JavaScript Vulnerabilities Flashcards
USS Yorktown incident
1997 - A user (sailor) input the number zero into a program which crashed the Smart Ship system that controlled multiple vital services on the Yorktown, to include the propulsion system. “Engineering local area network casualty”
MIM-104 Patriot incident
1991 - The software error of a MIM-104 Patriot, caused its system clock to drift by one third of a second over a period of one hundred hours – resulting in failure to locate and intercept an incoming missile. The Iraqi missile impacted in a military compound in Dhahran, Saudi Arabia killing 28 Americans.
F-22 Raptor incident
1992 - The first F-22 Raptor crashed while landing at Edwards Air Force Base, California. The cause of the crash was found to be a flight control software error that failed to prevent a pilot-induced oscillation
B-52 Bomber incident
2001 - After using a GPS device to coordinate precision strikes, the device dies. After replacing the battery, the system reset itself and its coordinates killing three U.S. Special Forces members
What is Malware?
Malicious Software
- Program that violates one (or more) of the IA pillars
- Different approach to attacking a system
- Victim generally installs the malware
- Often associated with online crime
- Categorized by delivery and propagation technique
What is a Virus?
- Computer program that can replicate itself
- Infects a computer without permission or knowledge from the user
- Attaches itself to another program or file
- Cannot replicate unless the file is executed
What is a Worm?
- Self-replicating, self-propagating program
- Uses networking mechanisims to propagate
- Tries to find other victims
What is a Trojan?
Program that appears to have a useful function
(Has malicious intentions)
- User visits a webpage
- Window pops up indicating their computer is infected
- User installs advertised anti-virus
- Anti-virus claims effectiveness
* Also installs a virus without victim’s knowledge
