1.4 Network Security

Question 1

How are viruses used?

Answer 1

• Self-replicating
• Dormant until host program is run

Question 2

What is the purpose/effect of viruses?

Answer 2

• Send spam
• Steal data
• Infect other computers
• Corrupt/Delete files

Question 3

How are trojans used?

Answer 3

• Disguised as another legitimate program
• Can only function if host program is run

Question 4

What is the purpose/effect of trojans?

Answer 4

• Data theft
• Redirecting search requests
• Installing other malware
• Opening a back door for external control over device
• Used to create botnets for DDoS

Question 5

How are worms used?

Answer 5

Replicate and distribute independently

Question 6

What is the purpose/effect of worms?

Answer 6

• Designed to spread quickly
• May cause no damage
• DoS

Question 7

How is spyware used?

Answer 7

• Installed without the user’s knowledge
• Can monitor internet usage

Question 8

What is the purpose/effect of spyware?

Answer 8

• Intends to capture data and relay information to the hacker
• Keyloggers are used to track key inputs and recognise passwords and sensitive data such as bank details

Question 9

How is ransomware used?

Answer 9

Locks computers or encrypts files

Question 10

What is the purpose/effect of ransomware?

Answer 10

The attacker can then demand a fee for the release of files/computer though there is no guarantee of their return

Question 11

How is phishing used?

Answer 11

• Victim receives a message disguised as a reputable source that includes a link
• Often sent in bulk
• Uses scare tactics such as “your account has been suspended”
• Spear phishing is more personal and effective

Question 12

What is the purpose/effect of phishing?

Answer 12

• Tricks victims into revealing personal details
• Installs malware on the victim’s device

Question 13

How is pharming used?

Answer 13

• Registering a similar web address to a legitimate one e.g. change of domain
• DNS poisoning is where the DNS server of a legitimate site is hacked so that when the real web address is entered, the victims are transferred to a fake one

Question 14

What is the purpose/effect of pharming?

Answer 14

Tricks victims into revealing personal details

Question 15

How is blagging used?

Answer 15

The attacker attempts to engage in an online conversation with the victim

Question 16

What is the purpose/effect of blagging?

Answer 16

Tricks victims into revealing their personal details

Question 17

How is shoulder surfing used?

Answer 17

Physical monitoring of someone e.g. over their shoulder or CCTV

Question 18

What is the purpose/effect of shoulder surfing?

Answer 18

To gain PIN or room codes or passwords

Question 19

How is MITM used?

Answer 19

• Hacker connects to a connection between devices
• Users are unaware of hacked connection
• Can be done by setting up free unencrypted Wi-Fi

Question 20

What is the purpose/effect of MITM?

Answer 20

• Steal data
• Alter data for the recipient

Question 21

How is DoS used?

Answer 21

• Sends a server many requests (flooding)
• DDoS attack comes from a botnet

Question 22

What is the purpose/effect of DoS?

Answer 22

Slows down or crashes server

Question 23

How is SQL injection used?

Answer 23

Manipulating an SQL query so that additional code can be read by the system

Question 24

What is the purpose/effect of an SQL injection?

Answer 24

• Bypass sign-in systems
• Extract data
• Delete data
• Update data
• Install data
• Execute commands
• Download malware

Question 25

How is brute force used?

Answer 25

• Uses a computer program to generate all possible password combinations and try them out
• Can use lists of common and cracked passwords first

Question 26

What is the purpose/effect of brute force?

Answer 26

Gain access to a victim’s account

Question 27

What attacks are prevented by penetration testing?

Answer 27

DoS and SQL injection

Question 28

How does penetration testing work?

Answer 28

Weaknesses in current security can be identified and modified accordingly

Question 29

How does anti-malware work?

Answer 29

Identifies malware to be removed

Question 29

What attacks does anti-malware prevent?

Answer 29

Malware

Question 30

What attacks does a firewall prevent?

Answer 30

• Malware
• Pharming
• Blagging
• Phishing
• DoS

Question 31

How does a firewall work?

Answer 31

• Can filter malicious packets
• Prevents hackers from gaining access
• Malicious websites can be blocked

Question 32

What attacks does user access levels prevent?

Answer 32

Malware

Question 33

How do user access levels work?

Answer 33

Prevent malware being spread by any user

Question 34

What attacks do strong passwords prevent?

Answer 34

Brute force

Question 35

How do strong passwords work?

Answer 35

Can stall attack till identified and removed

Question 36

What attack does encryption prevent?

Answer 36

MITM

Question 37

How does encryption work?

Answer 37

Renders data incomprehensible to hackers without the necessary decryption tools

Question 38

How does physical security work?

Answer 38

• Cover any physical password entries with your hand
• Check for any suspicious individuals attempting to view your entry
• Prevents people from viewing your passwords

Question 39

What attacks does physical security prevent?

Answer 39

Shoulder surfing