01 Section 2 - Network Security Threats Flashcards
What are the different forms which network attacks come in?
passive attack active attack insider attack brute force attack denial-of-service attack
What is a passive attack?
When someone monitors data travelling on a network and intercepts any sensitive data they find
- use network-monitoring hardware and packet sniffer software
- they are hard to detect if the hacker is quietly listening
How can you protect against a passive attack?
using data encryption for send messages
What is an active attack?
When someone attacks a network with malware or other planned attacks
-they are more easily detected
How can you protect against an active attack?
having firewalls
What is an insider attack?
Someone within an organisation exploits their network access to steal information
What is a brute force attack a type of, and what is it used to gain?
active attack
-used to gain information by cracking passwords through trial and error
What is a brute force attack?
When passwords are cracked through trial and error using automated software to produce hundreds of likely password combinations
-hackers may try lots of passwords against one username or vice versa
What are likely password combinations?
Real words with predictable number sequences
How can you protect against a brute force attack?
- locking accounts after a certain number of attempts
- using strong passwords will reduce the risk
What is denial-of-service attack?
DoS is where a hacker tries to stop users from accessing a part of a network or website
-involve flooding the network with useless traffic, making the network extremely slow or completely inaccessible
What is malware?
Malicious software
- software that can harm devices
- it’s installed on someone’s device without their knowledge or consent
What are the typical action of malware?
- deleting or modifying files
- scareware
- locking files
- spyware
- rootkits
- opening backdoors
What ways can malware access a device?
- viruses
- worms
- trojans
What is scareware?
e.g. tells the user their computer is infected with loads of viruses to scare them into following malicious links or paying for problems to be fixed
What is malware in the terms of locking files?
Ransomware encrypts all the files on a computer. The user receives a message demanding a large sum of money to be paid in exchange for a decryption key