Security

Challenges on
the Web
Understanding Threats and How
to Safeguard Web Systems

Start Now
INTRODUCTION
The web has become an essential part of modern
life, facilitating everything from communication
to banking and business operations.

However, the increasing reliance on web

technologies has also led to a rise in security
threats that target sensitive data and systems.

This presentation explores the major security

threats faced by web users and systems and
discusses key protective measures to mitigate
those threats.
Major Web Security Threats
Malware
Software designed to disrupt,
damage, or gain
unauthorized access to
systems.
Phishing
Fraudulent attempts to obtain
sensitive information by
disguising as a trustworthy
entity.
SQL Injection
Attacks that exploit
vulnerabilities in a website's
database query language.
Cross-Site Scripting (XSS)
Injecting malicious scripts into
trusted websites to target
users.
Distributed Denial of Service
(DDoS)
Overloading servers to make
services unavailable to users.
Man-in-the-Middle (MITM)
Eavesdropping or altering
communication between two
parties.
 Malware: A Growing Threat

What is Malware? Examples Impact

Malware includes viruses, worms,
ransomware, and Trojan horses
that infect systems to steal or
destroy data. Malware can spread
via infected downloads, email
attachments, or
malicious websites.
Ransomware locks users out of
their systems until a ransom is
paid. Trojans hide inside
legitimate software to exploit
system vulnerabilities.
System downtime, data theft,
identity theft, and even financial
loss.

What is Phishing?
A social engineering attack
designed to trick users into
providing sensitive information
such as login credentials or
financial information.
Impact: Compromised accounts, financial loss, and identity theft.
Phishing Attacks
Techniques Examples of Phishing
• Email spoofing, fake websites The "PayPal email scam," is
designed to look like where users are directed to a fake
legitimate platforms (e.g., PayPal login page to steal
online banking). credentials.
• Attackers often exploit
emotional triggers, such as
urgency or fear.
 SQL Injection Attacks

What is SQL Injection? Real-World Example Impact

SQL Injection occurs when an The 2014 SQL Injection attack Leaked sensitive data,
attacker inserts malicious SQL on Yahoo resulted in the theft of unauthorized access to the
code into a web form input field to 500 million user accounts. entire database, or complete
manipulate the backend control over a web application
database. Vulnerable websites
allow unsanitized inputs to
interact with the
database directly.
 Cross-Site Scripting (XSS)

What is XSS? Example Impact

XSS vulnerabilities allow attackers A malicious script steals cookies Can lead to hijacked user
to inject malicious scripts into web and session tokens, allowing the accounts, defacement of
pages viewed by users. attacker to impersonate the websites, and malware
user. distribution.

Types of XSS
There are three types:
Stored XSS: The malicious script is permanently stored on the target server.
Reflected XSS: The script is reflected off a web server, such as in a URL.
DOM-based XSS: The vulnerability lies in the client-side code.
 Distributed Denial of Service
(DDoS)
What is a DDoS Attack? Techniques Impact
A DDoS attack attempts to Using botnets (networks of Service downtime, loss of
overwhelm a target server, compromised computers) to revenue, customer dissatisfaction,
service, or network with a flood of flood systems with requests. and sometimes long-term
internet traffic, making it Amplification attacks: Exploiting reputational damage.
inaccessible to legitimate users. vulnerabilities in servers to
magnify the traffic sent.
 Man-in-the-Middle Attacks
What is a MITM Attack?
In this attack, an adversary
secretly intercepts and possibly
alters the communication
between two parties without
them knowing.
Techniques Impact
Eavesdropping: The attacker Sensitive information (like login
intercepts data being credentials) can be stolen, or
transferred between the user transactions can be altered.
and the server.
Session Hijacking: The
attacker takes over a user's
session by stealing session
cookies.
Encryption: A Key
Defense
Importance of Encryption

Encryption transforms readable data into

unreadable code to prevent unauthorized
access, protecting sensitive information.

HTTPS: A secure version of HTTP that ensures

encrypted communication between a browser and
the server, protecting against MITM attacks.

Encryption Algorithms
TLS (Transport Layer Security): Used for encrypting
communications.
SSL (Secure Sockets Layer): Older but still in use.
Public Key Infrastructure (PKI): Uses public and
private key pairs to encrypt and decrypt data. .
Firewalls and Intrusion Detection Systems

Firewalls and Intrusion Detection Systems (IDS) are

essential components of network security. Firewalls
serve as a barrier between a trusted network and an
untrusted network (like the internet), controlling traffic
based on predefined rules. IDS, on the other hand,
monitors network traffic and detects suspicious activity
that may indicate an attack.

Best Practices
• Use Next-Generation Firewalls that include deep
packet inspection
• Regularly update firewall rules and intrusion detection
software to adapt to new threats.
Secure Coding Practices
Secure coding practices are essential to prevent vulnerabilities in web applications. Developers
need to write code that anticipates and blocks potential attack vectors, such as input validation
failures and improper data handling. These practices ensure that web applications are resistant to
common exploits.
• Input Validation: Ensure that all user inputs are checked and validated before being
processed to avoid attacks like SQL Injection.
• Output Encoding: Escape characters in output to prevent Cross-Site Scripting (XSS), where
attackers could inject malicious code into a web page.
• Parameterized Queries: Use parameterized queries to separate code and data, preventing
direct user input into SQL commands (protecting against SQL Injection).
• Content Security Policy (CSP): Use CSP to restrict the types of content that can be loaded
on a web page, which helps prevent Cross-Site Scripting (XSS).
• Regular Security Audits: Conduct routine code reviews and vulnerability scans to identify
and patch weaknesses early.
 Authentication and Authorization
Authentication and authorization are critical processes in web security. Authentication ensures
that the user is who they claim to be, while authorization determines what resources the
authenticated user can access. Weak or compromised authentication can lead to unauthorized
access and significant security breaches.
• Strong Passwords: Enforce password policies requiring strong passwords with a mix of
characters, numbers, and symbols. Implement password expiration policies and discourage
password reuse.
• Multi-Factor Authentication (MFA): Add an extra layer of security by requiring more than just a
password (e.g., a code sent to a mobile device or biometric verification)
• .Oauth and OpenID Connect: Use these protocols to enable secure and scalable user
authentication. Commonly used for single sign-on (SSO) systems.
• Role-Based Access Control (RBAC): Ensure that users have access only to the resources
necessary for their role, minimizing the risk of privilege escalation.
Security Awareness and Best
Practices
Security Awareness Training:

Educate users on recognizing threats like

phishing and social engineering.

Phishing Simulations
Conduct fake phishing tests to improve
detection skills.

Regular Updates and Patching

Keep software and systems updated to fix
vulnerabilities.

Backups and Recovery Plans

Regularly back up data and prepare for quick
recovery in case of an attack.
 CONCLUSION
In conclusion, web security is a critical aspect of modern digital infrastructure, as
the internet continues to be a primary channel for communication, commerce,
and data exchange. With threats like malware, phishing, and SQL injection on the
rise, it is essential to adopt a multi-layered defense strategy. Implementing strong
protective measures such as encryption, firewalls, secure coding practices, and
authentication protocols can significantly reduce vulnerabilities. Additionally,
continuous user education and security awareness are crucial in addressing the
human element of security risks. Ultimately, proactive monitoring, regular
updates, and a well-prepared disaster recovery plan are essential for ensuring
long-term web security in an ever-evolving threat landscape.
THANK YOU FOR
ATTENTION
See You Next