D/618/5218 Network Threats and Vulnerabilities Level 3 Assignment Brief

D/618/5218 Unit Overview

Scenario:

You are a cybersecurity consultant hired by a mid-sized e-commerce organisation that has recently experienced several network security incidents, including phishing attacks and a suspected data breach. The management is concerned about the vulnerabilities within their network infrastructure and has requested a thorough assessment of their current security measures. Your objective is to evaluate the existing network security practices, identify potential threats, and propose actionable improvements.

Submission Guidelines:

• Prepare a comprehensive report of approximately 3000 (±10%) words addressing the tasks outlined below.
• Include all the screenshots and Configuration Files with your submission.
• Include references and current best practices in cybersecurity.
• Use appropriate headings and subheadings to structure your report clearly.Ensure that your writing is clear, concise, and technically accurate.

Task 1: Identify Network Threats and Vulnerabilities

Task 1: Identify Network Threats and Vulnerabilities (LO1)

1.1 Explain types and sources of network attacks [AC 1.1]

• Research and explain at least five types of network attacks, including but not limited to:oDenial of Service (DoS)
  oBackdoor AttacksoSpoofingoVirusesoTrojans
• For each attack type, provide:
  oA clear definition of the attack.oAn explanation of how the attack operates.oReal-world examples of incidents where these attacks have occurred.
• Identify and describe at least three sources of these attacks, focusing on:
  oInternal sources (e.g., actions taken by employees).
  oExternal sources (e.g., attacks originating from the internet, unsecured wireless access points, or email phishing).

1.2 Explain the motives behind network attacks [AC 1.2]

• Discuss the common motives behind network attacks, which may include:oFinancial gain (e.g., theft of credit card information).
  oData theft (e.g., personal identifiable information).
  oSabotage (e.g., disrupting operations).
  oPolitical motives (e.g., hacktivism).
• Provide real-world examples that illustrate these motives,highlighting the consequences for the organisations involved.

Task 2: Evaluate Network Security Practices

2.1 Explain how hardware and software can be used to minimise network security threats [AC 2.1]

• Conduct an analysis of the organisation’s current hardware and software security measures. This should include:oFirewallsoAntivirus program so Intrusion detection systemsExplain how these measures can be improved to minimise network security threats by:
  oSuggesting specific configuration settings.oRecommending additional tools or practices, such as regular software updates, patch management, and employee training.

2.2 Evaluate email and wireless security features (General Analysis)

• Evaluate the security features of the organisation’s email systems and wireless networks, considering:
  oCurrent practices (e.g., secure MIME, spam filters, use of WEP/WPA keys).
  oAny vulnerabilities identified during your evaluation.
• Recommend additional security measures or practices to enhance theirsecurity posture, such as:
  oConducting site surveys for wireless security.
  oImplementing MAC address filtering.

Task 3: Develop Organisational Security Policies

3.1 Explain the range of actions an organisation should take to minimise network security threats [AC 3.1]

• Propose a comprehensive range of actions that the organisation should take to enhance network security, including:
  oMonitoring and logging practices (e.g., logging user access).
  oUser education and training protocols (e.g., recognising phishing attempts).
  oPhysical security measures (e.g., securing server rooms).

3.2 Plan procedures to secure a network in line with organisational requirements [AC 3.2]

• Develop a detailed security plan outlining procedures for securing the network, which should include:
  oBackup and recovery strategies (e.g., regular backups, disaster recovery plans).
  oSoftware configuration and upgrade processes (e.g., scheduling updates).
  oGuidelines for user responsibilities regarding password strength, including password management policies.

Task 4: Apply Network Security Measures 

4.1 Configure a device or software to improve network security [AC 4.1]

• Select a specific device or software (e.g., a firewall or router) currently used in the organisation.
• Describe in detail how you would configure it to improve network security, addressing:

oSpecific settings and protocols to be implemented (e.g., enabling a firewall, setting up VPN).
oHow these configurations help mitigate the risks identified earlier.

• Additionally, outline a testing strategy to evaluate the effectiveness of the implemented security measures, including:

oMethods to assess functionality (e.g., conducting penetration tests, monitoring for anomalies).
oEvaluating performance impacts (e.g., system responsiveness before and after security measures are applied).

D/618/5218 Unit Assessment