1.4 - Network security

Question 1

What are the forms of attack?

Answer 1

• Active
• Passive
• External
• Internal

Question 2

What is an active attack?

Answer 2

Where the hacker attempts to modify or delete data

or

to prevent a network from operating correctly

Question 3

What is a passive attack?

Answer 3

Where the hacker monitors a network in order to gain information

Question 4

What is a passive attack also known as?

Answer 4

Eavesdropping

Question 5

What is malware?

Answer 5

Malicious software that is designed to hack a system

Question 6

What is an Internal attack?

Answer 6

Where someone within an organisation attempts to hack its network

Question 7

What is an External attack?

Answer 7

Where someone outside of an organisation attempts to hack its network

Question 8

What is Social engineering?

Answer 8

Tricking others into revealing their personal data by posing as a trusted source

Question 9

Give some examples of some types of Social engineering:

Answer 9

• Phishing
• Shoulder surfing
• Blagging

Question 10

What is phishing?

Answer 10

An attempt to gain personal information about someone by way of deception by email

Question 11

What is a Brute force attack?

Answer 11

Automated or manual attempts to gain unauthorized access to secure areas by trying all the possible password or key combinations

Question 12

How can a Brute force attack be sped up?

Answer 12

If multiple computer systems are used

Question 13

What is a DoS attack?

Answer 13

Severs & devices are flooded w/too many requests/ packets, causing them to crash or become unstable

Question 14

What does DoS stand for?

Answer 14

Denial of service

Question 15

What is a DDoS?

Answer 15

A coordinated attack using a botnet of infected systems to overload a server with requests

Question 16

What does DDoS stand for?

Answer 16

Distributed Denial of Service

Question 17

What is a botnet?

Answer 17

A large group of devices controlled and use maliciously by an attacker

Question 18

What is Data interception & theft?

Answer 18

Data may be intercepted during transmission, but physical theft can occur where storage devices/ data files are left insecurely

Question 19

What are SQL injections?

Answer 19

Pieces of malicious SQL is entered into a website’s input box which then reveal sensitive information

Question 20

When is a SQL used?

Answer 20

To search databases/ access information

Question 21

What does SQL stand for?

Answer 21

Structured Query Language

Question 22

Describe what happens when data is entered into a webform?

Answer 22

The website will contact the database server to find the account details & display them

Question 23

Describe what happens when a hacker enters a malicious SQL into the password field:

Answer 23

It will modify the SQL that is executed
—> They can gain administrator privileges or view + edit contents of the database

Question 24

What is Interception?

Answer 24

When data packets on a network are intercepted by a third party and copied to a different location than the intended destination

Question 25

Name the software that is used in interception

Answer 25

Packet sniffers

Question 26

What is Blagging?

Answer 26

Dishonestly persuading someone to divulge personal information by deception

Question 27

Give an example of Blagging

Answer 27

Someone makes up a story to gain a person’s interest and uses this to encourage them to give away information about themselves, or even send money

Question 28

What is Shouldering?

Answer 28

Looking over someone’s shoulder when they enter a password or PIN

Question 29

What is spyware?

Answer 29

Software that secretly records the activities of a user on a computer

Question 30

What is keyloggers?

Answer 30

Secretly records the key presses of a user on a computer
—> Data is sent back to the attacker

Question 31

What is the main aim of keyloggers and spyware?

Answer 31

To record usernames, passwords & credit card information

Question 32

What are worms?

Answer 32

Self-replicate without any user help. They spread from system to system by finding weaknesses in software.
—> Spread very quickly

Question 33

What are Viruses?

Answer 33

Self replicates without any user help and spreads from system to system by attaching itself to infected files

Question 34

How are viruses activated?

Answer 34

When opened by a human

Question 35

What is Trojans?

Answer 35

Malware that is disguised as legitimate software - users are tricked into installing it

Question 36

How are Trojans spread?

Answer 36

Users install them not realising they have a hidden purpose
—> Gives the attacker a backdoor access to the system

Question 37

What is Ransomware?

Answer 37

Locks files on a computer system using encryption so that a user can no longer access them

Question 38

What is the main aim of Ransomware?

Answer 38

Attacker demands money from the victim to decrypt the data

Question 39

Why are ransomware attackers so hard to trace?

Answer 39

They use digital currencies (like bitcoin) which makes it hard to trace them

Question 40

What measures should organisations be taking to prevent their network from having any vulnerabilities?

Answer 40

• Regularly test network & find any weaknesses
• Use passwords
• Enforce user access levels
• Install anti-malware software & firewall
• Encrypt sensitive data

Question 41

Why should organisations be using passwords to prevent their network from having any vulnerabilities?

Answer 41

To prevent unauthorised people from accessing the network

Question 42

Why should organisations Enforce user access levels to prevent their network from having any vulnerabilities?

Answer 42

To limit the number of people with access to sensitive information

Question 43

What do user access levels determine the access to?

Answer 43

• Software
• Email
• Internet access
• Documents and data
• Ability to install and/or remove software
• Ability to maintain other users’ accounts

Question 44

What is encryption?

Answer 44

The process of scrambling data into an unreadable format so that attackers cannot understand it if intercepted during transmission

Question 45

How is data encrypted?

Answer 45

Using an encryption key - only at the correct destination will the encryption key convert the data back into its original form

Question 46

What is anti-malware software?

Answer 46

Software used to locate and delete malware (like viruses) on a computer system

Question 47

How does anti-malware software work?

Answer 47

• Software scans each file on computer and compares it against a database of known malware.
• Files w/ similar features of malware are identified and deleted.

Question 48

Why must anti-malware software be regularly updated?

Answer 48

New forms of malware are created each day by attackers, therefore it must be regularly updated to keep systems secure

Question 49

What are some other roles of anti-malware software?

Answer 49

• Checks all incoming and outgoing emails + attachments
• Checks files as they are downloaded
• Scans the hard drive for viruses and deletes them

Question 50

Why should organisations Install anti-malware software & firewall to prevent their network from having any vulnerabilities?

Answer 50

To prevent & destroy malicious software attacks

Question 51

Give some examples of anti-malware?

Answer 51

• Anti-virus software
• Anti-phishing tools
• Anti-spyware software

Question 52

What is the main disadvantage of anti-malware?

Answer 52

It can only detect, prevent and remove known malware

Question 53

What is a firewall?

Answer 53

A tool that examines all data entering & leaving the network & block any potential threats

Question 54

How does a firewall check whether a data packet should be given access to the internet?

Answer 54

It examines the source and destination address of each data packet

Question 55

What are some roles of a firewall?

Answer 55

• Blocks access to insecure websites
• Blocks certain programs from accessing the internet
• Blocks unexpected / unauthorised downloads
• Prevents specific users on a network accessing certain files

Question 56

How can physical security be used to protect computer systems?

Answer 56

• Lock - Can be used to prevent access to certain locations that store confidential data (e.g. Server rooms)
• Biometric devices - Require input of a human characteristic. When inputted, this is checked against a database and will allow access to a certain user
• CCTV cameras
• Alarms

Question 57

What is Penetration testing?

Answer 57

When organisations employ specialists to simulate potential attacks on their network

Question 58

What is Penetration testing used for?

Answer 58

To identify possible weaknesses in a network’s security by trying to exploit them
—> Results are then reported back

Question 59

What is Penetration testing also known as?

Answer 59

Pentesting

Question 60

Give some common prevention methods for Spyware?

Answer 60

Anti-spyware

Question 61

Give some common prevention methods for Viruses?

Answer 61

Anti-malware

Question 62

Give some common prevention methods for a DoS attack?

Answer 62

Having a firewall

Question 63

Give some common prevention methods for a Brute-force attack?

Answer 63

Strong passwords

Question 64

Give some common prevention methods for Phishing?

Answer 64

User awareness

Question 65

Give some common prevention methods for Blagging?

Answer 65

User awareness

Question 66

Give some common prevention methods for Shoulder surfing?

Answer 66

Concealing passwords/ PINs

Question 67

Give some common prevention methods for a SQL injection?

Answer 67

Penetration testing

Question 68

What are features of a strong password?

Answer 68

*At least eight characters
* Include upper case
* Include lower case
* Include special characters
* Include numbers