The Fool Gets Beaten Even in Internet (Week 10)

 




In this week's blog, I am going to analyze the "Mitnick Formula" and try to objectively evaluate the cyber security level in Azerbaijan.



Kevin David Mitnick:

Kevin David Mitnick (born August 6, 1963) is an American computer security specialistauthor, and sentenced hacker. He now owns a cyber security company Mitnick Security LLC, and is now a white hat programmer that gives security training and counseling.


Mitnick Formula:

Mitnick formula describes every system as unsafe to some extent and propose an argument that "It is not about that if a system gets hacked or not, the question is when". He states that security mainly comes from three different aspects:

  • Technologynetworks, firewalls, antiviruses... 
  • Training: awareness of different attacks 
  • Policy: set procedures and requirements


Aspect 1 (Technology) : 

The fact that technology that has been unimaginable for even to the industry-leading companies and government organizations a decade ago, is available to even the most simplest, non tech-savvy person nowadays, is fascinating. But as the technology develops further, and becomes more widely available than ever before, the security risks become more and more common and while ordinary people get increasingly susceptible, so do the hackers ,that try to steal/hijack or destroy systems.

Situation in my country, Azerbaijan, is no less different from the majority of the world. The outdated tech used in schools, hospitals, private companies, and other organizations get upgraded to modern, cutting-edge systems that are advanced in not only on hardware side, but also software wise. The old operating systems and antivirus software that are no longer supported and updated is one of the biggest risks that an organization can take if they want to stay safe from intruders lurking online. Thankfully the obsolete tech devices that are a thing of the past are hardly used in any major institutions and organizations in Azerbaijan. The computer networks are equipped with the latest tech, and advanced firewalls are installed in not only key government organizations, but also educational properties ranging from schools to universities and gymnasiums.

Aspect 2 (Training) : 

In my opinion, awareness is the biggest and most compromised security flaw of all time. Even if the systems are secure and protected, they are ruled by human beings after all. And as we all know humans trust too easily and they can be manipulated to do things and can give access to any system that otherwise is really hard to penetrate.

When it comes to the cyber training in my nation, I think that it is the biggest gap in our cyber-security systems to this day. However, the situation is a little bit different than what you may expect. It is not that there are insufficient number of cyber-security specialists, or people that work in departments with technology involved are not educated enough about the threats and countermeasures, it is mainly the general public which are not as tech-savvy and use things as if it was an impenetrable, invincible pieces of  technology. To my mind, even if cyber security professionals and tech enthusiasts receive the best education, if the general 70% of population that are susceptible to cyber crime and scams, you cannot assure a countries security to the highest extent. Apart from teaching the top members of security departments of every company, I think it is more important to educate the general nation about the threats that can be proposed and give trainings about how to be more secure while browsing the web.


Aspect 3 (Policy) : 

Policies and government regulations are really important because it can limit some "simple-minded" peoples' actions on the web.

Coming to internet regulations and measures taken by government in Azerbaijan, there aren't many. Because of morality that regulating peoples' actions can be against freedom, the government itself does not limit any actions on social media or the internet. Although in some work-oriented systems like business computers or servers and networks in educational organizations, the access to certain type of content is limited, we can not say the same about personal devices like smartphones, tablets and computers that people own. Although it may seem rude or limiting in terms of freedom, I think most people should be obliged to follow certain guidelines and restrictions because it can put the whole country's security system at a risk and can propose unwanted harm to network infrastructure even if the educated part of the audience know how to protect themselves.



Conclusion:

Altogether there is no shortcomings in terms of technological advancements in Azerbaijan, but the major problem is a portion of people that do not know how to properly utilize them. Even though cyber-security oriented education is good and the networks are getting more secure each year, I think some limitations are needed for the majority of people to stay safe in the internet era, because it can put not only themselves, but also people who are careful about the steps they take in the WWW. As one saying goes in Azerbaijan "Qurunun oduna yaş da yanar. (A healthy twig will burn from the fire of the dry ones)"

 











Yorumlar

Yorum Gönder

Bu blogdaki popüler yayınlar

Ethical Hacking “Offensive & Defensive” by Ömer Çıtak (BOOK REVIEW)

Resim
 Ethical Hacking “Offensive & Defensive” About the Author: He is the founder of StrixEye (  It's journey was initiated by three entrepreneurs to provide a proactive solution in web-app security domain.)  He lives living in Istanbul and is involved in Computer Science since 2010. Since then, he has been working in the area of Software Development (usually web) and Cyber Security. He is a free software partisan and made a lot of  contributions to the community. About The Book: The book starts by explaining basic principles like the goals and orientation of hackers,  basically dividing them into 2 as Black Hat and White Hat. Black hats can use the techniques and methods they learn for their own benefit as well as to harm other people. White hats learn the same techniques and methods as black hats. black hats try to protect systems so they don't harm anyone. This book covers the basics of hacking from both black hat and white hat perspectives. It explains how a technique used b
Devamı

Computers and Laws I: Can Property Be Intellectual? (Week 5)

Resim
 In todays' week we are going to talk about the second chapter of a book by  Rick Falkvinge and Christian Engström : The Case For Copyright Reform. Chapter 2: A Constructive Proposal For Copyright Reform The book states that the Pirate Party's intention is to not abolish copyright completely, but free it for non-commercial purposes. It is mentioned as an urgent reform due to today's non-commercial copyright standards threatening peoples' rights such as private communication and freedom of information. Sharing a file is basically two private individuals communicating and sending each other binary code, so the only way to limit the usage or to imply copyright would be to go through all those individual messages and verifying the content is copyright-free. People are not willing to give up their privacy for big companies to make more money out of it. Apart from being uncontrollable to some extent, todays copyright legislation also limits the cultural expressions we might f
Devamı

A Practical Example: the Story of Linux (Week 13)

Resim
  "LINUX AND HIS FRIENDS" As I am utilizing Windows as my "daily driver" I might not be as experienced in Linux as many other IT specialists, but in this week's blog we will cover two major distributions of Linux and the differences between them in my humble opinion. Desktop Environments: Both Ubuntu and Fedora utilize GNOME desktop environments by default, there is only a slight difference Fedora:  Fedora uses the stock GNOME interface Ubuntu:  Ubuntu has customized its GNOME interface to look more like the old "Unity Desktop"  Hardware Support: Linux as a whole has its fair share of driver issues and incompatibilities and both Ubuntu and Fedora suffer from that. However, Ubuntu: Provides an easier way to install necessary proprietary drivers which results in a more user friendly interface and better hardware support Fedora: Fedora on the other hand chooses to stick to open source software, thus making it challenging to update/install drivers Windows
Devamı