Cyber Primer

Recommendations

Info

Cyber threats Annex 2A – Threat actor case studies Case study 1 – Cyber used for personal data theft Theft of personal data – United States Office of Personnel Management Who What There has been no official attribution of those responsible, although General (Retired) James Clapper, the United States National Director for Intelligence, has been quoted as saying China remains the ‘lead suspect’. According to the Wall Street Journal, United States government officials suspect that Chinese hackers perpetrated the breach. The Washington Post has also reported that the attack originated in China, citing unnamed government officials. In 2015, the United States Office of Personnel Management (OPM) announced that it had been the target of two separate, but related, cyber security breaches. In the first event records of as many as four million people may have been compromised with personally identifiable information such as Social Security numbers, as well as names, dates and places of birth, and addresses being targeted. The data breach was noticed by the OPM in April 2015 and is believed to have started in March 2014, but may started even earlier. In the second event, identified in June 2015, OPM discovered that the background investigation records of current, former and prospective Federal employees and contractors had been stolen. The OPM and the interagency incident response concluded with high confidence that sensitive information, including the Social Security numbers of 21.5 million individuals, was stolen from the background investigation databases. This included 19.7 million individuals that applied for a background investigation, and 1.8 million non-applicants, primarily spouses or co-habitants of applicants. Some records also included findings from interviews conducted by background investigators and approximately 5.6 million include fingerprints and the usernames and passwords that background investigation applicants used to fill out their background investigation forms. The theft was more significant as this was the first event where physical data was stolen in the form of the 5.6 million sets of fingerprints. These breaches were described by Federal officials as among the largest breach of government data in the history of the United States. 36 Cyber Primer (2nd Edition)
How Against whom Why Theft of personal data – United States Office of Personnel Management The United States Department of Homeland Security official Andy Ozment testified that the attackers had gained valid user credentials to the systems they were attacking, likely through social engineering. The breach also consisted of a malware package which installed itself within the OPM’s network and established a backdoor. From there, attackers escalated their privileges to gain access to a wide range of OPM networks. The United States Office of Personnel Management. It is not clear what the motive behind the data theft was; however, although the ability to misuse fingerprint data is limited at this moment the possibility could change over time as technology evolves. China is widely suspected of being behind the breaches, perhaps as part of a move to build a massive database on United States nationals. When March 2014 – June 2015. Cyber threats Impact More information Breaches involving biometric data like fingerprints are particularly concerning to privacy experts because of their permanence: unlike passwords and even Social Security numbers, fingerprints cannot be changed. Numerous media outlets and cyber security forums carried news of the theft. A brief summary of the incident can be found on the OPM and Department of Defense websites: https://www.opm.gov/cybersecurity/cybersecurity-incidents/ and http://www.dodea.edu/opm-cybersecurity.cfm © Shutterstock © Shutterstock Cyber Primer (2nd Edition) 37
Page 1 and 2: Cyber Primer Second Edition Develop
Page 3 and 4: Cyber Primer The Cyber Primer (2nd
Page 5 and 6: Preface ‘The Government will ensu
Page 7 and 8: Contents Preface . . . . . . . . .
Page 9 and 10: “In the information age almost al
Page 11 and 12: Fundamentals of cyber Chapter 1 - F
Page 13 and 14: Fundamentals of cyber • are ready
Page 15 and 16: Fundamentals of cyber cyber and cyb
Page 17 and 18: Fundamentals of cyber • details o
Page 19 and 20: Mainstreaming, competencies, unders
Page 21 and 22: Fundamentals of cyber 1.27. Cyber b
Page 23 and 24: 1A.5. Armed attack. Armed attack is
Page 25 and 26: Fundamentals of cyber Notes Cyber P
Page 27 and 28: “In the “We information reserve
Page 29 and 30: Cyber threats Chapter 2 - Cyber thr
Page 31 and 32: Cyber threats 2.5. Cyber attacks ca
Page 33 and 34: Cyber threats 2.9. Terrorists. Terr
Page 35 and 36: Cyber threats b. Payload. Payload i
Page 37 and 38: Cyber threats The process of attrib
Page 39 and 40: Phishing Spear phishing Whaling Fak
Page 41 and 42: Cyber threats Malware types Viruses
Page 43: Cyber threats and/or securely. Such
Page 47 and 48: Cyber threats Using Twitter to mani
Page 49 and 50: Cyber threats Cyber attacks against
Page 51 and 52: Cyber threats State use of cyber op
Page 53 and 54: Cyber threats Case study 6 - The im
Page 55 and 56: Cyber threats Impact of malware on
Page 57 and 58: Cyber threats Social engineering ag
Page 59 and 60: “In the information age almost al
Page 61 and 62: Chapter 3 - Cyber functions Cyber f
Page 63 and 64: Cyber functions levels, they protec
Page 65 and 66: Cyber functions • command and con
Page 67 and 68: Cyber functions 3.16. Indicators an
Page 69 and 70: Cyber functions Maritime Land Air a
Page 71 and 72: Cyber functions 3.27. Electromagnet
Page 73 and 74: “In the information “It is impo
Page 75 and 76: Integrating cyber operations Chapte
Page 77 and 78: Integrating cyber operations Cyber
Page 79 and 80: Integrating cyber operations archit
Page 81 and 82: Integrating cyber operations physic
Page 83 and 84: Integrating cyber operations NATO a
Page 87 and 88: Integrating cyber operations Israel
Page 91 and 92: Lexicon Lexicon Part 1 - Acronyms a
Page 93 and 94: Part 2 - Additional terms and defin
Page 95 and 96:
Lexicon information operations Info
Page 97 and 98:
Lexicon TEMPEST TEMPEST refers to t
Page 99 and 100:
Lexicon Cyber Security Information
show all

Cyber Primer

Create successful ePaper yourself

Delete template?

Save as template?