SlideShare une entreprise Scribd logo

Chapter 4 E-Safety and Health & Safety

Anjan Mahanta
Anjan Mahanta

Cambridge International AS and A Level ICT 9626

Technologie
1  sur  53
Télécharger pour lire hors ligne
E-SAFETY AND HEALTH & SAFETY ANJAN MAHANTA anjan_mahanta@satreephuketipc.com Cambridge International AS and A Level
LEARNING OBJECTIVES •EXPLAIN WHY E-SAFETY IS NECESSARY AND WHY DATA SHOULD BE KEPT CONFIDENTIAL •DESCRIBE HOW PERSONAL DATA CAN BE GATHERED BY UNAUTHORIZED PERSONS AND HOW CAN PROTECT AGAINST THIS •DESCRIBE A NUMBER OF MALWARE ISSUES •DESCRIBE POTENTIAL HEALTH AND SAFETY ISSUES RELATING TO USING COMPUTERS 2
INTRODUCTION ▪ E-Safety is concerned with protecting personal data to avoid online exploitation either by bullying or identity theft. ▪ A person should be very careful about revealing their personal data, such as their bank details, medical records, their salary, and sometimes sensitive data, such as their political opinions. 3
ONLINE RESOURCES E-safety • www.youtube.com/watch?v=HAY8uDBCd3k • https://vimeo.com/esafetyoffice • www.whoishostingthis.com/resources/e-safety/ • https://home.mcafee.com/advicecenter/?id=ad_itp_1ttpypiai&ctst=1 • www.theguardian.com/technology/2013/sep/16/10-ways-keep-personal-data-safe • www.webopedia.com/TERM/P/pharming.html • www.webopedia.com/TERM/P/phishing.html • www.webopedia.com/TERM/S/smishing_scams.html • www.webopedia.com/TERM/V/vishing.html • https://security.intuit.com/index.php/protect-your-information/phishing-pharming-vishing-and-smishing 4
MEASURES TO IMPROVE OUR E-SAFETY ▪ Only use websites that are recommended by a trusted source, for example, a teacher or a parent  ▪ Use a search engine that has a filter to remove inappropriate content ▪ Do not open any email attachments from a sender you do not recognize ▪ Be very cautious when providing personal data ▪ Be cautious about any pictures or opinions that you post or send to people ▪ Do not become friends on social networking sites with people you do not know  5
MEASURES TO IMPROVE OUR E-SAFETY ▪ Never arrange face-to-face meetings with a person that you meet online ▪ Make sure you set all the privacy controls that are available on social media accounts ▪ Report and block any unwanted user ▪ Use a nickname or pseudonym when using the internet for entertainment, for example, playing games 6
SAFETY MEASURES ▪ If another person posts anything abusive about you online ,you can report this behavior and they could face criminal prosecution. ▪ Similarly, if you post anything online that is abusive about another person you could face criminal proceedings. Even if the abuse is from an anonymous source, it is easy to trace from where the messages or images have been sent.  ▪ Make sure that the passwords you have set on your social networking accounts are strong. This means they should be unusual and contain a mixture of numbers, punctuation and letters (both lowercase and capitals) if possible. ▪ Think twice before you post anything online. Once you have posted it you cannot take it back again. 7
PHISHING 8
PHISHING 9
PHISHING ▪ Phishing is normally carried out via electronic communication, such as email. ▪ The email will look legitimate and will normally encourage a person to click on a link in the email. ▪ When the link is clicked it will take the user to a website that will ask them for their personal details. ▪ This will be a fake website and the personal details will then be stolen and used in criminal activity. 10
MEASURES TO PROTECT FROM PHISHING ▪ Users should make sure that they are cautious when clicking any links in an email. ▪ Users should question whether they know the sender of the email and only open links from known senders. ▪ Users should check the URL that they are being linked to, to see if it is legitimate. ▪ This can be done by hovering over the link and looking to see if the address is the real address of the site, for example www.paypal.com would be legitimate but www.paipal.com would be identified as fake because of the spelling mistake. ▪ Another thing that should raise suspicion is any spelling or grammatical errors in the email content. 11
PHARMING ● Pharming is another method of collecting personal data. ● A hacker will install malicious code onto a person’s computer or server. ● When a user types in a web address they will be redirected to a fraudulent, but legitimate looking, replica website, without their consent. ● The user will continue using the website as they normally would, unaware of the redirection, and enter their personal details that will then be stolen. 12
MEASURES TO PROTECT AGAINST PHARMING ● Users should check if the website looks the same as when they last visited it. ● Users should look for the padlock security symbol used to signify the HTTPS, showing that the website is secure, before entering any personal and financial details. ● Users should run regular scans of their computer with anti-virus software that is designed to detect pharming programs. 13
SMISHING • Smishing is short for SMS phishing. • It is similar to phishing, but it is carried out using SMS text messaging rather than email. • An SMS text message is sent to a user that will ask them to telephone a number or click on a link. When that number is telephoned, the person receiving the call will attempt to get personal details from the caller. • The caller could also be charged a great deal of money for the call. When a link is clicked malware is downloaded onto the user’s phone. • The malware can be used to collect the user’s data to commit identity fraud and theft. 14
MEASURES TO PROTECT AGAINST SMISHING • Users should be very cautious in telephoning any numbers they are sent in an SMS message. • Users should be very cautious when clicking on any links in messages. • Users should not install any applications from senders they do not know. • If a user receives a suspicious message from someone they do know,they should check with the person that they have actually sent that message. • Users should be wary of numbers that do not look like usual mobile numbers, such as '5000’. • Users can add security software to their mobile to help detect any malware. 15
VISHING • Vishing is short for voice phishing. It is the act of using a telephone call to try and scam a user into giving their personal data. The scammer will usually pretend that they are a legitimate business calling the person. • The person who is vishing will either say they are alerting the victim to an issue with their account, or advising the victim of a profitable gain. They will often ask the victim subtle questions to get the personal data they want. 16
VISHING 17
VISHING 18
MEASURES TO PROTECT AGAINST VISHING • People should exercise caution when any institution contacts them, especially when they ask for personal details. If in doubt hang up and call them back on a number that is known. • People should never give out any personal details regarding a security issue with their account. A bank will prevent any kind of attack on an account without needing assistance from the account holder. 19
DISCUSSION 20
MALWARE 21
MALWARE • Malware is a computer program that is designed to damage or disrupt a computer system and the files that are stored on it. • Malware can take many forms and we are going to look at a number of them. 22
ONLINE RESOURCES Malware • www.totalbank.com/what-is-malware--spyware • https://ist.mit.edu/security/malware • https://redshift.autodesk.com/10-tips-on-how-to-prevent-malware-from -infecting-your-computer/ • www.pcworld.com/article/210891/malware.html 23
TROJAN HORSE • A Trojan horse is a malicious computer program that disguises itself as another application, such as a game or a utility program. • When the application is run, the Trojan horse will act as a computer virus would, deleting and corrupting files in the computer system. • It looks harmless, like an application that would be desirable, but it hides a malicious program. 24
TROJAN HORSE 25
WORMS • A computer worm is a small computer program that uses computer networks and finds security holes to replicate itself. • They can exploit a security hole in a piece of software or operating system. While replicating they will often clog up network bandwidth and can make things run slowly. 26
SPYWARE • Spyware covers quite a broad range of malware. • The term refers to any technology that is used to gather data about a person without their knowledge. It is most commonly used to track the movements of people online. • A common type of spyware is a keylogger. This is a piece of software that records the key presses from a keyboard and will allow the person who installed it to gather personal data about the victim. 27
SPYWARE 28
ADWARE • Adware is short for advertising-supported software. • In its most basic form,it is simply a software program that is used to display adverts that are targeted at the user. • It can analyse the websites the user visits and will target them with advertising of a similar nature. • Many program developers will justify the inclusion of adware in their product by claiming that it will generate revenue for them, keeping the cost of the product lower. 29
ADWARE • Adware as malware will present adverts when a user is browsing the web that are often shown constantly. They are normally in the form of popups or windows that cannot be closed. They will mostly just be irritating. • In certain circumstances, adware can be bundled in with legitimate software downloads.This means that you may end up with the software on your computer without actually asking to download it. 30
ROOTKIT 31
ROOTKIT • A rootkit is a computer program that enables a person to gain administrator access to a victim’s computer. • It normally gets installed because a victim’s password is cracked. • The person installing it can then use the access to stop the computer recognising that the rootkit is there, so the victim will not know that someone else has complete access to their computer system. • Other malware can then be concealed on the computer to cause harm. 32
MALICIOUS BOTS • A bot is an application that is automated and used to carry out simple and repetitive tasks. • These are normally tasks that a human would find mundane and time-consuming. Bots can be used for very productive reasons, but they can also be used as a form of malware. • Malicious bots are used by cybercriminals in a variety of ways: • SPAM bots are used to bombard people’s email inbox with SPAM emails. • Zombie bots are used to create a bot network.The bot will lay dormant on a computer until an attack is launched. The computer will then be connected with lots of other computers that have been compromised by zombie bots to launch a large-scale attack on an organisation. • Chatter bots will pretend to be humans on sites such as social networking and dating sites. 33
MALICIOUS BOTS 34
MALICIOUS BOTS 35
RANSOMWARE 36
RANSOMWARE • Ransomware is a type of malware that restricts a user’s access to their computer system and files. The ransomware will normally demand that the user pays a ransom in order to regain access to their computer system. • Some ransomware programs will completely lock a user’s system and some will encrypt all of the files on their system in a way that renders them useless. • Ransomware will normally try to enter a system in a similar way to a Trojan horse. • The message or ransom with which the user is presented will often imitate a law enforcement agency. It will falsely claim that the system has been used for illegal activity and that a ransom must be paid to regain access to the system. 37
How can malware be avoided? • Malware can be very difficult to remove from a computer system. It can often take numerous scans from anti-virus software, as well as the use of various malware removal programs, depending on the type of malware infecting the system. • A user should never open a program unless they know it is legitimate. • A user should have a firewall in place that is monitoring their internet traffic. • A user should regularly run an anti-virus check and malware detection software on their computer system, to detect the presence of any malware. Any anti-virus or malware detection program should be kept up to date in order to detect newly developed malware. • A user should not open any attachments to emails from unknown users. • A user should use open Wi-Fi points with extreme caution as anybody could be connected to them. 38
HEALTH & SAFETY ONLINE RESOURCES • https://msds.open.ac.uk/your-record/health.htm • www.youtube.com/watch?v=T8qGO7XQ0Uw • http://workplaceohs.com.au/hazards/office-safety/computers • www.ncte.ie/documents/advicesheets/29Ergonomics(June07).pdf • www.teach-ict.com/gcse_new/health_safety/miniweb/pg7.htm 39
HEALTH & SAFETY 40
HEALTH & SAFETY 41
42
43
44
REVIEW QUESTIONS 45
Answers 1. Explain the difference between Phishing and Pharming. 46 PHISHING PHARMING ● A legitimate-looking email is sent to the user. ● Malicious code is installed on the user’s hard drive or server. ● The e-mail contain a link for the user to click. The link will redirect the user to a legitimate looking website. ● A user will type in a common web address, but will be redirected to a fake website instead. ● The website will request personal data that will be stolen when entered. ● Unaware, the user enters their personal details in the fake website and the details are stolen.
Answers 2. Describe the term ransomware. It restricts a user’s access to the files on their computer. It restricts the files access to the files either by locking the system or encrypting the files. A ransom message will appear when access is attempted requesting payment of access. 47
Answers 3. Describe the term malicious bot. It is a bot that is automated to carry out a simple or repetitive task. The task it carries out will be party to criminal activity, such as bombarding mail boxes with SPAM email. 48
Answers 4. Describe the need to keep personal data confidential. Personal data is very valuable and for this reason people will put a lot of effort into stealing it. A perpetrator can steal a person’s identity through collecting the or personal data/identity fraud. A person could also suffer personal attacks such as blackmail or cyberbullying if they reveal, or have stolen, certain personal information that could be used against them. Even small amounts of data released on social media over a period of time can be pieced together for criminal activity. 49
Answers 5. Describe two health issues relating to using a computer and suggest how each can be prevented. 50 Injuries Prevention Repetitive strain injury can occur from repetitive moments such as clicking a mouse. This can be prevented through the use of support devices such as wrist rests. Carpel tunnel syndrome can occur through repetitive or continual movements. This can be prevented by taking regular breaks in work sessions/varying the position used for work. Back ache can occur from poor posture. This can be prevented by sitting on an adjustable chair with added support.
Answers 5. Describe two health issues relating to using a computer and suggest how each can be prevented. 51 Injuries Prevention Eye strain can occur as a result of looking at a monitor for long periods of time. This can be prevented by using any settings a monitor has to aid prevention/focussing on points away from the screen periodically. Deep vein thrombosis can occur when pressure is put on the legs from sitting for long periods. This can be prevented by standing regularly and moving around periodically.
Answers 6. Describe two safety issues relating to using a computer and suggest how each can be prevented. 52 Safety Issues Prevention Methods Fire can occur from equipment overheating/overloaded socket. This can be prevented by keeping the room well ventilated. This can be prevented by not plugging in too many devices to a socket, especially those that require lots of power. Trailing wire can cause injury to a person who trips over them This can be prevented by securing wires in a cable management system. Electric socket can occur from split drinks/touching wires together. This can be prevented by not eating or drinking at a computer. This can be prevented by an inexperienced user not handling wires. This can be prevented by having regular electrical safety checks carried out.
Check list Are you able to: • explain why personal data should be kept confidential • describe how personal data can be gathered by unauthorised persons (including: by smishing, vishing, phishing and pharming), and how this might be prevented • discuss why eSafety is necessary • describe malware issues (including: Trojan horse, worms, spyware, adware, rootkit, malicious bots, ransomware) • describe a range of potential health issues that could arise from using IT • describe a range of safety issues relating to the use of IT 53

Recommandé

Chapter 3 Monitoring and Control
Chapter 3 Monitoring and ControlChapter 3 Monitoring and Control
Chapter 3 Monitoring and ControlAnjan Mahanta
 
9626 GCE AS Information Technology Chapter 1
9626 GCE AS Information Technology Chapter 19626 GCE AS Information Technology Chapter 1
9626 GCE AS Information Technology Chapter 1Anthi Aristotelous
 
Chapter 2 Hardware and Software
Chapter 2 Hardware and SoftwareChapter 2 Hardware and Software
Chapter 2 Hardware and SoftwareAnjan Mahanta
 
9626 chapter 5 e security
9626 chapter 5 e security9626 chapter 5 e security
9626 chapter 5 e securitySixth-form
 
Basic computer skills of BSc IT
Basic computer skills of BSc ITBasic computer skills of BSc IT
Basic computer skills of BSc ITRam krishna Dumrakoti
 
Computer & internet Security
Computer & internet SecurityComputer & internet Security
Computer & internet SecurityGerard Lamusse
 
0417 IGCSE ICT Chapter 1
0417 IGCSE ICT Chapter 10417 IGCSE ICT Chapter 1
0417 IGCSE ICT Chapter 1Anthi Aristotelous
 
Ram & rom
Ram & romRam & rom
Ram & romAhsan Rafiq
 

Recommandé

Chapter 3 Monitoring and Control
Chapter 3 Monitoring and ControlChapter 3 Monitoring and Control
Chapter 3 Monitoring and ControlAnjan Mahanta
 
9626 GCE AS Information Technology Chapter 1
9626 GCE AS Information Technology Chapter 19626 GCE AS Information Technology Chapter 1
9626 GCE AS Information Technology Chapter 1Anthi Aristotelous
 
Chapter 2 Hardware and Software
Chapter 2 Hardware and SoftwareChapter 2 Hardware and Software
Chapter 2 Hardware and SoftwareAnjan Mahanta
 
9626 chapter 5 e security
9626 chapter 5 e security9626 chapter 5 e security
9626 chapter 5 e securitySixth-form
 
Basic computer skills of BSc IT
Basic computer skills of BSc ITBasic computer skills of BSc IT
Basic computer skills of BSc ITRam krishna Dumrakoti
 
Computer & internet Security
Computer & internet SecurityComputer & internet Security
Computer & internet SecurityGerard Lamusse
 
0417 IGCSE ICT Chapter 1
0417 IGCSE ICT Chapter 10417 IGCSE ICT Chapter 1
0417 IGCSE ICT Chapter 1Anthi Aristotelous
 
Ram & rom
Ram & romRam & rom
Ram & romAhsan Rafiq
 
Access Controls
Access ControlsAccess Controls
Access Controlsprimeteacher32
 
Networks and the effects of using them
Networks and the effects of using themNetworks and the effects of using them
Networks and the effects of using themAnjan Mahanta
 
Parts of a computer
Parts of a computerParts of a computer
Parts of a computerhpinn
 
User authentication
User authenticationUser authentication
User authenticationCAS
 
Overview of Information Security & Privacy
Overview of Information Security & PrivacyOverview of Information Security & Privacy
Overview of Information Security & PrivacyNawanan Theera-Ampornpunt
 
Introduction To Computer Security
Introduction To Computer SecurityIntroduction To Computer Security
Introduction To Computer SecurityVibrant Event
 
Processing Devices
Processing DevicesProcessing Devices
Processing Devicesitsvineeth209
 
Password craking techniques
Password craking techniques Password craking techniques
Password craking techniques أحلام انصارى
 
Cybersecurity 2 cyber attacks
Cybersecurity 2 cyber attacksCybersecurity 2 cyber attacks
Cybersecurity 2 cyber attackssommerville-videos
 
Computer security
Computer securityComputer security
Computer securityMahesh Singh Madai
 
System security
System securitySystem security
System securitysommerville-videos
 
Cia security model
Cia security modelCia security model
Cia security modelImran Ahmed
 
Keyboard layout guide
Keyboard layout guideKeyboard layout guide
Keyboard layout guideIvana Zuber
 
Computer maintenance
Computer maintenanceComputer maintenance
Computer maintenanceCelia Bandelier
 
Integrating Physical And Logical Security
Integrating Physical And Logical SecurityIntegrating Physical And Logical Security
Integrating Physical And Logical SecurityJorge Sebastiao
 
Presentation on computer data storage
Presentation on computer data storage Presentation on computer data storage
Presentation on computer data storage GLG
 
Computer security and privacy
Computer security and privacyComputer security and privacy
Computer security and privacyHaider Ali Malik
 
Basic Computer Skills
Basic Computer SkillsBasic Computer Skills
Basic Computer SkillsTereza Raquel Merlo
 
Information Security Awareness Training Open
Information Security Awareness Training OpenInformation Security Awareness Training Open
Information Security Awareness Training OpenFred Beck MBA, CPA
 
Information and communication technology Textbook answers
Information and communication technology Textbook answersInformation and communication technology Textbook answers
Information and communication technology Textbook answersabdurrahman mafhoom
 
Phishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS WorkingPhishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS WorkingSachin Saini
 
Data protection and security
Data protection and securityData protection and security
Data protection and securitysamina khan
 

Contenu connexe

Tendances

Networks and the effects of using them
Networks and the effects of using themNetworks and the effects of using them
Networks and the effects of using themAnjan Mahanta
 
Parts of a computer
Parts of a computerParts of a computer
Parts of a computerhpinn
 
User authentication
User authenticationUser authentication
User authenticationCAS
 
Introduction To Computer Security
Introduction To Computer SecurityIntroduction To Computer Security
Introduction To Computer SecurityVibrant Event
 
Cia security model
Cia security modelCia security model
Cia security modelImran Ahmed
 
Keyboard layout guide
Keyboard layout guideKeyboard layout guide
Keyboard layout guideIvana Zuber
 
Integrating Physical And Logical Security
Integrating Physical And Logical SecurityIntegrating Physical And Logical Security
Integrating Physical And Logical SecurityJorge Sebastiao
 
Presentation on computer data storage
Presentation on computer data storage Presentation on computer data storage
Presentation on computer data storage GLG
 
Computer security and privacy
Computer security and privacyComputer security and privacy
Computer security and privacyHaider Ali Malik
 
Information Security Awareness Training Open
Information Security Awareness Training OpenInformation Security Awareness Training Open
Information Security Awareness Training OpenFred Beck MBA, CPA
 
Information and communication technology Textbook answers
Information and communication technology Textbook answersInformation and communication technology Textbook answers
Information and communication technology Textbook answersabdurrahman mafhoom
 

Tendances (20)

Access Controls
Access ControlsAccess Controls
Access Controls
 
Networks and the effects of using them
Networks and the effects of using themNetworks and the effects of using them
Networks and the effects of using them
 
Parts of a computer
Parts of a computerParts of a computer
Parts of a computer
 
User authentication
User authenticationUser authentication
User authentication
 
Overview of Information Security & Privacy
Overview of Information Security & PrivacyOverview of Information Security & Privacy
Overview of Information Security & Privacy
 
Introduction To Computer Security
Introduction To Computer SecurityIntroduction To Computer Security
Introduction To Computer Security
 
Processing Devices
Processing DevicesProcessing Devices
Processing Devices
 
Password craking techniques
Password craking techniques Password craking techniques
Password craking techniques
 
Cybersecurity 2 cyber attacks
Cybersecurity 2 cyber attacksCybersecurity 2 cyber attacks
Cybersecurity 2 cyber attacks
 
Computer security
Computer securityComputer security
Computer security
 
System security
System securitySystem security
System security
 
Cia security model
Cia security modelCia security model
Cia security model
 
Keyboard layout guide
Keyboard layout guideKeyboard layout guide
Keyboard layout guide
 
Computer maintenance
Computer maintenanceComputer maintenance
Computer maintenance
 
Integrating Physical And Logical Security
Integrating Physical And Logical SecurityIntegrating Physical And Logical Security
Integrating Physical And Logical Security
 
Presentation on computer data storage
Presentation on computer data storage Presentation on computer data storage
Presentation on computer data storage
 
Computer security and privacy
Computer security and privacyComputer security and privacy
Computer security and privacy
 
Basic Computer Skills
Basic Computer SkillsBasic Computer Skills
Basic Computer Skills
 
Information Security Awareness Training Open
Information Security Awareness Training OpenInformation Security Awareness Training Open
Information Security Awareness Training Open
 
Information and communication technology Textbook answers
Information and communication technology Textbook answersInformation and communication technology Textbook answers
Information and communication technology Textbook answers
 

Similaire à Chapter 4 E-Safety and Health & Safety

Phishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS WorkingPhishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS WorkingSachin Saini
 
Data protection and security
Data protection and securityData protection and security
Data protection and securitysamina khan
 
Train Employees to Avoid Inadvertent Cyber-Security Breaches
Train Employees to Avoid Inadvertent Cyber-Security BreachesTrain Employees to Avoid Inadvertent Cyber-Security Breaches
Train Employees to Avoid Inadvertent Cyber-Security BreachesHuman Resources & Payroll
 
Internet safety and security
Internet safety and securityInternet safety and security
Internet safety and securityDjTechs
 
Cyber security-1.pptx
Cyber security-1.pptxCyber security-1.pptx
Cyber security-1.pptxCharithraaAR
 
Why is Cybersecurity Important in the Digital World
Why is Cybersecurity Important in the Digital WorldWhy is Cybersecurity Important in the Digital World
Why is Cybersecurity Important in the Digital WorldExpeed Software
 
CYBER SECURITY AWARENESS.pptx [Read-Only].pptx
CYBER SECURITY AWARENESS.pptx [Read-Only].pptxCYBER SECURITY AWARENESS.pptx [Read-Only].pptx
CYBER SECURITY AWARENESS.pptx [Read-Only].pptxDhruvsinhbhati
 
Internet Security
Internet SecurityInternet Security
Internet Securitymjelson
 
Chp-15 Cyber Safety ppt-std 11.pptx
Chp-15 Cyber Safety ppt-std 11.pptxChp-15 Cyber Safety ppt-std 11.pptx
Chp-15 Cyber Safety ppt-std 11.pptxHarishParthasarathy4
 
Cyber Crime and Social Media Security
Cyber Crime and Social Media SecurityCyber Crime and Social Media Security
Cyber Crime and Social Media SecurityHem Pokhrel
 
INTERNET SAFETY-WPS Office (1).pptx
INTERNET SAFETY-WPS Office (1).pptxINTERNET SAFETY-WPS Office (1).pptx
INTERNET SAFETY-WPS Office (1).pptxBHUt6
 
Cyber crime and cyber security
Cyber crime and cyber securityCyber crime and cyber security
Cyber crime and cyber securityKaushal Solanki
 
TheCyberThreatAndYou2_deck.pptx
TheCyberThreatAndYou2_deck.pptxTheCyberThreatAndYou2_deck.pptx
TheCyberThreatAndYou2_deck.pptxKevinRiley83
 
Digital Citizenship
Digital CitizenshipDigital Citizenship
Digital Citizenshipjleverett
 
CYBER ETHICS, CRIMES AND SAFTY
CYBER ETHICS, CRIMES AND SAFTYCYBER ETHICS, CRIMES AND SAFTY
CYBER ETHICS, CRIMES AND SAFTYFaMulan2
 
Online Safety, Security, Ethics and Netiquette.pptx
Online Safety, Security, Ethics and Netiquette.pptxOnline Safety, Security, Ethics and Netiquette.pptx
Online Safety, Security, Ethics and Netiquette.pptxBobby Dait
 
Online safety, security, ethics & etiquette
Online safety, security, ethics & etiquetteOnline safety, security, ethics & etiquette
Online safety, security, ethics & etiquetteAngelito Quiambao
 
What is Cybercrime and How to Prevent Cybercrime?
What is Cybercrime and How to Prevent Cybercrime?What is Cybercrime and How to Prevent Cybercrime?
What is Cybercrime and How to Prevent Cybercrime?Entrance Exam Info
 

Similaire à Chapter 4 E-Safety and Health & Safety (20)

Phishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS WorkingPhishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS Working
 
Data protection and security
Data protection and securityData protection and security
Data protection and security
 
Train Employees to Avoid Inadvertent Cyber-Security Breaches
Train Employees to Avoid Inadvertent Cyber-Security BreachesTrain Employees to Avoid Inadvertent Cyber-Security Breaches
Train Employees to Avoid Inadvertent Cyber-Security Breaches
 
Internet safety and security
Internet safety and securityInternet safety and security
Internet safety and security
 
Cyber security-1.pptx
Cyber security-1.pptxCyber security-1.pptx
Cyber security-1.pptx
 
Masterclass_ Cybersecurity and Data Privacy Basics
Masterclass_ Cybersecurity and Data Privacy BasicsMasterclass_ Cybersecurity and Data Privacy Basics
Masterclass_ Cybersecurity and Data Privacy Basics
 
Why is Cybersecurity Important in the Digital World
Why is Cybersecurity Important in the Digital WorldWhy is Cybersecurity Important in the Digital World
Why is Cybersecurity Important in the Digital World
 
CYBER SECURITY AWARENESS.pptx [Read-Only].pptx
CYBER SECURITY AWARENESS.pptx [Read-Only].pptxCYBER SECURITY AWARENESS.pptx [Read-Only].pptx
CYBER SECURITY AWARENESS.pptx [Read-Only].pptx
 
Internet Security
Internet SecurityInternet Security
Internet Security
 
Chp-15 Cyber Safety ppt-std 11.pptx
Chp-15 Cyber Safety ppt-std 11.pptxChp-15 Cyber Safety ppt-std 11.pptx
Chp-15 Cyber Safety ppt-std 11.pptx
 
Cyber Crime and Social Media Security
Cyber Crime and Social Media SecurityCyber Crime and Social Media Security
Cyber Crime and Social Media Security
 
INTERNET SAFETY-WPS Office (1).pptx
INTERNET SAFETY-WPS Office (1).pptxINTERNET SAFETY-WPS Office (1).pptx
INTERNET SAFETY-WPS Office (1).pptx
 
Cyber crime and cyber security
Cyber crime and cyber securityCyber crime and cyber security
Cyber crime and cyber security
 
Cybersecurity Training
Cybersecurity TrainingCybersecurity Training
Cybersecurity Training
 
TheCyberThreatAndYou2_deck.pptx
TheCyberThreatAndYou2_deck.pptxTheCyberThreatAndYou2_deck.pptx
TheCyberThreatAndYou2_deck.pptx
 
Digital Citizenship
Digital CitizenshipDigital Citizenship
Digital Citizenship
 
CYBER ETHICS, CRIMES AND SAFTY
CYBER ETHICS, CRIMES AND SAFTYCYBER ETHICS, CRIMES AND SAFTY
CYBER ETHICS, CRIMES AND SAFTY
 
Online Safety, Security, Ethics and Netiquette.pptx
Online Safety, Security, Ethics and Netiquette.pptxOnline Safety, Security, Ethics and Netiquette.pptx
Online Safety, Security, Ethics and Netiquette.pptx
 
Online safety, security, ethics & etiquette
Online safety, security, ethics & etiquetteOnline safety, security, ethics & etiquette
Online safety, security, ethics & etiquette
 
What is Cybercrime and How to Prevent Cybercrime?
What is Cybercrime and How to Prevent Cybercrime?What is Cybercrime and How to Prevent Cybercrime?
What is Cybercrime and How to Prevent Cybercrime?
 

Plus de Anjan Mahanta

Paper 2 – Exam Revision Notes.pdf
Paper 2 – Exam Revision Notes.pdfPaper 2 – Exam Revision Notes.pdf
Paper 2 – Exam Revision Notes.pdfAnjan Mahanta
 
Project management part 2
Project management part 2Project management part 2
Project management part 2Anjan Mahanta
 
Project management part 1
Project management part 1Project management part 1
Project management part 1Anjan Mahanta
 
13.03 - Satellite communication systems
13.03 - Satellite communication systems13.03 - Satellite communication systems
13.03 - Satellite communication systemsAnjan Mahanta
 
13.02 Network Security
13.02 Network Security13.02 Network Security
13.02 Network SecurityAnjan Mahanta
 
13.01 Network Components
13.01 Network Components13.01 Network Components
13.01 Network ComponentsAnjan Mahanta
 
The role and impact of IT in society
The role and impact of IT in societyThe role and impact of IT in society
The role and impact of IT in societyAnjan Mahanta
 
Emerging Technologies
Emerging TechnologiesEmerging Technologies
Emerging TechnologiesAnjan Mahanta
 
Conditional statistical functions
Conditional statistical functionsConditional statistical functions
Conditional statistical functionsAnjan Mahanta
 
Spreadsheet if and nested if function
Spreadsheet if and nested if functionSpreadsheet if and nested if function
Spreadsheet if and nested if functionAnjan Mahanta
 
Spreadsheet lookup functions
Spreadsheet lookup functionsSpreadsheet lookup functions
Spreadsheet lookup functionsAnjan Mahanta
 
Spreadsheet text functions
Spreadsheet text functionsSpreadsheet text functions
Spreadsheet text functionsAnjan Mahanta
 
Spreadsheet Date & Time Functions
Spreadsheet Date & Time FunctionsSpreadsheet Date & Time Functions
Spreadsheet Date & Time FunctionsAnjan Mahanta
 
Storage devices and media
Storage devices and mediaStorage devices and media
Storage devices and mediaAnjan Mahanta
 
Data, Information, Knowledge and Processing
Data, Information, Knowledge and Processing Data, Information, Knowledge and Processing
Data, Information, Knowledge and Processing Anjan Mahanta
 

Plus de Anjan Mahanta (20)

Paper 2 – Exam Revision Notes.pdf
Paper 2 – Exam Revision Notes.pdfPaper 2 – Exam Revision Notes.pdf
Paper 2 – Exam Revision Notes.pdf
 
Project management part 2
Project management part 2Project management part 2
Project management part 2
 
Project management part 1
Project management part 1Project management part 1
Project management part 1
 
13.03 - Satellite communication systems
13.03 - Satellite communication systems13.03 - Satellite communication systems
13.03 - Satellite communication systems
 
13.02 Network Security
13.02 Network Security13.02 Network Security
13.02 Network Security
 
13.01 Network Components
13.01 Network Components13.01 Network Components
13.01 Network Components
 
The role and impact of IT in society
The role and impact of IT in societyThe role and impact of IT in society
The role and impact of IT in society
 
Emerging Technologies
Emerging TechnologiesEmerging Technologies
Emerging Technologies
 
Conditional statistical functions
Conditional statistical functionsConditional statistical functions
Conditional statistical functions
 
Spreadsheet if and nested if function
Spreadsheet if and nested if functionSpreadsheet if and nested if function
Spreadsheet if and nested if function
 
Spreadsheet lookup functions
Spreadsheet lookup functionsSpreadsheet lookup functions
Spreadsheet lookup functions
 
Spreadsheet text functions
Spreadsheet text functionsSpreadsheet text functions
Spreadsheet text functions
 
Spreadsheet Date & Time Functions
Spreadsheet Date & Time FunctionsSpreadsheet Date & Time Functions
Spreadsheet Date & Time Functions
 
Scratch Animation
Scratch AnimationScratch Animation
Scratch Animation
 
Expert Systems
Expert SystemsExpert Systems
Expert Systems
 
Storage devices and media
Storage devices and mediaStorage devices and media
Storage devices and media
 
Using Network
Using NetworkUsing Network
Using Network
 
The Digital Divide
The Digital DivideThe Digital Divide
The Digital Divide
 
Data, Information, Knowledge and Processing
Data, Information, Knowledge and Processing Data, Information, Knowledge and Processing
Data, Information, Knowledge and Processing
 
The Seven Chakras
The Seven ChakrasThe Seven Chakras
The Seven Chakras
 

Dernier

GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 

Dernier (20)

GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 

Chapter 4 E-Safety and Health & Safety

  • 1. E-SAFETY AND HEALTH & SAFETY ANJAN MAHANTA anjan_mahanta@satreephuketipc.com Cambridge International AS and A Level
  • 2. LEARNING OBJECTIVES •EXPLAIN WHY E-SAFETY IS NECESSARY AND WHY DATA SHOULD BE KEPT CONFIDENTIAL •DESCRIBE HOW PERSONAL DATA CAN BE GATHERED BY UNAUTHORIZED PERSONS AND HOW CAN PROTECT AGAINST THIS •DESCRIBE A NUMBER OF MALWARE ISSUES •DESCRIBE POTENTIAL HEALTH AND SAFETY ISSUES RELATING TO USING COMPUTERS 2
  • 3. INTRODUCTION ▪ E-Safety is concerned with protecting personal data to avoid online exploitation either by bullying or identity theft. ▪ A person should be very careful about revealing their personal data, such as their bank details, medical records, their salary, and sometimes sensitive data, such as their political opinions. 3
  • 4. ONLINE RESOURCES E-safety • www.youtube.com/watch?v=HAY8uDBCd3k • https://vimeo.com/esafetyoffice • www.whoishostingthis.com/resources/e-safety/ • https://home.mcafee.com/advicecenter/?id=ad_itp_1ttpypiai&ctst=1 • www.theguardian.com/technology/2013/sep/16/10-ways-keep-personal-data-safe • www.webopedia.com/TERM/P/pharming.html • www.webopedia.com/TERM/P/phishing.html • www.webopedia.com/TERM/S/smishing_scams.html • www.webopedia.com/TERM/V/vishing.html • https://security.intuit.com/index.php/protect-your-information/phishing-pharming-vishing-and-smishing 4
  • 5. MEASURES TO IMPROVE OUR E-SAFETY ▪ Only use websites that are recommended by a trusted source, for example, a teacher or a parent  ▪ Use a search engine that has a filter to remove inappropriate content ▪ Do not open any email attachments from a sender you do not recognize ▪ Be very cautious when providing personal data ▪ Be cautious about any pictures or opinions that you post or send to people ▪ Do not become friends on social networking sites with people you do not know  5
  • 6. MEASURES TO IMPROVE OUR E-SAFETY ▪ Never arrange face-to-face meetings with a person that you meet online ▪ Make sure you set all the privacy controls that are available on social media accounts ▪ Report and block any unwanted user ▪ Use a nickname or pseudonym when using the internet for entertainment, for example, playing games 6
  • 7. SAFETY MEASURES ▪ If another person posts anything abusive about you online ,you can report this behavior and they could face criminal prosecution. ▪ Similarly, if you post anything online that is abusive about another person you could face criminal proceedings. Even if the abuse is from an anonymous source, it is easy to trace from where the messages or images have been sent.  ▪ Make sure that the passwords you have set on your social networking accounts are strong. This means they should be unusual and contain a mixture of numbers, punctuation and letters (both lowercase and capitals) if possible. ▪ Think twice before you post anything online. Once you have posted it you cannot take it back again. 7
  • 10. PHISHING ▪ Phishing is normally carried out via electronic communication, such as email. ▪ The email will look legitimate and will normally encourage a person to click on a link in the email. ▪ When the link is clicked it will take the user to a website that will ask them for their personal details. ▪ This will be a fake website and the personal details will then be stolen and used in criminal activity. 10
  • 11. MEASURES TO PROTECT FROM PHISHING ▪ Users should make sure that they are cautious when clicking any links in an email. ▪ Users should question whether they know the sender of the email and only open links from known senders. ▪ Users should check the URL that they are being linked to, to see if it is legitimate. ▪ This can be done by hovering over the link and looking to see if the address is the real address of the site, for example www.paypal.com would be legitimate but www.paipal.com would be identified as fake because of the spelling mistake. ▪ Another thing that should raise suspicion is any spelling or grammatical errors in the email content. 11
  • 12. PHARMING ● Pharming is another method of collecting personal data. ● A hacker will install malicious code onto a person’s computer or server. ● When a user types in a web address they will be redirected to a fraudulent, but legitimate looking, replica website, without their consent. ● The user will continue using the website as they normally would, unaware of the redirection, and enter their personal details that will then be stolen. 12
  • 13. MEASURES TO PROTECT AGAINST PHARMING ● Users should check if the website looks the same as when they last visited it. ● Users should look for the padlock security symbol used to signify the HTTPS, showing that the website is secure, before entering any personal and financial details. ● Users should run regular scans of their computer with anti-virus software that is designed to detect pharming programs. 13
  • 14. SMISHING • Smishing is short for SMS phishing. • It is similar to phishing, but it is carried out using SMS text messaging rather than email. • An SMS text message is sent to a user that will ask them to telephone a number or click on a link. When that number is telephoned, the person receiving the call will attempt to get personal details from the caller. • The caller could also be charged a great deal of money for the call. When a link is clicked malware is downloaded onto the user’s phone. • The malware can be used to collect the user’s data to commit identity fraud and theft. 14
  • 15. MEASURES TO PROTECT AGAINST SMISHING • Users should be very cautious in telephoning any numbers they are sent in an SMS message. • Users should be very cautious when clicking on any links in messages. • Users should not install any applications from senders they do not know. • If a user receives a suspicious message from someone they do know,they should check with the person that they have actually sent that message. • Users should be wary of numbers that do not look like usual mobile numbers, such as '5000’. • Users can add security software to their mobile to help detect any malware. 15
  • 16. VISHING • Vishing is short for voice phishing. It is the act of using a telephone call to try and scam a user into giving their personal data. The scammer will usually pretend that they are a legitimate business calling the person. • The person who is vishing will either say they are alerting the victim to an issue with their account, or advising the victim of a profitable gain. They will often ask the victim subtle questions to get the personal data they want. 16
  • 19. MEASURES TO PROTECT AGAINST VISHING • People should exercise caution when any institution contacts them, especially when they ask for personal details. If in doubt hang up and call them back on a number that is known. • People should never give out any personal details regarding a security issue with their account. A bank will prevent any kind of attack on an account without needing assistance from the account holder. 19
  • 22. MALWARE • Malware is a computer program that is designed to damage or disrupt a computer system and the files that are stored on it. • Malware can take many forms and we are going to look at a number of them. 22
  • 23. ONLINE RESOURCES Malware • www.totalbank.com/what-is-malware--spyware • https://ist.mit.edu/security/malware • https://redshift.autodesk.com/10-tips-on-how-to-prevent-malware-from -infecting-your-computer/ • www.pcworld.com/article/210891/malware.html 23
  • 24. TROJAN HORSE • A Trojan horse is a malicious computer program that disguises itself as another application, such as a game or a utility program. • When the application is run, the Trojan horse will act as a computer virus would, deleting and corrupting files in the computer system. • It looks harmless, like an application that would be desirable, but it hides a malicious program. 24
  • 26. WORMS • A computer worm is a small computer program that uses computer networks and finds security holes to replicate itself. • They can exploit a security hole in a piece of software or operating system. While replicating they will often clog up network bandwidth and can make things run slowly. 26
  • 27. SPYWARE • Spyware covers quite a broad range of malware. • The term refers to any technology that is used to gather data about a person without their knowledge. It is most commonly used to track the movements of people online. • A common type of spyware is a keylogger. This is a piece of software that records the key presses from a keyboard and will allow the person who installed it to gather personal data about the victim. 27
  • 29. ADWARE • Adware is short for advertising-supported software. • In its most basic form,it is simply a software program that is used to display adverts that are targeted at the user. • It can analyse the websites the user visits and will target them with advertising of a similar nature. • Many program developers will justify the inclusion of adware in their product by claiming that it will generate revenue for them, keeping the cost of the product lower. 29
  • 30. ADWARE • Adware as malware will present adverts when a user is browsing the web that are often shown constantly. They are normally in the form of popups or windows that cannot be closed. They will mostly just be irritating. • In certain circumstances, adware can be bundled in with legitimate software downloads.This means that you may end up with the software on your computer without actually asking to download it. 30
  • 32. ROOTKIT • A rootkit is a computer program that enables a person to gain administrator access to a victim’s computer. • It normally gets installed because a victim’s password is cracked. • The person installing it can then use the access to stop the computer recognising that the rootkit is there, so the victim will not know that someone else has complete access to their computer system. • Other malware can then be concealed on the computer to cause harm. 32
  • 33. MALICIOUS BOTS • A bot is an application that is automated and used to carry out simple and repetitive tasks. • These are normally tasks that a human would find mundane and time-consuming. Bots can be used for very productive reasons, but they can also be used as a form of malware. • Malicious bots are used by cybercriminals in a variety of ways: • SPAM bots are used to bombard people’s email inbox with SPAM emails. • Zombie bots are used to create a bot network.The bot will lay dormant on a computer until an attack is launched. The computer will then be connected with lots of other computers that have been compromised by zombie bots to launch a large-scale attack on an organisation. • Chatter bots will pretend to be humans on sites such as social networking and dating sites. 33
  • 37. RANSOMWARE • Ransomware is a type of malware that restricts a user’s access to their computer system and files. The ransomware will normally demand that the user pays a ransom in order to regain access to their computer system. • Some ransomware programs will completely lock a user’s system and some will encrypt all of the files on their system in a way that renders them useless. • Ransomware will normally try to enter a system in a similar way to a Trojan horse. • The message or ransom with which the user is presented will often imitate a law enforcement agency. It will falsely claim that the system has been used for illegal activity and that a ransom must be paid to regain access to the system. 37
  • 38. How can malware be avoided? • Malware can be very difficult to remove from a computer system. It can often take numerous scans from anti-virus software, as well as the use of various malware removal programs, depending on the type of malware infecting the system. • A user should never open a program unless they know it is legitimate. • A user should have a firewall in place that is monitoring their internet traffic. • A user should regularly run an anti-virus check and malware detection software on their computer system, to detect the presence of any malware. Any anti-virus or malware detection program should be kept up to date in order to detect newly developed malware. • A user should not open any attachments to emails from unknown users. • A user should use open Wi-Fi points with extreme caution as anybody could be connected to them. 38
  • 39. HEALTH & SAFETY ONLINE RESOURCES • https://msds.open.ac.uk/your-record/health.htm • www.youtube.com/watch?v=T8qGO7XQ0Uw • http://workplaceohs.com.au/hazards/office-safety/computers • www.ncte.ie/documents/advicesheets/29Ergonomics(June07).pdf • www.teach-ict.com/gcse_new/health_safety/miniweb/pg7.htm 39
  • 42. 42
  • 43. 43
  • 44. 44
  • 46. Answers 1. Explain the difference between Phishing and Pharming. 46 PHISHING PHARMING ● A legitimate-looking email is sent to the user. ● Malicious code is installed on the user’s hard drive or server. ● The e-mail contain a link for the user to click. The link will redirect the user to a legitimate looking website. ● A user will type in a common web address, but will be redirected to a fake website instead. ● The website will request personal data that will be stolen when entered. ● Unaware, the user enters their personal details in the fake website and the details are stolen.
  • 47. Answers 2. Describe the term ransomware. It restricts a user’s access to the files on their computer. It restricts the files access to the files either by locking the system or encrypting the files. A ransom message will appear when access is attempted requesting payment of access. 47
  • 48. Answers 3. Describe the term malicious bot. It is a bot that is automated to carry out a simple or repetitive task. The task it carries out will be party to criminal activity, such as bombarding mail boxes with SPAM email. 48
  • 49. Answers 4. Describe the need to keep personal data confidential. Personal data is very valuable and for this reason people will put a lot of effort into stealing it. A perpetrator can steal a person’s identity through collecting the or personal data/identity fraud. A person could also suffer personal attacks such as blackmail or cyberbullying if they reveal, or have stolen, certain personal information that could be used against them. Even small amounts of data released on social media over a period of time can be pieced together for criminal activity. 49
  • 50. Answers 5. Describe two health issues relating to using a computer and suggest how each can be prevented. 50 Injuries Prevention Repetitive strain injury can occur from repetitive moments such as clicking a mouse. This can be prevented through the use of support devices such as wrist rests. Carpel tunnel syndrome can occur through repetitive or continual movements. This can be prevented by taking regular breaks in work sessions/varying the position used for work. Back ache can occur from poor posture. This can be prevented by sitting on an adjustable chair with added support.
  • 51. Answers 5. Describe two health issues relating to using a computer and suggest how each can be prevented. 51 Injuries Prevention Eye strain can occur as a result of looking at a monitor for long periods of time. This can be prevented by using any settings a monitor has to aid prevention/focussing on points away from the screen periodically. Deep vein thrombosis can occur when pressure is put on the legs from sitting for long periods. This can be prevented by standing regularly and moving around periodically.
  • 52. Answers 6. Describe two safety issues relating to using a computer and suggest how each can be prevented. 52 Safety Issues Prevention Methods Fire can occur from equipment overheating/overloaded socket. This can be prevented by keeping the room well ventilated. This can be prevented by not plugging in too many devices to a socket, especially those that require lots of power. Trailing wire can cause injury to a person who trips over them This can be prevented by securing wires in a cable management system. Electric socket can occur from split drinks/touching wires together. This can be prevented by not eating or drinking at a computer. This can be prevented by an inexperienced user not handling wires. This can be prevented by having regular electrical safety checks carried out.
  • 53. Check list Are you able to: • explain why personal data should be kept confidential • describe how personal data can be gathered by unauthorised persons (including: by smishing, vishing, phishing and pharming), and how this might be prevented • discuss why eSafety is necessary • describe malware issues (including: Trojan horse, worms, spyware, adware, rootkit, malicious bots, ransomware) • describe a range of potential health issues that could arise from using IT • describe a range of safety issues relating to the use of IT 53