The Dark Tech

The Dark Tech

For Beginners

What is Physical Information Security?

By 12 Comments

Physical information security involves the protection of organizational assets from environmental and manmade threats. It is the first layer of protection in any organization and is described as the certain safety measures that deny unauthorized access to organizational assets, and protects personnel and property from damage or harm (e.g. espionage, theft, or terrorist attacks). It involves the use of multiple layers of interdependent systems, which include CCTV surveillance, security guards, protective barriers, locks, access control protocols, and so on.

Physical security helps to:

Prevent any unauthorized access to the system resources:

Physical security protects information from unauthorized use and implements controls so that the authorized user does not inadvertently or intentionally misuse or compromise the integrity and availability of the information.

Prevent tampering/stealing of data from the computer systems:

Insider can use USB or other portable devices to steal information from a computer. Security administrators deploy monitoring tools that trigger an alarm if an insider connects an external device to any of the systems in the network.

Also Read: How to Hack Facebook

Safeguard against espionage, sabotage, damage, or theft:

Companies deploy surveillance systems, CCTVs, alarm systems, security guards, etc. to monitor and safeguard the organization’s assets. Security administrators also use an access card authentication system for server rooms, file areas, communication closets, off-site backups, phone rooms, IT equipment, and other areas to which only a limited number of people have access.

To protect personnel and prevent social engineering attacks:

Physical security personnel and internal employees need periodic physical security awareness training to protect themselves from social engineering attacks.

Physical security is perhaps the most overlooked aspect of security. Categories of physical security threats are:

Natural/Environmental Threats

This type of threat includes the results of naturally occurring events, including:

Floods: Administrators should conduct periodic inspections to check for water seepage, especially during times of heavy precipitation. They should also check the water detector periodically. Administrators should aware of proper shutdown procedures, and must perform exercise drills regularly.

Fire and Smoke: Administrators should periodically check the proper placement and functioning of fire alarms and extinguishers. They should also install smoke detectors throughout the building(s). The designated smoking area should be as far as possible from the computer system.

Also read: How to hack phone

Earthquakes: Even minor earthquakes may cause dust and debris to fall on computer equipment. Plastic sheets should be readily available in the system room. Covering computing assets in an emergency may mitigate the damage. Operators should properly cover magnetic tapes to prevent wear and tear.

Dust: Dust that naturally accumulates on hardware hinders its performance. Dust can seriously hinder a computer’s ability to cool down. Even if the computer case is closed, dust can still get in through drive openings. An effective way to remove dust from the inside of the CPU is to blow it away from the motherboard and other components using compressed air.

Man-made Threats

Man-made threats are one of the most important topics when we talk about Physical Information Security

The biggest threat to the physical components of an organization and its network are from human errors, be they intentional. For example, human errors include hitting the wrong button and unplugging the wrong cord.

Man-made threats include:

Terrorism:

Terrorist activities include the following:

  • Assassinations
  • Random killings
  • Bombings
  • Hijackings

Wars: Wherever they occur, wars destroy the major buildings, industries, and infrastructures and change the economic conditions of countries. Also, pollution can spread due to bombs and expelled gases.

Explosion: To prevent explosions chemicals should be isolated and kept away from computers.

Dumpster diving and theft: “Dumpster diving” involves searching the garbage of the targeted company in order to acquire important information. Attackers search for information such as phone numbers, credit card numbers, and other information commonly thrown away in dustbins. Attackers can also use discarded storage media such as floppy disks, CDs, and tapes to obtain important information.

Lack of proper security may result in equipment theft. A guard on the premises can help prevent this.

Vandalism: Disgruntled or former employees may try to compromise the system. In addition, in a case in which a disaster causes panic, the system might be mishandled.

Also Read: SQL Injection

If you need any extra information about Physical Information Security you can comment below we will help you soon.

– Ajinkya Kadam

Understanding File Systems And Hard Disks

By 10 Comments

Understanding key terms of File systems and Hard Disks though are important for hackers.

Before we want to learn real hacking we need to know some basic things about the storage system. In this article, we will cover the key terms of the file system and hard disks.

You should also read this: How to Hack Android Phone in 2019

Bad sector: Bad sector is an area of a disk that has become unusable

Boot sector: The boot sector is the first sector of a data storage device that contains the code for bootstrapping a system.

Bootstrapping: Bootstrapping is the process by which the small program actually initializes the operating system installed on a computer.

Cluster: Cluster is the smallest logical unit on a hard disk.

Disk drive: Disk drive is the mechanism that reads the data from a disk and writes data onto a disk.

Disk file system: Disk file system is a type of file system used for storing and recovering the files on a storage device, such as hard disk, that is directly or indirectly connected to the computer.

Also Read: Whatsapp Vs Telegram Vs Signal: Which Is MoreSecure in 2020

Disk platter: Disk platter is a round, flat, magnetic metal or ceramic disk in a hard disk that holds the actual data.

Endianness: Endianness the way bytes are ordered in a system.

FAT32: FAT32 is a 32-bit version of the FAT file system using smaller clusters, which results in more efficient storage capacity.

Floppy Disk: Floppy disk is a portable magnetic disk with a shell made of either flexible or rigid plastic material.

IDE(integrated drive electronics): IDE is a type of interface used to connect a disk drive to a computer, in which the controller is built into the drive itself.

Also Read: What Is Information Security Policies And There Types

Lost cluster: Lost cluster is a FAT file system error that results from how the FAT file system allocates space and chain files together.

Master boot record (MBR): MBR is the first sector of a data storage device such as a hard disk.

Network file system: Network file system is a type of file system that provides access to file on other computers on a network.

NTFS (New Technology File System): NTFS is a type of file system used on Windows operating systems that provides features, such as security and file compression, that FAT does not provide.

Parallel ATA: Parallel ATA is a type of interface that offers a connection between a hard drive and a computer, in which communication can only flow in one direction at a time.

Also Check: Cloud Security

Partitioning: Partitioning is the creation of logical drives on a disk.

Registry Checker: is a part of the Windows 98 operating system that is used to backup and restore the registry and fix errors in the registry.

Registry Checker: is a program that can be used to monitor change to the registry as they occur.

Sector: Sector is the basic physical unit of hard drive data storage; a series of predefined sectors from the circle on the hard drive platter called a track.

Serial ATA: Serial ATA a type of interface that offers a point-to-point connection between a hard drive and a computer, in which communication can flow both ways at the same time.

Special purpose file system: Special purpose file system is a file system where the file is organized by during runtime.

USB(Universal Serial Bus): is a type of interface used to connect peripherals such as hard drives, modems, printer, scanner, and digitizers to computers.

ZF5 (Zettabyte File System): ZF5 is a self-managing, general-purpose file system used in Sun’s Solaris 10 operating system.

Also Read: Are you sure you wiped your hard drive properly?

That’s it for today friends to understand the basic key concept of the file system and hard disk. In the next topic, we will get in some Awesome topics so stay tune with me.

NOTE:- If you need any help with any problem you can comment below we will help you soon.

-Ajinkya Kadam

What Is Information Security Policies And There Types

By 2 Comments

Information security policies

Security policies form the foundation of a security infrastructure. An information security policy defines the basic security requirements and rules to be implemented in order to protect and secure the organization’s information systems.

Without them, it possible to protect the company from possible lawsuits, lost revenue, and bad publicity, not to mention the basic security attacks.

A security policy is a high-level document or a set of documents that describe, in detail, the security controls to implement in order to protect the company. It maintains confidentiality, availability, integrity, and asset values.

A security policy also protects the company from threats such as unauthorized access, theft, fraud, vandalism, fire, natural disasters, technical failures, and accidental damage. in addition, it protects against cyber-attack, malicious threats, international criminal activity foreign intelligence activities, and terrorism.

Policies are not technology-specific and accomplish three things:

  • They reduce or eliminate the legal liability of employees and third parties.
  • Which protect confidential and proprietary information from theft, misuse, unauthorized disclosure, or modification.
  • They prevent wastage of the company’s computing resources.

All security policies must be documented properly and they should focus on the security of all departments in an organization. Management should take into consideration the areas in which security is most important and prioritize its action accordingly.

But prioritize its actions accordingly, but it is very important to look into each department for possible security breaches and ways to protect against them.

The following information security systems in an organization might require more attention in term of security:

  • Encryption mechanisms
  • Access control devices
  • Authentication systems
  • Firewalls
  • Antivirus systems
  • Web sites
  • Gateway
  • Routers and switches

There are two types of security policies: technical security and administrative security policies. Technical security policies describe the configuration of the technology for convenient use; administrative security policies address how all persons should behave. All employees must agree to and sign both the policies.

In an organization, high-level management is responsible for the implementation of the organization’s security policies. High-level officers involved in the implementations of the policies include the following:

The following are the goals of security policies:

  • To maintain an outline for the management and administration of the network security
  • Protect an organization’s computing resources
  • To eliminate legal liabilities arising from employees or third parties
  • Prevent wastage of company’s computing resources
  • To prevent unauthorized modifications of data
  • Reduce use caused by illegal use of the system resource
  • Differentiate the user’s access rights
  • Protect confidential, proprietary information from theft, misuse, and unauthorized disclosure

Types of Security Policies

A security policy is a document that contains information about the way the company plans to protect its information assets from known and unknown threats. This policy maintains the confidentiality, availability, and integrity of information. The four major types of security policy are follows:

Promiscuous Policy: This policy does not impose any restrictions on the usage of system resources.

Permissive Policy: Policy begins wide-open and only the known dangerous services/attacks or behaviors are blocked.

Prudent Policy: A prudent policy forbids everything. There is a restriction on all use of company computers, whether it is the system usage or network usage.

That’s it on this topic if you need more information about it you can comment below. We will help you as soon as possible. If you want to learn Hacking you should check this.

– Ajinkya Kadam

Information Assurance and Security Management Programe

By 1 Comment

Assurance (IA)

IA refers to the assurance of the integrity, availability, confidentiality, and authenticity of information and information Systems during usage, processing, storage, and transmission of information.

Security accomplishes information assurance with the help of physical, technical, and administrative controls.
Information Assurance and Information Risk Management (IRM) ensures that only authorized personnel access and use information. This helps in achieving information security and business continuity.

Some of that help in achieving information assurance include:

  • Developing local policy, process, and guidance in such a way that the information systems are maintained at an optimum security level.
  • Designing network and authentication strategy — A secure network ensures the privacy of user records and other information on the network. Implementing an effective user authentication strategy Secures the information systems data.
  • Identifying network vulnerabilities and threats —Vulnerability assessments outline the posture Of the network. performing vulnerability assessments in search Of network vulnerabilities and threats helps to take proper measures to overcome them.
  • Identifying problems and resource requirements.
  • Creating a plan for identified resource requirements.
  • Applying appropriate information assurance controls.
  • Performing the Certification and Accreditation (C&A) process of information systems helps to trace and implement safety measures to nullify them.
  • Providing information assurance training to all personnel in federal and private organizations bring among them an awareness of information technology.

Information Security Mangement Program

Today’s information security management programs encompass more than just firewalls and passwords. They are organization-wide programs that enable the business to operate in a state of reduced risk. Information security should an ongoing process that—when fully position an organization to address the right security issues so that the business can fulfill its objectives.

The effective management Of information security in an organization or enterprise encompasses all organizational and operational processes and participants relevant to information security.

The Information Security Management Framework is a combination of policies, processes, standards, and guidelines to establish the required level Of information security.

As an Ethical Hacker, you should know about most of the things and real-world techniques. And you will get that on our websites.

-Ajinkya Kadam

What Is Network Security Zoning?

By 2 Comments

Today I will talk about Network Security Zoning some of its properties and examples.

A security zone is an area within a network that consists of a group of systems and other components with the same characteristics, all of which serve to manage a secure network environment.

Also Read:- How to Hack Android Phone in 2019

The network security zoning mechanism allows an organization to efficiently manage a secure network environment by selecting the appropriate level of security for different zones of Internet and intranet networks, It also enforces the organization’s Internet security policies, according to the origin of the Web content and helps in effectively monitoring and controlling inbound and outbound traffic.

Properties of security zone:

Network security zone
  • Active security policies that enforce rules on the traffic in transit (traffic that can pass through the firewall) and the action to be taken against it
  • pre-defined screening options and block the malicious traffic
  • Address book (IP addresses and address sets) to recognize members, So that, policies can be applied
  • List of the interface in the zone

Examples of the network security zone include:

You need to understand some basic terms to understand and know about the network security zone.

Internet zone: The Internet zone, also known as the untrusted zone, is the part of the internet outside the boundaries of an organization. It is highly susceptible to security breaches, as there may be little or no security controls that can block an invasion.

Internet DMZ: The Internet DMZ (“demilitarize zone“; also called a controlled zone) is a controlled, Internet-facing zone that typically contains Internet-facing components of network web servers and email gateways through which the employe of the organization directly communicate. It acts as a barrier between the organization’s private network and the public network. The DMZ use firewall each of the two gateway which enables to control of:

  • Traffic entering the host in DMZ from the host
  • The traffic leaving from the hosts in a DMZ to the Internet
  • Traffic entering the host in a DMZ from internal (private) network
  • The traffic leaving from the host in DMZ to internal networks

The security controller can install the software in the DMZ to monitor and control user access.

Production Network zone: The production network zone, also known as a restrict zone, supports functions for which access should be limited. It strictly controls direct access from uncontrolled networks. Typically, a restricted zone employs one or more firewalls to filter inbound and outbound traffic.

Intranet Zone: The Intranet zone is also known as the controlled zone, contains a set of hosts in an organization’s network located behind a single firewall or set of firewalls, and generally has a less restriction. This zone is not heavily restricted in use, but it has an appropriate span of control set up to ensure that network traffic does not compromise the operation of significant business functions.

Management Network Zone or Secured Zone: Access to this zone is limited to authorized users. Access to one area of the zone does not necessarily apply to another area of the zone. It is a secured zone with strict policies.

Also Read:- The Security Triangle (Security Model)

That’s it for today if you need more information about anything you can comment below we will help you.

–Ajinkya Kadam