presenter suman thapaliya phd scholar
play

Presenter: Suman Thapaliya, PhD Scholar Department of Information - PowerPoint PPT Presentation

Aug 21, 2022 •1.23k likes •1.62k views

Presenter: Suman Thapaliya, PhD Scholar Department of Information Technology Supervisor 1: Prof, Dr. Sateesh Kumar Ohja Supervisor 2: Prof, Dr. Subarna Shakya NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal NPCERT to Host First

  1. Presenter: Suman Thapaliya, PhD Scholar Department of Information Technology Supervisor 1: Prof, Dr. Sateesh Kumar Ohja Supervisor 2: Prof, Dr. Subarna Shakya NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  2. NPCERT to Host First Cyber Security Meetup in Nepal NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  3. WE SHOW YOUR PROBLEM YOU SOLVE IT  NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  4. AGENDAS  INTRODUCTION  PURPOSE  MOTIVATION  STATEMENT OF PROBLEM  PROCESS  FRAMEWORK  RESEARCH METHODOLOGIES  CASE STUDY  RESULT & DISCUSSION  CONCLUSION NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  5. Peter Drucker “There are: Companies, That make thing happen …… Companies, That watch things happen …. Companies, That wonder what happened ….. “ NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  6. INTRODUCTION Confidentiality: Is a set of rules that limits access to information. Integrity: Is the assurance that the information is trustworthy and accurate. Availability: Is a guarantee of reliable access to the information by authorized people. NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  7. INTRODUCTION  When most people hear the word “audit,” their first reflex is to cringe. Usually, it means having some outside team come in to review everything and tell them what they’re doing wrong in technical term.  An IT audit is the: Examination and evaluation of an organization’s 1. information technology infrastructure. Policies and operations. 2. Information technology audits determine: 1. Whether IT controls protect corporate assets Ensure data integrity and are aligned with the business’s 2. overall goals. IT auditors examine not only physical security controls, but also overall business and financial controls that involve information technology systems. NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  8. WHY TO AUDIT  Company knows only after attack  Are client/ customer safe to invest ? - Invest Data - Invest Information - Invest Money - Invest Career and so on.  Are promoter and shareholder safe ?  What will be the loss value ?  When will you recover ?  What sort of Disaster you may face ? NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  9. CYBER ATTACK  Story Time  NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  10. PAST ATTACK NATURE NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  11. PURPOSE  The purposes of an IT audit are to evaluate the system's internal control design and effectiveness.  This includes, but is not limited to, efficiency and security protocols, development processes, and IT governance or oversight. NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  12. STATEMENT OF PROBLEM  Many organizations are spending large amounts of money on IT because they recognize the tremendous benefits that IT can bring to their operations and services. However, they need to ensure that their IT systems are reliable, secure and not vulnerable to computer attacks.  Introduction of New Threads and Attack are you updated ?  Assurance of IT system adequately protected  Less knowledge on IT  Not providing importance to data  Continuous loss of data and hacked NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  13. PROBLEM STATEMENT – Practical Gap Less Investment , High Risk NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  14. SOLUTION  To give assurance that IT systems are adequately protected.  Provide reliable information to user and properly managed to achieve their intended benefits.  Reduce Risk of data tampering  Reduce Data loss or leakage  Reduce Service disruption  Provide Proper management of IT System NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  15. MOTIVATION Different kinds of cyber attacks that are mostly transpired in Nepal. List of those cyber attacks are as mentioned:  Attacks on social media  Piracy  Identity Threat  Unauthorized access  Website hacking NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  16. CASE STUDY 1 1.Pune Citibank MphasiS Call Center Fraud some ex employees of BPO arm of MPhasis Ltd MsourcE, defrauded US Customers of Citi Bank to the tune of RS 1.5 crores has raised concerns of many kinds including the role of "Data Protection". The crime was obviously committed using "Unauthorized Access" to the "Electronic Account Space" of the customers. It is therefore firmly within the domain of "Cyber Crimes". NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  17. CASE STUDY 2 WannaCry  The most infamous ransomware attack of 2017 was a strain of ransomware called WannaCry that spread all over the globe.  The ransomware targeted numerous public utilities and large corporations, most notably National Health Service hospitals and facilities in the United Kingdom, hobbling emergency rooms, delaying vital medical procedures, and creating chaos for many British patients.  Though the origin of WannaCry is not yet known, the US government has blamed the Kim Jong-un-led North Korean government for initiating the attack NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  18. CASE STUDY 3 3. The Bank NSP Case The Bank NSP case is the one where a management trainee of the bank was engaged to be married. The couple exchanged many emails using the company computers. After some time the two broke up and the girl created fraudulent email ids such as "indianbarassociations" and sent emails to the boy's foreign clients. She used the banks computer to do this. The boy's company lost a large number of clients and took the bank to court. The bank was held liable for the emails sent using the bank's system. NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  19. CASE 4: Attacks in 2017  Petya/NotPetya: Affected Across the globe in 2017, spread in computers, pharmaceutical company merck, damish shipping company, Russian oil giant rosneft, power companies in Ukrainian, airports, public transit and country’s central bank.  Zomato hack: zomato, largest restaurant aggregators in India was hacked and some of it’s user accounts were being sold on the dark web.  The HBO Hack: Revealed script for Episode 4 of season 7 of Game of Thrones, which was scheduled to be released the following week, was put up online for the whole world to see.  Equifax: In July, a group of hacker penetrated Equifax, one of the largest credit bureaus in the worlds and stole personal data of 145 million people. NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  20. Top Attack 1. Adobe was going through hell: 2.9 million accounts was stolen. 2. Panic to sony: Personal data of 77 million users which was leaked to public. 3. The south Korean Nightmare: Data from 100 million credit cards had been stolen. 4. Target Targeted: Data from 110 million customers was hijacked, including 40 million customers and personal data. 5. Adult Friend Finder exposed: Dating site was attacked, 4 million accounts was made public. 6. Marriott Hotels: Privacy of 500 million customers compromised, including banking data. 7. Theft of more than 1 billion passwords: Russian hackers stole 1.2 billion logins and passwords on 420000 websites. NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  21. Nepal Bank Got Hacked  NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  22. IS Risk Measure/ Level INFORMATION SECURITY RISK RATING SCALE EXTREME (13 – 15) Extreme risk of security controls being compromised with the possibility of catastrophic financial losses occurring as a result. (HUGE LOSS) HIGH (10 – 12) High risk of security controls being compromised with the potential for significant financial losses occurring as a result. (MID LEVEL LOSS) ELEVATED (7 – 9) Elevated risk of security controls being compromised with the potential for material financial losses occurring as a result. (MINOR LOSS) MODERATE (4 – 6) Moderate risk of security controls being compromised with the possibility of limited financial losses occurring as a result. (COMPROMISE LOSS) LOW (1 – 3) Low risk of security controls being compromised with measurable negative impacts as Loss. (NEGATIVE IMPACT) NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  23. IT Audit Process  The below provided are the basic steps in performing the Information Technology Audit Process. NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

  24. Audit Program Management Process Flow NPCERT to Host First Cyber Security Meetup in 4/6/2019 Nepal

Recommend

Presentation by JHS UTC Scholars - 2004 # Meeting Place Date Scholar-Presenter Title

Presentation by JHS UTC Scholars - 2004 # Meeting Place Date Scholar-Presenter Title

Presentation by JHS UTC Scholars - 2004 # Meeting Place Date Scholar-Presenter Title Identifying Barriers and Facilitators of Physical Activity for Leadership Alliance Black Women Enrolled in SisterTalk, a Weight Management Research

269 views • 6 slides
Introducing Campo Verde high school AP Hall of FAME AP Scholar AP Scholar with Honor AP

Introducing Campo Verde high school AP Hall of FAME AP Scholar AP Scholar with Honor AP

Introducing Campo Verde high school AP Hall of FAME AP Scholar AP Scholar with Honor AP Scholar with Distinction National AP Scholar Class 2016 AP Scholar Ali Ahmed Joy Gregory Alex Moore Mallorie Alton Devin Haltom

1.72k views • 21 slides
Presentation by JHS UTC Scholars - 2003 Scholar- Presenter Title # Meeting Place Date

Presentation by JHS UTC Scholars - 2003 Scholar- Presenter Title # Meeting Place Date

Presentation by JHS UTC Scholars - 2003 Scholar- Presenter Title # Meeting Place Date Minority Trainee Research San Diego, California Mar-03 Angel Byrd Prokaryotic Expression of Pancreatic and Duodenum 1 Forum in San Diego, Homeobox

367 views • 9 slides
Presentation by JHS UTC Scholars - 2002 Scholar- Presenter Title # Meeting Place Date

Presentation by JHS UTC Scholars - 2002 Scholar- Presenter Title # Meeting Place Date

Presentation by JHS UTC Scholars - 2002 Scholar- Presenter Title # Meeting Place Date Tougaloo College Summer Tougaloo, MS Fall 2002 Montoya Comparison of Highly/Lowly Invasive Lung Cancer Cell Research Presentation Series Taylor

294 views • 3 slides
Scholar Time Intervention and Enrichment Block What is Scholar Time? During Scholar Time,

Scholar Time Intervention and Enrichment Block What is Scholar Time? During Scholar Time,

Scholar Time Intervention and Enrichment Block What is Scholar Time? During Scholar Time, students are working directly with a teacher on a specific skill that they need support in. These groups are reevaluated every 4-6 weeks, and students

351 views • 8 slides
Projects for Strengthening Rhino Conservation Action Suman Bhattarai Chitwan, Nepal

Projects for Strengthening Rhino Conservation Action Suman Bhattarai Chitwan, Nepal

Projects for Strengthening Rhino Conservation Action Suman Bhattarai Chitwan, Nepal Email:sumancha004@yahoo.com January 14, 2012 / Kathmandu, Nepal Photo Credit: Suman, Tulsi Magar presentation, RSGF, WWF, SUC NTNC IRF, savingrhinos.org, save

826 views • 16 slides
UAM scholar integration : UAM scholar integration : The case of France The case

UAM scholar integration : UAM scholar integration : The case of France The case

Cross-borders Perspectives on Refugees education on line : Monday 21 september, 16:15 / 19 : 45 UAM scholar integration : UAM scholar integration : The case of France The case of France Patricia Mothes Sandra Cadiou Phd

647 views • 6 slides
Machine Learning Machine Learning Fast & Slow Fast & Slow Suman Deb Roy Suman Deb Roy

Machine Learning Machine Learning Fast & Slow Fast & Slow Suman Deb Roy Suman Deb Roy

Machine Learning Machine Learning Fast & Slow Fast & Slow Suman Deb Roy Suman Deb Roy Lead Data Scientist @ betaworks bot www.rundexter.com /messaging www.poncho.is www.digg.com www.digg.com/messaging www.rundexter.com

781 views • 42 slides
Target Field Direction Measurement Murchhana Roy, Suman Kandu, Wolfgang Korsch University of

Target Field Direction Measurement Murchhana Roy, Suman Kandu, Wolfgang Korsch University of

Background Description of Horizontal Compass Compass Testing Application in Hall C Summary Backup Slides Target Field Direction Measurement Murchhana Roy, Suman Kandu, Wolfgang Korsch University of Kentucky 07.24.2019 Murchhana Roy, Suman

271 views • 23 slides
Ensuring Quality in Serodiagnostic Studies Suman Laal, Ph.D. Departments of Pathology and

Ensuring Quality in Serodiagnostic Studies Suman Laal, Ph.D. Departments of Pathology and

12/27/2010 Ensuring Quality in Serodiagnostic Studies Suman Laal, Ph.D. Departments of Pathology and Microbiology Departments of Pathology and Microbiology Suman.Laal@nyumc.org OBTAINING SPECIMENS Subject Blood Bl d Clot Serum Ali

266 views • 4 slides
TTES-SIB-DAY SCHOLAR CLASS ACTION MAY 2015 WHO IS A DAY SCHOLAR? Defined in our litigation

TTES-SIB-DAY SCHOLAR CLASS ACTION MAY 2015 WHO IS A DAY SCHOLAR? Defined in our litigation

TTES-SIB-DAY SCHOLAR CLASS ACTION MAY 2015 WHO IS A DAY SCHOLAR? Defined in our litigation as an individual who attended a federally owned and operated Indian Residential School (IRS) but did not live at the school Day

512 views • 16 slides
Impact of D polarization measurement on solutions to R D - R D anomalies Suman Kumbhakar

Impact of D polarization measurement on solutions to R D - R D anomalies Suman Kumbhakar

Impact of D polarization measurement on solutions to R D - R D anomalies Suman Kumbhakar IIT Bombay, India May 29, 2019 Based on arXiv:1903.10486 A K Alok, D Kumar, S Kumbhakar, S UmaSankar Updated Analysis of: JHEP 1809 (2018) 152

486 views • 20 slides
Committee Updates Presenter Presenter Presenter Presenter Su Bibik Stephanie Beck Dawn

Committee Updates Presenter Presenter Presenter Presenter Su Bibik Stephanie Beck Dawn

Alliance for Massage Therapy Education 2014 Annual Business Meeting Committee Updates Presenter Presenter Presenter Presenter Su Bibik Stephanie Beck Dawn Saunders Nancy Dail Governance Marketing Membership Conference Planning

576 views • 39 slides
NetServ: Dynamically Deploying In-network Services Suman Srinivasan , Jae Woo Lee , Eric

NetServ: Dynamically Deploying In-network Services Suman Srinivasan , Jae Woo Lee , Eric

NetServ: Dynamically Deploying In-network Services Suman Srinivasan , Jae Woo Lee , Eric Liu , Mike Kester , Henning Schulzrinne , Volker Hilt , Srini Seetharaman , Ashiq Khan Columbia University, Bell Labs,

309 views • 17 slides
SUMAN KUMAR TEXMACO RAIL & ENGINEERING LTD. 1 2 3 4 Some of the ILO s Fundamental

SUMAN KUMAR TEXMACO RAIL & ENGINEERING LTD. 1 2 3 4 Some of the ILO s Fundamental

SUMAN KUMAR TEXMACO RAIL & ENGINEERING LTD. 1 2 3 4 Some of the ILO s Fundamental Convention - There are more than 83 important convention & more than 85 recommendation come out from ILO : These cover subjects considered to be

886 views • 15 slides
Jae Woo Lee, Roberto Francescangeli, Wonsang Song, Jan Janak, Suman Srinivasan, Michael S. Kester,

Jae Woo Lee, Roberto Francescangeli, Wonsang Song, Jan Janak, Suman Srinivasan, Michael S. Kester,

Jae Woo Lee, Roberto Francescangeli, Wonsang Song, Jan Janak, Suman Srinivasan, Michael S. Kester, Salman Baset, Eric Liu and Henning Schulzrinne Internet Real-Time Lab, Columbia University In collaboration with Volker Hilt at Bell

214 views • 18 slides
Masking Boundary Value Coverage: Effectiveness and Efficiency P. Vijay Suman Tukaram Muske

Masking Boundary Value Coverage: Effectiveness and Efficiency P. Vijay Suman Tukaram Muske

Masking Boundary Value Coverage: Effectiveness and Efficiency P. Vijay Suman Tukaram Muske Prasad Bokil Ulka Shrotri R. Venkatesh September 3rd, 2010 Context/Ad (Work at TRDDC, Pune) Our Group: Verification and Validation of Embedded

653 views • 19 slides
Recommendations for Randomness in the Operating System Henry Corrigan-Gibbs and Suman Jana

Recommendations for Randomness in the Operating System Henry Corrigan-Gibbs and Suman Jana

Recommendations for Randomness in the Operating System Henry Corrigan-Gibbs and Suman Jana Stanford University HotOS XV 20 May 2015 1 2 GE Ethernet card Apple iOS Android Sandbox OpenSSL Firefox DNS resolver In the past

249 views • 23 slides
Epoch of Reionization 21-cm Signal Suman Majumdar Institute for Astronomy Stockholm University

Epoch of Reionization 21-cm Signal Suman Majumdar Institute for Astronomy Stockholm University

The Effect of Peculiar Velocities on the Epoch of Reionization 21-cm Signal Suman Majumdar Institute for Astronomy Stockholm University source:- arXiv:1209.4762 Collaborators o Somnath Bharadwaj (IIT Kharagpur, India) o Tirthankar Roy

536 views • 42 slides
The whiteness of knowledge in psychology and psychiatry Suman Fernando Racial inequality and

The whiteness of knowledge in psychology and psychiatry Suman Fernando Racial inequality and

Talk given at ROTA Conference on 28 November 2016 The whiteness of knowledge in psychology and psychiatry Suman Fernando Racial inequality and cultural issues in mental health services are well known. Slide 1: Race and Culture issues There has

329 views • 6 slides
Scheduling Shared Continuous Resources On Many-Cores PRESENTER PRESENTER PRESENTER PRESENTER:

Scheduling Shared Continuous Resources On Many-Cores PRESENTER PRESENTER PRESENTER PRESENTER:

Scheduling Shared Continuous Resources On Many-Cores PRESENTER PRESENTER PRESENTER PRESENTER: LIOR BELINSKY AUTHORS AUTHORS: ANDRE BRINKMANN - PETER KLING EQ - TIM SUB AUTHORS AUTHORS UUUJJJJJIIILARS NAGEL UUUUU - SORE RIECHERSIU

596 views • 35 slides
The Fulbright Scholar Program at UNL: Bioenergy systems in Brazil: challenges and future

The Fulbright Scholar Program at UNL: Bioenergy systems in Brazil: challenges and future

The Fulbright Scholar Program at UNL: Bioenergy systems in Brazil: challenges and future perspectives Prof. Weber A. Neves do Amaral, PhD ESALQ USP September 9, 2011 1 Objetives of this short Fulbright Scholar Program Mid term:

871 views • 51 slides
1 Case Case Scholar athlete Scholar athlete

1 Case Case Scholar athlete Scholar athlete

Sco$ J. Soifer, MD Disclosure Professor and Vice Chair Department of Pediatrics I have no financial interest, arrangement, or University of California,

380 views • 9 slides
Yu-Wen Chen Advised by Prof. Henning Schulzrinne, Suman Srinivasan Goal: Integrate Xuggler

Yu-Wen Chen Advised by Prof. Henning Schulzrinne, Suman Srinivasan Goal: Integrate Xuggler

Yu-Wen Chen Advised by Prof. Henning Schulzrinne, Suman Srinivasan Goal: Integrate Xuggler applications on CCNService Background of Content Centric Network & OSGi (1 week) Read the draft of the paper CCNServ: Dynamic Service

353 views • 8 slides

More recommend