The Information and Communication Technology unit in UGC NET Paper 1 syllabus is vibrant in nature as it covers dynamic topics related to ICT. Cyber Attack is a regular threat we all face in our cyberspace. This makes it a relevant section for ICT preparation. Now, we are going to learn about the various kinds of Cyber Attacks.

• Malware

Malware is a term used to describe malicious software, including spyware, ransomware, viruses, and worms. Malware breaches a network through a vulnerability, typically when a user clicks a dangerous link or email attachment that then installs risky software. Once inside the system, malware can do the following:

 Blocks access to key components of the network (ransomware)

Installs malware or additional harmful software

Covertly obtains information by transmitting data from the hard drive (spyware)

Disrupts certain components and renders the system inoperable

• Phishing

Phishing is the practice of sending fraudulent communications that appear to come from a reputable source, usually through email. The goal is to steal sensitive data like credit card and login information or to install malware on the victim’s machine. Phishing is an increasingly common cyberthreat.

• Man-in-the-middle attack

Man-in-the-middle (MitM) attacks, also known as eavesdropping attacks, occur when attackers insert themselves into a two-party transaction. Once the attackers interrupt the traffic, they can filter and steal data.

Two common points of entry for MitM attacks: 

1. On unsecured public Wi-Fi, attackers can insert themselves between a visitor’s device and the network. Without knowing, the visitor passes all information through the attacker.
2. Once the malware has breached a device, an attacker can install software to process all of the victim’s information.

• Denial-of-service attack

A denial-of-service attack floods systems, servers, or networks with traffic to exhaust resources and bandwidth. As a result, the system is unable to fulfill legitimate requests. Attackers can also use multiple compromised devices to launch this attack. This is known as a distributed-denial-of-service (DDoS) attack.

• SQL injection

A Structured Query Language (SQL) injection occurs when an attacker inserts malicious code into a server that uses SQL and forces the server to reveal information it normally would not. An attacker could carry out a SQL injection simply by submitting malicious code into a vulnerable website search box.

• Zero-day exploit

A zero-day exploit hits after a network vulnerability is announced but before a patch or solution is implemented. Attackers target the disclosed vulnerability during this window of time. Zero-day vulnerability threat detection requires constant awareness.

• DNS Tunneling

DNS tunnelling utilizes the DNS protocol to communicate non-DNS traffic over port 53. It sends HTTP and other protocol traffic over DNS. There are various, legitimate reasons to utilize DNS tunnelling. However, there are also malicious reasons to use DNS Tunneling VPN services. They can be used to disguise outbound traffic like DNS, concealing data that is typically shared through an internet connection. For malicious use, DNS requests are manipulated to exfiltrate data from a compromised system to the attacker’s infrastructure. It can also be used for command and control callbacks from the attacker’s infrastructure to a compromised system.

Hope you all now have a better understanding of cyber-attacks. If you have any other questions, please comment.

Thank you!

Team BYJU'S Exam Prep