| Contrary to attacking the vulnerability of the software | | | | server from unauthorized zones. Though, in tactical |
| directly, attackers are interested in exploiting the | | | | approach, attackers use brute force on possible |
| opportunity of intercepting data in motion. Hackers are | | | | domains and host names to decide whether those |
| interested in gaining administrative privileges, breaking | | | | entries exist. |
| the web application security. Although, you might have | | | | Mail Services: Unencrypted email can be read easily |
| a very secure system, a complicated attacker can | | | | when it’s making its way to your friend’s inbox. |
| steal your data without attacking your secure system! | | | | A typical mail system is composed of one or more |
| Conducting regular pen tests on your applications are | | | | relay systems, some form of anti-virus, the real mail |
| very helpful in attaining a reliable vulnerability | | | | server itself and finally the user’s email client. |
| assessment of the security of your applications. Here | | | | Traditionally, hackers focused only on the middle |
| are some ways to know how security of your | | | | systems; though, in strategic approach they target the |
| system is compromised: | | | | mail clients also. |
| File Transfers: Traditional attacks involved exploiting | | | | There are several network vulnerability assessments |
| vulnerabilities of the FTP server software. Though, in | | | | in host that appear harmless in traditional security |
| tactical approach, hackers focus on the data transfer: | | | | vulnerability assessment because of their low severity |
| the opportunity of actual transfer in process. Traditional | | | | rating. Though, these often lead to severe vulnerabilities |
| network security is unable to protect such attacks, pen | | | | in a system. Hackers are rapidly exploiting this |
| tests proves more than handful here as they cover all | | | | opportunity. Security managers focus on removing high |
| the possible ways an attack can occur. | | | | threat vulnerabilities leaving this low threat ones open |
| Attacking DNS Services: With moderate network | | | | – falsely assuming that they pose bit or no threat at |
| security level, most DNS servers are unable to protect | | | | all! |