1.6 System Security Flashcards

Question 1

Q

Define malware

Answer

A

MALicious softWARE written to infect computers and commit crimes such as fraud and identity theft.

Question 2

Q

Define worms

Answer

A

Replicates itself to spread to other computers often using a computer network and fills up the RAM.

Question 3

Q

Define network policies

Answer

A

How a system can be secured through specific rules or requirements.

Question 4

Q

Define firewalls

Answer

A

Software that performs a “barrier” between a potential attacker and the computer system.

Question 5

Q

Define penetration testing

Answer

A

Tests performed under a controlled environment by a qualified person.

Question 6

Q

What are the effects of malware?

Answer

A

1) Computer may crash, reboot spontaneously or slow down without any logical explanation. 2) When a worm infects a computer, the internet connection may become slow as the worm searches online for other computers to infect. 3) Files may be deleted, become corrupt or encrypted. 4) Hackers record typed keys of computer so they know passwords.

Question 7

Q

How can you prevent malware?

Answer

A

1) Strong security software (firewall, spam filter, anti-virus, anti-spyware, anti-spam). 2) Enable OS updates. 3) Staff training: caution opening attachments. 4) Back up files regularly.

Question 8

Q

Define social engineering

Answer

A

Relies on human interaction (social skills).

Question 9

Q

Define phishing

Answer

A

Form of social engineering.

Question 10

Q

What are the effects of phishing?

Answer

A

1) Accessing a victim’s account and withdraw money or purchase merchandise or services. 2) Open new bank or credit-card accounts in a victim’s names, and use the new account to cash illegitimate checks or purchase merchandise. 3) Gaining access high-value corporate data. 4) Financial services can blacklist institutions, resulting in reputational damage.

Question 11

Q

How can you prevent phishing?

Answer

A

1) Strong security software (firewall, spam filter, anti-virus, anti-spam). 2) Staff training: awareness of spotting fake websites & amp; emails. 3) Staff training: never disclose personal or financial information. 4) Staff training: disable pop-ups.

Question 12

Q

Define brute force attack

Answer

A

Trial and error method used by programs to decode encrypted data such as: passwords or Data Encryption Standard (DES) keys, through exhaustive effort rather than employing intellectual strategies.

Question 13

Q

What are the effects of brute force attack?

Answer

A

1) Theft of data.

Question 14

Q

How can you prevent brute force attacks?

Answer

A

1) Network lockout policy: locks out after number of tries expires. 2) Effective software: progressive delays. 3) Staff training: using effective passwords that contain symbols and numbers. 4) Challenge response tests e.g. reCAPTCHA.

Question 15

Q

Define denial of service attack

Answer

A

Flooding a server with useless traffic causes servers to become overloaded preventing them responding to legitimate client-server requests from users.

Question 16

Q

What are the effects of denial of service attack?

Answer

A

1) Revenue losses: downtime affects profits. 2) Productivity Loss. 3) Reputation Damage.

Question 17

Q

How can you prevent denial of service attacks?

Answer

A

1) Strong security software (firewall). 2) Packet filters on routers. 3) Configuration of the web server. 4) Good network policy: audits, logs, monitoring.

Question 18

Q

Define data interception and theft

Answer

A

An attacker monitors data streams to/from a target, in order to gather sensitive information.

Question 19

Q

What are the effects of data interception and theft?

Answer

A

1) Discovering username and password credentials. 2) Gaining access to systems. 3) Disclosure of corporate data. 4) Theft of data.

Question 20

Q

How can you prevent data interception and theft?

Answer

A

1) Strong encryption. 2) Using virtual networks. 3) Staff training: use of passwords, locking and portable storage devices. 4) Network forensics.

Question 21

Q

Define SQL injection

Answer

A

A code injection technique, used to attack data-driven applications.

Question 22

Q

What are the effects of SQL injection?

Answer

A

1) Contents of the database can be output, revealing data that otherwise would be hidden. 2) Data in the database can be amended and deleted. 3) New rogue records can be added.

Question 23

Q

How can you prevent SQL injection?

Answer

A

1) Validation of input fields. 2) Using parameterised queries. 3) Using database permissions. 4) Penetration testing.

Question 24

Q

There are few/many ways in which networks can be attacked

Question 25

Q

True/False: Networks can be attacked by targeting the people who use them

Question 26

Q

What does social engineering involve?

Answer

A

Tricking people into divulging secret information such as passwords and login information

Question 27

Q

Give an example of private information that can be given when tricking people as a result of social engineering

Answer

A

Anything such as passwords, login information, etc

Question 28

Q

What does phishing involve?

Answer

A

Emailing someone claiming or appearing to be from a bank or building society e-commerce site, asking for details of passwords or credit cards

Question 29

Q

What does blagging involve?

Answer

A

A criminal inventing a scenario to persuade a victim to give out information, eg they cold pretend to be another employee or network administrator

Question 30

Q

What does shouldering involve?

Answer

A

Finding passwords and PINs by watching people enter them. This could happen in a busy office or at a distance using binoculars or recording equipment

Question 31

Q

All organisations should have an __________ use policy

Answer

A

acceptable

Question 32

Q

What must users do when there is an acceptable use policy in place?

Answer

A

Read it, sign it and abide by it

Question 33

Q

List things that should be included in an acceptible use policy

Answer

A

Any from users must not use their own devices on the network, users must not download files from the internet, etc

Question 34

Q

Why should users on a network not use their own devices such as USB flash drives?

Answer

A

These pose a threat as malware can be introduced to the network and data can be removed and stolen

Question 35

Q

Why should users connected to a network not download files from the internet?

Answer

A

They could be infected with malware

Question 36

Q

____ passwords are a major security risks

Question 37

Q

What is a weak password?

Answer

A

A password that can be easily and quickly guessed by humans and computers

Question 38

Q

Hackers often use _____-_____ techniques to try different combinations of letters, numbers and symbols to get in to a system

Answer

A

brute force

Question 39

Q

Brute-force software tries…to get in to a system

Answer

A

every single combination of letters, numbers and symbols until it finds the correct combination

Question 40

Q

A long password with a combination of what will take longer to guess?

Answer

A

Letters, numbers and symbols

Question 41

Q

Passwords should be changed _________

Answer

A

regularly

Question 42

Q

True/False: You should reuse old passwords

Answer

A

False, old passwords should never be reused

Question 43

Q

Why should dates of birth and relatives names never be used in passwords?

Answer

A

Hackers can find them out

Question 44

Q

Many forms of attack target users by getting them to install _______ (harmful software) on their computers

Question 45

Q

What is malware?

Answer

A

Software that has been designed to gain unauthorised access to a computer system in order to disrupt its functioning, or collect information

Question 46

Q

Malware is software that has been designed to gain unauthorised access to a computer system in order to…

Answer

A

disrupt its functioning, or collect information

Question 47

Q

Malware is software that has been designed to gain what to a computer system?

Answer

A

Unauthorised access

Question 48

Q

What is a virus?

Answer

A

A computer program hidden inside another program which can delete or corrupt data on an infected computer

Question 49

Q

A virus can _________ itself and insert itself into other programs or files that can then be passed on

Answer

A

replicate

Question 50

Q

Viruses can delete or _______ data held on an infected computer

Question 51

Q

A worm needs/does not need another program to carry it

Answer

A

does not need

Question 52

Q

A work can replicate and send itself in emails that are then sent to everyone in a user’s…

Answer

A

address book

Question 53

Q

What do worms consume? (Computer Science)

Answer

A

Computer resources as they are reproducing

Question 54

Q

Why do worms consume computer resources as they are reproducing?

Answer

A

To allow criminals to gain access to an infected computer and take it over

Question 55

Q

Trojans are installed by _____

Question 56

Q

When do users install trojans?

Answer

A

When they think they are installing legitimate software

Question 57

Q

What can trojans do?

Answer

A

Delete files, change the desktop layout and send screenshots and key presses to a hacker’s computer

Question 58

Q

Spyware often comes packaged with what?

Answer

A

Other software

Question 59

Q

Users do/do not know that they are installing spyware

Question 60

Q

What does spyware do?

Answer

A

Spies on the user like a trojan by sending information to a criminal

Question 61

Q

What does adware do?

Answer

A

Displays unwanted adverts or diverts browser requests to advertising sites

Question 62

Q

To prevent infection, you can install _________ software and ensure that it is constantly updated

Answer

A

antivirus

Question 63

Q

To prevent infection, you can ensure that _________ software can scan emails

Answer

A

antivirus

Question 64

Q

To prevent infection, you can use adware removal…

Answer 57

A

removes or blocks spyware

Answer 58

A

unknown sources

Answer 59

A

the network operating system and security

Answer 60

A

Attacks where automated software tries millions of different password cobinations to get in to a system

Answer 61

A

millions of different passwords

Answer 62

A

computing power rather than any specialist techniques

Answer 63

A

The use of packet sniffers to intercept data packets on a network, which are then analysed

Answer 64

A

Intercept data packets on a network and analyse them

Answer 65

A

Sensitive data such as login names, passwords and credit card numbers

Answer 66

A

Denial of Service

Answer 67

A

An overload on a network or website by flooding it with network communications such as login requests

Answer 68

A

Distributed denial of service

Answer 69

A

A distributed denial of service (DDoS) attack

Answer 70

A

To punish organisations they think are unethical

Answer 71

A

personal and financial data held on websites stored in huge databases

Answer 72

A

Any from social networking sites, banks, online commerce sites, etc

Answer 73

A

Structured Query Language

Answer 74

A

manipulate

Answer 75

A

Any from to create new records, search for information, check login names and passwords, etc

Answer 76

A

To gain access to records and steal valuable data such as names, addresses and bank details

Answer 77

A

several hours, days, months and even years to run

Answer 78

A

The password and the power of the computer(s) used to conduct the attack

Answer 79

A

No specialist techniques are used. Raw computing power is used to try millions of combinations

Answer 80

A

identifying risks and applying measures to prevent them

Answer 81

A

test a computer system or network in order to find vulnerabilities that an attacker could exploit

Answer 82

A

try to gain unauthorised access

Answer 83

A

the security awareness of users and demonstrates the effectiveness of network security policies

Answer 84

A

The monitoring, recording and analysis of network events

Answer 85

A

Any 2 from who has logged in, how many unsuccessful attempts have been made, what users have done and what has been deleted

Answer 86

A

unusual network activity

Answer 87

A

illegal activity is detected

Answer 88

A

at least eight characters and include non-alphanumeric characters

Answer 89

A

which files and folders users are allowed to access and at what level

Answer 90

A

see, browse, edit or delete

Answer 91

A

Rules that set out what users can and cannot do on a network

Answer 92

A

Any from must not use removable storage devices, install their own software, download files from internet sites. etc

Answer 93

A

shouldn’t

Answer 94

A

shouldn’t

Answer 95

A

they will be kept

Answer 96

A

Network policies

Answer 97

A

abide by policies put in place to safeguard the business network

Answer 98

A

Any 2 from smartphone, mp3 player and camera

Answer 99

A

Malware could be introduced to the network and data could be copied or stolen

Answer 100

A

protect networks from threats

Answer 101

A

detect and remove malware

Answer 102

A

Any from antivirus, spyware removal software, etc

Answer 103

A

updated to tackle new threats

Answer 104

A

new security features are introduced

Answer 105

A

The conversion of data into a form that cannot be understood unless a user knows how to convert it back again

Answer 106

A

Encryption and decryption

Answer 107

A

‘public’ and ‘private’ key

Answer 108

A

A user would encrypt a message to send using the recipient’s public key that is available to all

Answer 109

A

Only the recipient’s private key is able to decrypt the message sent using the public key

Answer 110

A

Protects a network connected to a WAN such as the internet

Answer 111

A

hardware or software

Answer 112

A

communications

Answer 113

A

Programs and users

Brainscape's Knowledge GenomeTM

1.6 System Security Flashcards

Brainscape's Knowledge Genome^TM