{"id":209111,"date":"2024-02-29T22:30:13","date_gmt":"2024-02-29T22:30:13","guid":{"rendered":"https:\/\/michigandigitalnews.com\/index.php\/2024\/02\/29\/what-is-cybersecurity-fortune-education\/"},"modified":"2025-06-25T17:21:26","modified_gmt":"2025-06-25T17:21:26","slug":"what-is-cybersecurity-fortune-education","status":"publish","type":"post","link":"https:\/\/michigandigitalnews.com\/index.php\/2024\/02\/29\/what-is-cybersecurity-fortune-education\/","title":{"rendered":"What is cybersecurity? | Fortune Education"},"content":{"rendered":"

[ad_1]
\n
<\/p>\n

On May 7, 2021, Colonial Pipeline learned a painful lesson about the need for cybersecurity. On that date, the oil pipeline fell victim to a ransomware attack<\/a>, impacting the computerized equipment used to manage its system. To contain the attack, the oil pipeline halted all operations before paying the hacker group DarkSide the equivalent of $4.4 million in bitcoin<\/a> to restore the system.<\/p>\n

\n

This ransomware attack is just one high-profile example of the importance of cybersecurity, a field that aims to protect electronic assets that store and transmit information. As the digital realm continues to extend into practically all elements of work, life, and everything in between, the need for cybersecurity professionals will only grow.\u00a0<\/p>\n

\n

ADVERTISEMENT<\/p>\n

\n
\n

Master\u2019s in Cybersecurity Online From UC Berkeley<\/a><\/h4>\n

Earn a Master\u2019s in Cybersecurity Online in Just 20 Months <\/span>Visit Website<\/svg><\/a><\/div>\n

\n

The UC Berkeley School of Information\u2019s online Master of Information and Cybersecurity prepares students to become leaders in cybersecurity. No GRE\/GMAT required.<\/section>\n<\/p>\n
\n
The UC Berkeley School of Information\u2019s online Master of Information and Cybersecurity prepares students to become leaders in cybersecurity. No GRE\/GMAT required.<\/section>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n

What is cybersecurity?<\/strong>\u00a0<\/h2>\n

Cybersecurity is the protection of computer systems and networks from attacks by malicious actors. If undeterred, these attacks can result in the leak of unauthorized information, disruption of services, or damage to hardware and software. As our world has become increasingly reliant on computers, so has the need for cybersecurity.<\/p>\n

Jimmie Lenz<\/a>, director of the master\u2019s of engineering in cybersecurity<\/a> and master\u2019s of engineering in fintech programs at Duke University<\/a>\u2019s Pratt School of Engineering,\u201d defines cybersecurity as the \u201cprotection and detection of electronic attacks.\u201d<\/p>\n

\u201cAttacks come in a number of different forms,\u201d he says. \u201cMost common are attacks that people receive via email, phishing type attacks, and spear phishing type attacks that most people are pretty familiar with.\u201d<\/p>\n

From fighting off cyber criminals to securing systems to fending off nation-states who wish to challenge the integrity of governmental systems, the field of cybersecurity is interesting and ever evolving.<\/p>\n

What are 7 types of cybersecurity?<\/strong>\u00a0<\/h2>\n

To protect their digital systems, organizations must consider different types of cybersecurity. As the Colonial Pipeline can attest to, a cybersecurity breach can prove costly.\u00a0<\/p>\n

Application security:<\/strong> As the name suggests, application security concerns the unauthorized use and access of software and related data. Despite the best efforts of developers, vulnerabilities can be created during the development and publishing of an app. Application security aims to address these flaws through software\u2019s entire life cycle.<\/p>\n

Cloud security:<\/strong> Cloud security is a broad category that includes all technology, policies, and controls used to secure cloud computing data, applications, services, and infrastructure. There are typically two categories of cloud security concerns: issues faced by the organizations providing infrastructure, software or platform services through the cloud, and the issues of their customers who store data and host applications on the cloud.\u00a0<\/p>\n

As organizations increasingly incorporate more cloud-based tools and services, the importance of cloud security will only grow. \u201cCloud security is getting larger and larger as more and more people avail themselves of those tools,\u201d Lenz says. Generally, the responsibility for handling cloud security is shared between cloud service providers and organizations.<\/p>\n

Critical infrastructure security:<\/strong> The cyberattack on Colonial Pipeline illustrates the importance of critical infrastructure security. Large infrastructure systems\u2014such as those involving communications, transportation, and energy\u2014must be protected. \u201cThat\u2019s the one that we fear a lot,\u201d says Rob Honomichl<\/a>, assistant professor of cyber operations at the University of Arizona\u2019s College of Applied Science & Technology<\/a>. \u201cWe\u2019ve seen, in other countries, where they\u2019ve done some damage, taking out grids and things like that.\u201d<\/p>\n

Data security:<\/strong> This form of cybersecurity concerns protecting the confidentiality, availability and integrity of digital assets. From health records to credit card information, data security is of vital importance in our digital age. Lenz says this is probably the largest subject in the field of cybersecurity.\u00a0<\/p>\n

Endpoint security:<\/strong> Endpoint security involves the physical devices that connect to network systems, such as laptops, desktops, mobile devices, and servers. These devices are the most common entry point for cyberattacks. Endpoint security aims to protect these devices and their data from vulnerabilities.\u00a0<\/p>\n

Internet of things security:<\/strong> The \u201cinternet of things\u201d (IoT) is a term to describe devices with sensors, software, processing ability, and other technology that exchange data with other devices through the internet. IoT security aims to minimize the vulnerabilities that these devices present. In 2013, retail giant Target was the victim of a data breach<\/a> where hackers compromised the data of 40 million shoppers after gaining access to the company\u2019s payment system through internet-connected HVAC units. Target paid a $18.5 million settlement<\/a> to those affected.<\/p>\n

Network security:<\/strong> Network security involves protecting the hardware and software of a network to stave off service disruptions and unauthorized access. Most cyberattacks begin with a breach of network security. This branch of cybersecurity aims to observe, detect, and respond to network threats. Honomichl says an organization\u2019s network administrator and security team must consider a wide variety of threats to their network, including firewalls, human scams, phishing through ransomware, and other issues.<\/p>\n

8 types of cybersecurity threats<\/strong><\/h2>\n

Just as there are many types of cybersecurity, there are also many types of threats. These threats may overlap or be used in conjunction to target organizations. And like everything else in the field of cybersecurity, these threats are constantly evolving.\u00a0\u00a0<\/p>\n

Automated teller machine (ATM) cash out:<\/strong> This type of attack usually impacts small-to-medium-sized financial institutions. In an ATM Cash Out, large cash withdrawals are made at several ATMs in many different regions. It may also involve large withdrawals from one ATM. In this attack, cyber criminals change the settings on an ATM through web-based control panels to allow an unlimited withdrawal of funds.\u00a0<\/p>\n

Corporate account takeover:<\/strong> In a corporate account takeover, or CATO, cyber thieves impersonate a business and conduct unauthorized financial transactions. These funds are then sent to accounts belonging to cyber criminals. These attacks often target businesses with weak safeguards and few controls over online banking systems.<\/p>\n

Distributed denial of service:<\/strong> A distributed denial of service\u2014or DDoS\u2014attack overwhelms online services with excessive traffic, making websites unavailable for use or slowing down response time. These attacks are frequently used to create a distraction so that other kinds of fraud can be attempted. \u201cThese were really, really popular a few years ago as a way to shut down different sorts of websites,\u201d Lenz says. \u201cThese have become a little less popular lately.\u201d<\/p>\n

IP spoofing:<\/strong> In this type of attack, a cyber criminal creates a false source Internet Protocol (IP) address for the purpose of impersonating another computing system. This allows hackers to steal data, infect devices with malware, and crash servers without being detected.<\/p>\n

Malware:<\/strong> Malware are programs that can impact data, applications, and operating systems. After being secretly inserted into a system, malware can cause widespread damage and disruption. There\u2019s also spyware, malware created to violate privacy. Spyware has become more common in recent years and can be used to enact financial fraud or track a person\u2019s activities.<\/p>\n

Phishing<\/strong>: Phishing is a form of social engineering that attempts to obtain sensitive information. With phishing, victims are sent fraudulent messages that appear to be sent by a trustworthy business or individual. Phishing attempts often ask victims to respond to a link to a fake website or email to get them to provide confidential information. \u201cPeople need to be really, really vigilant about clicking on any kind of links or opening up any kind of attachment that is sent to them,\u201d Lenz says. \u201cThese are getting better and better and better all the time.\u201d<\/p>\n

Ransomware:<\/strong> Through malware, ransomware prevents or limits a user from accessing their system. A widely used method of attack, ransomware asks users to pay a ransom to regain access to systems or data, usually asking for online payment through bitcoin or other online payment methods.<\/p>\n

Spam: <\/strong>We\u2019ve all encountered unwanted messages and emails known as spam. Typically, these messages serve a commercial purpose, but they can also conceal malicious attempts to access your computer.\u00a0<\/p>\n

Cybersecurity careers<\/strong>\u00a0<\/h2>\n

From large corporations to governmental entities to healthcare systems, it seems like practically every institution needs cybersecurity professionals in a wide variety of roles. Here are a few:<\/p>\n