Category: popular

Whether you’re in tech or not, you have definitely heard of the term “blockchain”. Blockchain Technology has got to be the biggest game changer of this decade. In less than 10 years, it has already changed the way multiple sectors around the world store their data and conduct their business. It could also eliminate the need for banks. A long shot, but a considerable outcome of the cryptocurrency boom.

In our previous blog, we discussed Web 3.0 – the next generation of the internet.

We spoke about the need for a decentralised version of the internet. And if you remember, we also spoke of blockchain being the backbone of Web 3.0. So let’s understand how a blockchain functions and what makes it revolutionary.

Introduction to blockchain technology

Blockchain technology might have become mainstream recently, but its research had actually begun in the 1990’s, however it wasn’t until 2009 – when Bitcoin was created – that the technology was actually implemented. 

Bitcoin, as we all know, is the world’s first cryptocurrency. And initially blockchain only served as the backbone of cryptocurrency. Eventually, it was discovered that the blockchain technology can actually be separated from Bitcoin and be used in other ways as well.

In the simplest terms – blockchain is made of multiple small blocks of information that are linked together. These blocks of information are called ledgers. Visualise a storekeeper making an inventory. A record of all the goods coming in and going out of his store. Now to make this record he has to note down all the relevant information like, the date a particular item came in. The expiry date, the name of the suppliers, so on and so forth. Then as and when each unit is sold he will have to note when it was sold, who it was sold to and how many units the buyer bought. 

So that is exactly what blockchain does. It stores relevant information that is transparent and visible to everyone in that network. So in the example with the store, the inventory is visible to everyone working in that store. And every individual page in the inventory book is equivalent to one single block. 

Now talking about a single block, as mentioned earlier, there are small amounts of relevant information stored in this block. In the case of Bitcoin since it is a currency, transaction details are stored.

Understanding Bitcoin

To better understand this, let’s say there are 4 people in a group – Tom, Jerry, Mike and Bruno. One day they all decide to go for a movie and Tom pays for the tickets. The rest of them – Jerry Mike and Bruno – have to pay Tom back. 

Now instead of using regular bank transfers where transactions fail everyday, they decide to use cryptocurrency instead. And they all decide to send Tom 1 Bitcoin each. So the first person to pay up is Jerry. 

When Jerry sends Tom a bitcoin a block is created, where the transaction is permanently inscribed. Along with the number of Bitcoins Jerry sent Tom, the details of the entire group’s individual balance is displayed as well. 

But these aren’t the only details that are stored in the block. Each block contains a unique hash number. A hash number is like a unique fingerprint that is generated according to the information stored in that block. 

How does this Block form a chain

They form a chain because, along with the hash of the current block, the hash of the previous block is also displayed. So as and when a new block is created, the block would contain 1 new hash, as well as the hash of the previous block. Let’s go back to our example.

Say Jerry’s block has ABC as its hash. A day later Bruno sends across his share to Tom. In doing so a new block transcribing this transaction is created. This following block now has the updated account balances of the entire group and its own unique hash number – XYZ. Along with this it also has Jerry’s block’s hash number – ABC inscribed. 

This is how using Hash numbers you can track the history of the entire chain. And this blockchain, called a ledger, is public. That means that anyone part of this chain can view the complete transaction history of that ledger. 

Now you might be wondering what makes Blockchain so secure? 

One can simply go change their transaction details right? 

Well not exactly…

Remember that the Hash is unique to the Data inscribed in a particular block and not the block itself. So the minute you change the data inscribed in a particular block, the hash number will change as well. But the hash will only change in this block. The succeeding block will still contain the original – non amended Hash number, making the whole chain invalid because the data does not match. 

One could argue that one can change the hash in all the blocks present in a chain. But this is where you should consider that it takes 10 minutes to change the data in 1 block. And some chains have upto a million boxes in them. So it’s not a viable option.

Further, there is still an additional layer of security present. Like we mentioned earlier, the blockchain or ledger is publicly distributed. So everyone on that network has a copy of this ledger. Therefore, in order to make a change, you will have to share that block with the group and they will vote whether or not that change is valid. If the majority votes “NO” then that block will get rejected and you won’t be able to make any changes. This is called the Consensus Rule.

Blockchain may have recently seen a boom in popularity but it has been around for a while now, and that should offer proof that it is going to be around for longer. We have already seen a few large and medium sectors adopt this technology to better facilitate their businesses, it will be quite fascinating to see how blockchain will be used by the rest of the world in the coming decades. 

What are your thoughts on blockchain? Let us know in the comments below.

Cyber crime to most people feels too trivial a problem to take seriously. They probably think that a few stolen numbers and passwords won’t affect them, believing that they have no important data that needs protection as such. On the other end of the spectrum, there are those who constantly fret over weak cyber security and will probably go out of their way to cover their laptop camera with tape, taking no chances when it comes to their data.

So which one are you? Someone who doesn’t really care what happens to their data or are you a Cyber Security aspirant – waiting to rid the world of cyber crime?

Well, whatever the case might be, we are here to give all you naysayers some incentive to take Cyber Security more seriously and for all you Cyber Security optimists, proof that you have been right to take Cyber crime seriously all along!

In this blog, we’re going to cover 2 prominent cases of serious cyber breaches that had unfathomable consequences for the people and companies involved.

One of the leading brands in the hospitality industry, Marriott faced a lot of challenges back in 2018 when they found out that one of their reservation systems had been compromised – the reservation system at their Starwood properties to be exact. 

A brief history of the Marriott – Starwood Merger

Starwood properties weren’t always a part of Marriott. Once an independent chain hosting a multitude of brands like St. Regis, Sheraton, Westin and W hotels, it was acquired by Marriott in 2016. But the issue predates this acquisition. 

Marriott revealed that the reservation system had actually been compromised sometime in 2014. Unbeknownst to either brand back then, the compromised reservation system was used even after the acquisition, since much of the IT infrastructure remained the same and had not been integrated into Marriott’s private reservation system (MARSHA).

So how was the breach detected?

Sometime in 2018, a security tool flagged an unusual database query and Accenture brought it to light. Accenture had been running IT and infosecurity for Starwood properties and continued to do so once Starwood became a part of Marriott hotels.

The query was made by a user with administrator privileges, but Accenture quickly realised that the query hadn’t actually come from that account and that the account had been hacked. After digging around for more information they found a RAT in the system (and no, we don’t mean an actual rat). They discovered a Remote Access Trojan (RAT) and Mimikatz, a dangerous malware that discovers passwords and user information. Paired together, it is theorised that these two malware tools could’ve given the hackers control of that account. 

The cyber threat effect affects us all inevitably.

The damage? The personal information of more than 500 million guests was potentially stolen, which included some really sensitive information like their credit card information and passport numbers, much to the dismay of their customers

 The only silver lining to the breach of data was that none of the data ever made it to the dark web, nor was it sold anywhere else. However, this news didn’t curb the panic that ensued, as millions of people started cancelling their cards and transferring their money to more secure accounts to ensure that they weren’t defrauded in the future. Which is why, even though the data wasn’t leaked anywhere, people were still affected by the news. This rings true for all cyber crime attacks, once your data has been made vulnerable, you will have to change all your details to safeguard yourself once more.

Considering its large user base, Yahoo has fought multiple long and arduous battles against cyber-criminals over the last decade. 

 The timeline of these attacks would look something like this:

• 2012 

The first notable attack was a decade ago in 2012 when Yahoo Voices, formerly known as Associated Content, was hacked and 400,000 user accounts were compromised in the attack. 

So what made this hack possible? The problem occurred due to the weak security in the systems Yahoo acquired during the acquisition of Associated Content. As in the case of Marriott, these systems weren’t checked nor were they updated.

• 2013

Less than a year after announcing the unfortunate hacking of Yahoo Voices, Yahoo Mail was targeted. Many customers came out with complaints, stating that their accounts had been hacked. The source? Phishing mails. Yahoo users were sent phishing emails that, once clicked on, gave the hackers complete access to their mail and subsequently, access to their calendar as well.

• 2014

There was no rest for the wicked this year either. Yahoo made an announcement in the latter half of January that there was an attempted hack, where customer data – passwords and user ids – were made vulnerable. The hackers had allegedly tried to breach email accounts after getting a list of email addresses and passwords from a third-party server. Yahoo changed the passwords swiftly to put a stop to the attacks.

• 2016

In the late September of 2016, Yahoo, once again, made a public announcement, stating that 500 Million accounts were hacked. This time around, encrypted and unencrypted, including passwords, answers to security questions, mail addresses, telephone numbers and dates of birth were hacked. Yahoo pointed fingers at alleged state-sponsored hackers and hailed them as the main culprits behind this hack. This claim was obviously disputed. Yahoo also claimed that the hack was carried out using forged cookies, which eliminated the need for passwords, to gain user access.

• 2016 (Again)

Come December of 2016, a mere 3 months later, Yahoo made history by announcing the biggest data breach up till date. The hack occurred sometime in 2013 and was brought to light after an investigation by law enforcement that took place after a tip-off. 

What makes this hack historical? More than a billion accounts were reported to be hacked. Much like its precursor in September, the passwords, email addresses, encrypted and unencrypted data including security questions and their answers were hacked. The hack was also carried out using forged cookies to gain user access.

After this flood of cyber attacks over the last decade, Yahoo’s reputation has suffered irredeemably, not only because security wasn’t prioritised multiple times, but also because they failed to disclose these hacks earlier, making it look like a cover-up, which didn’t sit well with their loyal patrons. 

The aftermath for both these cases was devastating to the companies involved. Marriott Hotels was fined more than 120 Million USD for violating the privacy of British citizens under the GDPR. Further, Marriott had to cover additional costs of the breach itself. Likewise, Yahoo had to pay over 50 Million in fines.

But it’s not just about monetary loss that they inevitably incurred. It’s more about their brand image that was damaged through the whole ordeal.

So assume this to be your sign to take Cyber threats more seriously. If this blog has inspired you to consider Cyber Security as a career, upGrad Campus has courses tailored specifically for you. Do check out the Certificate course in upGrad Campus and get to saving our data from these malicious attacks today!

What does your mind jump to when I mention the word Google?

It is an indisputable fact that the word ‘Google’ is synonymous with the word ‘search’ or ‘research’. It has become part of the norm to use these words interchangeably. In fact you would be surprised to know that ‘Google’ is officially classified as a verb!  

But enough with this lesson on millennial slang. The bit that interests us all is how, despite providing most of their products at no charge, does Google still manage to not only dominate the tech world, but also mint profits in the long run?

Today we’ll sift through the multiple avenues that Google, or rather Alphabet Inc, used and continues to use, to build its commendable stature as a tech giant. But first tell me, do you really believe Google is free?

Advertising is Google’s primary source of income and about 80% of its total revenue – is brought in by Google Ads and AdSense.

It is impossible that you’ve not come across a Google ad at this point, since Google dominates the Search engine space by a margin of roughly 92%. Google ads are often displayed with the word “Ads” near the result shown on the Search Engine Results Page (SERP). Google earns a commission from the advertiser every time these ads are clicked on by users. The results are either displayed at the top of the page or on the sidebar in YouTube or on the SERP itself.

So what’s AdSense you ask?

Google Ads get displayed on the SERP whereas, in the case of Google AdSense, a webmaster can integrate these ads onto a site. Google’s crawler analyses the content on these sites and chooses sites with specific keywords that match with the webmasters site. The type and locations of the ads are customisable according to the webmaster. Every time the ads get clicked the site earns a part of the commission that Google makes.

The Google Cloud service is actually free for a limited amount of data (15GB), beyond which, users are charged a fee. Google Cloud pulled a whopping $19 Billion in 2021, roughly 7.5% of the total revenue. Their prices ultimately vary, according to the amount of space you take up on cloud.

Hardware is another important avenue for Google to increase their overall revenue, from Google Pixel, smartphones, laptops, tablets, Google Nest smart home products to gaming controllers to fitbits. Google has created an extensive catalogue of products, and with the launch of Pixel 6.0 and Pixel 6 pro, Google’s hardware alone was estimated to bring in 19.6 Billion dollars in 2021.

This one is a no brainer really. Now once again a majority of YouTube content is free to watch for all, but the free version displays Ads, at the start of videos and on the side bar. So using Ads, once more, Google and the channel owner displaying the Ad earn a commission. 

YouTube Premium on the other hand, offers an Ad-free experience, eliminating the commission earned through Ads, but replacing it with the subscription fee that users have to pay on a monthly or yearly basis.This is a win-win for all parties involved since it keeps  the revenue flowing and improves customer experience simultaneously. 

YouTube has more under its belt though. YouTube TV, a fairly new venture, is another source via which Google or Alphabet inc. brings in revenue. YouTube TV, hosts live streaming services, on-demand videos and cloud-based DVR connected with more than 85 networks such as Fox, Big three broadcast networks, etc. It is however available only in the US for now.

Google Play Store is an application distribution service, much like AppStore for Apple, which contains games as well as other service based apps. You can  buy a Play pass for $ 4.99 on a monthly basis or $29.99 for a year. This pass provides apps and games without Ads that oftentimes hinder customer experience. So the same as in the case of YouTube premium, they, better customer experience, while yielding an alternative source of profit simultaneously. Additionally, for developers, a fee of $25 dollars is charged, upon the launch of their first app.

So far, Alphabet Inc. has expanded far beyond the realm of search engines, we can only predict this trend going forward too. With the talks of Google gaining foot in the automobile industry and already experimenting widely with AI, the future is definitely going to hold much more value for this Tech giant.