Journal of
Systemics, Cybernetics and Informatics
HOME   |   CURRENT ISSUE   |   PAST ISSUES   |   RELATED PUBLICATIONS   |   SEARCH     CONTACT US
 



ISSN: 1690-4524 (Online)

Peer Reviewed Journal via three different mandatory reviewing processes, since 2006, and, from September 2020, a fourth mandatory peer-editing has been added.

Indexed by
DOAJ (Directory of Open Access Journals)Benefits of supplying DOAJ with metadata:
  • DOAJ's statistics show more than 900 000 page views and 300 000 unique visitors a month to DOAJ from all over the world.
  • Many aggregators, databases, libraries, publishers and search portals collect our free metadata and include it in their products. Examples are Scopus, Serial Solutions and EBSCO.
  • DOAJ is OAI compliant and once an article is in DOAJ, it is automatically harvestable.
  • DOAJ is OpenURL compliant and once an article is in DOAJ, it is automatically linkable.
  • Over 95% of the DOAJ Publisher community said that DOAJ is important for increasing their journal's visibility.
  • DOAJ is often cited as a source of quality, open access journals in research and scholarly publishing circles.
JSCI Supplies DOAJ with Meta Data
, Academic Journals Database, and Google Scholar

Listed in
Cabell Directory of Publishing Opportunities and in Ulrich’s Periodical Directory

Published by
The International Institute of Informatics and Cybernetics

Re-Published in
Academia.edu
(A Community of about 40.000.000 Academics)

Honorary Editorial Advisory Board's Chair
William Lesso (1931-2015)

Editor-in-Chief
Nagib C. Callaos

Sponsored by
The International Institute of
Informatics and Systemics
www.iiis.org
 

Editorial Advisory Board

Quality Assurance

Editors
Journal's Reviewers
Call for Special Articles
 

Description and Aims

Submission of Articles
Areas and Subareas

Information to Contributors

Editorial Peer Review Methodology

Integrating Reviewing Processes


Current Issue:
(Volume 22 - Number 1 - Year 2024)


Education 5.0: Using the Design Thinking Process – An Interdisciplinary View
Birgit Oberer, Alptekin Erkollar
(pages: 1-17)

Impact of Artificial Intelligence on Smart Cities
Mohammad Ilyas
(pages: 18-39)

A Multi-Disciplinary Cybernetic Approach to Pedagogic Excellence
Russell Jay Hendel
(pages: 40-63)

Data Management Sharing Plan: Fostering Effective Trans-Disciplinary Communication in Collaborative Research
Cristo Ernesto Yáñez León, James Lipuma
(pages: 64-79)

From Disunity to Synergy: Transdisciplinarity in HR Trends
Olga Bernikova, Daria Frolova
(pages: 80-92)

The Impact of Artificial Intelligence on the Future Business World
Hebah Y. AlQato
(pages: 93-104)

Wi-Fi and the Wisdom Exchange: The Role of Lived Experience in the Age of AI
Teresa H. Langness
(pages: 105-113)

Older Adult Online Learning during COVID-19 in Taiwan: Based on Teachers' Perspective
Ya-Hui Lee, Yi-Fen Wang, Hsien-Ta Cha
(pages: 114-129)

Data Visualization of Budgeting Assumptions: An Illustrative Case of Trans-disciplinary Applied Knowledge
Carol E. Cuthbert, Noel J. Pears, Karen Bradshaw
(pages: 130-149)

The Importance of Defining Cybersecurity from a Transdisciplinary Approach
Bilquis Ferdousi
(pages: 150-164)

ChatGPT, Metaverses and the Future of Transdisciplinary Communication
Jasmin (Bey) Cowin
(pages: 165-178)

Trans-Disciplinary Communication for Policy Making: A Reflective Activity Study
Cristo Leon
(pages: 179-192)

Trans-Disciplinary Communication in Collaborative Co-Design for Knowledge Sharing
James Lipuma, Cristo Leon
(pages: 193-210)

Digital Games in Education: An Interdisciplinary View
Birgit Oberer, Alptekin Erkollar
(pages: 211-230)

Disciplinary Inbreeding or Disciplinary Integration?
Nagib Callaos
(pages: 231-281)
 

Abstracts
 


ABSTRACT


Enterprise Systems and Threats

Risa Blair


The scenario included a medium-sized international company. The guidelines were to select and include three enterprise systems that were based on databases, one cloud-based and one that was not SQL-based. Systems were accessible via a browser and included mobile applications. Of key importance for this project was to research potential and known vulnerabilities for these three enterprise systems. The systems selected were ADP Streamline Payroll, Salesforce, and MongoDB. There are numerous threats described in this project, including excessive privileges, SQLi attacks, weak auditing, storage media exposure, unnecessary features enabled, broken configurations, and buffer overflows. Enterprise systems are a potential magnet for hackers on the black market and the Dark Web, as they provide extensive confidential data, particularly in the technology, finance, government, education, healthcare, and retail sectors. It was impressive to see how both ADP and Salesforce provided up-to-date known and potential vulnerabilities. What was the most interesting throughout the research was uncovering the Mongo Lock ransomware and the Salesforce Meatpistol malware. What is worse is that the Salesforce team provided a talk in Las Vegas in July of 2017, where they explained how Salesforce attacked its own system to see how well it would hold up against cyber attacks. The talk focused on Meat pistol, a malware too for making it easier to conduct the attacks from the standpoint of infrastructure automation, implant creating, and interaction. The intent was to make it easier for the Salesforce teams to conduct their attacks. They utilized the methodology of the well-known tool, Metasploit, which does not exploit systems or launch attacks. It just provides the framework for hackers to control systems after they have been able to access what they choose. The duo of “red team” inside hackers explained their process for access the system through the utilization of Meatpistol, against the advice of their superiors. Immediately after the presentation, they were fired.

Full Text