4. Threats to Data Flashcards
Malware (DEFINITION)
Malware is software designed to cause harm
Malware (about)
Corrupts, compromises
Passed to other devices (USB)
Ransomware (DEFINITION)
Ransomware holds companies to ransom by encrypting their data and demanding a large sum of money to decrypt it
Hackers (DEFINITION)
Hackers is the term used for anyone that attempts to access an IT system without permission
(you can have ethical hackers)
Phishing (DEFINITION)
Phishing is to attempt to fraudulently gain information by unlawfully making claims via phone/email that the user should share personal/financial details
Accidental Damage
Not saving
Power cut
Misplaced files
Natural Disasters
Impacts of Threats on Individuals
Stress
Waste Time
Replace device?
Need backups
Impacts of Threats on Organisations
Loss in business
Damage to credibility
Take money + time to fix damages
Can be viewed as unreliable
Reducing Threats to Data (4)
File Permissions
- password protection
- allocate right e.g. read-only
Access Levels
- users are given access to files that fulfil their role but nothing more
- fewer people put sensitive files at risk
Passwords
- secret, strong, no key words
- change every 8-12 weeks
Physical Access Control
- don’t leave unlocked devices unattended
- biometrics
Incremental Back Up
- only back up files that have been changed since the last back up
- nightly/weekly
- doesn’t take up much storage
- quicker
- harder to find files to recover
Full Back Up
- backs up all files
- weekly/monthly
- out of office hours
- restore files more easily
- expensive
- takes longer
Back Up Recovery
- usually automatic recovery procedure
- organisation should have formalised plan
- large organisation have a full disaster recovery plan (minimise disruption)
