CYBER SECURITY AND TYPES OF ATTACKSABSTRACTIn today’s growing word cyber security is very necessary because,As technology provides many services to it, also some effect like security threats and cyber attacks.To secure the information from hacker and the cyber attacks we will require the cyber security. Cyber security is an process to secure the networks, computer program and data from the unwanted access or users that goal to access users data for personal uses and benefits.For protection of data many organizations develop a software. These software help us to protect the data and information.Cyber security playing a huge role in developing a technology and additional services like internet.we only think about ‘cyber security’ whenever we listen about the cyber crimes.This paper describe the cyber security ,cyber attacks,types of cyber attacks, and major area in cyber security.INTRODUCTIONCyber merge form relating to information,the internet & virtual reality.cyber security is necessary it helps in securing data from threats such as data theft or misuse,also safe our system from viruses. The term cyber security is used to refer to the security offered through online services to secure our online information.with an increasing amount of people getting connect the internet, security threats that cause massive harm are increase also.In india we went straight from no telephones to the latest in mobile technology said Cherian samuel to the Institute for Defence studies and Analysis in new delhi and the same with internet connected computer. Cyber security was designed to help learners develop a deeper understanding of modern information and system secure technology and functions..In information technology data security or information security is one of the great challenge for the world.Cyber crime has led to the loss of billions of dollars,malfunctioning of computer system, destruction of complex information, the compromise of network integrity and confidentiality. Major areas of cyber security:-Cyber crime:-cyber crime and computer oriented crime, is crime that involve a computer and a network.Cyber crimes are also called computer crimes ,any illegal and criminal activity that involves computer or network connected device.Cyber crime department divide it into three categories. Crimes in which computing devices are target for theft and frauds, to gain access in system network and data.Crimes in which computers are used as a weapons. For example denial of services(DOS)attacks.Crime in which computer is used to store illegal data .Application security:-Application security hold within the measures that are taken in the development of the life cycle to prevent the application from the threats and froudsApplication types are:-User Authentication. Auditing and logging. Input parameter validation.Information security :-Information security protects the information from illegal and unauthorized access to avoid identity theft and privacy protectionTechnique used to prevent this:- Identification. Authentication.Cryptography.Disaster recovery:-Disaster recovery is a process that involves performing risk estimate,establishing the priorities, developing recovery strategies in any type of disaster. Disaster recovery is a technique that involves performing the risk estimate and establishing priorities, developing the recovery strategies in any type of disasterNetwork security:-Network security involves the action to secure integrity, reliability, usability and safety of the network. Network security targets a variety of issues and threats and stop them spreading and entering into system and network.Network security factors are:-Anti virus. Firewall, to stop the illegal access to the system and network.Intrusion prevention systemFor secure remote access there are (VPN) virtual private network. Cyber Attacks:-A cyberattack is carefully using of computer system, technology depends on the networks and activity. Cyber attacks use the damaging code for changing the data or codes, that may results the disturbing in the importance arrangements and leads the cyber crimes,like identity and information frauds(theft). Cyber Attacks are also called computer network attack (CNA).Types of attacks in cyber securityIdentity theft:-Identity theft is process of obtaining the information illegally about someone else. Thieves and hackers try to stole the information like name, number ,address, password credit card number and email address etc.When hacker stole your personal information then use this information for different purpose like Financial frauds, such as a bank fraud, credit card fraud and the tax rebate fraud.They can use your information for other crimes like entering a country illegally, trafficking drugs, smuggling etc.Prevention from identity theft whenever you are writing or entering any personal information on the server and internet,make sure that connection is secure and private.whenever you are purchasing anything from internet, never store your personal information and credit card number on that server and websites.A good antivirus is always active in your system.Be aware from the fake sites and services. Malware:-Malware is a combination of mal and ware from the (malicious and software)Malware is a term used for variety of hazards such as worms, trojans and viruses.malware is defined as a malicious code that theft data or destroy data and information from the system. Malware mostly entered in the system through downloading the software and files online and attachments in the email. Types of malwareVirus:-Damages the personal files and information.Spyware:-Software that will collect the personal informationWorms:-Malware that can repeat itself across the networks.Trojans horse:-Malware that looks and operates as a real program and software.Browser hijacker:-Software that modifies the web browser and services.Prevention from this:-The one of the best way to stay safe from malware is to avoid clicking on the links, attachments and downloading the files from the unknown services and senders.Spyware:-spyware is a term which is used to describe and explain the software and files that are intentionally installed on a systems or computer that are used to monitor what others users are doing. It is term designed for get the information secretly about the user activity. These kind of programs are used to monitor and track users choice and habits for better targeting them with the help of advertisements. Spyware is installed into the user system without knowing them.Prevention from the spywareThe system is affected with the spyware by visiting the infected website, downloading inected software etc.Download the data and files from the reputation and well known sites.Always maintain the antivirus and anti spyware up to date.For the protection and security use the antivirus and firewall.Phishing:- phishing attacks are attacks that are sent through email or pop messages and they will ask the users for clicking on links and enter their personal information and data.It will attract the user according to their interest and when user click on the link then the hanker will able to enter the system and stole the data and personal information from the system.Denial of services:-A DOS attack always target on disturbing the services of server and network. Attackers send large amount of data and traffic via a network,unless(until)the server and network become overloaded and stop functioningThe common DOS attacks is DDOS (distributed-denial-of-service ) it will also send the high volume data and traffic on services until server and network stop working.DOS attacks are of two types:-Flooding services and crashing services .Flooding servicesFlooding attacks are accor when a system found very big amount of traffic on the websites and server to load or buffer cause them slowing down and block or stop ultimately.Some flooding attacks are:-Buffer overflow attackIcmp floodSyn flood Crashing servicesThis type of attacks will target the users system and services for crashing. In that type of attacks takes the advantages of input and data for the sequently crash the system so it will not accessed and used by the users.Password sniffingWhen hankers not able to guess your password then they try they another method called Password sniffing. In this the attacker use the software and try to access you data and information but the software is running on their own machinen,they are trying to get your password and username when they get the access in it they are able to get access in your system and network.Website defacementWebsite defacement are the attacks usually done on the websites. These attacks on the websites that cause changes in the appearance of the web pages and sites.It is basically done by hackers and destroyers ,they will replace the webpage and server with their own webpage and site. There are different desaires of attackers which lead to deface the website,one of them is a political motivation.the attackers who do this type of activities are called “hacktivists” they may change the data and text of the webpage with other data,message,content according to their own choice.CONCLUSIONCyber threats and crimes are bigger problem to solve especially when they are hidden malicious activities and files. These files not only affect the system and data but also the reputation of the organization and individual, so to prevent the system from illegal activities and theft of personal information, the cyber security is designed. In this paper we have studied the cyber security, and the areas of the cyber security. As we know there are many cyber threats so we also learn about the cyber security attacks and the prevention from them.