Network Security: Types of Threats

Study Notes

Types of Network Security Threats:

Malware: malicious software designed to harm or exploit a network, e.g., viruses, worms, Trojan horses
Phishing: social engineering attacks to trick users into revealing sensitive information
Ransomware: malware that encrypts data and demands payment in exchange for decryption
Denial of Service (DoS) and Distributed Denial of Service (DDoS): attacks that overwhelm a network with traffic, making it unavailable to users

Network Security Measures:

Firewalls: hardware or software barriers that block unauthorized access to a network
Virtual Private Networks (VPNs): encrypted connections that secure data transmission over the internet
Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS): systems that detect and prevent unauthorized access to a network
Encryption: encrypting data to prevent unauthorized access or interception
Access Control: limiting access to a network based on user identity, role, or location

Network Segmentation:

VLANs (Virtual Local Area Networks): dividing a network into smaller, isolated segments
Subnetting: dividing a network into smaller, isolated segments using IP addresses
Network segmentation: dividing a network into smaller, isolated segments to limit the attack surface

Network Security Protocols:

SSL/TLS (Secure Sockets Layer/Transport Layer Security): protocols for encrypting data transmission over the internet
HTTPS (Hypertext Transfer Protocol Secure): a secure version of HTTP that uses SSL/TLS
SSH (Secure Shell): a secure protocol for remote access to a network

Best Practices:

Malware: tarmoqqa zarar yetkazish yoki unga tajovuz qilish uchun mo'ljallangan yovuz dastur, masalan, viruslar, wormlar, Trojan otlar
Phishing: foydalanuvchilarni maxfiy ma'lumotlarni ochirishga undash uchun ijtimoiy muhandislik hujumlari
Ransomware: ma'lumotlarni shifrlash va ochirish uchun to'lov talab qiladigan malware
Denial of Service (DoS) va Distributed Denial of Service (DDoS): tarmoqqa foydalanuvchilarga mavjud bo'lmagani sabab qilib, ularga ketma-ket trafik yuborish orqali hujumlar

Olov devori: tarmoqqa noqonuniy kirishni to'xtatuvchi qurilma yoki dastur
Virtual Private Network (VPN): internet orqali ma'lumotlarni yuborishni shifrlash uchun maxsus ulanish
Intrusion Detection Systems (IDS) va Intrusion Prevention Systems (IPS): tarmoqqa noqonuniy kirishni aniqlash va oldini olish sistemas
Shifrlash: ma'lumotlarni noqonuniy kirish yoki quloqlashdan himoya qilish uchun shifrlash
Ruxsat nazorati: foydalanuvchilarga tarmoqqa kirish huquqlarini cheklash uchun ro'yxatdan o'tkazish

VLAN (Virtual Local Area Network): tarmoqni kichik, izolyatsiya qilingan segmentlarga bo'lish
Subnetting: tarmoqni kichik, izolyatsiya qilingan segmentlarga bo'lish uchun IP manzillaridan foydalanish
Tarmoq bo'linishi: tarmoqni kichik, izolyatsiya qilingan segmentlarga bo'lish uchun hujum yuzasini cheklash

SSL/TLS (Secure Sockets Layer/Transport Layer Security): internet orqali ma'lumotlarni shifrlash uchun protokollar
HTTPS (Hypertext Transfer Protocol Secure): HTTP protokolining xavfsiz versiyasi, SSL/TLSdan foydalanadi
SSH (Secure Shell): tarmoqqa uzoqdan kirish uchun xavfsiz protokol