Journal of
Systemics, Cybernetics and Informatics
HOME   |   CURRENT ISSUE   |   PAST ISSUES   |   RELATED PUBLICATIONS   |   SEARCH     CONTACT US
 



ISSN: 1690-4524 (Online)

Peer Reviewed Journal via three different mandatory reviewing processes, since 2006, and, from September 2020, a fourth mandatory peer-editing has been added.

Indexed by
DOAJ (Directory of Open Access Journals)Benefits of supplying DOAJ with metadata:
  • DOAJ's statistics show more than 900 000 page views and 300 000 unique visitors a month to DOAJ from all over the world.
  • Many aggregators, databases, libraries, publishers and search portals collect our free metadata and include it in their products. Examples are Scopus, Serial Solutions and EBSCO.
  • DOAJ is OAI compliant and once an article is in DOAJ, it is automatically harvestable.
  • DOAJ is OpenURL compliant and once an article is in DOAJ, it is automatically linkable.
  • Over 95% of the DOAJ Publisher community said that DOAJ is important for increasing their journal's visibility.
  • DOAJ is often cited as a source of quality, open access journals in research and scholarly publishing circles.
JSCI Supplies DOAJ with Meta Data
, Academic Journals Database, and Google Scholar

Listed in
Cabell Directory of Publishing Opportunities and in Ulrich’s Periodical Directory

Published by
The International Institute of Informatics and Cybernetics

Re-Published in
Academia.edu
(A Community of about 40.000.000 Academics)

Honorary Editorial Advisory Board's Chair
William Lesso (1931-2015)

Editor-in-Chief
Nagib C. Callaos

Sponsored by
The International Institute of
Informatics and Systemics
www.iiis.org
 

Editorial Advisory Board

Quality Assurance

Editors
Journal's Reviewers
Call for Special Articles
 

Description and Aims

Submission of Articles
Areas and Subareas

Information to Contributors

Editorial Peer Review Methodology

Integrating Reviewing Processes


Current Issue:
(Volume 23 - Number 3 - Year 2025)


Quantitative Endosurgery Process Analysis by Machine Learning Method
Bojan Nokovic, Andrew Lambe
(pages: 1-7)

Modelling Student Performance in a Structural Steel Graduate-Based Module: A Comparative Analysis Between K-Nearest Neighbor and Dummy Classifiers
Masengo Ilunga, Omphemetse Zimbili, Phahlani Mampilo, Agarwal Abhishek
(pages: 8-15)

Interoperable Digital Skills for Foreign Languages Education in the COVID-19 Paradigm
Rusudan Makhachashvili, Ivan Semenist, Iryna Vorotnykova
(pages: 16-20)

Education, Training and Informatics Go Hand in Hand in (Foreign) Higher Education Institutions (HEIs) – Case Studies From Live and Online Classrooms
Ekaterini Nikolarea
(pages: 21-29)

Enhancing Pedagogical and Digital Competencies Through Digital Tools: A Proposal for Semi-schooled Language Teaching Programs in Oaxaca, Mexico
José de Jesús Bautista Hernández, Eduardo Bustos Farías, Norma Patricia Maldonado Reynoso
(pages: 30-35)

Railway Track Degradation Modelling Using Finite Element Analysis: A Case Study in South Africa
Ntombela Lunga, Masengo Ilunga
(pages: 36-50)

Continuum of Academic Collaboration: Issues of Inconsistent Terminology in Multilingual Context
Cristo Leon, James Lipuma, Marcos O. Cabobianco, Maria B. Daizo
(pages: 51-62)

Peat Resource Management and Climate Change Mitigation Issues – Case of Latvia
Anita Titova, Natalja Lace
(pages: 63-70)

Using Geospatial Computation Intelligence for Mapping Temporal Evolution of Urban Built-up in Selected Areas of the Ekurhuleni Municipality, South Africa
Jo-Anne Correia, Masengo Ilunga
(pages: 71-80)

Cybernetics and Informatics of Generative AI for Transdisciplinary Communication in Education
Rusudan Makhachashvili, Ivan Semenist
(pages: 81-88)

Navigating Psychological Riptides: How Seafarers Cope and Seek Help for Mental Health Needs
Coleen Abadicio, Stella Louise Arenas, Rosette Renee Hahn, Angel Berry Maleriado, Ramon Miguel Mariano, Rodolfo Antonio Ma. Zabella, Genejane Adarlo
(pages: 89-98)
 

Abstracts
 


ABSTRACT


Enterprise Systems and Threats

Risa Blair


The scenario included a medium-sized international company. The guidelines were to select and include three enterprise systems that were based on databases, one cloud-based and one that was not SQL-based. Systems were accessible via a browser and included mobile applications. Of key importance for this project was to research potential and known vulnerabilities for these three enterprise systems. The systems selected were ADP Streamline Payroll, Salesforce, and MongoDB. There are numerous threats described in this project, including excessive privileges, SQLi attacks, weak auditing, storage media exposure, unnecessary features enabled, broken configurations, and buffer overflows. Enterprise systems are a potential magnet for hackers on the black market and the Dark Web, as they provide extensive confidential data, particularly in the technology, finance, government, education, healthcare, and retail sectors. It was impressive to see how both ADP and Salesforce provided up-to-date known and potential vulnerabilities. What was the most interesting throughout the research was uncovering the Mongo Lock ransomware and the Salesforce Meatpistol malware. What is worse is that the Salesforce team provided a talk in Las Vegas in July of 2017, where they explained how Salesforce attacked its own system to see how well it would hold up against cyber attacks. The talk focused on Meat pistol, a malware too for making it easier to conduct the attacks from the standpoint of infrastructure automation, implant creating, and interaction. The intent was to make it easier for the Salesforce teams to conduct their attacks. They utilized the methodology of the well-known tool, Metasploit, which does not exploit systems or launch attacks. It just provides the framework for hackers to control systems after they have been able to access what they choose. The duo of “red team” inside hackers explained their process for access the system through the utilization of Meatpistol, against the advice of their superiors. Immediately after the presentation, they were fired.

Full Text