Scenario 1
Security breaches today are all too common, with attackers constantly finding new and innovative ways of infiltrating organizations in search of valuable information.
Scroll down to read the latest breaking security news headline.
What Happened?
According to our sources, a well known hotel chain that operates across the world has reported a massive data breach, with the personal information of over three million guests exposed to hackers.
The hotel discovered that hackers gained access to its customer database by using the login details of one of its employees.
At this point, the hotel doesn’t believe that the hackers were able to access any account passwords or financial information. Recent guests are encouraged to check the hotel chain’s web portal to see if they have been impacted by this breach.
*This is a fictional scenario.
This is a multiple choice question. Once you have selected an option, select the submit button below to submit your answer.
In this example, what did the hackers take?
Select the correct answer, then Submit.
- The card payment information of over three million guests.
- The names, email address and phone numbers of over three million hotel guests.
- The hotel chain’s reputation.
- The username and password of all of the hotel’s employees.
Scenario 2
eLearning Platforms at Risk!
The team at DEXA is concerned. eLearning platforms are becoming prime targets for attackers as more and more organizations make the move to digital learning.
SCROLL down to find out more about a recent case.*
A popular online training platform admitted leaving the personal data of millions of its students (many of them minors) exposed on a publicly accessible cloud database.
Hackers were able to directly access students’ full names, email addresses, phone numbers, and school enrollment details from the Internet!
While it’s unclear what the hackers have done with this acquired information, it’s safe to say that they have everything they need to carry out widespread phishing or malware attacks.
What Exploits?
What exploits did the hackers use in this case to gain access to valuable personal information?
Select the correct answer, then Submit.
- Weaknesses in the platform’s security practices.
- Extracting information when the volume of student data exceeds the storage capacity of the platform’s memory buffer.
- Bypassing the platform’s access control methods.
- Taking advantage of student information not being correctly validated on the platform.
The hotel chain’s reputation
In the first scenario, the cybercriminals used the username and password of one of the employees to get the information.
while in the second scenario, I believe the hackers used the Weaknesses in the platform’s security practices. Because how will they explain leaving vital information of their students in a publicly accessible platform.
The names, email addresses, and phone numbers of over three million hotel guests.
Weaknesses in the platform’s security practices.
Scenario 1
The names, email address and phone numbers of over three million hotel guests.
Scenario 2
Weaknesses in the platform’s security practices
-The username and password of all of the hotel’s employees.
-Weaknesses in the platform’s security practices.
Weaknesses in the platform’s security practice
The username and password of all of the hotel’s employees.
Weaknesses in the platform’s security practices.
Weaknesses in the platform’s security practices.
Bypassing the platform’s access control methods.
-The names, email address and phone numbers of over three million hotel guests.
– Weaknesses in the platform’s security practices.
Weaknesses in the platform’s security practices.
Scenario 1
The names, email address and phone numbers of over three million hotel guests.
Scenario 2
Weaknesses in the platform’s security practices
scenario 1
The names, email address and phone numbers of over three million hotel guests.
scenario 2
Weaknesses in the platform’s security practices.
Scenario 1: The hotel chain’s reputation.
Scenario 2: Weaknesses in the platform’s security practices.
Scenario 1: The names, email address and phone numbers of over three million hotel guests.
Scenario 2: Weaknesses in the platform’s security practices.
Day 2
Answers to What Color is my hat?
1. Gray hat: Uknown agenda and unauthorised access
2. Black hat: Took advantage of customer account for financial gain
3. Gray hat: Undisclosed agenda. May or may not report vulnerabilities of the system to the owner
4. Black hat: Malicious agenda for financial gain
5. White hat: Authorised access by the owner
SCENARIO1:
The names, email address and phone numbers of over three million hotel guests
SCENARIO2:
Weaknesses in the platform’s security practices.
1. The names, email address and phone numbers of over three million hotel guests.
2. Weaknesses in the platform’s security practices
1. The hotel chain’s reputation. 2. Weaknesses in the platform’s security practices.
SCENERIO 1; The names, email address and phone numbers of over three million hotel guest
SCENERIO 2;Weaknesses in the platform’s security practices.
Reply
Day 1
Scenario 1.
The names, email address and phone numbers of over 3 million guests
The username and password of all of the hotels’s employees
weakness in the platform’s security practices
The username and password of all of the hotels’s employees
weakness in the platform’s security practices
1. Gray hat attacker
2. Black hat attacker
3. White hat attacker
4. Black hat attacker
5. Gray hat attacker
Day 2 answers
1. Gray hat hackers
2. Black hat hackers
3. White hat hackers
4. Gray hat hackers
5. White hat hackers