Journal of
Systemics, Cybernetics and Informatics
HOME   |   CURRENT ISSUE   |   PAST ISSUES   |   RELATED PUBLICATIONS   |   SEARCH     CONTACT US
 



ISSN: 1690-4524 (Online)

Peer Reviewed Journal via three different mandatory reviewing processes, since 2006, and, from September 2020, a fourth mandatory peer-editing has been added.

Indexed by
DOAJ (Directory of Open Access Journals)Benefits of supplying DOAJ with metadata:
  • DOAJ's statistics show more than 900 000 page views and 300 000 unique visitors a month to DOAJ from all over the world.
  • Many aggregators, databases, libraries, publishers and search portals collect our free metadata and include it in their products. Examples are Scopus, Serial Solutions and EBSCO.
  • DOAJ is OAI compliant and once an article is in DOAJ, it is automatically harvestable.
  • DOAJ is OpenURL compliant and once an article is in DOAJ, it is automatically linkable.
  • Over 95% of the DOAJ Publisher community said that DOAJ is important for increasing their journal's visibility.
  • DOAJ is often cited as a source of quality, open access journals in research and scholarly publishing circles.
JSCI Supplies DOAJ with Meta Data
, Academic Journals Database, and Google Scholar

Listed in
Cabell Directory of Publishing Opportunities and in Ulrich’s Periodical Directory

Published by
The International Institute of Informatics and Cybernetics

Re-Published in
Academia.edu
(A Community of about 40.000.000 Academics)

Honorary Editorial Advisory Board's Chair
William Lesso (1931-2015)

Editor-in-Chief
Nagib C. Callaos

Sponsored by
The International Institute of
Informatics and Systemics
www.iiis.org
 

Editorial Advisory Board

Quality Assurance

Editors
Journal's Reviewers
Call for Special Articles
 

Description and Aims

Submission of Articles
Areas and Subareas

Information to Contributors

Editorial Peer Review Methodology

Integrating Reviewing Processes


Current Issue:
(Volume 23 - Number 1 - Year 2025)


How Does Logical Dynamics Assist Interdisciplinary Education and Research in Addressing Cognitive Challenges?
Mengqin Ning, Jiahong Guo
(pages: 1-6)

Inter-Corrective Meta-Dialogue on Constructive Impact of Trans-disciplinary Communication in Modern Education
Vinod Kumar Verma
(pages: 7-9)

Intergenerational Learning for Older and Younger Employees: What Should Be Done and Should Not?
Gita Aulia Nurani, Ya-Hui Lee
(pages: 10-15)

On the Ontological Notion of Education
Jeremy Horne
(pages: 16-24)

Research-Based Learning in Intergenerational Dialogue and Its Relationship to Education
Sonja Ehret
(pages: 25-29)

Role-Playing in Education: An Experiential Learning Framework for Collaborative Co-design
Cristo Leon, James Lipuma, Sirimuvva Pathikonda, Rafael Arturo Llaca Reyes
(pages: 30-38)

The Emergent Role of Artificial Intelligence as Tool in Conducting Academic Research
Bilquis Ferdousi
(pages: 39-46)

The Impact of Cybernetic Relationships Between Education and Work-Based Learning
Birgit Oberer, Alptekin Erkollar
(pages: 47-51)

The Notions of Education and Research
Nagib Callaos, Jeremy Horne
(pages: 52-62)

Towards Sustainable Legal Education Reform: Interdisciplinary and Transdisciplinary Approaches in Albania's Justice System
Adrian Leka, Brunilda Haxhiu
(pages: 63-67)

Transdisciplinary Research and the Gift Economy
Teresa Henkle Langness
(pages: 68-75)
 

Abstracts
 


ABSTRACT


Enterprise Systems and Threats

Risa Blair


The scenario included a medium-sized international company. The guidelines were to select and include three enterprise systems that were based on databases, one cloud-based and one that was not SQL-based. Systems were accessible via a browser and included mobile applications. Of key importance for this project was to research potential and known vulnerabilities for these three enterprise systems. The systems selected were ADP Streamline Payroll, Salesforce, and MongoDB. There are numerous threats described in this project, including excessive privileges, SQLi attacks, weak auditing, storage media exposure, unnecessary features enabled, broken configurations, and buffer overflows. Enterprise systems are a potential magnet for hackers on the black market and the Dark Web, as they provide extensive confidential data, particularly in the technology, finance, government, education, healthcare, and retail sectors. It was impressive to see how both ADP and Salesforce provided up-to-date known and potential vulnerabilities. What was the most interesting throughout the research was uncovering the Mongo Lock ransomware and the Salesforce Meatpistol malware. What is worse is that the Salesforce team provided a talk in Las Vegas in July of 2017, where they explained how Salesforce attacked its own system to see how well it would hold up against cyber attacks. The talk focused on Meat pistol, a malware too for making it easier to conduct the attacks from the standpoint of infrastructure automation, implant creating, and interaction. The intent was to make it easier for the Salesforce teams to conduct their attacks. They utilized the methodology of the well-known tool, Metasploit, which does not exploit systems or launch attacks. It just provides the framework for hackers to control systems after they have been able to access what they choose. The duo of “red team” inside hackers explained their process for access the system through the utilization of Meatpistol, against the advice of their superiors. Immediately after the presentation, they were fired.

Full Text