[Information Security Department] Email Security Guide for Everyone

Why do so many people fall for phishing attacks? In this lecture, we will examine how phishing is designed and executed through real-world attack cases, understand various types including smishing, QR phishing, and corporate-targeted attacks, and summarize prevention and response methods from a practical perspective.

Providing insights and materials for overall management of penetration testers (WEB, Mobile, HTS) targeted at Project Leaders who oversee financial company mock hacking/penetration testing. Situations have occurred where "blank" reports are repeatedly submitted when no vulnerabilities are found in each part (the same applies to the public sector). Therefore, controls are implemented to ensure that inspection results for each item are produced in the same format as educational materials. Perform inspections tailored to each theme and utilize them for security reviews and internal security deliberations to verify results.

This course is an essential real-life IT security guide that even non-security majors and general users can follow immediately. It's designed to help you easily and quickly learn only the security practices essential for daily life, from understanding what ransomware is to infection prevention and response methods, smartphone security settings, and practical security configurations for Windows/Mac OS.

Repeatedly study the 100 most frequently appearing CPPG core topics through theory, mind maps, and problem solving.

As AI systems become agentic and expand beyond text into image, audio, and multimodal capabilities, security threats are becoming significantly more complex. This lecture analyzes the latest security threats and attack techniques faced by AI Agents and Multimodal LLMs, as well as real-world cases, from an AI Red Teaming perspective.

[Introduction to Security Incident Response: Learning through Scenarios of Web Server Hacking, Ransomware, and Account Takeover] This course examines why various information security incidents—such as web server hacking, ransomware, account takeover, and internal penetration—occur and how they spread, categorized by incident type. Students will follow each incident scenario to understand the attack flow, analyze the core causes of the incident, and learn how to resolve issues and prevent recurrence through security architectures such as firewalls, DMZ, access control, privilege management, backup, and log monitoring. Rather than a simple explanation of security concepts, this is a scenario-based introduction to information security that provides a comprehensive understanding from root cause analysis to resolution strategies.

This course puts an end to operational vulnerabilities in Linux servers caused by incorrect permissions. Completely master file and directory permission control based on real-world practical standards.

"Understanding Manufacturing Security in the AI Era through Field Cases" is a course designed to provide an easy understanding of OT security, which is growing in importance within smart factories and AI-based manufacturing environments, focusing on real-world field cases. This lecture explains core concepts frequently encountered in manufacturing sites, such as OT, ICS, PLC, SCADA, HMI, and MES, and compares the differences between IT security and OT security. Furthermore, it examines security threats that can occur on the manufacturing floor—such as ransomware, remote access exploitation, partner account hijacking, production line shutdowns, equipment malfunctions, and data forgery—through case studies. Through this course, students will understand the basic structure of OT security in manufacturing and identify the security perspectives necessary to protect production facilities and industrial control systems. Additionally, it provides a common foundation for further learning in industry-specific manufacturing security courses.

KCA Information Security Risk Manager (ISRM) certification course! The cornerstone for acquiring the top 3 personal information protection certifications: CPPG, ISMS-P!

This course carefully selects the core systems that beginners must know in the vast field of information security. Instead of rigid theory, it's structured to help you intuitively understand system principles through clear analogies and practical examples. With this single course, you can grasp the big picture of information security systems as a whole and develop practical skills.

**"Digital Forensic Techniques by Byte Detective: Evidence Collection and Securing"** is a course focused on how to collect and preserve digital evidence required in cases of cybercrime, internal information leakage, and security incidents. From the basic concepts of digital forensics to the principles of evidence collection, maintaining integrity, and legal procedures for securing evidence, this course explains everything through case studies and procedural steps so that even beginners can understand. You can systematically learn the forensic mindset and core concepts of securing evidence that are essential to know before using professional analysis tools.

This is a lecture [Certification and Practice (Security · Network), Security] prepared for beginners.