4) Network Security

Question 1

What is malware?

Answer 1

A software that can harm devices

Question 2

What does malware do?

Answer 2

• delete or modify files
• scareware make them beleive theres viruses
• locking files
• Spy ware

Question 3

How do malware access your device?

Answer 3

• viruses attactch to certain devices
• worms (soread really quickly and exploit weaknessnes)
• Trojans (malware disguised)

Question 4

What is people at the weakpoint?

Answer 4

Catfishing people for information saying there a big company

Question 5

What is phishing?

Answer 5

Criminals send emails or texts pretending to be a big company. They then say to update all details and all their details are gone

Question 6

A way you can spot phishing?

Answer 6

Poor grammar

Question 7

Whats a brute force attack?

Answer 7

Type of attack to gain information by cracking passwords through trial and error. Eg use an automated software to produce likely combinations

Question 8

What is penitrating testing?

Answer 8

An organisation uses employes to stimulate attacks on their network
Find the weak point of a network

Question 9

What is anti maleware software?

Answer 9

Designed to find and stop maleware damaging a network and devices on it. Companies use firewalls to prevent it

Question 10

Whats physical security?

Answer 10

Protects the physical parts of the network.
Eg locks and cameras

Question 11

What are user access levels?

Answer 11

Control which parts of the network different groups can access

Question 12

What are passwords?

Answer 12

Help unathorised users access the network.

Question 13

What is a virus?

Answer 13

• It can replicate istelf and spread from system to system by attaching itself to infected files

Question 14

When is a virus activated?

Answer 14

When opened by a human

Question 15

What is a worm?

Answer 15

Replicate itself and spread system from system to system by findjng weakness of a system

Question 16

Whats a worm?

Answer 16

Replictaes itself and spread from system to sysetm by finding weakness in system

Question 17

Whats a trojan?

Answer 17

A harmful program that looks real so users are tricked to install it

Question 18

What is spyware?

Answer 18

Secretley records the activities of the user on a computer. Main aim is to record usernames,passwords and credit card information

Question 19

What is a keylogger?

Answer 19

Secretly records the key presses of a user on a computer. Data is stored and sent back. Main aim is to record usernames and credit card information

Question 20

What is Ransomware?

Answer 20

• Locks files on a computer using encryption so they can no longer use them
• Demand money for them to unlock (btc)

Question 21

What is SQL injection?

Answer 21

• Programing langauge to manipulate data in databases
• It can trick the website into giving unauthorised access.
• Can view and edit the contents of the database

Question 22

How is SQL injection used?

Answer 22

Malicious SQL query is entered into a data input box on a website

Question 23

Whats a DOS attack?

Answer 23

• A computer repeatedly sends requests to a server to overload a system. It will make the server offline

Question 24

What is a Brute force attack?

Answer 24

• Every combination is tested from start to finish. Not quick but can break password eventually and sped up with multiple computer systems

Question 25

What is social engineering?

Answer 25

- Trick others into revealing their personal data by posing a trusted source - eg. IT asking for password

Question 26

What is Interception?

Answer 26

- Data packets are intercepted by a third party and copied to a different location. - Packet sniffers are used to intercept and analyse data packets

Question 27

Whats the purpose of a penetration test?

Answer 27

To find any risks or weaknesses and fix them

Question 28

What are the 4 main type of penetration tests?

Answer 28

- Internal tests (see how much damage is done within the company) - External tests (infiltrate a system from outside a company) - Blind tests (no inside information and see what a real hacker would do) - Targeted tests (are by an IT department to find the faults in a system)

Question 29

What is anti-malware software?

Answer 29

Used to locate and delete malware, like viruses,

Question 30

How does the anti-malware software do it?

Answer 30

- Scans each file on the computer and compares it against a database of a known malware.

Question 31

What are other roles of an anti-malware software?

Answer 31

- Checking all emails that come in and go out - Checking files as they are downloaded - Scanning viruses on hard drive

Question 32

Whats a firewall?

Answer 32

- Manages incoming and outgoing network traffic

Question 33

What does a firewall do?

Answer 33

- Data packet is processed to check wether it should be given access by the network. - Unexpected data packets will be filtered out and not accepted

Question 34

Other roles of a firewall?

Answer 34

- Blocking access to insecure websites - Blocking programes from accessing the internet - Blocking unauthorised downloads

Question 35

Whats a secure password?

Answer 35

- Secure password to minimise risk of users accessing

Question 36

Whats read only access?

Answer 36

- User can only view file and not change data

Question 37

What is encryption?

Answer 37

- Process of scrambaling data into an unreadable format so attackers cannot understand if intercepted.

Question 38

How is encryption used?

Answer 38

- Plaintext is converted to scrambled ciphertext using an encryption key.

Question 39

What is physical security?

Answer 39

- A lock can be used to prevent access to a server room or locations that store confidential data.

Question 40

What are forms of physical security?

Answer 40

- Biometric - keycards - CCTV - Alarms - Staff