Work-Life Balance - A Myth or Reality

Work-Life Balance - A Myth or Reality
'Work-life balance' is a renowned concept that

refers tothe situation when a person has a regular and sustainable source of income, while at the same time, is able to take out enough time to relax
with his or her loved ones or to do stuff that they find entertaining, in order to regularly rejuvenate themselves and avoid experiencing burnouts.
How many hours do you spend working during an average week? 
Do you regularly check your e-mail on the week end; do you keep  up with e-mails while you are on vacation because you do not want to
come back to hundreds of messages? If you are single or an empty nester, do you think that you might as well work since there are no children at
home waiting for you?

Working too hard and not allowing ourselves time for  relaxation usually increases stress, which also affects our health and life span. Many times it also has an adverse effect on our relationships and
may affect our children, whether young or adolescent, if we are not around when they need us. In today’s fast-paced world, maintaining a work-life balance requires creativity, passion for work, and a contemporary way of thinking. As corporate life stretches to late night hours, many successful employees have started to figure out ways to blend their work lives with their personal lives, so that they are able to fulfill their commitments to To conclude, we can say that work-life balance does exist, but maybe not
in the exact way that it’s perceived. At the end of the day, it all boils  down to your approach towards work. When we are able to take pleasure
in our jobs, we wouldn’t even feel the need to maintain any kind of  balance, as our lives would already be in harmony. Perhaps “balance” is not the right word to use. Let’s call it “work-life blend” or “work-life harmony” instead.


Sinin Javed Mujawar
HR Manager
AirCrews Aviation Pvt Ltd
Www.aircrewsaviation.com
Sinin.aircrews@gmail.com
Follow me on social media:-
LinkedIn:-
https://www.linkedin.com/in/sinin-mujawar-562962188
Facebook:-  https://www.facebook.com/sinin.mujawar
Instagram:- https://www.instagram.com/sinin_mujawar/
Bio:-
https://www.portrait-business-woman.com/2020/08/sinin-javed-mujawar.html

https://aerosoftin.blogspot.com/2020/08/work-life-balance-myth-or-reality.html

@Sinin Javed Mujawar  HR Manager  AirCrews Aviation Pvt Ltd

#Work-Life,  #Balance  #Myth, #Reality

Worksheet for day 017 AeroSoft Corp

Worksheet for day 017 AeroSoft Corp 

1000 Hrs To 1100 Hrs  
Open and Check your Gmail, WhatsApp, Facebook, Twitter, Pinterest, Quora Open and Reply or share do the needful.

1100 Hrs To 1200 Hrs 
 Make a note on meta in website development. 

1200Hrs to 1300Hrs
Summaries how to create a custom Email ID associated with your domain name. 

1300 Hrs To 1400 Hrs 
Lunch Break 🍲🍛🍱

1400 Hrs to 1600 Hrs
Explain about HTTP and HTTPS, it's usage, also note the significant differences between them.  

1600 Hrs to 1700 Hrs
Make Your Day 0017 Report of all the Work 

After Completion of the work, kindly send Report in [ Copy + Paste Only ]
Mail your work to the below mentioned address.

info@alfaBloggers.com,
Pallavi@alfaBloggers.com,
sonaliraikar.aircrews@gmail.com

Sonali Raikar [BE]
IT Manager HR cum CTO
AeroSoft Corp 
sonali.raikar@aircrewsaviation.com
www.AirCrewsAviation.com
Vcard
https://sonali-raikar.vcardinfo.com/
Bio
https://www.portrait-business-woman.com/2020/04/sonali-raikar.html

Er Pallavi Naik
COO
AeroSoft Corp
+91 - 9981724637
https://pallavinaik.vcardinfo.com/
pallavi@alfabloggers.com
pallavinaik.aerosoft@gmail.com
aerosoft.pallavinaik@gmail.com
Follow on
https://www.facebook.com/pallavi.naik.92754/
http://linkedin.com/in/pallavi-naik-860892165
https://www.instagram.com/npallavi_09/
https://www.quora.com/profile/Pallavi-Naik-16?ch=3&share=35431a99&srid=ua9Pl

Worksheet for day 016 AeroSoft Corp

Worksheet for day 016 AeroSoft Corp 

1000 Hrs To 1100 Hrs  
Open and Check your Gmail, WhatsApp, Facebook, Twitter, Pinterest, Quora Open and Reply or share do the needful.

1100 Hrs To 1200 Hrs 
 Make a PPT on Complete study of Sitemap in website development. 

1200Hrs to 1300Hrs
Make a note on how Sitemaps are important in SEO.

1300 Hrs To 1400 Hrs 
Lunch Break 🍲🍛🍱

1400 Hrs to 1700 Hrs
How to create a perfect Sitemap that helps search engines to find your website effectively, explain with example. 

1700 Hrs
Make Your Day 0016 Report of all the Work done and submit the output of loader page.

After Completion of the work, kindly send Report in [ Copy + Paste Only ]
Mail your work to the below mentioned address.

info@alfaBloggers.com,
Pallavi@alfaBloggers.com,
sonaliraikar.aircrews@gmail.com

Sonali Raikar [BE]
IT Manager HR cum CTO
AeroSoft Corp 
sonali.raikar@aircrewsaviation.com
www.AirCrewsAviation.com
Vcard
https://sonali-raikar.vcardinfo.com/
Bio
https://www.portrait-business-woman.com/2020/04/sonali-raikar.html

Er Pallavi Naik
COO
AeroSoft Corp
+91 - 9981724637
https://pallavinaik.vcardinfo.com/
pallavi@alfabloggers.com
pallavinaik.aerosoft@gmail.com
aerosoft.pallavinaik@gmail.com
Follow on
https://www.facebook.com/pallavi.naik.92754/
http://linkedin.com/in/pallavi-naik-860892165
https://www.instagram.com/npallavi_09/
https://www.quora.com/profile/Pallavi-Naik-16?ch=3&share=35431a99&srid=ua9Pl

CYBER CRIME

CYBER CRIME
In computers and computer networks an attack is any attempt to expose, alter, disable, destroy, steal or gain unauthorized access to or make unauthorized use of an asset.
[1] A cyberattack is any type of offensive maneuver that targets computer information systems, infrastructures, computer networks, or personal computer devices. An attacker is a person or process that attempts to access data, functions or other restricted areas of the system without authorization, potentially with malicious intent.
[2] Depending on context, cyberattacks can be part of cyberwarfare or cyberterrorism. A cyberattack can be employed by sovereign states, individuals, groups, society or organizations, and it may originate from an anonymous source. A product that facilitates a cyberattack is sometimes called a cyber weapon.
A cyberattack may steal, alter, or destroy a specified target by hacking into a susceptible system. [3] Cyberattacks can range from installing spyware on a personal computer to attempting to destroy the infrastructure of entire nations. Legal experts are seeking to limit the use of the term to incidents causing physical damage, distinguishing it from the more routine data breaches and broader hacking activities.[4]
Cyberattacks have become increasingly sophisticated and dangerous.
[4] An "inside attack" is an attack initiated by an entity inside the security perimeter (an "insider"), i.e., an entity that is authorized to access system resources but uses them in a way not approved by those who granted the authorization.
[5] An "outside attack" is initiated from outside the perimeter, by an unauthorized or illegitimate user of the system (an "outsider"). In the Internet, potential outside attackers range from amateur pranksters to organized criminals, international terrorists, and hostile government

            
[6] A resource (both physical or logical), called an asset, can have one or more vulnerabilities that can be exploited by a threat agent in a threat action. As a result, the confidentiality, integrity or availability of resources may be compromised. Potentially, the damage may extend to resources in addition to the one initially identified as vulnerable, including further resources of the organization, and the resources of other involved parties (customers, suppliers).
[9] The so-called CIA triad is the basis of information security.
The attack can be active when it attempts to alter system resources or affect their operation: so it compromises integrity or availability. A "passive attack" attempts to learn or make use of information from the system but does not affect system resources: so it compromises confidentiality.
[10] A threat is a potential for violation of security, which exists when there is a circumstance, capability, action or event that could breach security and cause harm. That is, a threat is a possible danger that might exploit a vulnerability. A threat can be either "intentional" or "accidental"
[11] An attack should led to a security incident i.e. a security event that involves a security violation. In other words, a security-relevant system event in which the system's security policy is disobeyed or otherwise breached.



          SOLUTIONS FOR  A SMALL BUSINESS
                          ORGANIZATION
There many  public typically only hears about cyberattacks against high-profile companies, banks and government websites, small businesses make prime targets for cybercriminals, competitors and disgruntled parties. Yet, due to their lack of resources, small businesses have the least-protected websites, accounts and network systems, making cyberattacks a relatively easy job.
1. Comodo
When it comes to low-cost security solutions, you usually get what you pay for. Comodo is a global, award-winning security provider that offers free and affordable security tools that don't compromise on features and reliability. Solutions include Comodo One, the company's free IT management platform that features remote monitoring and management (RMM), patch management and Service Desk all in one place; Comodo SecureBox to shield apps from malware-infected devices; and Comodo Advanced Endpoint to automatically prevent malware from entering networks. Small businesses can also enjoy a free antivirus, free and paid SSL certificates, free internet security, mobile device management, firewall protection, security for POS systems, and many other services. Comodo offers these platforms for free because it features an app store where you can purchase add-ons and enhanced security features.  2. Xirrus Wi-Fi Inspector
Most businesses that have local area network use wireless LAN connections, which are fast and efficient but still vulnerable to attacks from outside parties. Xirrus Wi-Fi Inspector provides central control for your WLAN, giving you more authority to monitor and protect your network. Attackers can make their way into an unprotected WLAN, but Xirrus Wi-Fi Inspector examines traffic and clients, guarding against abnormal activity and detecting unauthorized access points.

3. Lookout Mobile Security
It's not just computers that are at risk for security breaches. Lookout Mobile Security is all about protecting your business from cyberattacks on phones and tablets. It works by predicting, anticipating and shielding against all types of mobile threats, such as malware, data leakages, and the risks associated with side loaded apps and jailbroken devices. Lookout also gives you complete visibility over your devices and offers advanced tools to manage risks, vet software and app vendors, investigate incidences, and ensure compliance with security regulations and company policies. 
4. Social-Engineer
Cybersecurity starts from the inside. A business can implement all sorts of cybersecurity measures, but if its employees don't get training to avoid traps like phishing, cyberattacks are just a few clicks away. Social-Engineer.com helps organizations identify risk areas and how malicious attackers can exploit vulnerabilities to gain unauthorized access to infrastructures. Employees receive training using social engineering risk assessments and tests that simulate real-life events and mimic attacks. Social-Engineer provides online and onsite training, and it can customize programs based on individual needs and requirements.
5.  HTTPS Everywhere
Hypertext Transfer Protocol Secure (HTTPS) communication has become the standard for websites to protect data when users log in to accounts, make online purchases and complete other transactions. You can tell when a website uses this protocol because "https://" appears in front of the URL. Nevertheless, it's typically limited to select webpages and are often combined with non-HTTPS protected pages, compromising your security. You can make web browsing more secure with HTTPS Everywhere, a browser extension for Firefox, Chrome, Opera and Android web browsers released by the Electronic Frontier Foundation.    

Roshni Rathod
Business Analytics
Aircrews Aviation Pvt. Ltd
roshnirathod.aircrews@gmail.com
aircrews.roshnirathod@gmail.com
www.aircrewsAviation.com
Follow me on
LinkedIn
https://www.linkedin.com/in/roshni-rathod-16b58a192
Facebook I'd
https://www.facebook.com/profile.php?id=100010493141043
Instagram
https://instagram.com/rathod_ji2905?igshid=hxjzf810lvhh

Bio
https://www.portrait-business-woman.com/2020/07/roshni-rathod.html

CyberAttack and Solutions for Small Business Organizations

CyberAttack and Solutions for Small Business Organizations
As business technology evolves, so do cyber attackers and their methods. 2019 saw over $2 trillion in losses due to cybercrime, according to estimates from Juniper Research, and the number only grows with each year. These monetary losses don’t just represent the ransoms paid to hackers — losses also include fines, repairs, updates and the costs associated with a loss of reputation and clientele.
Unfortunately, it’s not just large companies that are experiencing these losses — small and medium-sized businesses are seeing an increase in cyberattacks, often because their cybersecurity measures are less sophisticated than those of larger enterprises. In fact, about half of all cyberattacks are targeted at small businesses, and attacks cost those businesses an average of $200,000, which can often put them out of business.
Fortunately, there are ways to protect yourself and your business. By arming your business with a quality security system and knowledge of the common cyberattacks facing small to medium-sized businesses today, your company can minimize IT vulnerabilities and cybersecurity threats.

What Is a Cyberattack?
A cyberattack, in the most general terms, is a digital assault on a computer or network. Cybercriminals use a mix of codes, programs and hardware to attach themselves to the target and work from there. The end goal varies based on the party in question, but the hacker usually works for money, which they obtain either through ransoming or selling information.
There are two broad types of cyberattacks — passive attacks and active attacks. These two broad categories of attacks are defined as follows:
Passive attack: A passive attack is a hacking attempt where data and hardware is monitored and tracked, but no alterations are made. Often, a program or human hacker gain access to a computer or network and monitor the activity of the user, tracking emails, internet usage, and even using the system’s microphone or camera to spy on the user.
Active attack: An active attack is a hacking attempt where the attacker attempts to alter, add or control data or hardware. This is the type of attack most commonly associated with hacking and includes attack types like Denial of Service and Malware.

8 Types of Cyberattacks
There are many specific types of cyberattacks being used today, posing threats from a variety of sources. Below is a list of the kinds of cyberattacks most commonly faced by small to medium-sized businesses, what they are and some cybersecurity examples.

1. Advanced Persistent Threats (APT)
An advanced persistent threat, known by the acronym APT, is a type of passive cyberattack. In APTs, a hacker or program gains access to a computer or network over a long period with the intent to gather information. This monitoring process may be done with the intent to steal information or to collect information to be used in a more extensive attack later on.

One example of an APT is the Flame malware discovered by Iran’s National Computer Emergency Response Team in 2012. This malware had infected over a thousand computers in the Middle East and North Africa, collecting information from governing and educational bodies as well as private citizens in the region. It had been spread using network connections and USB sticks and tracked audio, screenshots, keyboard activity and internet usage, among other information.
The best ways to prevent APTs are to stay on top of software patches and monitor network activity at all points of entry. For government agencies, following compliance guidelines and best practices is also highly recommended. 

2. Phishing
Phishing is a type of scam where criminals encourage targets, via email or other online communication methods, to perform a certain action. The action the target is encouraged to do may be anything from providing information about themselves to clicking on a link to download something. Once the target completes the action, the originator of the scam can gain access to private systems or information.
Possibly the most recognized version of the phishing scam is the often-spoofed Nigerian prince scam, where one person sends an email to as many people as possible, claiming to be a Nigerian prince in need of financial assistance to gain access to his vast riches. However, phishing scams have become significantly more sophisticated over time. Now instead of sending mass emails with a generalized plea, cybercriminals are sending emails to thoroughly researched targets, purporting to be trusted sources that the target may recognize. These types of targeted phishing scams are called spear-phishing scams and make up a significant portion of cyberattacks.
Phishing scams are most easily prevented by educating staff members on cyber safety. Employees should know not to click on links or respond to email addresses they don’t recognize. On top of this base-level security measure, make sure that your security is armed with a robust monitoring system.

3. Denial of Service (DoS)
A denial of service or DoS attack is possibly one of the oldest and most common cyberattack methodologies. This type of cyber extortion works by denying service to a legitimate user through two methods:
Specially Crafted Data: This method involves sending specialized data to a system that causes an error within the system, preventing the system from functioning.
Flooding: This method involves overloading a system to slow it down so that the system is unable to function.
DoS attacks can use one or both of these methods to hold a system hostage, forcing the user to pay a fee to return the system to working order. Another distinction to make is the difference between a DoS attack and a DDoS attack — while a DoS attack uses a single computer to carry out the attack, a DDoS attack, or distributed DoS attack, uses multiple computers to do so.
A common example of DoS attacks is often found in casinos. These businesses deal with large amounts of money, which are tracked using a server during their business hours. A DoS attack may slow or stop these servers during those hours or threaten to do so if the hacker’s demands are not met.

4. Insider Attacks
Insider attacks are attacks that are initiated due to the action of a trusted internal user of a system. These users may be employees, contractors or any other internal user. Many of these insider attacks are unintentional mistakes where an employee fails to practice good cyber safety by clicking on a malicious link. However, rogue or disgruntled current and former employees may also attack the system on purpose for personal gain or revenge. Either way, internal attacks can result in stolen, lost or compromised data.
Insider attacks are becoming of increasing concern. One former engineer for Amazon Web Services hacked into a Capital One server hosted by her former employer. Her attack allowed her to gain access to 140,000 Social Security numbers, 80,000 bank account numbers and a vast amount of private information.

5. Malware
Malware quite literally means malicious software. These programs are specifically designed to be downloaded to a computer without the user’s knowledge, where the software can cause serious damage or data breaches. There are many types of malware that act in different ways, including viruses, worms, spyware and keyloggers.
What is Malware?
Malware is often used on corporate and private devices, but it is also commonly used at a government level as a form of international espionage. For example, India’s largest nuclear power plant was recently attacked by North Korean malware. This malware allowed attackers to gain control access to the plant. Fortunately, the issue was discovered and resolved quickly.

6. Password Attacks
Password attacks, also known as brute force attacks, are attacks in which a hacker inputs various password combinations in an attempt to access a network. This is often accomplished using automated systems such as a dictionary attack list or rainbow tables.
Because of their simplicity, password attacks are on the rise. In one case, hackers had intermittent access to software company Citrix over the course of six months in mid-2019. During that time, they removed files and information, downloaded documents and accessed sensitive customer information. Citrix only became aware of the breach when the FBI alerted them to the activity, and the extent of the breach is still unknown.
The best way to prevent this type of attack from succeeding is to implement password complexity standards and regular credential changes. 

7. Ransomware
Ransomware is a specific type of malware that gathers and encrypts data and devices on a network, preventing user access. User access is only restored if the hacker’s demands are met, which most often relate to paying some type of ransom. Unfortunately, payment does not always result in access. Even if companies pay the ransom, the hacker may refuse to unlock the devices, amplifying the company’s losses.
Ransomware attacks are the kind that is most likely to keep security engineers, administrators, CSOs and other IT personnel awake at night. Ransom payments have increased 13 percent between the summer and fall of 2019, rising to an average of $41,00 per incident. Attacks are also becoming more frequent and their effects more widespread — 13 managed service providers have been attacked throughout 2019, affecting their companies as well as the clients using their systems.

8. Man-in-the-Middle (MITM)
A man-in-the-middle attack is when a third party intercepts communication between two parties. This third party gains access to the communication then listens in or monitors activity, gaining access to any information shared over that connection, including login credentials, personal information and more.
MITM attacks are the oldest type of cyberattack and began with eavesdropping on phone lines, radio lines and other communications channels. The methods have become significantly more advanced over time, however. For example, one type of MITM attack is an Evil Twin attack, which occurs when a user accesses the internet through a deceptive Wi-Fi access point. The access point’s owner can then monitor this connection.
The best way to prevent MITM attacks from affecting your workplace is by not accessing unknown or unfamiliar Wi-Fi access points and by educating your employees on proper cybersecurity practices. 

Manojna Akula
Business Development Manager
Aircrews Aviation Pvt Ltd
manojnaakula.aircrews@gmail.com
manojnaakula@aircrewsaviation.com
https://manojnaa.vcardinfo.com/
https://www.linkedin.com/m/in/manojna-akula-b8680a84/
https://www.portrait-business-woman.com/2020/06/manojna-akula.html

Cyber Attack

CYBER ATTACK
Cyberattack
A cyberattack is an attack launched from one or more computers against another, multiple computers, or networks. Cyber ​​attacks can be divided into two broad types: targets where the target is to deactivate the computer or knock it offline, or targets where the target is to gain access to the computer's data and perhaps gain administrator privileges over it .
Here are some examples of common cyber attacks and types of data breaches:
• Identity theft, fraud, extortion
• Malware, phishing, spamming, spoofing, spyware, Trojans and viruses
• Stolen hardware, such as laptops or mobile devices
• Denial-of-service and distributed denial-of-service attacks
• access violation
• sniffing passwords
• System intrusion
• Website malfunction
• Exploits private and public web browsers
• Instant message abuse
• theft or unauthorized access to intellectual property (IP)
1. Train Your Employees
One of the most common ways cybercriminals get access to your data is through your employees. They will send impersonated fraudulent emails to someone in your organization and ask for either personal details or access to certain files. Links often seem legitimate to an untrained eye and it is easy to fall into the trap. This is why employee awareness is important.
One of the most efficient ways to protect against cyber attacks and all types of data breaches is to train your employees
Prevention of cyber attack and reporting of current cyber attacks to them.
They need:
• Check the links before clicking them
• Check the email address from the received email
• Use common sense before sending sensitive information. If a request sounds strange, it probably is. It is better Check through a phone call with the person in question before the "request" action
2. Keep your software and system fully updated
Often cyber attacks occur because your system or software is not completely vulnerable. Hackers take advantage of these vulnerabilities so cybercriminals take advantage of these vulnerabilities to gain access to your network. Once they occur - it is often too late to take preventive action.
To counteract this, it is smart to invest in a patch management system that will manage all software and system updates while keeping your system flexible and up-to-date.
3. Ensure endpoint security
Endpoint protection protects networks that are bridged to devices remotely. Mobile devices, tablets and laptops that are connected to the corporate network give access to security threats. These paths need to be protected with specific endpoint protection software.
4. Install a firewall
Everyday many different types of sophisticated data breaches and new ones surface and even rebound.
Keeping your network behind a firewall is one of the most effective ways to protect yourself from any cyber attack. A firewall system can prevent any brute force attack on your network and / or system before it can cause any damage, something that we can help you with.
5. Back up your data
In the event of a disaster (often a cyber attack) you must have a backup of your data to avoid severe downtime, data loss and serious financial loss.
6. Control access to your system
Believe it or not, one of the attacks you get on your system can be physical, controlling who can access your network is really important. Someone can simply settle into your office or enterprise and plug in a USB key that is one of the infected files in your computer that gives them access to your entire network or infects it.
It is necessary to control who has access to your computer. Having a perimeter security system is as good a way to prevent cybercrime as a break in!

7. Wifi Security
Who does not have a wifi enabled device in 2020? And this is absolutely a danger, any device connected to a network can get infected, if this infected device connects to your business network then your entire system is in serious danger.
Keeping your WiFi network secure and hiding them is one of the safest things you can do for the system. With more and more developing tools everyday that can connect to your network and compromise you.
8. Personal accounts of the employee
Every employee needs their own login for every application and program. Multiple users connecting under the same credentials can put your business at risk.
Having different logins for each staff member will help you reduce the number of attack surfaces. Users only log in once a day and will only use their own set of logins. More and more security is not the only benefit, you will also get better utility.
9. Access Management
One of the risks as a business owner and having employees

23.   Use SSL/TLS Certificates to Encrypt Your Website Traffic

Always use HTTPS on your websites to ensure that the communication channel between the client browser and your server stays secure. Installing SSL/TLS certificates on your web servers not only provides you with encrypted channels, but it also asserts your identity to the clients. It establishes trust in your customer base and adds to your brand value.

24.   Use S/MIME to Encrypt All Emails Containing Sensitive Data

Emails are not the most secure way to communicate. S/MIME (Secure/Multipurpose Internet Mail Extensions) changes that by allowing you to encrypt and sign your emails. This way, the recipient can be assured that the message hasn’t been altered and really was sent by you. Pretty Good Privacy (PGP), an old standard for emails, might require plugins but S/MIME is built into most email clients.

25.   Frame a Business Continuity and Disaster Recovery Plan
When all is said and done, no matter how strong your cyber defense is, there’s always a possibility that a cyber attack could entirely cripple your network. If you wait for the day when you’re attacked to come up with a plan, chances are you’ll lose a lot of your money along with your cool. Build a comprehensive, well-documented strategy along with backup and recovery plans with detailed steps to bring up critical systems, BC/DR team details, specialist contact details, etc.

Final Thoughts

To summarize, when it comes to cyber security for small and mid-sized businesses, using a few necessary security solutions, being cautious and using good judgment goes a long way. While it is understandable that having high-end security solutions might not be feasible, it’s essential to realize that there are several equally good open source and affordable alternatives.

No matter what you choose, there are always costs involved with cyber security. The question is whether you invest it in securing your organization’s network or in rebuilding brand image after a breach.

Sweta Patwal 
HR Manager
AirCrew Aviation Pvt. Ltd


साइबर हमला

साइबरटैक एक या एक से अधिक कंप्यूटरों से दूसरे कंप्यूटर, कई कंप्यूटरों या नेटवर्कों के खिलाफ शुरू किया गया हमला है। साइबर हमलों को दो व्यापक प्रकारों में विभाजित किया जा सकता है: ऐसे लक्ष्य जहां लक्ष्य कंप्यूटर को निष्क्रिय करना है या इसे ऑफ़लाइन दस्तक देना है, या लक्ष्य जहां लक्ष्य कंप्यूटर के डेटा तक पहुंच प्राप्त करना है और शायद इस पर व्यवस्थापक विशेषाधिकार प्राप्त करना है।

यहां कुछ सामान्य साइबर हमले और डेटा उल्लंघनों के प्रकार के उदाहरण दिए गए हैं:

• पहचान की चोरी, धोखाधड़ी, जबरन वसूली

• मैलवेयर, फ़िशिंग, स्पैमिंग, स्पूफिंग, स्पाईवेयर, ट्रोजन और वायरस

• चोरी का हार्डवेयर, जैसे लैपटॉप या मोबाइल डिवाइस

• इनकार-की-सेवा और वितरित इनकार-की-सेवा हमले

• पहुँच का उल्लंघन

• पासवर्ड सूँघना

• सिस्टम में घुसपैठ

• वेबसाइट की ख़राबी

• निजी और सार्वजनिक वेब ब्राउज़र शोषण करता है

• त्वरित संदेश दुरुपयोग

• बौद्धिक संपदा (आईपी) की चोरी या अनधिकृत पहुंच

1. अपने कर्मचारियों को प्रशिक्षित करें

सबसे आम तरीकों में से एक साइबर अपराधियों को आपके डेटा तक पहुंच मिलती है जो आपके कर्मचारियों के माध्यम से होती है। वे आपके संगठन में किसी को प्रतिरूपित धोखाधड़ी वाले ईमेल भेजेंगे और या तो व्यक्तिगत विवरण या कुछ फ़ाइलों तक पहुंच के लिए पूछेंगे। लिंक अक्सर एक अप्रशिक्षित आंख के लिए वैध लगते हैं और जाल में गिरना आसान होता है। यही कारण है कि कर्मचारी जागरूकता महत्वपूर्ण है।

साइबर हमलों और सभी प्रकार के डेटा उल्लंघनों से बचाने के लिए सबसे कुशल तरीकों में से एक है अपने कर्मचारियों को प्रशिक्षित करना

साइबर हमले की रोकथाम और उन्हें वर्तमान साइबर हमलों की सूचना देना।

उनको आवश्यकता है:

• उन्हें क्लिक करने से पहले लिंक की जाँच करें

• प्राप्त ईमेल से ईमेल पते की जाँच करें

• संवेदनशील जानकारी भेजने से पहले सामान्य ज्ञान का उपयोग करें। यदि कोई अनुरोध अजीब लगता है, तो यह संभवतः है। यह बेहतर है

"अनुरोध" कार्रवाई से पहले प्रश्न में व्यक्ति के साथ एक फोन कॉल के माध्यम से जाँच करें

2. अपने सॉफ्टवेयर और सिस्टम को पूरी तरह से अपडेट रखें

अक्सर साइबर हमले इसलिए होते हैं क्योंकि आपके सिस्टम या सॉफ्टवेयर पूरी तरह से कमजोर नहीं होते हैं। हैकर्स इन कमजोरियों का फायदा उठाते हैं इसलिए साइबर क्रिमिनल्स आपके नेटवर्क तक पहुंच हासिल करने के लिए इन कमजोरियों का फायदा उठाते हैं। एक बार जब वे होते हैं - अक्सर निवारक कार्रवाई करने में बहुत देर हो जाती है।

इसका प्रतिकार करने के लिए, यह पैच प्रबंधन प्रणाली में निवेश करने के लिए स्मार्ट है जो आपके सिस्टम को लचीला और अद्यतित रखते हुए सभी सॉफ्टवेयर और सिस्टम अपडेट का प्रबंधन करेगा।

3. समापन बिंदु सुरक्षा सुनिश्चित करें

समापन बिंदु सुरक्षा उन नेटवर्क की सुरक्षा करती है जो दूर से उपकरणों के लिए ब्रिज की जाती हैं। मोबाइल डिवाइस, टैबलेट और लैपटॉप जो कॉरपोरेट नेटवर्क से जुड़े हैं, सुरक्षा खतरों तक पहुंच मार्ग देते हैं। इन रास्तों को विशिष्ट समापन बिंदु सुरक्षा सॉफ़्टवेयर के साथ संरक्षित करने की आवश्यकता है।

4. एक फ़ायरवॉल स्थापित करें

हर दिन कई अलग-अलग प्रकार के परिष्कृत डेटा उल्लंघनों और नए लोगों की सतह होती है और यहां तक ​​कि वापसी होती है।

अपने नेटवर्क को फ़ायरवॉल के पीछे रखना किसी भी साइबर हमले से अपना बचाव करने के सबसे प्रभावी तरीकों में से एक है। फायरवॉल सिस्टम आपके नेटवर्क और / या सिस्टम पर किए गए किसी भी ब्रूट फोर्स अटैक को रोक सकता है, इससे पहले कि वह कोई नुकसान पहुंचा सके, कुछ ऐसा जिससे हम आपकी मदद कर सकें।

5. अपने डेटा का बैकअप लें

आपदा की स्थिति में (अक्सर साइबर हमला) आपके पास गंभीर डाउनटाइम, डेटा की हानि और गंभीर वित्तीय नुकसान से बचने के लिए आपके डेटा का बैकअप होना चाहिए।

6. अपने सिस्टम तक पहुंच को नियंत्रित करें

मानो या न मानो, आपके सिस्टम पर प्राप्त होने वाले हमलों में से एक शारीरिक हो सकता है, इस पर नियंत्रण रखना कि कौन आपके नेटवर्क तक पहुंच सकता है वास्तव में महत्वपूर्ण है। कोई व्यक्ति आपके कार्यालय या उद्यम में बस जा सकता है और एक USB कुंजी में प्लग कर सकता है जो आपके कंप्यूटर में संक्रमित फ़ाइलों में से एक है जो उन्हें आपके पूरे नेटवर्क तक पहुंच देता है या इसे संक्रमित करता है।

यह नियंत्रित करना आवश्यक है कि आपके कंप्यूटर तक किसकी पहुंच है। परिधि सुरक्षा प्रणाली स्थापित होना साइबर क्राइम को रोकने का एक बहुत अच्छा तरीका है जितना कि ब्रेक इन!

7. वाईफ़ाई सुरक्षा

2020 में वाईफाई सक्षम डिवाइस किसके पास नहीं है? और यह बिल्कुल खतरा है, कोई भी उपकरण किसी नेटवर्क से कनेक्ट होकर संक्रमित हो सकता है, यदि यह संक्रमित डिवाइस आपके व्यवसाय नेटवर्क से जुड़ता है तो आपका पूरा सिस्टम गंभीर खतरे में है।

अपने वाईफाई नेटवर्क को सुरक्षित रखना और उन्हें छिपाना आपके लिए सबसे सुरक्षित चीजों में से एक है जो आप सिस्टम के लिए कर सकते हैं। हर रोज़ अधिक से अधिक ऐसे उपकरण विकसित करने के साथ, जो आपके नेटवर्क से जुड़ सकते हैं और आपसे समझौता कर सकते हैं।

8. कर्मचारी के व्यक्तिगत खाते

हर कर्मचारी को हर एप्लिकेशन और प्रोग्राम के लिए अपना लॉगिन चाहिए। समान क्रेडेंशियल के तहत कनेक्ट होने वाले कई उपयोगकर्ता आपके व्यवसाय को जोखिम में डाल सकते हैं।

प्रत्येक स्टाफ सदस्य के लिए अलग-अलग लॉगिन होने से आपको हमले की सतहों की संख्या कम करने में मदद मिलेगी। उपयोगकर्ता केवल एक दिन में एक बार लॉग इन करते हैं और केवल लॉगिन के अपने सेट का उपयोग करेंगे। अधिक से अधिक सुरक्षा का एकमात्र लाभ नहीं है, आपको बेहतर उपयोगिता भी मिलेगी।

9. पहुंच प्रबंधन

एक व्यवसाय के स्वामी के रूप में जोखिमों में से एक और कर्मचारियों के होने पर उन्हें व्यवसाय के स्वामित्व वाले उपकरणों पर सॉफ़्टवेयर स्थापित करना है जो आपके सिस्टम से समझौता कर सकते हैं।

व्यवस्थापक अधिकारों को प्रबंधित करने और अपने कर्मचारियों को स्थापित करने या यहां तक ​​कि आपके नेटवर्क पर कुछ डेटा तक पहुंचने से रोकना आपकी सुरक्षा के लिए फायदेमंद है। यह आपका व्यवसाय है, इसे सुरक्षित रखें!

Cyber Attack by some African and Pakistani Hackers

@Team we had a Cyber Attack by some African and Pakistani Hackers. Also, some of our Mobile Nos and email Passwords are not working and many unnecessary emails are being sent by our I'ds. For now, all the worksheets, projects and every program will be on hold for the next two days except the interview process for new interns. We are trying to fix everything. Everyone change your whatsapp group settings from everyone to your contacts only. Everyone stay alert and aware!!  Our IT Team @AeroSoft Corp is working to resolve this issue.  We are Sorry for the Inconvenience Caused :(   😔🙏🙏  

We Need an Article  about Cyber Attack and Solutions for a Small Business Organisation

हम कुछ अफ्रीकी और पाकिस्तानी हैकर्स द्वारा साइबर हमला किया था। साथ ही, हमारे कुछ मोबाइल NOS और ईमेल पासवर्ड काम नहीं कर रहे हैं और कई अनावश्यक ईमेल हमारे द्वारा भेजे जा रहे हैं। अभी के लिए, सभी कार्यपत्रक, परियोजनाएं और हर कार्यक्रम अगले दो दिनों के लिए नए इंटर्न के लिए साक्षात्कार प्रक्रिया को छोड़कर आयोजित किया जाएगा। हम सब कुछ ठीक करने की कोशिश कर रहे हैं। हर कोई अपने व्हाट्सएप ग्रुप सेटिंग्स को सभी से अपने संपर्कों में बदल देता है। हर कोई सजग और जागरूक रहे !! हमारी IT टीम @AeroSoft Corp इस मुद्दे को हल करने के लिए काम कर रही है। 

हम असुविधा के कारण क्षमा चाहते हैं :( In

We Need an Article  about Cyber Attack and Solutions for a Small Business Organisation   

@Team we are really sorry for the inconvenience which happens within our organization. Though our IT Team is trying to resolve it, We  know some people are really concerned about their Safety and Security. We assure them we will try our best to recover the situation. 
But If anyone really feels that they are not safe here, they can leave this  Internship Program  Immediately. 

Don 't worry, Certificates will be given to them for full duration as per Offer Letters.

Apply here for your Certificates

https://aerosoftin.blogspot.com/2020/07/formats-for-preparation-of-final.html  


 


Keerthana Iyer 

HR Manager (in-charge)

Debadrita Roy
HR Manager (internship in-charge)
debadritaroy@air-aviator.com

Rashi Rathi
HR Manager (Asst. in-charge)
rashirathi@air-aviator.com