Top 10 Threats to Computer Systems Include Professors and Students
Saved in:
| Title: | Top 10 Threats to Computer Systems Include Professors and Students |
|---|---|
| Language: | English |
| Authors: | Young, Jeffrey R. |
| Source: | Education Digest: Essential Readings Condensed for Quick Review. May 2009 74(9):24-27. |
| Availability: | Prakken Publications. 832 Phoenix Drive, P.O. Box 8623, Ann Arbor, MI 48108. Tel: 734-975-2800; Fax: 734-975-2787; Web site: http://www.eddigest.com/ |
| Peer Reviewed: | N |
| Physical Description: | |
| Page Count: | 4 |
| Publication Date: | 2009 |
| Document Type: | Journal Articles Reports - Descriptive |
| Education Level: | Higher Education |
| Descriptors: | Computer Security, Computers, Social Networks, Evaluation Methods, Surveys, Interviews, Influences, Telecommunications, College Students, Faculty |
| ISSN: | 0013-127X |
| Abstract: | In this article, the author presents the top-10 list of campus computer-security risks he compiled based on several recent computing surveys and interviews with more than a dozen college-technology leaders. The list, ordered from least to most serious, is by no means scientific, but it gives a sense of where today's battle lines are--and why "phish" costumes should become more common on campuses. These threats to computer security are: (10) Spammers; (9) Cellphones; (8) Phishers; (7) Social Networks; (6) Outsource Partners; ((5) Students; (4) Professors; (3) Staff Members; (2) Thieves; and (1) Malware and Botnets. |
| Abstractor: | ERIC |
| Entry Date: | 2009 |
| Access URL: | https://www.eddigest.com/index.php |
| Accession Number: | EJ857692 |
| Database: | ERIC |
|
Full text is not displayed to guests.
Login for full access.
|
|
| FullText | Links: – Type: pdflink Url: https://content.ebscohost.com/cds/retrieve?content=AQICAHj0k_4E0hTGH8RJwT4gCJyBsGNe_WN95AvKlDbXJGqwxwGexFCXbF6ZPLPja0UfuvyeAAAA4jCB3wYJKoZIhvcNAQcGoIHRMIHOAgEAMIHIBgkqhkiG9w0BBwEwHgYJYIZIAWUDBAEuMBEEDGZ7lw4809GN1nIuEAIBEICBmryRy2jXV3CZRfLGZZCgXWFt6xGdrnZKqGpJnOiHa3dzKSvgiWQmrZoUM4TOIfcu1898UV_Ds2tZj_PRpUINkLZk-UMiz0yQxoRJaBwHFCxCsAawmb8K4xhPTKYL0PQSnpi5l0x_umUtazf-9n5QIPwNls_nxHCDTlTTGmjPGsQJewGEOUqDAtbX_XeJ3HSrmX35ZPfTJRbIXrA= Text: Availability: 1 Value: <anid>AN0038608383;edd01may.09;2009May06.10:29;v2.2.460</anid> <title id="AN0038608383-1">Top 10 Threats to Computer Systems Include Professors and Students </title> <p>KAREN McDowell spent several days this fall dressed in a purple fish costume, holding a plastic spear.</p> <p>McDowell, a network-security analyst at the University of Virginia, wanted to raise awareness about "phishing," e-mail schemes in which con artists send messages to trick people into giving out passwords or other personal information. McDowell walked around high-traffic areas of the campus to get attention.</p> <p>The outfit hooked curious students, who asked her what she was up to, and most listened to her spiel. In the past, plainclothes administrators set up tables and handed out brochures about the importance of computer security. But McDowell felt that such efforts made little impact, since students mostly walked by without stop-. ping. The fish costume was her idea — she felt that a bit of flashiness and humor would help the message sink in.</p> <p>User awareness is growing in importance when it comes to computer security. Not long ago, keeping college networks safe from cyberattackers mainly involved making sure computers around campus had the latest software patches. New computer worms or viruses would pop up, taking advantage of some digital hole in the Windows operating system or in popular web software, and officials would work to plug the gaps.</p> <p>Those were the good old days — back when many big attacks were started by hobbyists who got a cheap thrill watching geek squads scramble.</p> <p>Today a growing number of network bad guys are professional criminals, and they're looking to steal real money. They don't just want to post an embarrassing note on your college's home page. They want to nab the identities of students and professors to go on shopping sprees with forged credit cards. With the global economy getting lousier, officials predict that even more hackers will get into the act in search of easy cash.</p> <p>Increasingly, the weakest part of a network is the users, who carelessly give out their passwords or leave important information for the taking.</p> <p>That's the conclusion I reached at a recent Dartmouth College conference on "Securing the eCampus: Building a Culture of Information Security in an Academic Institution," where I was asked to give my take on security threats. I compiled the following top-10 list of campus computer-security risks based on several recent computing surveys and interviews with more than a dozen college-technology leaders. The list, ordered from least to most serious, is by no means scientific, but it gives a sense of where today's battle lines are — and why "phish" costumes should become more common on campuses.</p> <hd id="AN0038608383-2">Threat #10: Spammers</hd> <p>The unwanted e-mail advertising messages named after canned meat represent a constant attack on the campus, and collectively they can have a significant impact on network performance. Even though many colleges can stop most spam messages before they reach users, filtering out ads for Viagra diverts energy away from other activities that IT officials could be doing.</p> <p>More important, spam is an underlying factor in other networksecurity problems, since some attackers aim at college networks to help them send more spam, by hijacking student computers and turning them into spam servers. So if spammers could be stopped, that would help reduce other kinds of network threats.</p> <hd id="AN0038608383-3">Threat #9: Cell Phones</hd> <p>The number of iPhones and other web-surfing smartphones on campuses is growing rapidly. Since some phones can connect to wireless networks that blanket campuses, it is easy for students, professors, and administrators to do all sorts of communication on their phones that they used to do on their laptops. Which is great, until hackers create viruses for cell phones or until a user loses a phone with sensitive data stored on it. And so far, smartphones are harder to secure than laptops or desktops because virus-detection software can quickly run down cell phones' batteries.</p> <hd id="AN0038608383-4">Threat #8: Phishers</hd> <p>Phishing scams are getting more sophisticated. Some early e-mail messages that attempted to trick users into revealing passwords were littered with spelling errors or poor grammar, tipping people off that they were fakes. But today the bait is more lifelike.</p> <p>In a scheme that has emerged in the past year, scammers pretend to be college network officials asking recipients for their network ID's and passwords. Colleges are struggling to educate students and professors that they should never, ever give out their passwords via e-mail.</p> <hd id="AN0038608383-5">Threat #7: Social Networks</hd> <p>The Facebook social-networking system was invented by a college student, and students are among its most enthusiastic users. Cybercriminals have found that social networks are ideal pools for phishing attacks.</p> <p>A study by Indiana University researchers showed that phishing schemes were much more likely to trick people on social networks than via e-mail — in some cases getting 70% of users to fall for the scam. In one popular scheme, students get a message that appears to come from a friend, saying that if they click a link they will see a video clip that they appear in. The link takes users to a site that tries to install malicious software on their computers.</p> <hd id="AN0038608383-6">Threat #6: Outsource Partners</hd> <p>Colleges are outsourcing more technology services than ever these days, putting the security of campus information in someone else's hands. Calling vendors a "threat" is probably too strong, but companies can be a point of vulnerability for campuses.</p> <p>Case in point: Last April, a contractor for SunGard Higher Education had a laptop stolen, and it contained data from 18 colleges that were clients of the company. For one of those institutions alone, the laptop had data for 3,502 students and alumni from four campuses.</p> <hd id="AN0038608383-7">Threat #5: Students</hd> <p>Every year, students seem to become more careless about computer security. Students will happily give their passwords to friends to check their e-mail for them. Or they'll create simple passwords that are easy for attackers to guess.</p> <hd id="AN0038608383-8">Threat #4: Professors</hd> <p>The only people more careless on their computers than students are professors. When a phishing scheme hit Stanford University this year, for instance, the vast majority of those who fell for the con were faculty members.</p> <hd id="AN0038608383-9">Threat #3: Staff Members</hd> <p>Some colleges collect more sensitive information than they need, leaving more opportunities for the data to be exposed to the public or swiped by hackers. Several recent reports said mistakes by careless employees had caused more data breaches than outside attackers had.</p> <hd id="AN0038608383-10">Threat #2: Thieves</hd> <p>Thefts of computers with sensitive data have increased each year for the past five years, according to the latest survey by the Campus Computing Project, which tracks college IT trends. This year more than 30 colleges have reported lost or stolen computers or hard drives with sensitive data on them.</p> <p>As laptops get smaller and flash drives get more capacious, this threat will very likely grow. Officials recommend that professors and administrators encrypt sensitive data so that criminals won't be able to see such information on laptops they've swiped.</p> <hd id="AN0038608383-11">Threat #1: Malware and Botnets</hd> <p>The Georgia Tech Information Security Center estimates that 15% of online computers worldwide are part of botnets: millions of computers infected with malicious code that lets attackers turn them into "zombies" for their own evil electronic deeds (botnets are often used to send spam). That's up from 10% a year ago.</p> <p>The problem is that malware, as this and other malicious software is called, gets upgraded faster than antivirus software. "The bad guys can repack and rerelease their malicious code faster than the good guys can build and distribute antivirus signatures to identify and block it," says Joseph E. St. Sauver, manager of security programs for Internet2, an academic-computing consortium.</p> <p>It's clear that tech security is as much a people problem as it is a technological one. And education and awareness of good computer hygiene are more important than ever to keep networks clean and data safe. The University of Virginia has already received requests from security officials at other colleges who want to borrow the costume.</p> <p>Condensed, with permission, from The Chronicle of Higher Education, 55 (December 19,2008), A9. Copyright 2008, The Chronicle of Higher Education. The complete version of the article is at <ulink href="http://chronicle.com">http://chronicle.com</ulink>.</p> <aug> <p>By Jeffrey R. Young</p> <p></p> <p>Jeffrey R. Young is a senior writer for The Chronicle of Higher Education.</p> </aug> |
|---|---|
| Header | DbId: eric DbLabel: ERIC An: EJ857692 AccessLevel: 3 PubType: Academic Journal PubTypeId: academicJournal PreciseRelevancyScore: 0 |
| IllustrationInfo | |
| Items | – Name: Title Label: Title Group: Ti Data: Top 10 Threats to Computer Systems Include Professors and Students – Name: Language Label: Language Group: Lang Data: English – Name: Author Label: Authors Group: Au Data: <searchLink fieldCode="AR" term="%22Young%2C+Jeffrey+R%2E%22">Young, Jeffrey R.</searchLink> – Name: TitleSource Label: Source Group: Src Data: <searchLink fieldCode="SO" term="%22Education+Digest%3A+Essential+Readings+Condensed+for+Quick+Review%22"><i>Education Digest: Essential Readings Condensed for Quick Review</i></searchLink>. May 2009 74(9):24-27. – Name: Avail Label: Availability Group: Avail Data: Prakken Publications. 832 Phoenix Drive, P.O. Box 8623, Ann Arbor, MI 48108. Tel: 734-975-2800; Fax: 734-975-2787; Web site: http://www.eddigest.com/ – Name: PeerReviewed Label: Peer Reviewed Group: SrcInfo Data: N – Name: PhysDesc Label: Physical Description Group: PhysDesc Data: PDF – Name: Pages Label: Page Count Group: Src Data: 4 – Name: DatePubCY Label: Publication Date Group: Date Data: 2009 – Name: TypeDocument Label: Document Type Group: TypDoc Data: Journal Articles<br />Reports - Descriptive – Name: Audience Label: Education Level Group: Audnce Data: <searchLink fieldCode="EL" term="%22Higher+Education%22">Higher Education</searchLink> – Name: Subject Label: Descriptors Group: Su Data: <searchLink fieldCode="DE" term="%22Computer+Security%22">Computer Security</searchLink><br /><searchLink fieldCode="DE" term="%22Computers%22">Computers</searchLink><br /><searchLink fieldCode="DE" term="%22Social+Networks%22">Social Networks</searchLink><br /><searchLink fieldCode="DE" term="%22Evaluation+Methods%22">Evaluation Methods</searchLink><br /><searchLink fieldCode="DE" term="%22Surveys%22">Surveys</searchLink><br /><searchLink fieldCode="DE" term="%22Interviews%22">Interviews</searchLink><br /><searchLink fieldCode="DE" term="%22Influences%22">Influences</searchLink><br /><searchLink fieldCode="DE" term="%22Telecommunications%22">Telecommunications</searchLink><br /><searchLink fieldCode="DE" term="%22College+Students%22">College Students</searchLink><br /><searchLink fieldCode="DE" term="%22Faculty%22">Faculty</searchLink> – Name: ISSN Label: ISSN Group: ISSN Data: 0013-127X – Name: Abstract Label: Abstract Group: Ab Data: In this article, the author presents the top-10 list of campus computer-security risks he compiled based on several recent computing surveys and interviews with more than a dozen college-technology leaders. The list, ordered from least to most serious, is by no means scientific, but it gives a sense of where today's battle lines are--and why "phish" costumes should become more common on campuses. These threats to computer security are: (10) Spammers; (9) Cellphones; (8) Phishers; (7) Social Networks; (6) Outsource Partners; ((5) Students; (4) Professors; (3) Staff Members; (2) Thieves; and (1) Malware and Botnets. – Name: AbstractInfo Label: Abstractor Group: Ab Data: ERIC – Name: DateEntry Label: Entry Date Group: Date Data: 2009 – Name: URL Label: Access URL Group: URL Data: <link linkTarget="URL" linkTerm="https://www.eddigest.com/index.php" linkWindow="_blank">http://www.eddigest.com/index.php</link> – Name: AN Label: Accession Number Group: ID Data: EJ857692 |
| PLink | https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=eric&AN=EJ857692 |
| RecordInfo | BibRecord: BibEntity: Languages: – Text: English PhysicalDescription: Pagination: PageCount: 4 StartPage: 24 Subjects: – SubjectFull: Computer Security Type: general – SubjectFull: Computers Type: general – SubjectFull: Social Networks Type: general – SubjectFull: Evaluation Methods Type: general – SubjectFull: Surveys Type: general – SubjectFull: Interviews Type: general – SubjectFull: Influences Type: general – SubjectFull: Telecommunications Type: general – SubjectFull: College Students Type: general – SubjectFull: Faculty Type: general Titles: – TitleFull: Top 10 Threats to Computer Systems Include Professors and Students Type: main BibRelationships: HasContributorRelationships: – PersonEntity: Name: NameFull: Young, Jeffrey R. IsPartOfRelationships: – BibEntity: Dates: – D: 01 M: 05 Type: published Y: 2009 Identifiers: – Type: issn-print Value: 0013-127X Numbering: – Type: volume Value: 74 – Type: issue Value: 9 Titles: – TitleFull: Education Digest: Essential Readings Condensed for Quick Review Type: main |
| ResultId | 1 |
