Security Attacks

tl;dr

• Social Engineering
• Physical Security
  • Memory Attacks
  • Stealing HID card information
  • Proxmark3
  • Make sure reader is SE only and not backword compatible
• Network Attacks
  • Sniffing
  • Router attacks
• DNS Atta
• RSC Security COnference
• Attacks from outside
  • AppSec - bugs from web applications
  • Install Rootkit
  • Usually memoery only - not on disks
  • makes it tought for AV programs to detect
  • Stealing passwords saved in browser
• WannaCry
  • exploiting Windows SMD service as payload (ransomeware)
  • Exploited NSA exploit - internal blue
  • The SHadow broker released NSA leaks *

Footnotes