Controls of Attacks on Networks
The following measures can be taken to counter network attacks:
- Reinforce network equipment with appropriate configurations and appropriate patching including firmware updates.
- Substitute all default passwords with strong passwords.
- Use safe session ID handling.
- Choose an appropriate session time out for the app.
- Use encrypted protocols like SSL or TLS; techniques like VPN.
- Do not store passwords or critical information in the cookies.
- Ensure that all the software used including utilities / tools are patched / updated.
- Set easy-to-understand and clear security policies.
- Create awareness among the employees on what can go wrong and what is expected from them.
- Do not have the same user name and passwords for all the systems.
- Logout promptly after the work is over.
- Ensure cookies, history, and offline content are removed after sensitive transaction sessions.
- Do not click links in suspicious emails.