Denial Of Service (DoS) Attacks
In a denial-of-service attack, the attacker tries to cripple a computer or an entire network by flooding it with many ridiculous requests. This results in the target system becoming overloaded or crashing and unable to respond to regular submissions. Sometimes, a DoS attack serves as a diversionary maneuver or leverage for another attack.
Distributed Denial Of Service (DDoS) Attacks
This is a distributed denial-of-service attack. In such an attack, several computers try to paralyze the target system or network simultaneously. In the new past, practically all significant DoS assaults were likewise dispersed DoS assaults, in which a few hundred to 1,000 PCs assault simultaneously. Assailants frequently take over already unstable waiters or IoT gadgets, load their DoS programming there and afterward utilize these gadgets to send off an organized DoS assault on the objective framework.
Malware (from Malicious Software), or malware, is a generic term for any software designed to harm computer systems intentionally. It is often not apparent that such a malicious program is running to the user. Malware includes computer viruses, worms, Trojan horses, ransomware, and other programs that use a computer’s resources for malicious purposes.
A computer virus is a malicious program that replicates itself by inserting itself into other programs or documents. A program or document into which a virus has inserted itself is infected and is called the virus’s host. If this host is started or opened, the virus is also created, which in turn searches for new host files, mainly on the local system, and infects them. This process usually goes unnoticed until the virus starts its malicious routine at a certain point in time and thus deletes files, for example.
Unlike a computer virus, a worm does not require a host program to run and spread. It is a standalone malicious program that proliferates itself by exploiting the vulnerabilities of the targeted systems. The worm slips through the security holes. The distribution usually takes place actively via local networks or the Internet.
Trojan Horse – “Trojan”
A Trojan horse or trojan is a malicious program that disguises itself as a legitimate application. In addition to the desired functionalities, it often has unwanted, harmful functions. For example, this can be a tool that supposedly makes the computer faster, but it also sniffs out passwords and transmits them to the Internet. The user thus intentionally installs the malicious program and possibly also works with it. Unlike viruses and worms, a Trojan horse does not usually propagate itself. It relies on the help of users to do so.
Ransomware is malware that requires ransom payment to an extortionist so that the infected party does not suffer any harm. The malware often encrypts the victim’s data and demands a ransom so that the data can be decrypted again. It is uncertain whether the blackmailer’s promise will be kept.
Phishing is one of the most common types of social engineering attacks. It attempts to trick a victim into revealing crucial information. This is usually done via email. An attacker often attempts to pose as a natural person or organization and offers a reward or problem for the recipient to solve.
This could, for example, be an email that appears to be from the recipient’s house bank. He is prompted to click on a link and enter the access data there. However, the link does not lead to the house bank’s website but a deceptively similar web page controlled by the attacker. As soon as the user logs in there, his access data falls into the hands of unauthorized persons.
In a man-in-the-middle attack, an unauthorized person sits in the middle of communication between the victim and the actual recipient. Instead of traffic going straight to the recipient, it goes to the attacker first and vice versa. For example, wrong keys or infected software could be imposed, confidential data could be eavesdropped on and data packets suppressed, or new ones inserted. The worst thing about these attacks is that they are challenging for the victim to detect. For the person concerned, everything seems to be going well.
Theft Of Passwords And Access Data
Attackers can obtain their victims’ passwords and other credentials in several ways.
User Database Theft
If an attacker steals an entire database of, e.g., an online shop, anyone whose credentials appear in the database is at risk of having their credentials compromised.
In a social engineering attack, an attacker uses malicious methods to trick someone into taking specific actions that the victim is unaware of as fraud. The best-known form is phishing.
The Direct Attack On The Accesses
With these attacks, the attacker tries to penetrate the systems directly by using technical means to generate correct access data. This includes, for example, automatically trying out all possible passwords or passwords from a list until the correct one happens to grant access. This procedure is only promising if as many passwords as possible can be quickly tried out.