Vulnerabilities are the drawbacks in the application, network or whole system which allows external attacks to penetrate any network, This is sort of basic definition, any security guy could tell this.
My aim is to divert your focus from applications to physical vulnerability. The most vulnerable element of any system is its user. Its simple to break any one’s confidence by using his emotions.
Let me explain you with example: Some X person was very rich, confident successful & blah , blah, blah .. One day his child was kidnapped by some criminals & so as to threaten him. He asked police help, takes best in the business to let her child out of those creepy guys.
But why? Because he was scared , that something could happen to his child. His emotions are most vulnerable & that lets his success, confidence & money (we can call it as his shields) broke into pieces.
I am not asking you to kidnap someone, No way. Just telling you which is the vulnerabilities which cant be shielded. Even my emotions are also vulnerable.
Remember, machines can not be threatened, programs could not be vulnerable as its user is.
Human reacts to things very rapidly if he thinks he is loosing his important thing. He quits thinking & searches for the quickest path to get out & You know what , all you wannabe hackers you have to place your exploit right between that path. He wish to go out, you have to think before he thinks about it. Plan, make a map & and plant.
Are you getting me ? or I am going too fast, Just remember – You have catch the things this fast to be a great intruder, or what you call it as a HACKER.
To guard against such vulnerabilities all the employees who are working on the network, are suppose to be trained with this thing, that you don’t have to react quickly.
You the network security administrator should train them for such attacks, show them how to get out of such situation of attacks. give them demonstration, tell them how to react with specific errors, how to react for system crash, tell them how to report a problem, give them a sort of First Aid Kit which can be easily understood & used by all vulnerable human beings in your organization. This is the only way to shield this vulnerability of emotions.
Otherwise this human being have this Emotional vulnerability which is far far beyond the scope of stealth, shield or security. . .
This post is made by Amol Wagh who blogs about Ethical Hacking & Exploits on Hackers Enigma Dot Com. You can Follow Amol on Twitter Here.
No comments:
Post a Comment