Rules for the Implementation of Exploits During an Active Analysis of the Corporate Networks` Security Based on a Fuzzy Assessment of the Quality of the Vulnerability Validation Mechanism

Kyrychok, Roman; Brzhevska, Zoreslava; Hulak, Hennadii; Bessalov, A. V.; Astapenya, Volodymyr

doi:10.28925/2663-4023.2021.14.148157

Cited by 2 publications

(3 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Одним з ефективних методів зменшення ймовірності перетворення вразливості на інцидент безпеки є впровадження стратегії глибинного захисту 'Defense in Depth' (DiD) -багаторівневого підходу до безпеки, який передбачає розгортання декількох заходів безпеки на різних рівнях інформаційної системи. Цей підхід спрямований на створення надлишкових рівнів безпеки, що ускладнює зловмисникам успішну експлуатацію вразливостей: захист периметра [4], контроль доступу [5], керування виправленнями [6],сегментація мережі [7], шифрування [8],виявлення та моніторинг вторгнень [9], безпека додатків [10], тренінги персоналу [11], план реагування на інциденти [12], регулярні оцінки та аудити [13], резервне копіювання та аварійне відновлення [14].…”

Section: вступunclassified

Methodology for Assessing Comprehensive Damages From an Information Security Incident

Sokolov,

Skladannyi

2023

Cybersecurity

View full text Add to dashboard Cite

Security incidents can have significant economic consequences for public authorities. To mitigate the economic impact of cybersecurity incidents, public authorities must invest in robust countermeasures, and collaboration with other government agencies, private sector partners, and international organizations can help increase resilience and response capacity to cyber attacks. The article uses the analysis of various vulnerabilities and the mechanism of transformation into a security incident, as well as analyzed approaches to monitoring existing threats and methods of countering them. International and national organizations and associations can act as data sources. Results from various reports are aggregated depending on the field of work of a certain organization and its form of ownership. Consideration of the mechanics of the transition of vulnerabilities into security incidents allows the creation of formalized models for audit systems and analysis of detected incidents or real-time monitoring. One of the main criteria is the assessment of cyber security risks. The publication proposes a method that takes into account the interrelationship of system components and allows taking into account the sequence of engagement of these components. Sources of operational and reporting information on security incidents are considered as international and national experiences. As a result, measures are proposed to reduce the risk of using existing vulnerabilities for state information networks and systems. Since the only method of qualitative transition to reduce losses from cyber incidents is to improve the quality of cyber security specialists, the article proposes a new retraining program for specialists from related fields: information technology, telecommunications, electronics, radio engineering, programming, etc. As a result of this study, it can be seen that the formation of security policy for state institutions should also take into account the economic impact and probable losses from cyber attacks. Further research is aimed at validating the proposed recommendations for the formation of security policy for state and commercial institutions and organizations.

show abstract

Section: вступunclassified

Methodology for Assessing Comprehensive Damages From an Information Security Incident

Sokolov,

Skladannyi

2023

Cybersecurity

View full text Add to dashboard Cite

show abstract

“…№ 3 (23), 2024 ISSN 2663 -4023 інформації використовуються на етапах проєктування та експлуатації для формування та реалізації вимог щодо кібербезпеки обєктів критиної інфраструктури [2], [4], [5].…”

unclassified

“…На думку фахівців, серед головних причин зростання кількості кіберзагроз є: застосування нових інформаційних технологій, які мають проблеми з безпекою своїх програмних модулів [2], вразливості протоколів, компонентів інтерфейсів [5], систем управління базами даних тощо. Спостерігається тенденція орієнтації злочинців на доступ до інформації великих корпорацій, активна діяльність як поодиноких кіберзлочинців, так і організованих злочинних угрупувань.…”

unclassified

Statistical Methods for Predicting Phishing Attacks

Dobryshyn

2024

Cybersecurity

View full text Add to dashboard Cite

The article proposes a methodology for predicting so-called phishing attacks, which are a common form of cybercrime, the number of which is growing every year, and the level of their harmful impact on the information systems of critical infrastructure objects is also increasing. To analyze trends and predict phishing attacks, we used statistical data published in scientific works of domestic and foreign researchers, as well as published by online publications of leading consulting companies working in the field of information security and cybersecurity. Statistical methods based on the use of time series, as one of the popular approaches used to predict various technological and economic processes, were chosen as tools for researching and predicting phishing attacks. This made it possible to analyze the types and patterns of phishing attacks that attackers use to disrupt the operation of software of information and communication systems and automated systems. Based on time series analysis, a trend model was built for the number of detected phishing attacks for the period 2020–2023. A calculation was made of the predicted number of phishing attacks for 16 quarters of 2020–2023, as well as the estimated forecast of the occurrence of these attacks for four quarters of 2024. To improve the forecast, a coefficient taking into account the seasonality factor was calculated and a correlation and regression analysis of the impact of phishing attacks on the total number of attacks detected during 2020–2023 was performed. Calculations have been performed, indicating that the discrepancies in the predicted values are not significant; the results presented allow us to select the optimal strategy for identifying, predicting and eliminating computer attacks related to phishing. Based on the time series model and the calculations obtained, it was concluded that statistical forecasting methods make it possible to build a forecast of phishing attacks, provide in the future the opportunity to develop and formulate methods for countering these attacks, and plan measures to increase the level of security of information resources.

show abstract

Rules for the Implementation of Exploits During an Active Analysis of the Corporate Networks` Security Based on a Fuzzy Assessment of the Quality of the Vulnerability Validation Mechanism

Cited by 2 publications

References 3 publications

Methodology for Assessing Comprehensive Damages From an Information Security Incident

Methodology for Assessing Comprehensive Damages From an Information Security Incident

Statistical Methods for Predicting Phishing Attacks

Contact Info

Product

Resources

About