Point of sales

In this modern-day, various sectors of business have experienced and still experiencing vast advancements in technologies. We often refer to the present age as the tech age. With the evolving technological advancements, financial institutions were not left out in the paradigm change. The advancement in technologies brought about smart banking; helping financial institutions to offer seamless services to their clients. Bank customers now have access to their accounts with them being able to perform banking operations using their (bank) digital platforms. The financial sector, particularly smart banking and finance, has undergone a technological revolution to provide safer and more efficient services. However, there are security challenges face by financial institution. The security concerns in smart banking includes phishing, ransomware, and insider attacks, which pose significant challenges. This report addressed information security management in smart banking and finance, by identifying threats and attack landscape in smart banking, risk management and audit and management strategy and framework, security culture, policies and the implementation of strategic policies in smart banking, and lastly technical security controls. The study emphasizes the importance of implementing robust security measures to safeguard financial institutions and their clients in the evolving landscape of smart banking.

Artificial Intelligence (AI) is widely celebrated as a powerful security tool, but it can also become a hidden insider threat. This article explores overlooked vulnerabilities in AI systems, including data poisoning, hidden neural network backdoors, and unintentional data leaks. It highlights strategies to secure AI before it compromises networks, emphasizing the urgent need for proactive oversight, continuous monitoring, and rigorous model verification.

I still remember my first big security audit at a university network years ago. We were proud of the firewalls, the intrusion detection, and the next-gen antivirus. Everything looked solid until one night, a script we'd automated started making weird, unexplained changes. No hacker had broken in. We had built the vulnerability ourselves. That's exactly the trap many organizations are in with AI. It's marketed as the ultimate security upgrade, spotting anomalies, flagging intrusions, automating response at superhuman speed. That's true, but dangerously incomplete. While the cybersecurity world is busy weaponizing AI for defense, few stop to ask: what if the AI itself is the attacker? Inside every large-scale model, algorithm, and data pipeline lies an under-appreciated risk. AI systems are no longer passive tools; they're active, adaptive components of your infrastructure. Treating them like inert software leaves a gaping hole in your security posture.

Practical cryptography represents one of the most important aspects of information security. One of the most important elements of cryptography is Secure Sockets Layer (SSL) protocol, which is the most widely deployed security protocol, used today. Unfortunately SSL protocol is constantly exposed to various threats and vulnerabilities. Heartbleed, POODLE, FREAK are the most notorious SSL bugs in recent period. Many studies have shown that in the SSL implementation of SSL there are many challenges. The focus of this paper is placed on how the leading Croatian companies in the private and public sectors cope with these challenges. From this research it is evident that private companies have better SSL implementation although there are some challenges for both sectors for managing SSL configurations.

Critical energy infrastructure—including power generation plants, electricity transmission grids, pipelines, and refineries—has emerged as a prime target for cybercriminals, hacktivist groups, and nation-state actors. The rapid digital transformation of the energy sector has driven unprecedented integration of Information Technology (IT), Operational Technology (OT), and Internet of Things (IoT) systems. While this convergence delivers substantial efficiency gains and operational flexibility, it has simultaneously expanded the attack surface and introduced a host of complex cybersecurity vulnerabilities. Recent high-profile incidents such as the Colonial Pipeline ransomware attack, the Stuxnet sabotage operation, and the coordinated cyberattacks that disrupted Ukraine’s power grid vividly illustrate the evolving threat landscape facing critical infrastructure operators. These incidents have demonstrated the capacity of cyberattacks not only to compromise data and financial systems but to disrupt essential services and threaten public safety on a large scale.
This paper conducts a detailed analysis of these and other landmark attacks to identify common exploitation pathways, including insecure remote access, inadequate network segmentation, legacy system vulnerabilities, and insufficient supply chain security. It further examines the dual role of emerging technologies such as artificial intelligence and machine learning in both strengthening and undermining the security posture of energy networks. Drawing on current industry standards and best practices, the paper proposes a practical risk assessment framework tailored to the unique characteristics of the energy sector. Finally, it outlines actionable recommendations for improving cyber resilience, encompassing technical safeguards, organisational strategies, regulatory compliance, and cross-sector collaboration. By highlighting the lessons learned from past breaches and anticipating future threats, this research underscores the urgency of adopting a proactive, layered approach to cybersecurity in critical energy infrastructure.

The paper examined the impacts of financial inclusion and e-payments on economic growth in Nigeria using quarterly data from 2009Q1 to 2021Q4. The paper contributes to the ongoing debate by establishing the growth-inducing e-payment channels and how the drive toward financial inclusion has affected the economy of Nigeria. The paper adopted the principal component analysis, the autoregressive distributed lag, and the Granger-causality techniques to achieve the results. The results showed that financial inclusion and e-payments (except for cheque payments) had a significant long and short-run impact on economic growth. Furthermore, the findings showed that POS payments had the most significant effect on economic growth in Nigeria. This was followed by ATM payments, mobile payments, and web payments respectively. In addition, the results showed that causality runs from real GDP to ATM, and the paper recommends that the monetary authorities should support the development and expansion of financial inclusion and e-payments by providing meaningful institutional changes to support the healthy growth of financial inclusion and e-payments in Nigeria.

We have wasted almost a century by not building a science of ZPE state / fluctuations, which appears to be the fountainhead of discovery in science. The most valuable instruments available to science at this juncture of time are human brains poised at different brain-states equivalent to or approximation of physical ZPE state/fluctuations. This article describes the known facts of the physical vacuum, pulls up different brainstates which could be equivalent to ZPE states of the brain, describes the possible players involved in brain-vacuum interaction, visualizes the consequences of this interaction in cognitive evolution of the mankind and rediscovering brain functions. The article hints at the possibility of a discovery of a 'brain-washing machine' in precision medicine, and the techniques for harnessing dark energy.

Zero-day attacks remain one of the most formidable cybersecurity challenges due to their ability to exploit previously unknown vulnerabilities before developers can deploy patches. These threats can result in significant financial, reputational, and operational damage. This paper investigates current methodologies for detecting and mitigating zero-day attacks, with an emphasis on artificial intelligence (AI)-based solutions. It explores the attack lifecycle, from discovery to exploitation, and review data-driven, software-based, and security-oriented defense strategies. A case study on CVE-2025-29824 demonstrates the real-world impact of such attacks and the urgency of advanced detection mechanisms. The findings underscore the growing importance of integrating AI into cybersecurity frameworks to improve real-time threat identification and automate adaptive responses. By combining traditional security tools with AI technologies such as machine learning, deep learning, and Bayesian networks, organizations can enhance their defense posture and resilience against evolving zero-day threats.

The IT Hardware Management System (ITHMS) is a centralized asset management platform designed to streamline IT hardware tracking, maintenance scheduling, and security enforcement within an organization. The system automates inventory management, real-time monitoring, and predictive maintenance to ensure optimal hardware performance and lifecycle management. It provides a secure, role-based access control (RBAC) framework, ensuring only authorized personnel can modify or access sensitive asset data. The ITHMS architecture integrates Core PHP, MySQL, and web-based interfaces, offering seamless hardware allocation, issue tracking, and compliance enforcement. This research paper details the system design, key features, security mechanisms, and future enhancements of ITHMS, demonstrating its impact on reducing IT asset mismanagement, improving security compliance, and enhancing operational efficiency...

This paper explores the integration of artificial intelligence (AI) and cloud technologies in the hospitality industry to enhance security and privacy. It examines AI applications such as facial recognition for secure room access, intelligent surveillance, and fraud detection in online transactions. Additionally, the paper discusses cloud-based systems for encrypted data storage, management, and disaster recovery. Key challenges, including privacy concerns and compliance with regulations like GDPR and CCPA, are addressed alongside future trends like quantum encryption. Case studies and comparative analyses provide practical insights into mitigating digital risks while ensuring seamless guest experiences.

Penelitian ini bertujuan untuk menilai efektivitas aplikasi TukuPOS dalam mendukung pengelolaan produk, stok,
dan transaksi penjualan bagi pelaku UMKM. Usability yang buruk dapat menghambat penggunaan aplikasi, terutama
dalam hal transaksi penjualan yang harus dilakukan dengan cepat agar konsumen tidak menunggu terlalu lama. Evaluasi
Heuristic digunakan untuk mengumpulkan dan menganalisis data mengenai kegunaan aplikasi berdasarkan prinsipprinsip Heuristic Evaluation oleh Nielsen. Responden menemukan 25 masalah terkait aplikasi ini. Dari sepuluh prinsip
Heuristic Evaluation, terdapat tujuh masalah yang ditemukan, yaitu visibilitas status sistem, kesesuaian antara sistem
dan dunia nyata, kontrol dan kebebasan pengguna, konsistensi dan standar, pencegahan kesalahan, membantu pengguna
mengenali, mendiagnosis, dan memulihkan kesalahan, serta bantuan dan dokumentasi. Tingkat keparahan masalah
berkisar antara 0 hingga 4, dengan rata-rata 2,4 terdapat pada aspek bantuan dan dokumentasi. Secara keseluruhan,
aplikasi ini layak digunakan oleh pelaku UMKM, namun memerlukan perbaikan minor. Dalam sepuluh prinsip
Heuristic Evaluation, terdapat dua prinsip yang perlu segera diperbaiki, yaitu bantuan dan dokumentasi dengan rata-rata
2,4, serta kontrol dan kebebasan pengguna dengan rata-rata 1. Selain fokus pada masalah tersebut, perbaikan juga perlu
dilakukan berdasarkan masalah-masalah yang diidentifikasi oleh responden, yang mencakup 26 masalah yang berbeda.

The title of the paper should be typed in bold letters, centered and fully capitalised. Author (s) name, designation, affiliation (s), address, mobile/landline number (s), and email/alternate email address should be given underneath the title. Acknowledgements can be given to reviewers, guides, funding institutions, etc., if any.

Vulnerabilities and weaknesses of web applications are targeting by attackers. Therefore, penetration testing techniques are very important for building strategies which make the system is secure. This paper proposes a penetration testing model for phishing attack which is a common these days. The proposed model was implemented using the latest versions of VMware-machine, kali-Linux, and Windows 10. The Hiddeneye, Ngrok, and bitly tools were used. This was achieved by information gathering method. The obtained results of the phishing attack were identified and their appropriate countermeasures were defined.

Sistem pemesanan menu makanan yang ada di Restoran Mesra masih menggunakan cara yang biasa, untuk melakukan pemesanan pelanggan datang lalu pelayan mengantarkan daftar menu dan pelayan masih mencatat pesanan pelanggan secara manual menggunakan kertas. Setelah itu barulah pelayan menyampaikan pesanan pelanggan tersebut ke bagian dapur lalu mengantarkan ke pelanggan yang memesan makanan tersebut, setelah itu pelanggan membayar ke kasir. Hal ini berdampak pada masih terjadinya ketidakakuratan dan keterlambatan proses pemesanan menu. Hal tersebut terjadi karena Restoran Mesra belum menerapkan sistem berbasis komputer yang dapat memudahkan dalam melakukan pemesanan menu, dan pembuatan laporan penjualan. Penelitian ini dilakukan untuk membuat sistem informasi manajemen restoran pada Restoran Mesra untuk mengatasi masalahmasalah tersebut. Metodologi yang digunakan yaitu dengan analisa dan perancangan sistem berbasis objek dengan diagram UML dan pembuatan website dengan bahasa pemrograman PHP. Hasil akhir dari penelitian ini adalah terbentuknya suatu website sistem informasi manajemen restoran pada Restoran Mesra sesuai dengan gambaran analisa sistem dan dapat memenuhi keinginan konsumen dan pihak restoran.

"Background: “Cigarettes and Other Tobacco Products Act (COTPA)” has been formulated to control tobacco epidemic. This study was conducted to assess level of awareness of COTPA among vendors and compliance at point of sale.
Methods: In cross-sectional study, one of the areas of central zone was selected randomly. Vendors selling tobacco were interviewed and all point of sales observed for practice of COTPA.
Results: Out of 117 vendors,71 (60.68%) were aware of only two components of COTPA such as tobacco should not be sold to/by minor and there is a pictorial health warning label. Only 6 (5.13%) shops displayed board regarding “No sell of tobacco to minor.” 24 (20.51%) shops were located within 100 yards of educational institute. Implementation of section 5 (Prohibition of brand promotion of all tobacco products) of COTPA act has been observed in all. For the non-compliance, only 19 (16.23%) vendors were fined.
Conclusion: There is need for creating awareness about COTPA among vendors. Strict implementation by authority for non-compliance needed as study observed poor level of awareness and action."

Mesin kasir portable telah mengubah cara bertransaksi bagi banyak bisnis, termasuk usaha kecil dan menengah. Kemudahan penggunaan, fleksibilitas, dan kemampuan untuk digunakan di mana saja membuat mesin kasir portable menjadi pilihan utama bagi banyak pengusaha. Dalam bagian ini, kita akan menjelajahi secara mendalam tentang mesin kasir portable, mulai dari definisi hingga manfaatnya dalam berbagai industri. Definisi Mesin Kasir Portable Mesin kasir portable, atau yang sering disebut juga sebagai kasir portable, adalah perangkat lunak atau perangkat keras yang digunakan untuk melakukan transaksi penjualan dan mengelola inventaris secara elektronik. Keunggulan utama dari mesin kasir portable adalah kemampuannya untuk dipindahkan dengan mudah dari satu tempat ke tempat lain, sehingga cocok untuk bisnis yang memerlukan mobilitas tinggi seperti usaha jasa perbaikan, event organizer, atau usaha ritel yang memiliki gerai-gerai kecil. Manfaat Mesin Kasir Portable Fleksibilitas: Mesin kasir portable memungkinkan pengusaha untuk melakukan transaksi di mana saja, baik di dalam toko, di lokasi pelanggan, atau bahkan saat bepergian. Hal ini memungkinkan bisnis untuk meningkatkan efisiensi dan meningkatkan layanan pelanggan.

Csmart Billing pioneers' innovation to revolutionize revenue management for businesses. This dynamic solution revolutionizes how businesses manage revenue complexities, boosting operational efficiency seamlessly. Integrated with essential functionalities, including subscriber management and convergent charging, we offer a holistic approach to elevate your success. Stability Control Real-time balance monitoring for prepaid and postpaid services. Guarantees account updates and prevents service disruptions with precision.

The In an age characterized by rapid technological evolution, the landscape of software tools and applications is undergoing a profound transformation, driven by the proliferation of modern user interface (UI) designs and the rise of mobile-centric platforms. This paradigm shift promises increased accessibility, efficiency, and user engagement across various domains. However, amidst this wave of innovation, a significant portion of existing infrastructure remains entrenched in age-old systems, reluctant or unable to adapt to the changing technological landscape. Despite their antiquity, these systems often play critical roles within organizations, rendering them irreplaceable in the short term.

Latest technologies of voice over IP (VoIP) and mobile messaging for smartphones messengers such as WhatsApp, Viber, Skype, etc., offer free-of-charge facilities of worldwide SMS, MMS, and voice calls to their users, unlike the traditional and expensive cellular or telephone networks’ services. Customers of the formerly mentioned messengers are estimated in millions because of the attractive features offered by them. However, these messengers face many cyber security threats and the required security features are either not available at all or are insufficient for efficiently countering the threats. Professionals working in the domain of cyber security are challenged by the devastating effects of distributed denial of service (DDoS) attacks on all major platforms including Apple Macintosh, Windows, Unix, and Linux. In this paper, we demonstrate the effect of DDoS attack on the performance of an IRC server using a test bed. We use a game theoretic model to analyze the feasibility of ...

The Internet of Things (IoT) is a platform of uniquely identifiable connected devices which is changing healthcare in a variety of ways. There is much hype and interest in using it to advance medicine, primary care, surgery, medical insurance, and overall healthcare. Much of the interest leads to innovation and implementations which suit to help society. However, not without a warning. There is dangerous potential to cause harm to society. This paper details the benefits, harm, risks, and mitigations to quell the hype, and bring an ounce of reality and awareness to IoT in Healthcare.

QR codes, a form of 2D barcode, allow easy interaction between mobile devices and websites or printed material by removing the burden of manually typing a URL or contact information. QR codes are increasingly popular and are likely to be adopted by malware authors and cyber-criminals as well. In fact, while a link can "look" suspicious, malicious and benign QR codes cannot be distinguished by simply looking at them. However, despite public discussions about increasing use of QR codes for malicious purposes, the prevalence of malicious QR codes and the kinds of threats they pose are still unclear. In this paper, we examine attacks on the Internet that rely on QR codes. Using a crawler, we performed a large-scale experiment by analyzing QR codes across 14 million unique web pages over a ten-month period. Our results show that QR code technology is already used by attackers, for example to distribute malware or to lead users to phishing sites. However, the relatively few malicious QR codes we found in our experiments suggest that, on a global scale, the frequency of these attacks is not alarmingly high and users are rarely exposed to the threats distributed via QR codes while surfing the web.

Practical cryptography represents one of the most important aspects of information security. One of the most important elements of cryptography is Secure Sockets Layer (SSL) protocol, which is the most widely deployed security protocol, used today. Unfortunately SSL protocol is constantly exposed to various threats and vulnerabilities. Heartbleed, POODLE, FREAK are the most notorious SSL bugs in recent period. Many studies have shown that in the SSL implementation of SSL there are many challenges. The focus of this paper is placed on how the leading Croatian companies in the private and public sectors cope with these challenges. From this research it is evident that private companies have better SSL implementation although there are some challenges for both sectors for managing SSL configurations.

Phishing is a fraudulent activity that includes tricking people into disclosing personal or financial information by impersonating a legitimate company or individual. The increasingly complex nature of phishing has drawn the attention of criminals, who see it as a profitable and simple way to get sensitive information. As a result of the negative impact of phishing assaults on both individuals and companies, efficient detection and prevention measures have been developed. This document overviews numerous approaches for detecting and thwarting phishing attacks. The research introduces the Phishcatch algorithm, which has shown substantial success in identifying phishing emails and alerting consumers to fraudulent attempts. Phishcatch studies user behavior on websites and limits access if any suspicious behavior is found. Phishcatch is a vital instrument in the battle against phishing attempts, with an accuracy and detection rate of 90%. Furthermore, this article explains the steps in developing, testing and implementing successful anti-phishing algorithms.

Phishing is a fraudulent activity that includes tricking people into disclosing personal or financial information by impersonating a legitimate company or individual. The increasingly complex nature of phishing has drawn the attention of criminals, who see it as a profitable and simple way to get sensitive information. As a result of the negative impact of phishing assaults on both individuals and companies, efficient detection and prevention measures have been developed. This document overviews numerous approaches for detecting and thwarting phishing attacks. The research introduces the Phishcatch algorithm, which has shown substantial success in identifying phishing emails and alerting consumers to fraudulent attempts. Phishcatch studies user behavior on websites and limits access if any suspicious behavior is found. Phishcatch is a vital instrument in the battle against phishing attempts, with an accuracy and detection rate of 90%. Furthermore, this article explains the steps in developing, testing and implementing successful anti-phishing algorithms.

BUMDES Masyarakat Madani Sejahtera is a business entity initiated by Desa Janti in Sidoarjo- East Java. However, recently BUMDES has an issue for not being able normally operate and provide financial statement as it used to. BUMDes has a retail business which sell daily items to the village. The community service team identify this issue and attempt to solve it. They developed online Post of Sales (POS) for efficiency and effectivity. At the same time the other member of the team which concentrated in accounting assist BUMDes to provide financial statement in accordance with Indonesian financial standard. The team were using collaborative approach which began with mapping the issue and continued with workshop for POS system and the financial statement template, assist BUMDes to use both POS system and financial statement template and the last one to find out how they use it by held monitoring and evaluation activity. At the end, BUMDes revenue and equity have significantly
increasing compared to the previous period each 20% and 50%, BUMDes has their own POS system and could provide financial statement in accordance to SAK EMKM. This achievement overall can be used as an acceleration to reach SDGs in Desa Janti.

Communication at the point of sales is determined by a number of factors ranging from the layout of the furnishings to the establishment’ colors, sounds, and even smells. Nevertheless, another main aspect to consider, particularly following the impact of COVID 19, is the Floor Area Ratio (FAR) or the furnishings’ free space. The objective of this paper is to show that, despite the influence that the FAR has on the perception of the user at a psychological and communicative level, there is another ratio to take into consideration which demonstrates the impact of personal space occupation on communication and the consumer’s state of mind. A methodology has been designed to ascertain the consumer’s psychological and receptive status, and, moreover, to observe the influence of the number of subjects present in the commercial area. The methodology is based on a novel formula which provides a response to the need to include the number of consumers as a variable when understanding space. Our findings show that the FAR plays a key role in the user. Additionally, by comparing establishments under normal and extreme rates of occupation, the formula for the Personal Area Ratio (PAR), which also influences user perception, is validated.

Considering the NATO and EU membership and in the context of new cyber threats, ensuring the security of information and communication systems has become a priority for both public institutions, private companies and the Romanian Army. In this article the aim is to present the main functions and principles of ensuring the security of information and communication systems in the context of the evolution of the IT @ C field.

Quick-response (hereafter QR) codes are an effective way to get information across to people, as every phone in people's pockets include QR code scanning functionality. Despite the fact we see these simple and harmless looking barcodes everywhere from lamp posts to big board advertisements, there are little to no warnings about the security risks of using QR codes. This paper demonstrates the potential risks of QR codes and will also explain how to prevent them.

Internet of things (IoT) is a hot topic for study in the last decades. IoT is the internet working of physical devices, vehicles and other objects which consists of an embedded system with sensors, actuators and network connectivity that enable to collect and exchange data. The IoT permits articles to be detected as well as controlled remotely across existing system foundation, making open doors for more coordination of the physical world into PC based frameworks, and result in improved accuracy, efficiency and economic benefit. The IoT is a rapidly increasing and promising technology which becomes more and more present in our everyday lives. Further-more, the technology is an instance of the more general class of cyber-physical systems, which also encompasses technologies such as smart grids, smart homes and smart cities. Considering the high-rate improvement of IoT advancements, and the critical addition in the quantity of the associated gadgets, complete diagram of the IoT framework points, design, challenges, applications, conventions, and market outline were examined. In order to give an example of IoT security.

The availability of parking lots being unresolved problems on the campus of Trisakti University because of the many civitas akademika which carries cars and limited parking. Parking system in use today is still the conventional with the regulations by parking attendants. For it is required an online parking reservation application system based web in addressing these barriers. The design of this system using the method Waterfall in the development of the system. Research methods the Analysis consists of a Waterfall will analyze problems and needs through the collection of data for the application of web-based online parking reservation, then proceed with the Design phase to make the draft application the system interface. Model design of engineering system using Activity diagrams, Use Case diagrams, Sequence Diagrams, and Class diagrams. From the results of the performed system design there are three actors, namely, the first User who can see the availability of the parking lot to do a parking reservation, among others, can choose the dates, hours, and parking lots so as to obtain a unique code to enter parking. The second is the actor who can do Admin input availability of parking in any parking area is available to perform a unique code input arrival and unique code input out of the user to receive parking costs which have been calculated from the system. The third actor i.e. Owner can perform the input the date, the hour, the land, types of vehicles, parking fee and can see the transaction reports. Class diagrams are formed is User, reservations, deals, Timeline, Rates for parking, and the type of vehicle.

The Aim and Objectives We are to shift our goal post from the manufacture of a fantastic Humanoid. Our goal is to humanize the Artificial Devices of Intelligence (ADI) keeping in focus the device in resonance with the emerging paradigm that encompasses humanity and the spirit in addition to science and technology.

This study looks at the experiences of organizations that have fallen victim to ransomware attacks. Using quantitative and qualitative data of 55 ransomware cases drawn from 50 organizations in the UK and North America, we assessed the severity of the crypto-ransomware attacks experienced and looked at various factors to test if they had an influence on the degree of severity. An organization’s size was found to have no effect on the degree of severity of the attack, but the sector was found to be relevant, with private sector organizations feeling the pain much more severely than those in the public sector. Moreover, an organization’s security posture influences the degree of severity of a ransomware attack. We did not find that the attack target (i.e. human or machine) or the crypto-ransomware propagation class had any significant bearing on the severity of the outcome, but attacks that were purposefully directed at specific victims wreaked more damage than opportunistic ones.

menjadi tempat penelitian penulis. Beberapa masalah yang ada antara lain, sistem reservasi meja dan pemesanan menu pada Warung Ayam Penyet Bu Ani masih menggunakan sistem manual, proses pemesanan menu yang tidak terintegrasi dengan nomor meja yang digunakan dan tidak adanya perhitungan stok ketersedian menu yang dapat dipesan, proses transaksi yang belum mendukung sistem pemberian potongan harga atau diskon dalam proses perhitungannya dan tidak adanya fitur jenis pembayaran yang beragam dalam melakukan pembayaran. Untuk itu tujuan dari penelitian ini adalah untuk membuat sistem aplikasi reservasi restoran yang mendukung semua fitur yang dapat menyelesaikan permasalahan tersebut. Serta merancang sistem aplikasi yang dapat mencetak laporan yang diperlukan secara berkala. Metode penelitian yang digunakan adalah metode pengumpulan data yang berupa studi kepustakaan dan studi lapangan serta metode grounded research. Hasil dari penelitian ini adalah aplikasi reservasi restoran berbasis java Netbeans dengan menggunakan database MySQL yang mempermudah banyak pihak dalam proses pengolahan data dan meminimalisasi adanya kesalahan dan mengoptimalkan keamanan data.

In an exploratory quasi-experimental observational study, 138 participants recruited during a university orientation week were exposed to social engineering directives in the form of fake email or phishing attacks over several months in 2017. These email attacks attempted to elicit personal information from participants or entice them into clicking links which may have been compromised in a real-world setting. The study aimed to determine the risks of cybercrime for students by observing their responses to social engineering and exploring attitudes to cybercrime risks before and after the phishing phase. Three types of scam emails were distributed that varied in the degree of individualization: generic, tailored, and targeted or 'spear.' To differentiate participants on the basis of cybercrime awareness, participants in a 'Hunter' condition were primed throughout the study to remain vigilant to all scams, while participants in a 'Passive' condition received no such instruction. The study explored the influence of scam type, cybercrime awareness, gender, IT competence, and perceived Internet safety on susceptibility to email scams. Contrary to the hypotheses, none of these factors were associated with scam susceptibility. Although, tailored and individually crafted email scams were more likely to induce engagement than generic scams. Analysis of all the variables showed that international students and first year students were deceived by significantly more scams than domestic students and later year students. A Generalized Linear Model (GLM) analysis was undertaken to further explore the role of all the variables of interest and the results were consistent with the descriptive findings showing that student status (domestic compared to international) and year of study (first year student compared to students in second, third and later years of study) had a higher association to the risk of scam deception. Implications and future research directions are discussed.

Enterprises own a significant fraction of the hosts connected to the Internet and possess valuable assets, such as financial data and intellectual property, which may be targeted by attackers. They suffer attacks that exploit unpatched hosts and install malware, resulting in breaches that may cost millions in damages. Despite the scale of this phenomenon, the threat and vulnerability landscape of enterprises remains under-studied. The security posture of enterprises remains unclear, and it's unknown whether enterprises are indeed more secure than consumer hosts. To address these questions, we perform the largest and longest enterprise security study so far. Our data covers nearly 3 years and is collected from 28K enterprises, belonging to 67 industries, which own 82M client hosts and 73M public-facing servers. Our measurements comprise of two parts: an analysis of the threat landscape and an analysis of the enterprise vulnerability patching behavior. The threat landscape analysis studies the encounter rate of malware and PUP in enterprise client hosts. It measures, among others, that 91%-97% of the enterprises, 13%-41% of the hosts, encountered at least one malware or PUP file over the length of our study; that enterprises encounter malware much more often than PUP; and that some industries like banks and consumer finances achieve significantly lower malware and PUP encounter rates than the most-affected industries. The vulnerability analysis examines the patching of 12 client-side and 112 server-side applications in enterprise client hosts and servers. It measures, among others, that it takes over 6 months on average to patch 90% of the population across all vulnerabilities in the 12 client-side applications; that enterprise hosts are faster to patch vulnerabilities compared to consumer hosts; and that the patching of server applications is much worse than the patching of clientside applications.

As individuals increasingly engage with the digital landscape, they face a multitude of risks associated with their online activities and the security of their personal information. Individuals seek guidance in balancing the benefits and risks of the digital transformation. To effectively mitigate these risks, it is essential to establish a comprehensive Digital Risk Assessment Framework tailored to individual users. In this research, an a interpretive study have been carried out to propose a novel Digital Security Management Framework. The main contribution of this study is providing a novel approach by examining the recent recorded threats against individuals, quantifying these threats, and proposing a novel digital risk framework detailing the list of threats and the corresponding risk treatment options tailored for individuals. The scenario of the case study is a family that use personal computers to access banking and investment accounts online, engage in online shopping and also frequently use social media to share artwork and opinions. 17 types of digital risks were identified and the probability of loss and impact of each risk have been quantified using Bernoulli distribution f(L;p). The quantified values were used to prioritise mitigation measures. According to the results, and the proposed framework, suitable treatment option(s) was recommended for each risk. The results show that online scams present the biggest financial risk to individuals, that security incidents present a moderate risk, and that communication-based harms (e.g. bullying and radicalization) are difficult to quantify.

development of the business world encourages companies to always try to improve the quality of products and services to consumers. The implementation of these business solutions is a commitment in increasing the competitive advantage of corporate customers in terms of efficiency, effectiveness, performance, and business development. The purpose of this research is to conduct an analysis and design of a point of sale (POS) management application to support the purchasing service system and stock of goods that can help small and medium entrepreneurs in data management. The making of this POS application starts from collecting all the data needed using observation and interview methods, designing an application model with an object-based diagram approach with application design tools in the form of flowchart and Unified Modeling Language (UML) until the implementation of this POS application. With the application of the point of sales (POS) application can help the tasks of related par...

Ransom ware is type of Cyber malware which is used by attacker to block the computer system until some ransom is paid by victim .It propagates by malicious email attachments, links offering free software internet downloads etc.During given time it has to pay money which is demanded by ransom ware. This paper indicates the introduction of Ransom ware. How it works and types, attack methodology and threat carriers of Ransom ware and preventative precautions

The rise of generative artificial intelligence (AI) has ushered in a new era on the internet. With algorithms capable of generating original content across various mediums, such as text, images, and video, AI-powered chatbots like ChatGPT and Bard have captured the attention of billions of users worldwide. However, as the potential of this groundbreaking technology unfolds, so does the risk it poses. This article explores the evolving landscape of fraud in the age of AI and automation, shedding light on the challenges faced by businesses and consumers alike. The Emergence of AI: A Double-Edged Sword: The advent of generative AI has sparked intense competition among tech giants, each vying to harness its power for market domination. Simultaneously, fraudsters have recognized the opportunities presented by this technology, setting the stage for a virtual arms race. Businesses that fail to acknowledge this paradigm shift risk being left behind. While consumers are captivated by AI-driven tools like ChatGPT, they also harbor concerns about potential job displacement and the rise of sophisticated scams.

Running a successful cafe requires more than just serving delicious food and beverages. It also involves managing various aspects of the food industry efficiently to provide a seamless guest experience. With the advent of advanced technology, cafe point-of-sale (POS) ecosystems have emerged as indispensable tools for streamlining operations and enhancing guest satisfaction. This article will explore how implementing a robust cafe point-of-sale ecosystem can simplify processes and take your cafe's guest experience to new heights.

Data breach has become one of the serious problems in recent years as with the increase in technology the threat of data security is increasing. This paper mainly focuses on giving information about causes of data spill and prevention methods an organisation or individual should adopt to prevent themselves from such a threat.

Healthcare Read time: < 4 minutes 4 Almost three quarters of security incidents in healthcare in 2015 involved physical theft and loss, insider and privilege misuse and miscellaneous errors. While breach data was typically compromised in minutes or less, discovery often took months or more. The Verizon 2016 Data Breach Investigations Report (DBIR) shows that the majority of data security incidents can be classified into one of nine patterns. Just three of these categories account for 73% of all healthcare data security incidents. Physical theft and loss made up the largest share of all incidents in healthcare, at 32% of the total. This is a bigger problem for healthcare than for any other sector we analyzed this year. We'll look at these threats in greater depth and at how you can improve your defenses against them. The Data Breach Investigations Report is the most comprehensive report of its kind. For the ninth time, it pulls together incident data from around the world, to ...

Privacy and Security are two major challenges faced by users on social media today. These challenges are experienced in diverse ways and forms by different types of users across the web. While technological solutions are usually implemented to address them, the effects have proven to be limited so far. Despite continuous deployment of technological solutions, the need to evaluate socioeconomic impacts of these challenges have also become more imperative. Hence, this paper provides a critical review and analysis of socioeconomic impacts of these social media challenges. The research findings reveal significant levels of negative socioeconomic impacts and provides an evaluation framework towards defining the scope, thereby identifying appropriate measures for both addressing the challenges and curbing the socioeconomic impacts. The findings also demonstrate the need for solutions beyond the use of technology, to employing and deploying solutions from social sciences which deals with behavioral issues and how to address them.

Data breach has become one of the serious problems in recent years as with the increase in technology the threat of data security is increasing. This paper mainly focuses on giving information about causes of data spill and prevention methods an organisation or individual should adopt to prevent themselves from such a threat.

Ransom ware is type of Cyber malware which is used by attacker to block the computer system until some ransom is paid by victim .It propagates by malicious email attachments, links offering free software internet downloads etc.During given time it has to pay money which is demanded by ransom ware. This paper indicates the introduction of Ransom ware. How it works and types, attack methodology and threat carriers of Ransom ware and preventative precautions