Skip to main content

Week 6 [18.11 - 24.11.2019] The five laws of cybersecurity

The five laws of cybersecurity (TED talk)

Below you will find a short talk about one of the main problems with the new technologies – the cybersecurity. I believe that everyone is responsible for their own online safety and we shouldn’t rely on others in this matter. The 5 crucial points discussed in this presentation make a very good basis for the online security. Please watch and comment.



1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
3. Have you ever been a victim of an online crime?
 

Comments

Roman Batyuk said…
1. Yes, I've been aware of them since I learned it at the university. Unfortunately, those rules are unknown for people who are not advanced computer users.

2. In my opinion, it is not very clever to exploit the vulnerability of your bank because first of all it is illegal and the bank will punish you hard. Of course, I would report the vulnerability. But I think, if normal user exploits the vulnerability he should change the bank.

3. Yes, I think every internet user at least once had issues with social engineering. I got a message in a browser that I won the car. And they wanted me to input the data of my credit card. The site didn't have a certificate so I am sure it was fake.
PIOTR PAWLAK said…
1. Yes, I knew about these rights and I personally agree with them. We can't trust anyone on the web and if there is any vulnerability in the system then it will be used for the wrong purposes.

2. I think that if I found such a vulnerability I would report it. However, I don't think I will ever find anything like that.

3. No, but I my firends have been and I have seen that being a victim of an online crime is very hard to survive because we do not know exactly how to defend ourselves.
1. I didn’t know the exact statements but they’re mostly just plain common sense.
2. I’d rather report it – I’m sure the path of a wanted cybercriminal is not an easy one.
3. Luckily, no. I try being cautious online – it works well so far.
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?

I was aware of all these threats. It is known that there will never be a system without any vulnerabilities, adding to this the naivety of people it is not so difficult to meet a victim of a crime committed online.

2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?

If I discovered a vulnerability, I would report it directly to the bank.

3. Have you ever been a victim of an online crime?

I belong rather to a group of people who are very careful on the internet and have never fallen victim to any fraud. It is important to make sure that the passwords for our accounts are appropriately complicated and it is worth turning on 2-step verification wherever possible.
Kyrylo said…
Interesting topic, an important concern these days.
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
Nope, did not know about them, but this is actually really interesting.
2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
If the law protects me in that case, then, yes. Who would not want some free wealth?
3. Have you ever been a victim of an online crime?
I have, although not that much was stolen from me.
s15487 said…
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
Maybe not all of them, but I would say that I was familiar with a bigger part because I attended cybersecurity lectures last semester and read blogs like Sekurak.

2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
I definitely would report the vulnerability to the bank. Using such a vulnerability would be a criminal crime and cause serious consequences. Also, it doesn't make any sense, while such big companies like banks usually provide bug bounty programs and they could grant you generous amount of money if you report it to them instead of announcing it to the world or using it in an illegal way.

3. Have you ever been a victim of an online crime?
A few years ago I ordered some stuff for a brother-in-law in a fake online store and these things were never delivered and the shop disappeared after a few months. I reported this issue to my bank and they redirected it to Visa and after one month they retrieve the money and send me back the whole amount.
Bartosz Warda said…
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?

I was aware of some, but not all of them. Cybersecurity is not the topic of my interests. That is to say, I probably know some more laws but right now I am not able to recall any of those.

2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?

I would definitely exploit that, if only this could be legal, because it sounds like fun with a little bit of hint of risk. Apparently I do not want to have problems with banks nor with the law, so I am not practicing any of those activities.

3. Have you ever been a victim of an online crime?

I’ve been tricked by the most old-school crime, which is downloading a bitcoin miner on my laptop. I knew that when I authorised that program in windows it would cause some damage to my RAM, and yes I got baited in a second. Wasn’t focused enough back then to realise what I’ve done. But 5 seconds after authorising I realised what really happened.
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
No i haven't.

2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
report it.

3. Have you ever been a victim of an online crime?
No but someone wanted to log in into my social accounts.
Ivan Mazuryk said…
1. Yes, I've been aware of them. Actually, I think, nowadays in the era of digitalization these 5 rules should be a base knowledge of everyone.

2. I'd rather report it, don't see a perspective chance of using it without being caught.

3. Yes, of course, I'm using the internet from childhood and in those times would be very hard not to become a victim of an online crime.
Roman Dubovyi said…
. Of course. They are kind of obvious, but also we studied something like that on Bachelor’s.

2. I would report it for two reasons. Firstly, companies usually offer some money and/or position in their IT team. Secondly, exploiting a bug in bank could get you in jail.

3. No, I wasn’t a victim of online crime.
Zygmunt Z said…
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?

Yes I have. We had a course about it at our university. What really bothers me is the number of people that are not aware of it. In these days I think that being aware of danger that lives in cyber world is essential for day-to-day survival.

2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?

Of course I would report it and asked them for a quick and safe fix.

3. Have you ever been a victim of an online crime?

A few years back my account once leaked from one music service. At that time I had the same password on Netflix which resulted in stolen account. I had to get in touch with Netflix customer service and asked them to fully block it. In the end it wasn’t a horrible experience because I figured it out quite quickly and I didn’t lose any money but it really showed how I should really protect myself and my data.
Yurii Gevtsi said…
1.No, in the context of cybersecurity I did not know these laws, because I had never been particularly interested in this. But I think that some laws are applicable not only for the security of computer systems but also for security in general

2.I am not a hacker, and if I found any vulnerability, I wouldn't be able to exploit it, even if I wanted to.First of all, I would change the bank and after that already informed them of the vulnerability or maybe not... I don’t know, I have never encountered this.

3.Once a company that I never heard of and whose services I never used, withdrew money from my card.I immediately blocked it, and reported it to the bank. Within a few days, all the money was returned to me and a new card was issued.
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
I know all 5 recipes listed in the movie. I attended cybersecurity lectures last semester. These are the issues I know from my studies. In addition, cybersecurity is a very important issue in my work. I regularly have training and tests.

2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
I would definitely report a mistake to the bank. The use of such vulnerability would be a criminal offense and would have serious consequences. Unfortunately, I am not sure if the bureaucracy would allow banks to quickly remove the error from the system. However, I would definitely like to report it and would not try to use it. It's a system, where everything is saved on the server.

3. Have you ever been a victim of an online crime?
I have never been a victim of an online crime before. I have heard that it is becoming more and more popular lately. Recently, an interesting way of cheating is hacking into someone's messenger account and asking for the blik code of the victim's friend. Unfortunately, people often send the code. The consequence is to clean the account to zero.
Mateusz Szych said…
1. Yes, I have. Interest in programming meant that I began to pay more attention to cybersecurity.

2. I probably wouldn't do anything.

3. No, I haven't. Fortunately, I've never had such problems.
1. Yes, I knew the rules listed in the movie. I think that every computer user should know them, because in the internet age they are very important.
2.If I found a vulnerability in the bank, I would certainly report it and try to provide all the information that would help eliminate the problem. I would also change the bank to another one.
3.No, I have never been a victim of an internet crime, I am cautious when it comes to shopping on allegro or olx auction sites.
s15052 said…
1. Yes, I have. We had cyber security classes last year, which I did not pass. Because of that I learn a lot about this to pass my exam and be fearless of internet danger.
2. I'd report it. Maybe they would give me some money for telling them about it.
3. A long time ago I had my game account stolen. I don't know if it's a crime :)
Iryna Lehusha said…
1) Yeah, of course, I knew those laws and I've always followed them. Unfortunately, I don't know any other security laws anymore.
2) Sure, I will immediately report it to the bank, and I will think about changing the bank, or I will immediately change it. Such actions will have consequences and would be a criminal offense.
3) I'm gonna be a person who is very careful and will check everything twice. Maybe, that's why I've never been a victim of Internet fraud.
Stealing a game account is surely a crime, especially if you had invested time into this game and made some progress.
Unfortunately, it is true that common users are not aware of the online threats so it is always a good idea to educate your closes friends or family members
Based on your example, it is a good idea to have a different password to any account.
I would say that the blik code scam is pretty much the same thing as the 'grandson/granddaughter' scam adjusted to new technologies.
I think that people are much more vulnerable when they are excited about something new. I have also tried to install infected software when I was younger and it didn't end well.
1. I haven't heard about the rules specifically but they seem quite obvious once explained. I can't think of any more.

2. I would report the issue. Probably I'm too truthful for my own good :D

3. I think so, but I'm still not sure how this happened. I once paid for my tuition in a different school and later got a letter that I haven't made the payment yet. There was some issue with the bank account number on the website so I made a payment to a different account. I wasn't able to get my money back :( I'm still not sure if I made a typo or somebody changed the numbers, although I haven't filled up the details so the bank refused to refund the money.
Mehmet KONUK said…
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
Yes, I know these rights, and I personally agree with them. It is necessary not to trust anyone on the web, and if there is a security vulnerability in the system, it is used for the wrong purposes and can cause great harm to the person or organization.
2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
I would report it even if it was my fault. It wouldn't be ethical to keep it.
3. Have you ever been a victim of an online crime?
When we were in high school, we got very angry and broke a company's computer system for a day. The open was a very simple thing, but it took the company employees 1 day to solve
Vitalii Ohol said…
1. Yes, I was aware of these laws. I have one law, but I think it an extension of the third one:‌ the biggest vulnerability of a system/device is a user.

2. As a good hacker that can find vulnerabilities in the bank system and knows how to exploit it and hide himself, I will exploit it for my profit, then I will report it to the bank for more profit and then will change my bank.

3. Long-time ago I was obsessed with methods of finding vulnerabilities and using it. So from that time I know how it works and easily recognize when someone trying to make something bad. In most cases, I know how to avoid this risk.
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?

Yes, I have been aware of these laws, seems I started studying at the university and started to learn about cybersecurity. But I think the biggest problem is unfortunately still in the users and there are a lot of attacks on users like phishing, social engineering etc.

2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?

I will report it immediately and change my bank as fast as I can. I will report it because I don't want to lose my money and I don't want to steal somebody else money and I don't want to give hackers a chance and because this bank has such vulnerability it means it is not safe, so I will change my bank as fast as I can.

3. Have you ever been a victim of an online crime?

Some time ago I received a call from my bank, to approve a transaction, which I didn't start. Hopefully, I didn't lose my money, but as I remember, the attacker(s) knew my card number and CVV code to make a transaction. I still don't know where they have found out about it but it was stressful for me. From that time I am trying to use only trustful web-payment services like PayPal.
I didn't know those rights before. Frankly speaking, the topic of network security is new to me, only this semester I learned something and came to the conclusion that it is very much like not the most important topic in IT. I am usually a good person and I don't like to exploit any vulnerabilities and so on. According to this website: https://haveibeenpwned.com/ my data was stolen during the attack on the morele.net website.
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
Yes, heard about those rights and I totally agree with speaker. It's hard to trust anyone on the web and easy to be scammed. If there would be appear serious vulnerabilities in some platforms it could be used for bad purposes.
2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
If I detect some vulnerability I would report it immediately. I think there might be such situations when you can access from some minor bug in application
3. Have you ever been a victim of an online crime?
Not really, I try to avoid scammers and I know how to act in such situations. But unfortunately simple users without enough knowledge may get into the trap of those scammers
1. Have you been aware of all 5 laws mentioned in the video and do you know any other laws that the video doesn't cover?
Yes, I might have heard about them before. I think they cover topic pretty broad and they are quite accurate.
2. If you discovered a vulnerability in your bank's system, would you exploit it or report it to them to fix it?
I wouldn't exploit it. Obviously that is illegal so this is quite a weird question. I would inform the bank about it to prevent any thefts.
3. Have you ever been a victim of an online crime?
I don't recall such event. Many times people tried to scam me but I have never fallen for it. Most of those attempts were suspicious links sent to me. Always before I click a link I look how it looks like, it is quite easy to recognise that there is something wrong with it.

Popular posts from this blog

Week 11 [03-09.06.2019] The problem with ecological cars emission in UK

The problem with ecological cars emission in UK Since the adoption of the European Emission Allowance Directive in the European Parliament, all car makers have tried to submit. Since 1992, the Euro I standard has been in force, which limited the emission of carbon monoxide to the atmosphere. The Euro VI standard currently applies, which limits the series of exhaust gases. These include: hydrocarbons, nitrogen and carbon oxides, and dust.   The most significant change was brought by the Euro IV standard. For the first time it introduced the limitation of nitrogen oxides, which are responsible for the harmful compounds of smog.   What is smog?   Smog consists of sulfur oxides, nitrogen and carbon. In addition, solid substances such as suspended dust (PM). Dust suspend in atmospheric aerosols may be in liquid and solid form. These can be particles of sea salt, clouds from the Sahara and artificial compounds made by people. These compounds often come fr

Week 12 (12.01-18.01.15) Are you an early bird or a night owl ?

Owls are nocturnal creatures. They’re wide awake at night and they sleep during the day. If this sounds like bliss to you, then, like about 20 percent of the population who find themselves most active at around 9 pm, you may fall into the same category as our feathered friend. Night owls often have difficulty waking up in the morning, and like to be up late at night.  Studies of animal behaviour indicate that being a night owl may actually be built into some people’s genes. This would explain why those late-to-bed, late-to-rise people find it so difficult to change their behaviour. The trouble for night owls is that they just have to be at places such as work and school far too early. This is when the alarm clock becomes the night owl’s most important survival tool. Experts say that one way for a night owl to beat their dependence on their alarm clocks is to sleep with the curtains open. The Theory is that if they do so, the morning sunlight will awaken them gently and naturally.

Week 4 [06-12.11.2017] This is what happens when you reply to spam email.

James Veitch is a British comedian. In today’s Ted Talk James with characteristic for himself a sense of humor shows how he deals with spam emails and why responding to junk messages may be sometimes dangerous. Questions: What do you think about James’s  way of dealing with spam? Why are junk messages legal, even though it sometimes may be a fraud? Dou you have a problem with spam? How do you deal with with it?