Week-10

     Kevin Mitnick an American Computer Security Consultant suggested in his books that security comes from technology, training and policy. Today I would like to share some experience about Georgia's cyber security. 

    Some may argue about Georgia's cyber security, but I would like to mention every aspects of it. Firstly, If we visit Ministry of Internal Affairs of Georgia's or Central Criminal Police Department's page we will se that daily there many arrests in dark web, especially those who are dealing with drugs and illegal weapons. We all know the geographical area of Georgia in the middle of Europe and Asia and under the nowadays' biggest problem Russia. So, lots of transportation comes trough us. I can recall when I was doing training program in MIA department of Cyber Division, that the main problem was training of employees and corrupted resources. Besides that, the team of operators still managed and are managing to do work. Why there are no trainings? Because, heads of departments are afraid for better competitor in their department, not to take their place. Yes, it is like no one loves someone smarter than them. I had good relationship with operators and I could see that their motivation was down, because they did not learn anything new. They had old computers with pentium gold processor. Can you imagine? Also only 3 rooms were for the whole Georgia's Cyber Defense division(This was during last year's pandemic. I hope it changed for now). Do you understand the situation? Few people works in Cyber Defense, because no one knows. 

    Let's talk about policy. We have very strict policy about cyber crime https://police.ge/files/pdf/kiber_danashauli/Convention%20on%20Cybercrime%20GEO.pdf. You can visit webpage if you understand Georgian. The convention itself was created in Budapest in 23.11.2001. That is the period where Georgia was really in a very bad situation(Revolutions). Mainly, important informations are extracted from devices after a person is arrested or is suspected. Well the forensic department is really good in MIA. I also done training in there, using new software such as XRY, CELLEBRITE and USA'S MIA does many trainings in that department. That's why it works better then Cyber Division. I remember there was an attack on President in 2019, December 15th. And that information came to us in February 2020, and there was deleted logs by hacker who hacked into database, and the track was very clear, done by professional. The problem was we catched, somehow the hacker but could not prove that he was a suspect, due to old policy. It is strict, but old. 

    Technology is at very low level. Even in Organizational departments, it is very visible especially during dealing newer phones, computers and other devices. To say the truth, I don't know why. Georgia has lots of resources, but corruption and government, don't want to say it but people already can't deal with it. The biggest problem in Georgia, is government and their activity. Old generation, and their young relatives betrayed the country and "Nordic Bear" buys people very easily. So if someone want's to start something that is really beneficial for Country, he/she is may killed or silenced. No one wants in "upper divisions" stronger and educated people in my country, nor their technology to have.

Comments

Post a Comment

Popular posts from this blog

Week - 6 Copyleft

Intro      While Copyleft can be granted to users to change and distribute the intellectual property under the derivation of the "host", Copyright exists in order to protect author of documentation. During the Copyleft author is capable of placing his/her copyright into the document. Strong Copyleft     As I said Copyleft is set to guarantee the freedom of the software distribution and modification but first creator has most of the rights. It means source code should be available with the copy of a license and acknowledgment from author. Lets mention a little bit of history. Firstly we met Copyleft license in 1985 by Richard Stallman the Emacs General Public License  and it is still used in many copylefted software such as GNU. But everything is not as easy as it seems. While you are in the head of a company and trying to choose between licenses you should carefully think about it. What kind of company business are you going to deal with in the future? What kind of strategy w
Read more

Week 1

 THREE IT FAILURES      Some of you heard about unfinished complaints from users to their mobile phones and I will try to discuss one of the main highlights from recent events. Samsung Galaxy Note 7 people who have not heard about it was officially released on 19 August 2016 and it was the first mobile device with C-Type USB connector. People loved that phone, for its' beauty and capabilities, the quality and construction "were praised". Of course the price was high due to its' "new level" hardware, but that was not the main issue with that. On 2 September 2016, first informal announcement about Galaxy Note 7's batteries, which generated excessive heat lead phones to fire. Undoubtedly, the stock of Samsung company plunged, but the consequences were inadmissible. The company itself was not typically associated with low-cost, low-quality components. Moreover, Samsung was supplier for Apple's Iphone and after that loyalists were surprised.      On the 7
Read more

Week-9

Image
      Nowadays, we live in the era of technology. Information can be exchanged all over the world within seconds. One little mistake, can become huge problem. What should we do to avoid it?     Firstly, It would be good practice to implement better design, because before making mistake it must be seen easily. For example, on January 13, 2018, Hawaii residents were on the receiving end of the shock of their lives. False alarm by employee at Hawaii Emergency Management Agency "BALLISTIC MISSILE THREAT INBOUND TO HAWAII. SEEK IMMEDIATE SHELTER. THIS IS NOT A DRILL". During that time, the period was tensed with North Korea and residents started panicking. After 30 minutes, mistake was issued . Richard Rapoza, a spokesperson for the agency, said it was due to human error. It is something we hear everywhere. It was just one false click that made situation distressed. How could we avoid it ?  Strong colors are easier for our eyes to detect for some wrongdoing. For good design time a
Read more