Digital Literacy - Session 1 - Introduction to Online Safety, and Security

Digital Literacy

Introduction to Online Safety, and Security
1 / 28
suivant
Slide 1: Diapositive
ComputingUpper Secondary (Key Stage 4)BTEC

Cette leçon contient 28 diapositives, avec quiz interactifs, diapositives de texte et 2 vidéos.

time-iconLa durée de la leçon est: 90 min

Éléments de cette leçon

Digital Literacy

Introduction to Online Safety, and Security

Slide 1 - Diapositive

Aims for this Session

  • A.C 1.1- Identify online security risks.
  • A.C 1.2 - Implement best practices for responsible online behaviour.

Slide 2 - Diapositive

What are some online risks you've heard about?

Slide 3 - Carte mentale

What Is Cybersecurity?
Cybersecurity is the practice of protecting systems, networks, and programs from digital or cyber attacks. These cyberattacks are usually aimed at accessing, changing, or destroying sensitive information; extorting money from users; or interrupting normal business processes.

Slide 4 - Diapositive

What Is Malware?
Malware (short for “malicious software”) is a catch-all term for any type of malicious software designed to harm or exploit a computer or network. Typically once malware is on a computer or network it will start to infect files, explore the system, steal information possibly including passwords.

Slide 5 - Diapositive

What Makes Malware Malicious?
Impair device performance – Malware can cause computers to slow-down, decreasing their performance. Malware can also cause increases in internet activity and loss of disk space, depending on the malware.

Erase Data – Malware can corrupt files making them unusable. It can also delete files and in some instance send a copy of the file over the internet for other people to access.

Adversely affects computer controlled hardware - Malware can also impact the performance of the hardware through corrupting drivers and changing the settings on devices. For example, malware could overheat the CPU by controlling the fans.  

Slide 6 - Diapositive

Types of Malware
Ransomware

Encrypts files or devices blackmailing the target to pay a ransom in order for the information to be decrypted. 
A message is usually left by the hacker to let you know it has happened and what you need to do to sort it. This type of attack can occur against individuals or organisations. 

Slide 7 - Diapositive

Types of Malware
Ransomware

Encrypts files or devices blackmailing the target to pay a ransom in order for the information to be decrypted. 
A message is usually left by the hacker to let you know it has happened and what you need to do to sort it. This type of attack can occur against individuals or organisations. 
Spyware 

Gathers information from the device, computer or network by monitoring user activity or network traffic. The gathered information is then passed back to the attacker.

Slide 8 - Diapositive

Types of Malware
Ransomware

Encrypts files or devices blackmailing the target to pay a ransom in order for the information to be decrypted. 
A message is usually left by the hacker to let you know it has happened and what you need to do to sort it. This type of attack can occur against individuals or organisations. 
Spyware 

Gathers information from the device, computer or network by monitoring user activity or network traffic. The gathered information is then passed back to the attacker.
Viruses 

Self-replicating malicious code that can infect other programs and spread across systems. A viruses main aim is to disrupt systems, cause major operational issues, and result in data loss and leakage.

Slide 9 - Diapositive

Types of Malware
Ransomware

Encrypts files or devices blackmailing the target to pay a ransom in order for the information to be decrypted. 
A message is usually left by the hacker to let you know it has happened and what you need to do to sort it. This type of attack can occur against individuals or organisations. 
Spyware 

Gathers information from the device, computer or network by monitoring user activity or network traffic. The gathered information is then passed back to the attacker.
Viruses 

Self-replicating malicious code that can infect other programs and spread across systems. A viruses main aim is to disrupt systems, cause major operational issues, and result in data loss and leakage.
Trojan

Pretends to be legitimate software, tricking users into downloading it. 

Unlike other types of malware, trojans are not self-replicating, meaning that the user has to take action and actively click on the file for the malicious software, or payload, to execute.

Slide 10 - Diapositive

Other Types of Attacks
Worms

Stand-alone malicious programs that can self-replicate and spread to other systems. Like Trojan horses they can be downloaded in email attachments or attached to malicious links.

Slide 11 - Diapositive

Other Types of Attacks
Worms

Stand-alone malicious programs that can self-replicate and spread to other systems. Like Trojan horses they can be downloaded in email attachments or attached to malicious links.
Password Attack

Hackers can use software to 'guess' a password based on a list of most common passwords or combinations and attempts to access the system in this way.

Did you know the password 123456 is the most common password used by over 2 million people? It would take less than a second to crack this password. (NordPass, 2020)

Slide 12 - Diapositive

Other Types of Attacks
Worms

Stand-alone malicious programs that can self-replicate and spread to other systems. Like Trojan horses they can be downloaded in email attachments or attached to malicious links.
Password Attack

Hackers can use software to 'guess' a password based on a list of most common passwords or combinations and attempts to access the system in this way.

Did you know the password 123456 is the most common password used by over 2 million people? It would take less than a second to crack this password. (NordPass, 2020)
Phishing 

A type of social engineering attack. In a phishing attack hackers try to gain access by deceiving people, typically using spam emails, mass-mailing, etc. 
In a phishing attack the attacker contacts the target(s) by sending an email impersonating a company/person with the aim of the person divulging confidential information such as bank details, national insurance numbers which is useful for the hacker.

Slide 13 - Diapositive

Slide 14 - Vidéo

Other Types of Attacks
Vishing 

 A special type of attack, where the hacker uses a phone to extract information/access from the victim and falls under social engineering attacks. 

Typically, the attacker can:
- Try to gain access to a system by impersonating the real user.
- Contact a person pretending to be from an organisation in persuade the victim to transfer money or provide confidential information.

Slide 15 - Diapositive

Slide 16 - Vidéo

Other Types of Attacks
Vishing 

 A special type of attack, where the hacker uses a phone to extract information/access from the victim and falls under social engineering attacks. 

Typically, the attacker can:
- Try to gain access to a system by impersonating the real user.
- Contact a person pretending to be from an organisation in persuade the victim to transfer money or provide confidential information.

Keyloggers

By tracking a user’s keystrokes, hackers use keyloggers to capture valuable information like passwords and account numbers.

Slide 17 - Diapositive

Other Types of Attacks
Vishing 

 A special type of attack, where the hacker uses a phone to extract information/access from the victim and falls under social engineering attacks. 

Typically, the attacker can:
- Try to gain access to a system by impersonating the real user.
- Contact a person pretending to be from an organisation in persuade the victim to transfer money or provide confidential information.

Keyloggers

By tracking a user’s keystrokes, hackers use keyloggers to capture valuable information like passwords and account numbers.
Adware

This type of malware bombards your device with unwanted advertisements. Not only are the ads annoying, but they can also slow down or even crash your device.

Slide 18 - Diapositive

Do you know anyone or heard about people who have been hacked?

What happened?

Slide 19 - Carte mentale

Workbook Activity
Q1. Identify potential security risks associated with working online including accessing services.

Slide 20 - Diapositive

Strengthening Online Security 
Anyone can have their information stolen. An individual might download programs or data from compromised websites infected by viruses like worms or malware. This gives criminals unauthorized access to their devices, allowing them to steal data.

Slide 21 - Diapositive

To protect yourself:
  • Use secure passwords
  • Avoid using the same password for multiple accounts
  • Use Multi-factor authentication
  • Be cautious when sharing personal information
  • Close unused accounts
  • Keep systems and programs up to date
  • Monitor your accounts
  • Be wary of free Wi-Fi

Slide 22 - Diapositive

How To Create Secure Passwords
  • Use at least 8 to 12 characters.
  • Use a combination of letters, numbers, and symbols.
  • Use a combination of upper and lowercase letters.
  • Use a different password for each of your accounts.
  • Don't include any of your personal information like your birthday or address, as identity theft and data breaches can compromise such information. It’s also best not to include any information that can be accessed on social media like kids’ or pets’ names.
  • Use uncommon, unusual words - think three random words or your favourite song.
  • A password shouldn’t contain any consecutive letters or numbers (i.e. ABCD, 1234, etc.)

Slide 23 - Diapositive

Why Use 2 Factor or Multi Factor Authentication?
Multi-factor Authentication (MFA) is an authentication method that requires the user to provide two (2SV) or more (MFA) verification factors to gain access to a resource such as an application or an online account.

It is based on one of three types of additional information:

Things you know (knowledge), such as a password or PIN.

Things you have (possession), such as a badge or smartphone.

Things you are (inherence), such as a biometric like fingerprints or voice recognition.


Slide 24 - Diapositive

Activity
On the next page, follow the link and complete:

Tower of Treasure
Reality River
Mindful Mountain

Save the Certificates to your OneDrive

Slide 25 - Diapositive

Slide 26 - Lien

Workbook Activity
Q2. Demonstrate how to protect services from online risks and threats.

For this question, write a paragraph on what steps you will be taking to protect yourself from online risks and threats given what you have been learning about today.

Slide 27 - Diapositive

In this Session We Covered:

  • A.C 1.1 - Identify online security risks.
  • A.C 1.2 - Implement best practices for responsible online behaviour.

Slide 28 - Diapositive