Week 8 update:
Final four weeks remaining! I am not sure how other
students manage their life as most of us work full time, college and family
responsibilities. I have two jobs and taking two classes plus wife and 16
months old baby. This was my first time taking two classes. Even though it is
very challenging finishing assignment on time, I think eventually it will worth
of hard work and dedication. Hopefully, I can finish well and focus on other
things I wanted to do. I wanted to go for PHD as soon as I finish my masters,
but I have a second thought. First, let me get into the cyber market and get a cyber-related
job. My current IT experience will definitely help. Once I have some years of direct
experience with the cyber field and add some certification like CEH, CISSP, I
will go for PHD. Many of my friends who I went college with are about to finish
their PHD in Physics. They are my motivation and I am very committed to have
PHD and I know it is not easy.
The challenging part is to improve case assignments each
week. If you didn’t do well on the last assignment, most likely you won't do
well in the coming weeks since each assignment is built on previous weeks assignment.
I lose some points here and there because of my grammatical errors. Otherwise, I
am doing well. CYBR 515 assignments are getting easier. First couple of weeks, assignments
were very challenging. I really like CYBR 650 assignments format where students
get to students work and add suggestion. This helps us to improve our work and
improve assignments.
Article 1:
I had to share this even though I also posted this on our class security trends forum.
I am Gmail user for long time and Gmail is no exception when it comes to cyber attacks. hopefully they come up with a solution soon.
Rise of phishing attacks
I am sure most of you have read the news about the recent phishing attacks targeting Gmail users. Very sophisticated phishing scam attack is targeting about one billion Gmail users. Once a user clicks on the phishing email, it spreading to all contact list of the user who clicked on the email. The tricky part is that the email seems to come from a trusted contact and ask users to check out an attachment on Google Docs. Once a user clicks on the link, it spreads to all user contacts. Eventually, hackers will control of your email content. Even someone with good cyber threats knowledge could fall into this. The only thing Google saying is not to click on the link for now. If you read the email carefully, sending field looks as the sender is your contact, but in the recipient field, it is "hhhhhhhhhhhhhhhh@mailinator.com." Most users don’t read an email that carefully. As soon as it comes from someone you know, most likely you will attempt to open it. Some of the recommendations include - first, don’t click on it but if you do open the email, don’t grant access when fake Docs app ask for it. But if you went that far and granted access, go to Google connected sites console and remove access to that app and finally change your Google account password. The scary part is that once the worm enters the Google user's domain, it is very challenging to remove it. Hopefully, Google finds a way to fix this soon. I am a Gmail user and haven't gotten any those types of email, but people are talking about it a lot. It's been trending on the social media for some time now, and some people are having fun and other providing recommendations which will help to educate users about the risks. Phishing attacks are definitely a growing cyber threat trend that something we all should be careful. If you are interested reading the news in detail, here is the link.
http://www.nbcnews.com/tech/security/massive-phishing-attack-targets-millions-gmail-users-n754501
Some people are making fun out of it. Here are the some examples from the Twitter.
Article 1:
I had to share this even though I also posted this on our class security trends forum.
I am Gmail user for long time and Gmail is no exception when it comes to cyber attacks. hopefully they come up with a solution soon.
Rise of phishing attacks
I am sure most of you have read the news about the recent phishing attacks targeting Gmail users. Very sophisticated phishing scam attack is targeting about one billion Gmail users. Once a user clicks on the phishing email, it spreading to all contact list of the user who clicked on the email. The tricky part is that the email seems to come from a trusted contact and ask users to check out an attachment on Google Docs. Once a user clicks on the link, it spreads to all user contacts. Eventually, hackers will control of your email content. Even someone with good cyber threats knowledge could fall into this. The only thing Google saying is not to click on the link for now. If you read the email carefully, sending field looks as the sender is your contact, but in the recipient field, it is "hhhhhhhhhhhhhhhh@mailinator.com." Most users don’t read an email that carefully. As soon as it comes from someone you know, most likely you will attempt to open it. Some of the recommendations include - first, don’t click on it but if you do open the email, don’t grant access when fake Docs app ask for it. But if you went that far and granted access, go to Google connected sites console and remove access to that app and finally change your Google account password. The scary part is that once the worm enters the Google user's domain, it is very challenging to remove it. Hopefully, Google finds a way to fix this soon. I am a Gmail user and haven't gotten any those types of email, but people are talking about it a lot. It's been trending on the social media for some time now, and some people are having fun and other providing recommendations which will help to educate users about the risks. Phishing attacks are definitely a growing cyber threat trend that something we all should be careful. If you are interested reading the news in detail, here is the link.
http://www.nbcnews.com/tech/security/massive-phishing-attack-targets-millions-gmail-users-n754501
Some people are making fun out of it. Here are the some examples from the Twitter.
No comments:
Post a Comment