Introduction to CYS Essentials summary

The CIA Triad is a foundational model for security systems, encompassing

Confidentiality, Integrity, and Availability:

1. Confidentiality ensures data is protected from unauthorized access to

prevent risks such as identity theft, compromised systems, legal
issues, and reputational damage. Key strategies include controlling
data access, encryption, and multifactor authentication (MFA).

2. Integrity guarantees data is accurate, complete, and consistent during

storage, processing, and transit. Unauthorized alterations can disrupt
critical processes, such as financial records or health data. Tools like
File Integrity Monitoring (FIM) and Relational Database Management
Systems (RDBMSs) help prevent and monitor unauthorized changes.

3. Availability ensures authorized users can reliably access data. Threats

include hardware failures, bandwidth issues, and malicious attacks
like Denial of Service (DoS). Solutions include network monitoring,
redundant hardware, and backup servers to maintain business
continuity.

Regulatory standards like HIPAA (health data protection in the U.S.) and
GDPR (digital privacy in the EU) enforce compliance with data protection
rules. Non-compliance can result in significant fines and penalties,
emphasizing the importance of secure, accurate, and private data
management.
• Information Assets: Data, like patient records, customer information,
and intellectual property, holds value. Data analytics uses raw data to
create information, which leads to actionable insights for business
decisions.

• Intellectual Property (IP): IP includes creations such as designs,

trade secrets, research, and even employee knowledge, which are
protected by copyright, trademark, and patent law. Companies use
Non-Disclosure Agreements (NDAs) to secure sensitive information.

• Digital Products: These are non-tangible assets like software,

eBooks, or web elements that companies need to protect from piracy
and reverse-engineering. Digital Rights Management (DRM) and
the Digital Millennium Copyright Act (DMCA) help safeguard
these products.

• Data-Driven Decisions: Businesses rely on data to respond to events,

using tools like AI and machine learning to analyze data points and
predict trends. Data capture involves collecting data from sources
like IoT sensors, server logs, and customer surveys, while data
correlation identifies connections between raw data points.

• Confidential Information: Companies categorize information by its

sensitivity. There are four main types of confidential data:

1. Personally Identifiable Information (PII): Information that

identifies someone (e.g., government IDs, birthdates).
 2. Company Confidential Information: Data crucial to a
company’s operations (e.g., intellectual property, employee
records, financial data).

3. Customer Confidential Information: Information shared by

customers or partners (e.g., purchase histories, credit card
details).

4. Protected Health Information (PHI): Medical data that can

identify a person (e.g., medical records, prescription lists).

• Proper Handling: Companies must handle confidential information

securely by restricting access, using encryption, firewalls,
permissions, and ensuring data is securely stored. Additionally,
employees should use strong, regularly changed passwords and obtain
explicit consent before processing data.

• PII vs PCI vs SPI: These terms refer to different data types:

o PII: Information that identifies a person.

o PCI: Identifies and describes a customer.

o SPI: Information that can cause harm if disclosed but doesn’t

identify a person.

In summary, companies must protect data assets—whether physical or

digital—using proper security measures, regulatory standards, and clear data
handling practices to ensure confidentiality, data integrity, and availability.
• Security Threats: Weak security policies can lead to physical threats,
tampering, and theft. Only trusted personnel should have access to
information systems. Physical security threats can be prevented by
locking hardware in secure areas, using card readers, surveillance, and
environmental controls like fire suppression systems, backup power,
and HVAC to avoid damage from natural disasters or hardware
failure.

• Data Threats: Data leaks occur accidentally through vulnerabilities,

while data breaches are intentional acts by cybercriminals using
tactics like social engineering or phishing. Data dumps are when
stolen data is sold on the dark web for monetary gain. Dumpster
diving can also be used to steal sensitive information from trash.
Insider threats come from within the organization, where employees
either inadvertently or maliciously compromise data.

• Software Threats: Includes malware, which can be viruses, worms,

trojans, spyware, adware, and ransomware. Malware can steal data,
slow down systems, redirect browsers, and even take control of
computers (botnets). Malware often spreads through phishing, drive-
by downloads, infected USB drives, email links, and sketchy
websites. Ransomware encrypts files and demands payment for
decryption.
 • Difference between Worms and Trojans:

o Worms are self-replicating viruses that exploit system

weaknesses and can be controlled remotely,

o whereas Trojans trick users into downloading seemingly

legitimate software that contains malicious payloads.

• Protecting Against Threats: Keep systems updated, avoid opening

suspicious attachments or links, back up data regularly, use antivirus
software, and implement strong, frequently updated passwords to
defend against these threats.

This video provides essential information on securing hardware, preventing

data breaches, understanding software vulnerabilities, and recognizing
common cyber threats like worms, trojans, malware, ransomware, and more.

1. Snooping Attacks: Hackers intercept data between devices, often on

unsecured networks. Types include:

o Eavesdropping: Intercepting data on wireless, wired, or phone

connections using packet sniffers.

o Man-in-the-Middle (MITM): Physical or logical attacks

where an attacker intercepts communications between a victim
and a server.
 o Replay Attacks: Intercept and retransmit data using access
tokens from trusted entities.

2. Cross-Site Scripting (XSS): Attacks where malicious code is injected

into websites to steal cookies, data, or perform social engineering.

o Reflected XSS: Code added to URLs.

o Persistent XSS: Embedded in unverified user comments or

forums.

3. SQL Injection: Attackers use malicious SQL code to bypass security

and access sensitive database information. It can be prevented by
parameterizing queries, using stored procedures, and escaping user
inputs.

4. Botnets: A collection of malware-infected computers that hackers

control remotely to perform tasks like cryptomining or launching
large-scale attacks.

5. DoS (Denial of Service) and DDoS (Distributed Denial of Service)

Attacks:

o DoS attacks flood a network with traffic, causing crashes.

o DDoS attacks use botnets, making it harder to identify the

attack’s origin and more devastating since they involve many
computers.
 o Common types of DoS attacks include Buffer Overflow,
ICMP Flood, and SYN Flood.

This video highlights various techniques hackers use to compromise

systems, emphasizing the importance of securing networks, preventing
unauthorized access, and protecting sensitive data through robust security
practices.

1. Impersonation Attacks:

o Public Wi-Fi traps: Hackers set up networks that appear

legitimate to intercept login credentials and personal
information.

o Fake websites: Websites that look identical to real ones but are
controlled by attackers to steal login credentials and install
malware.

o Pretending to be someone else: Attackers impersonate

individuals or organizations to steal data or take over systems.

2. Social Engineering:

o Psychological manipulation used to trick individuals into

revealing sensitive information.

o Types of social engineering attacks:

▪ Shoulder Surfing: Physically watching others’ screens

or keyboards to obtain login credentials or personal data.
 ▪ Baiting: Luring victims with physical objects (e.g., USB
sticks) or online offers (e.g., free items) to infect systems.

▪ Pretexting: Pretending to be someone of authority (co-

workers, bank representatives) to gain personal or
security information.

▪ Phishing: Sending emails or texts that create urgency or

fear to trick victims into clicking on fake links or
revealing sensitive data. This includes:

▪ Spear phishing (targeting specific individuals),

▪ Whaling (targeting high-level executives),

▪ Vishing (phone-based scams).

3. Baiting & Pretexting:

o Baiting: Using physical or online lures to trick victims into

infecting their systems with malware.

o Pretexting: Creating a fake situation to obtain sensitive

information through deception.

4. Phishing: A common form of social engineering where attackers send

emails or texts that create urgency to steal credentials, with variations
like spear phishing, whaling, and vishing.
 o The goal of phishing is to trick victims into giving away
sensitive information, which can then be used for fraud or
identity theft.

5. Social Engineering Risks:

o Identity theft: The act of stealing someone’s personal or

financial information with the intent of committing fraud.

o Identity fraud: Using stolen information to open accounts,

apply for loans, or perform other illegal activities.

6. To Minimize Exposure:

o Avoid public Wi-Fi.

o Never leave devices unattended.

o Use privacy screens in public settings.

o Use strong, unique passwords and regularly monitor financial

accounts.

o Be cautious of links and attachments in emails or texts.

This video provides a comprehensive look at how attackers use social

engineering tactics to steal information and manipulate victims into security
breaches. It also emphasizes the importance of staying vigilant and
implementing strong security practices to protect personal and financial
information.
1. Password Cracking Techniques:

o Brute Force Attacks: Trying every possible password until one

works.

o Dictionary Attacks: Using common words from dictionaries or

newspapers to guess passwords.

o Rainbow Table Attacks: Using precomputed hashes to quickly

crack passwords.

2. Hashing:

o Hashing is a process where an algorithm transforms a password

into a fixed-length output (or hash), which serves as a "digital
fingerprint" of the password. Attackers can use the hash to find
other similar passwords.

3. Strong vs. Weak Passwords:

o Weak Passwords: Often reused, easy to guess (e.g., “12345,”

“password”), or using personal information (PII).

o Strong Passwords: Should be at least 12 characters long,

include a mix of upper- and lower-case letters, numbers, and
special characters. Avoid dictionary words and personal
information.

o Passphrases: Using 12 or more random words for added

security.
4. Password Policy Recommendations:

o Minimum Length: At least 12 characters.

o Use of Upper/Lowercase, Numbers, and Special Characters.

o Unique Passwords for each account (including work and

personal).

o Mandatory Password Changes every 6 to 12 months.

o Employee Training: Educating staff on cyber threats and the

importance of strong passwords.

o Security Best Practices: Never reuse passwords, don’t share

passwords, avoid writing them down, and don’t store them in
digital files.

5. Password Reuse & Spraying:

o Using the same password across multiple accounts increases the

risk of breaches, as attackers can exploit this behavior by
"spraying" common passwords.

6. Password Expiration:

o Traditionally, passwords would expire every 90 days, but

shorter intervals led to weak and reused passwords. Longer
intervals are recommended now to minimize risky behaviors.
 7. Best Practices:

o A company or employer will never ask for your password,

ensuring users are less likely to fall for phishing or
impersonation attacks.

This video highlights the importance of strong passwords, effective

password management, and the role of policies in reducing security risks.
Strong passwords are crucial for protecting personal and organizational data
from unauthorized access.

Authentication and SSO:

Single-Factor Authentication (SFA):

• Involves using one credential (e.g., username and password) to log in.

• Vulnerable to keystroke loggers, phishing, and data breaches.

• Easy for attackers to compromise if they have your credentials.

Two-Factor Authentication (2FA):

• Requires two credentials to log in, typically involving a physical

device (e.g., a USB security key).

• Effective defense against phishing and hijacking attacks.

• Newer versions use NFC technology, which simplifies access without

plugging in the device.
Multi-Factor Authentication (MFA):

• Combines multiple factors (e.g., password, phone, biometric data) to

log in, adding an extra layer of protection.

• Reduces the risk of breaches significantly as factors can't be easily

captured by attackers.

• Provides control over which methods to use, such as phone, email,

text, security questions, etc.

• However, MFA is not 100% foolproof and can still be exploited by

sophisticated hackers.

Identification Factors:

• Includes something you know (e.g., password), something you have

(e.g., phone), or something about you (e.g., biometric data like
fingerprints or facial recognition).

Single Sign-On (SSO):

• Allows users to log in once and access multiple accounts or

applications.

• Commonly used by businesses to simplify access and automate

logins across various work platforms.
Key Takeaways:

• Strong security now demands MFA, which is more secure than SFA.

• Identification factors increase security by requiring more than just a

password.

• SSO streamlines access to resources, but organizations should still

implement secure authentication practices.

Security Threats: Access Control, Authorization, and Authentication

Summary:

Access Control:

• Access control is used to prevent unauthorized viewing, modification,

or copying of data. IT staff set rules to restrict what users can do,
which resources they can access, and what actions they’re allowed to
perform.

• Role-Based Access Control (RBAC) assigns different permissions

based on user roles in a company, ensuring users only have the
minimum level of access needed for their role.
Authorization:

• Authorization is the process of giving permission to access a specific

location or to perform an action. It must be established before users
can log into systems. Once authorized, users then need
authentication to verify their identity.

Authentication:

• Authentication is confirming the identity of a user, which involves

two steps: entering the correct login information and proving it’s
actually you.

• Authentication factors include:

o Something you know (e.g., passwords, PINs)

o Something you have (e.g., mobile devices, security keys)

o Something you are (biometrics like fingerprints, facial

recognition)

o Single-Factor Authentication (SFA), Two-Factor

Authentication (2FA), Multi-Factor Authentication (MFA),
and Single Sign-On (SSO) are methods used to implement
authentication.

Digital Accounting:

• Digital accounting is used for troubleshooting, security analysis,

forensics, and hacking.
 • Audit logs record events, tracking captures user activity, cookies
store browsing information, browsing history shows sites visited, and
cookies can be used to ban users based on behavior.

Non-repudiation:

• Non-repudiation ensures that someone cannot deny being at a specific

location or having sent a message. It includes tools like video
recordings, biometrics (fingerprints, iris scans), digital signatures,
and receipts that confirm the authenticity of communication.

Key Takeaways:

• Access control sets boundaries for users based on their roles.

• Authorization grants access to locations or actions once permissions

are set.

• Authentication confirms identity using something you know, have, or

are.

• Digital accounting tools (logs, tracking, cookies) help monitor and

analyze user activity.

• Non-repudiation guarantees actions or communications cannot be

denied.
Hardening Devices Summary:

Hardening Devices:

• Hardening is the process of securing a device to minimize

vulnerabilities. This includes disabling unnecessary device features,
regularly updating firmware, operating systems (OS), and software,
and using tools like firewalls, VPNs, and anti-malware.

• The more security layers you have in place, the safer your data and
devices will be.

Device and System Vulnerabilities:

• Outdated systems, apps, and firmware are major targets for hackers.
Systems missing updates, running outdated software, or using
unsupported operating systems are highly vulnerable.

• Common vulnerabilities include open ports (e.g., Port 443, Port 22,
Port 80) which can be exploited for data theft. Disabling unused ports
and features helps reduce attack surfaces.

Best Practices:

• Auto-Updating: Keep PCs, phones, tablets, and routers updated to

protect against known vulnerabilities.

• Secure Apps and OSes: Install apps and OSes from trusted sources—
app stores, authorized resellers, and official manufacturers.
 • Patches: Patches fix security weaknesses and are released alongside
system updates. They address known threats but are reactive, meaning
threats must already exist before patches are created.

Encryption:

• Encryption is a powerful tool that encodes data into unreadable

ciphertext. This ensures that even if data is intercepted, it cannot be
easily decoded without the correct encryption key.

• It can be used at the network level for data traveling across networks
and locally for hard drives, phones, and thumb drives.

Firewalls and VPNs:

• Firewalls monitor and block harmful traffic based on preset rules,

either in hardware or software forms.

• VPNs encrypt your internet traffic, making it unreadable to hackers

even if they intercept it. They provide secure connections, especially
when using public Wi-Fi.

• Public Wi-Fi networks are unencrypted and a common point of

attack—VPNs help secure this.

Security Loopholes:

• Default usernames and passwords pose serious risks. Hackers often

find them online, use them to access admin-level features, and
infiltrate apps, devices, and networks.
 • Best practice: Change default passwords immediately, use strong
passwords, and disable built-in accounts if possible.

Zero-Day Attacks:

• Zero-day attacks are threats that have never been seen before,
meaning no patches or updates exist to protect against them.

• Protect against these attacks by using tools like VPNs, IDS/IPS, and
practicing general security hygiene.

In summary, device hardening involves multiple strategies to ensure that

devices, data, and networks remain secure from attacks. Regular updates,
encryption, strong passwords, firewalls, and VPNs are crucial components
of a strong security posture.

Security Threats: Validation and Device Usage Summary:

Best Practices for Device Usage:

• Download from Legitimate Sources: Always get your software,

cloud services, drivers, and firmware updates from legitimate sources,
such as:

o Vendor app stores (e.g., Windows Store, Google Play Store)

o Authorized resellers (e.g., Best Buy, Costco)

o OEMs (Original Equipment Manufacturers) like Dell, Samsung

o Software Manufacturers (e.g., Adobe, Microsoft)

 • Reputable Driver and Firmware Sources: OEMs like Dell, HP,
Nikon, and NVIDIA provide device drivers and firmware updates
directly on their websites. Avoid third-party sites offering drivers that
could be malware traps.

• Check URLs for Safety: When downloading from websites, ensure

the URL begins with HTTPS and the certificate is valid. Avoid pirated
software torrents or downloading from untrusted sources.

Uninstall Unused Software:

• Uninstall any unnecessary software or bloatware that comes pre-

loaded with new devices. Outdated or unused software can be a
security vulnerability. Download apps from the official manufacturer’s
website if needed in the future and enable automatic updates to keep
the application secure.

Device Drivers and Security:

• Ensure device driver software is digitally signed by the vendor and

comes from a trusted certificate. Uninstall outdated drivers and be
cautious of sites hosting obsolete drivers.

Anti-Malware and Security Tools:

• Windows Defender: Free antivirus built into Windows that protects

against viruses and malware. It also integrates with the built-in
Windows Firewall.
 • Third-Party Antivirus: Antivirus software like McAfee,
BitDefender, and Norton offer additional security options and tools for
malware removal. These may disable Windows Defender and
Windows Firewall during installation.

• Malware Removal Tools: Reputable antivirus companies offer free

malware removal tools. They provide the latest virus signatures, are
effective, and can automatically remove malware.

• VPNs: A VPN encrypts your internet traffic, protecting your data from
hackers, especially on public Wi-Fi networks.

Device Hardening:

• Avoid Rooting or Jailbreaking: Rooting or jailbreaking makes your

device vulnerable to malware. Stick with official apps and updates.

• Secure Browsing: Don’t visit questionable or HTTP sites. Only

download from encrypted, HTTPS sites.

• Use Firewalls and VPNs: Ensure you use up-to-date firewalls and
VPNs to secure your devices while online.

• Limit Elevated Privileges: Reduce the use of admin, superuser, or

root roles to minimize potential security breaches.
Preventing Malware Infections:

• Safe Browsing Techniques: Avoid filesharing sites, unknown storage

devices, and suspicious links or email attachments. Malware often
spreads through these methods.

• Update Security Software: Regularly update anti-malware, firewall,

and VPN software to protect your devices from new threats.

• Malware Scanning: Use good anti-malware software, and scan

devices regularly to detect and remove any threats.

In Summary:

• Always source your apps, drivers, and firmware from reputable,

verified sources. Avoid pirated software, untrusted sites, and
downloading from insecure HTTP locations.

• Keep software, drivers, and firmware up to date. Use tools like

antivirus, VPNs, and firewalls to secure your devices.

• Protect your data by practicing safe browsing and device usage habits.
Security Threats: Encryption Concepts Summary

Encryption:

• Encryption is the process of scrambling readable text (plain text) so

that it can only be read by someone with the decryption key.

• Cipher: The algorithm used to encrypt data.

• Ciphertext: Encrypted data.

• Decryption Key: The key used to unscramble the data.

Types of Encryptions:

1. Symmetric Encryption:

o Also called single-key or private key encryption.

o Uses the same key for both encrypting and decrypting data.

o Efficient for larger amounts of data but harder to manage the

key securely, especially when widely distributed.

o Examples: 3DES, CAST.

o Risk: If the key is intercepted, hackers can decrypt the data.

2. Asymmetric Encryption:

o Also known as Public Key Cryptography.

o Uses a public key for encryption and a private key for

decryption.

o Slower due to its complexity but ideal for securely sharing

small amounts of data.

o Uses: Authentication, digital certificates, digital signatures, key

exchange.

o Example: RSA cipher.

3. Public Key Infrastructure (PKI):

o A system that validates users using digital certificates issued

by Certificate Authorities (CAs).

o The digital certificate contains a public encryption key. The

data recipient decrypts it using their private key.

o Used in smart card authentication.

4. Cryptographic Hashing:

o A short string of numbers and letters created by passing data

through a hash function.

o Every file or password has a unique cryptographic hash, and

any alteration in the data will change the hash.
 o Use: Authentication, verifying data integrity, and ensuring
secure data transmission.

o Example: If the hash of an email differs after transmission, the

message has been tampered with.

Key Takeaways:

• Data at rest: Data that resides on a storage device, which can be

encrypted at different levels (file, storage device, cloud).

• Data in motion: Data actively moving between devices and is often

encrypted using HTTPS.

• End-to-end encryption: Ensures data remains secure during

transmission and cannot be intercepted and decrypted by hackers.

In summary:

• Encryption scrambles plain text into ciphertext using keys.

• Symmetric encryption uses one key, while asymmetric encryption

uses a pair of keys (public and private).

• PKI validates users using digital certificates, and cryptographic

hashing authenticates data and verifies its integrity.

• Encryption helps keep sensitive data secure whether it's stored (data at
rest) or transmitted (data in motion).
Managing Email and Spam: Summary

Email Management:

• Proper email management helps keep your Inbox clean, prioritize

emails, save time, and increase productivity.

• Best Practices:

o Use folders and subfolders to organize emails by category.

o Create rules or filters to automatically move emails into specific

folders.

o Unsubscribe from email lists, but beware that unsubscribing can

sometimes validate your email, leading to more spam.

o Turn off email notifications to minimize distractions.

• Use desktop mail apps like Microsoft Outlook to block spam, filter
email from certain senders, and create rules to automatically delete
unwanted messages.

Spam:

• Spam is unwanted, unsolicited digital communication sent in bulk to

multiple recipients.

• Common Types:

o Marketing spam, promotions, and advertisements.

 o Cybercriminals use spam to distribute malware, steal personal
information, or join computers into botnets.

• Prevention:

o Don’t share your email address widely.

o Use disposable email accounts.

o Configure your phone and PC to block spam.

o Use email apps that filter out spam at the server level.

Phishing Attacks:

• Phishing is a scam where hackers use email or messaging to steal

personal information like usernames, passwords, bank details, and
more.

• Common Phishing Techniques:

o Emails that create a sense of urgency, fear, or greed (e.g.,

alerting you to suspicious account activity, offering fake
refunds, or requiring immediate action).

o The email may appear to come from trusted sources like your
bank, government, or large companies.

• Signs of Phishing:

o Typos, grammatical errors, fake logos, and misspelled URLs.

 o Avoid clicking links or opening attachments.

o Best Practice:

▪ Manually enter URLs to visit legitimate websites.

▪ Report phishing emails to the company to help protect

others.

In summary:

• Spam is unwanted, unsolicited emails that can come from unknown

sources.

• Phishing attacks exploit fear, urgency, and fake links to trick you into
giving up sensitive information, often leading to malware infections or
identity theft.

• Always be cautious, inspect email content carefully, and use tools to

filter out spam and phishing attempts.
Summary: Safe Browsing Practices: Application Ecosystem Security

This video highlights critical steps to improve app and software security for
both individuals and businesses. Key points include:

1. Identifying Security Concerns:

o Mobile apps and software can be compromised through weak

passwords, malware, and poor design.

o Hackers aim to access personal and business data like texts,

contacts, and financial information.

2. Strengthening Security:

o Use strong passwords with a mix of letters, numbers, symbols,

and capitalization.

o Enable multi-factor authentication (MFA) for added login

protection.

o Only install apps from approved app stores.

o Avoid "rooting" or "jailbreaking" devices, as it increases

vulnerability.

o Browse only on HTTPS websites and keep software updated.

3. Device and PC Protection:

o Use antivirus/anti-malware tools, VPNs, and secure

configurations.
 o Lock PCs when not in use and store them in secure locations.

4. Business Security Best Practices:

o Protect against ransomware, zero-day attacks, and other cyber

threats using multiple security layers.

o Limit access to data on a need-to-know basis and educate

employees on security protocols.

o Ensure secure file sharing through enterprise solutions (e.g.,

Box, OneDrive, Google Drive).

o Avoid consumer-grade freeware for corporate data sharing.

5. Avoiding Common Risks:

o Prevent phishing attacks and insider threats by maintaining

strict access controls and fostering employee awareness.

o Plan ahead to mitigate risks associated with unauthorized or

insecure data-sharing practices.

Takeaway:

Strong passwords, MFA, antivirus software, and regular updates are

essential to secure devices and data. Businesses must enforce robust security
measures to safeguard sensitive information, ensuring both operational
integrity and consumer trust.
1. Public Browsing Risks:

o Unencrypted Networks: Public Wi-Fi in places like airports,

coffee shops, and hotels is often unencrypted, allowing hackers
to intercept your data or install malware.

o Session Hijacking: Hackers can take over your active sessions

(e.g., online banking) and steal sensitive information.

o Shoulder Surfing: Attackers may observe you in public spaces

to capture login credentials or PINs.

o Data Tracking: Providers of free Wi-Fi often track and sell

your activity to third parties.

2. Instant Messaging Vulnerabilities:

o Most instant messaging (IM) apps lack robust security.

Messages are often sent in plain text, making them easy to
intercept.

o Files and links shared via IM are common entry points for
malware, spyware, and phishing attacks.

o Use encrypted IM apps and enable automatic updates to

improve security.

3. Social Networking Risks:

o Cybercriminals exploit social media to gather personal

information.
 o Avoid clicking suspicious links, sharing sensitive data, or
engaging with unknown users.

4. HTTPS and Secure Browsing:

o HTTP websites are not secure; data sent and received is in plain
text.

o HTTPS encrypts your connection, protecting data in transit.

Check for the “https://” prefix or a lock icon in the browser to
ensure the site is using HTTPS.

o Be cautious: HTTPS secures the connection but does not

guarantee the site itself is trustworthy.

5. Best Practices for Public Browsing:

o Avoid public Wi-Fi whenever possible; use mobile hotspots or

cellular connections instead.

o If using public Wi-Fi, secure your device with firewalls,

antivirus software, strong passwords, and VPNs.

o Keep all software, browsers, and operating systems updated.

o Never send sensitive data over public Wi-Fi or IM.

Takeaway:

Public Wi-Fi and unsecured browsing expose you to significant risks,

including data theft, session hijacking, and malware attacks. Use secure
connections, strong passwords, encryption tools, and cautious online
behavior to protect your data and devices.

Simple Summary: Safe Browsing Practices: Plug-ins, Extensions, and

Toolbars

This video explains how to secure your browser and manage its features to
protect against online threats.

1. Browser Basics:

o Popular browsers include Chrome, Edge, Firefox, and Safari.

o Browsers are often pre-installed but not always configured for

security.

2. Managing Add-ons:

o Toolbars: Old browser add-ons that caused problems like slow

performance and malware. Thankfully, they’re mostly gone.

o Plug-ins: Site-specific add-ons no longer supported by modern

browsers.

o Extensions: Small tools like ad-blockers and PDF readers that

add features to your browser. Be cautious—they can be targeted
by hackers.

o
3. Cookies:

o Cookies store data to personalize your browsing experience

(e.g., logins, shopping carts).

o Types of cookies:

▪ Session Cookies: Temporary; deleted when you close the

browser.

▪ Persistent Cookies: Last longer; some have expiration

dates.

▪ Tracking Cookies: Follow your activity to send targeted

ads.

▪ Zombie Cookies: Hard-to-delete cookies that can

reappear.

4. Secure Websites:

o SSL Certificates: Verify a website’s identity and enable

encryption (look for the lock icon in the address bar).

o HTTPS: Encrypts your connection to websites but doesn’t

guarantee they are safe from hackers.
 5. Keeping Browsers Secure:

o Always update your browser to protect against the latest threats.

o Manage cookies and extensions carefully to avoid security

risks.

Key Takeaway:

Your browser is your gateway to the internet and a key target for hackers.
Keeping it updated, managing cookies and extensions, and checking for
SSL/HTTPS connections will help protect your data and ensure a safer
online experience.

Key Features of Browsers:

1. Autofill:

o Saves and auto-enters passwords, payment info, and addresses

to save time.

o Use guest accounts or syncing to manage autofill on shared

devices.

2. Cache:

o Stores downloaded webpages for faster loading.

o Over time, a large cache can slow down your browser, so clear
it regularly.
 3. Private Browsing:

o Does not save history, cookies, or site data after the session
ends.

o Activity isn’t hidden from employers, schools, or internet

providers.

o Downloads and bookmarks are still saved.

Identifying Safe Websites:

• Look for HTTPS, a lock icon, and valid trust seals.

• Use tools like Whois Lookup to check site ownership.

• Avoid sites with poor design, typos, or suspicious URLs.

• Check reviews on forums like Reddit to avoid scam sites.

Risks from Adware and Redirects:

• Adware: Displays unwanted ads, collects data, and can link to

harmful sites.

o Symptoms: Sluggish performance, new toolbars/extensions, or

changed homepages.

• Redirects: Send you to dangerous sites or ads, often caused by

malware.
Protecting Yourself:

• Keep browsers, operating systems, and security tools updated.

• Run regular scans to detect malware or adware.

• Pay attention to search engine or browser warnings about unsafe sites.

Key Takeaways:

• Autofill and caches improve convenience but require careful

management.

• Private browsing helps protect privacy but isn’t foolproof.

• Safe sites have HTTPS, trust seals, and positive reviews.

• Adware and redirects slow systems and expose you to threats, so use
updated security tools to stay protected.
Simple Summary: Virtual Private Networks (VPNs)

A VPN creates an encrypted tunnel for secure internet communication,

protecting data from hackers.

Types of VPN Connections:

1. Site-to-Site: Connects two locations securely over the internet.

2. Host-to-Site: Allows a remote device to securely connect to a

network.

3. Host-to-Host: Enables secure communication between two devices.

VPN Types:

• Hardware VPNs: Use routers, firewalls, or VPN concentrators for

robust security.

• Software VPNs: Built into operating systems (e.g., Windows,

MacOS) or browsers like Opera.
IPSec Suite:

• Core protocols:

o Authentication Header (AH): Authenticates sender and IP

addresses.

o Encapsulating Security Payload (ESP): Encrypts data and

ensures authenticity.

• Modes:

o Tunnel Mode: Encrypts the entire data packet (used in site-to-

site).

o Transport Mode: Encrypts only the data content (used in host-

to-site).

Key Takeaway:

VPNs secure online activity, protect against attacks, and can be implemented
via hardware or software. IPSec ensures encryption, data integrity, and
protection from replay attacks.