthreats have grown in scale and complexity; the attack surface - the breadth of
exposed targets that an attacker might go after - has become exponentially larger with the
birth of the Internet and now again with the birth of the Internet of Things," said Eric
Knapp, a chief engineer at Honeywell and cybersecurity expert. "Meanwhile, the tools
available to detect and prevent threats has likewise improved." Both sides use machine
learning and artificial intelligence to continue the cat-and-mouse game. Quantum
computing will come next, dramatically increasing the capabilities of both attackers and
defenders. So, while the cat and mouse will continue to improve and speed up, the overall
game will remain relatively unchanged.

Here's what the future of cybersecurity will look like.

 More ransomware threats

For some years, ransomware has been gradually emerging as a major (if not the
primary) cyberthreat. Ransomware has grown in popularity and potency

10
 throughout the years. As a result, it has proven very effective. The groups behind
ransomware campaigns have a clear financial benefit. Ransomware is now being
used in broader assault campaigns, in which adversaries acquire sensitive
information before encrypting a target's data, and they also try to hinder data
recovery procedures by preemptively targeting backup and recovery software.
That trend will continue.

 USBs will be a more potent threat

USB gadgets are everywhere. People are accustomed to seeing, using, and owning
them. USBs are heavily targeted by threat actors looking to enter industrial
targets. In our most recent USB threat report, we discovered that 19% of the
detected threats were designed to exploit USB removable devices in some form.
USB dangers to industrials have more than doubled to 59%. Many people
underestimate the term 'malware'. Most laypeople define a 'virus' as the adware or
spyware that is causing problems on their own computer. However, malware can
be considerably more serious and harmful, and in some circumstances in OT, this
can result in a loss of perspective, which means operators are blind to the process
and cannot effectively monitor conditions. That is extremely harmful in high-risk
industrial environments. Malware can also cause process loss, either by directly
harming or terminating a process. In our most recent USB threat assessment, we
discovered that the amount
of high-impact malware has doubled.

 Secure remote access

The recent move to remote working necessitates the establishment of remote
access security protocols. Companies must reconsider their security strategies for
a highly distributed infrastructure. Meanwhile, attackers are changing their
strategy, looking for ways to target employees who are working independently but
are still connected to the corporate network. In operational technology, decades of
best practices have equipped the cybersecurity sector to keep important jobs
entirely and physically isolated. For example, a vital remote worker may have a
unit-purpose laptop that is only capable of completing one task and will not have

11
 access to email, social media, or any public network connections at all.

 Increased automation
Technology to enable efficient cybersecurity duties. It is merely a result of scale.
Successful cyber will always come down to people - talented human minds acting
as either the cat or the mouse. However, there are far too many things to keep
track of, too many threat varieties (there are easily over a billion viruses now), too
many vectors, and too many targets. This must be simplified. We're already
utilizing machine learning and artificial intelligence to help make sense of all that
data before it's delivered to human security specialists.
Computers have limitations, which attackers are aware of. Hackers frequently use
diversionary tactics to load security analysts' screens with red herrings or false
occurrences. Even the best analysts, armed with the best tools, will inevitably
become overwhelmed. The cloud has greatly aided in this regard, improving
scalability and lowering costs (making it economically viable). Quantum
computing will also play an important role in sifting through complex
circumstances and detecting or predicting even the smallest evidence of a threat.

9. Conclusion
In conclusion, cybersecurity is a vital defense mechanism that includes numerous levels
of protection to defend our digital assets from a wide range of cyber attacks. This report
delves into the various aspects of cybersecurity, from network security to endpoint
security, emphasizing their importance in strengthening our defenses against hostile
activities including malware, phishing, ransomware, and DDoS attacks. By implementing
robust cybersecurity technologies and methods like firewalls, encryption, and security
awareness training, organizations may better secure their systems, networks, and data
from cyber threats.

Furthermore, the importance of developing technologies for cybersecurity cannot be

emphasized. While technologies such as artificial intelligence, machine learning,
blockchain, quantum computing, and the Internet of Things present numerous prospects
for innovation, they also introduce new complications and dangers that must be handled.
As these technologies evolve, it is critical that we engage in research, collaboration, and

12
regulatory frameworks to realize their full potential while also ensuring proper
cybersecurity measures are in place to minimize emerging dangers.

Looking ahead, the future of cybersecurity will be influenced by technological

breakthroughs, a growing threat landscape, and the collaborative efforts of stakeholders
from all sectors. By taking a proactive and adaptive approach to cybersecurity, investing
in cutting-edge technologies, and encouraging collaboration and information sharing, we
can enhance our cyber defenses and create a more resilient digital ecosystem for the
future.

10. References
[1] “Introduction” Retrieved from:

https://www.techtarget.com/searchsecurity/definition/cybersecurity

[2] “Importance of Cybersecurity” Retrieved from:

https://sprinto.com/blog/importance-of-cyber-security/

[3] “Layers of Cybersecurity” Retrieved from:

https://www.educative.io/answers/what-are-the-seven-layers-of-cyber-security

[4] “Types of Cybersecurity” Retrieved from:

https://www.checkpoint.com/cyber-hub/cyber-security/what-is-cybersecurity/

[5] “Cyber Threats” Retrieved from:

https://www.mass.gov/info-details/know-the-types-of-cyber-threats

[6] “Cybersecurity Technologies and Strategies” Retrieved from:

https://www.linkedin.com/pulse/5-essential-cyber-security-technologies-every-business-
shashank-surve

[7] “Impacts of Emerging technologies on Cybersecurity” Retrieved from:

https://www.linkedin.com/pulse/what-impact-emerging-technologies-cyber-security-
optimum-origens

[8] “Future of Cybersecurity” Retrieved from:

13
https://www.honeywell.com/us/en/news/2020/10/the-future-of-cybersecurity

14