A simple guide by US-CERT on securing home networks: https://www.us-cert.gov/ncas/tips/ST15-002
Group 3 students in the INFSYS 3848 (Introduction to Information Security) examined the implications of social media in terms of spear phishing. This group identified an often overlooked aspect: The ability of malicious actors to target victims right on social media platforms!
Their web based presentation is here: http://umsl.edu/~jdrmcf/
Executive Summary of their report:
In this report, we address the serious issue of spear phishing. While standard phishing has been around for quite some time and has become less prevalent, a new form of phishing – ‘spear phishing’ – is becoming increasingly popular. In this particular form of phishing, attackers utilize a clever, manipulative tactic known as ‘social engineering’ on a specifically targeted user. With the growth of social media, attackers have learned that personal pages can be a great resource for not only information on their targets, but can also be used as a means to attack end users. This new point of attack is particularly effective as most users simply do not expect to be phished through their personal pages on social media, nor is it regularly touched on as a part of security awareness programs or included in existing measures of phishing prevention.
In order to combat this folly, we have devised a system intended to help educate the end user with an approach more interactive than existing programs. Specifically, our program focuses on the social media aspect by demonstrating exactly how much information can be collected through public social media pages. The program will also pair employees in order to have them perform information searches on one another with the intent of facilitating direct participation and active learning, as well as adding an entertainment factor. To further drive the issue home, participants will also be allowed to launch their own harmless, simulated attacks through personal social media pages to see first-hand just how frequently end-users fall for spear phishing attempts. Finally, to keep with the interactive, enjoyable theme, our program encourages rewarding employees for participation in some form.
Group 6 students in the INFSYS 3848 (Introduction to Information Security) Fall 2015 semester took a deep look into the dangers while connecting to public WiFi. Their web based presentation is here: http://shaji-3848.herokuapp.com/
This group’s in-class presentation also included a nice demonstration!
The University of Missouri St. Louis Cybersecurity and IT Innovation Lab (CITIL) held the 2015 conference on cybersecurity titled “STLCyberCon- 2015”. The conference attracted students, teachers, practitioners and researchers.
It was a unique conference on Cybersecurity that featured presentations by distinguished speakers on a variety of topics bridging theory and practice. STLCyberCon was held on Friday, November 20 from 8.00 am – 4.00 pm in 003 and 005 Express Scripts Hall.
The departments of Information Systems in the College of Business and Math & Computer Science in the College of Arts and Science jointly opened the Cybersecurity and Information Technology Innovation Lab (CITIL).
The CITIL will act as a hub for interdisciplinary research and teaching collaboration on cybersecurity.
October 2014 marks the 11th Annual National Cyber Security Awareness Month (NCSAM) sponsored by the Department of Homeland Security in cooperation with the National Cyber Security Alliance and the Multi-State Information Sharing and Analysis Center. This year’s theme is “Our Shared Responsibility.” Visit the DHS NCSAM page to learn more about your shared responsibility and to spread the word!
Be sure to participate in any on-campus cyber security related activities, training, and awareness initiatives at the University of Missouri – Saint Louis.
UMSL College of Business Administration is proud to become a champion of the National Cyber Security Awareness Month.
Learn how to be safe online and protect your data and devices with these tips and resources.
Try out your hacking skills! The St. Louis Chapter of ISSA is hosting an electronic Capture the Flag contest on October 4 at the University of Missouri-St. Louis Millennium Student Center. Only 100 seats available.
Event Date/Time: Saturday, 10/04/2014, 11:00am to 4:00pm
Event is free to attend but registration is required. Click here for event details and registration.