2.4.4, 2.4.5, 2.4.6

Question 1

What are viruses and worms?

Answer 1

Types of malware categorized by their ability to self-replicate.

Question 2

What distinguishes viruses from worms?

Answer 2

Viruses require user interaction to spread, while worms can spread independently.

Question 3

What is a characteristic of worms in terms of self-replication?

Answer 3

They do not need to rely on programs to spread.

Question 4

How can viruses and worms affect a target?

Answer 4

By infecting specific programs on a computer.
By encrypting sensitive data on a local network.
By spreading to the boot sector of the computer.

Question 5

What is a recommended defense against viruses?

Answer 5

Restricting the level of privilege users and processes natively run in.

Question 6

What is a common defense measure against both viruses and worms?

Answer 6

Regularly updating antivirus software.

Question 7

What is adware?

Answer 7

Software that installs extra components to deliver additional advertising, often in the form of pop-up ads.

Question 8

How does adware affect computer performance?

Answer 8

It slows down computer performance by increasing network traffic.

Question 9

What is a common method of distributing adware?

Answer 9

Bundling it with free software downloads.

Question 10

How is spyware different from adware?

Answer 10

Spyware monitors computer and internet usage.

Question 11

What type of data does spyware typically monitor?

Answer 11

Website visit history and browsing habits.

Question 12

What is bloatware?

Answer 12

Software that comes pre-installed on devices by manufacturers and consumes system resources.

Question 13

Why do manufacturers pre-install bloatware on devices?

Answer 13

To generate additional revenue through partnerships with software developers.

Question 14

What is a keylogger?

Answer 14

A software program that tracks and logs keystrokes on a victim’s keyboard.

Question 15

Why are keystrokes valuable to attackers?

Answer 15

They contain data such as passwords, usernames, and credit card information.

Question 16

How do keyloggers capture data other than individual keystrokes?

Answer 16

By taking screenshots, logging items copied to the clipboard, and capturing instant messages.

Question 17

Why are keyloggers not affected by encryption protection?

Answer 17

Because they intercept keyboard inputs before encryption takes place.

Question 18

What are some legitimate uses for keyloggers?

Answer 18

Monitoring a child’s online activity.

Question 19

How did the FBI use a keylogger in an investigation against cybercriminals?

Answer 19

By capturing the suspects’ usernames and passwords.

Question 20

How do keyloggers spread?

Answer 20

Through email attachments, instant messages, text messages, or visiting malicious websites.

Question 21

What is a recommended defense against keyloggers when opening email attachments?

Answer 21

Use caution when opening attachments and consider using one-time passwords and multi-factor authentication.

Question 22

How can password managers help protect against keyloggers?

Answer 22

By not requiring typing the saved password each time for access.

Question 23

How can alternate keyboard layouts help defend against keyloggers?

Answer 23

By preventing keylogger software from capturing keystrokes.

Question 24

What is a logic bomb?

Answer 24

A piece of code that waits for specific conditions to be met before executing.

Question 25

What are triggers in the context of logic bombs?

Answer 25

Specific events or conditions that cause the logic bomb to execute.

Question 26

What are time bombs?

Answer 26

Logic bombs that detonate after a certain amount of time has passed.

Question 27

Who is likely to install a logic bomb as an insider threat?

Answer 27

A disgruntled employee with privileged access to computer systems.

Question 28

Why are logic bombs hard to identify?

Answer 28

They are stealthy by nature and remain inactive until triggered.

Question 29

What is a recommended defense against logic bombs?

Answer 29

Regularly updating the operating system and patching vulnerabilities.

Question 30

What is a rootkit?

Answer 30

A type of malware that provides administrative access to a computer while concealing its presence.

Question 31

What is the main role of a rootkit?

Answer 31

To alter system files and conceal its presence to avoid detection.

Question 32

Why are rootkits difficult to detect?

Answer 32

Because they alter system files and data reports to avoid detection.

Question 33

How do rootkits block some antivirus software?

Answer 33

By activating before the operating system boots up.

Question 34

What type of rootkit overwrites the firmware of the system’s BIOS?

Answer 34

Firmware rootkit.

Question 35

What is the purpose of Secure Boot in defending against rootkits?

Answer 35

To detect tampering with boot loaders and key operating system files.

Question 36

Which operating system was targeted by the Machiavelli rootkit?

Answer 36

Mac OS X

Question 37

What is Stuxnet?

Answer 37

The first-known rootkit for industrial control systems (ICS).