Pub Date : 2021-03-31DOI: 10.5604/01.3001.0053.8016
A. Wróblewska
The article presents examples of highly advanced cyber espionage operations aimed atthe structures of states and non-state entities with high impact on the economic activity.The attacks took place between 2003 and 2017. The article presents the steps ofOperation Titan Rain and Operation Gh0stNet and also one of the longest espionageoperations revealed to the public, which is Operation The Night Dragon. Anotheroperation is a series of cyber attacks identified by McAfee - Operation Shady RAT. Theyears 2009-2010 belong to Operation Aurora, whose victims were dozens oforganizations, including Google. One of the described attacks is Operation Nitro,targeting entities mostly located in the United States, Bangladesh and Great Britain. Thecourse of Project Raven was based on a Reuters investigation. The spy campaigntargeting various victims around the world, monitored by a team of BlackBerryResearch and Intelligence specialists, was named as CostaRicto.
{"title":"SELECTED ADVANCED CYBER ESPIONAGE OPERATIONS","authors":"A. Wróblewska","doi":"10.5604/01.3001.0053.8016","DOIUrl":"https://doi.org/10.5604/01.3001.0053.8016","url":null,"abstract":"The article presents examples of highly advanced cyber espionage operations aimed atthe structures of states and non-state entities with high impact on the economic activity.The attacks took place between 2003 and 2017. The article presents the steps ofOperation Titan Rain and Operation Gh0stNet and also one of the longest espionageoperations revealed to the public, which is Operation The Night Dragon. Anotheroperation is a series of cyber attacks identified by McAfee - Operation Shady RAT. Theyears 2009-2010 belong to Operation Aurora, whose victims were dozens oforganizations, including Google. One of the described attacks is Operation Nitro,targeting entities mostly located in the United States, Bangladesh and Great Britain. Thecourse of Project Raven was based on a Reuters investigation. The spy campaigntargeting various victims around the world, monitored by a team of BlackBerryResearch and Intelligence specialists, was named as CostaRicto.","PeriodicalId":269616,"journal":{"name":"Cybersecurity & Cybercrime","volume":"409 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2021-03-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"124355583","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2021-03-31DOI: 10.5604/01.3001.0053.8001
Adam Stojałowski
The aim of this article is to present the conclusions from the conducted research on thepreparation of personnel responsible for cybersecurity in counteracting cyber threats. Inaddition, the aim is to analyze the use of tools offered by the cyber polygon in terms ofacquiring practical skills related to detection of vulnerabilities in ICT systems.
{"title":"USAGE OF A COMPUTER LAB ENVIRONMENT TO PREPERECYBERSECURITY PERSONNEL IN DETETECTING ANDCOUNTERACTING CYBER ATTACKS","authors":"Adam Stojałowski","doi":"10.5604/01.3001.0053.8001","DOIUrl":"https://doi.org/10.5604/01.3001.0053.8001","url":null,"abstract":"The aim of this article is to present the conclusions from the conducted research on thepreparation of personnel responsible for cybersecurity in counteracting cyber threats. Inaddition, the aim is to analyze the use of tools offered by the cyber polygon in terms ofacquiring practical skills related to detection of vulnerabilities in ICT systems.","PeriodicalId":269616,"journal":{"name":"Cybersecurity & Cybercrime","volume":"48 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2021-03-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"115908889","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2021-03-31DOI: 10.5604/01.3001.0053.8005
Paweł Ciszek
The article presents the results of the project "Security environment for electronicbanking customers". It presents the methods and research tools used to achieve theobjectives of the project - to identify the solutions used and the accompanying threats,the characteristics of customers and the direction of development in the field of ebanking. The most important results of empirical research - surveys and extended expertinterviews are presented. Recommendations on the architecture of solutions and securityof e-banking environment were presented.
{"title":"STRENGTHENING THE SECURITY OF THE ELECTRONIC BANKINGCUSTOMER IN THE LIGHT OF THE CONDUCTED RESEARCH","authors":"Paweł Ciszek","doi":"10.5604/01.3001.0053.8005","DOIUrl":"https://doi.org/10.5604/01.3001.0053.8005","url":null,"abstract":"The article presents the results of the project \"Security environment for electronicbanking customers\". It presents the methods and research tools used to achieve theobjectives of the project - to identify the solutions used and the accompanying threats,the characteristics of customers and the direction of development in the field of ebanking. The most important results of empirical research - surveys and extended expertinterviews are presented. Recommendations on the architecture of solutions and securityof e-banking environment were presented.","PeriodicalId":269616,"journal":{"name":"Cybersecurity & Cybercrime","volume":"58 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2021-03-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"130268869","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2021-03-31DOI: 10.5604/01.3001.0053.8014
Ewelina Belka
Tor is a virtual network that implements onion routing and aims to provide the user withthe greatest possible anonymity on the Internet. Due to ensuring a high level ofanonymity, the Tor network attracts more and more criminals, mainly pedophiles,thieves and hackers, who use the opportunities associated with it for illegal activities.This paper presents the most popular attacks on the Tor network, aimed at establishingthe identity of its users. This paper will explore ways to de-anonymize by compromisingor having enough relays, and manipulating basic network communication to end up onthe Tor traffic forwarding path. The paper will also present traffic analysis techniquesthat allow an outside observer to infer which nodes are used to transmit traffic in thecircuit. Finally, the use of artificial intelligence to recognize what pages and services theTor user is visiting will be discussed. The work aims to present the vulnerability of theTor network, which should be considered an opportunity in the fight against cybercrime,and to encourage further research on the vulnerabilities of the Tor network, aimed atidentifying cybercriminals.
{"title":"DEANONYMIZATION OF TOR NETWORK USERS","authors":"Ewelina Belka","doi":"10.5604/01.3001.0053.8014","DOIUrl":"https://doi.org/10.5604/01.3001.0053.8014","url":null,"abstract":"Tor is a virtual network that implements onion routing and aims to provide the user withthe greatest possible anonymity on the Internet. Due to ensuring a high level ofanonymity, the Tor network attracts more and more criminals, mainly pedophiles,thieves and hackers, who use the opportunities associated with it for illegal activities.This paper presents the most popular attacks on the Tor network, aimed at establishingthe identity of its users. This paper will explore ways to de-anonymize by compromisingor having enough relays, and manipulating basic network communication to end up onthe Tor traffic forwarding path. The paper will also present traffic analysis techniquesthat allow an outside observer to infer which nodes are used to transmit traffic in thecircuit. Finally, the use of artificial intelligence to recognize what pages and services theTor user is visiting will be discussed. The work aims to present the vulnerability of theTor network, which should be considered an opportunity in the fight against cybercrime,and to encourage further research on the vulnerabilities of the Tor network, aimed atidentifying cybercriminals.","PeriodicalId":269616,"journal":{"name":"Cybersecurity & Cybercrime","volume":"50 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2021-03-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"114313522","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2021-03-31DOI: 10.5604/01.3001.0053.8012
M. Kamiński
The purpose of this article is to characterize cybersecurity threats related to thefunctioning of seaport infrastructure. The escalation of the use of modernteleinformation systems in maritime transport allows for the development of theefficiency of transshipment processes, improvement of the movement of multimodaltransport means and logistic processes and increasing their safety. Due to the wide useof these technologies, the possibility of cyberspace security incidents is growing. Thereis a need to define universal, basic cybersecurity requirements that will constitute thefoundation for creating solutions determining the maintained level of security in seaports. Moreover, the basic solutions and good practices allowing to meet the setrequirements were presented.
{"title":"CYBER SECURITY REQUIREMENTS FOR PORT INFRASTRUCTURE","authors":"M. Kamiński","doi":"10.5604/01.3001.0053.8012","DOIUrl":"https://doi.org/10.5604/01.3001.0053.8012","url":null,"abstract":"The purpose of this article is to characterize cybersecurity threats related to thefunctioning of seaport infrastructure. The escalation of the use of modernteleinformation systems in maritime transport allows for the development of theefficiency of transshipment processes, improvement of the movement of multimodaltransport means and logistic processes and increasing their safety. Due to the wide useof these technologies, the possibility of cyberspace security incidents is growing. Thereis a need to define universal, basic cybersecurity requirements that will constitute thefoundation for creating solutions determining the maintained level of security in seaports. Moreover, the basic solutions and good practices allowing to meet the setrequirements were presented.","PeriodicalId":269616,"journal":{"name":"Cybersecurity & Cybercrime","volume":"48 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2021-03-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"121557609","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
京公网安备 11010802042870号
京ICP备2023020795号-1
扫码关注我们
求助内容:
应助结果提醒方式: