9. Security and data management

Question 1

What is a backup?

Answer 1

A copy of data that can be used if the original is lost.

Question 2

What is the difference between incremental and full backups?

Answer 2

Incremental backups make a copy of new files or any files that have been modified since the last back up, whereas full backups make a copy of every single file on a computer system. Incremental backups are quicker.

Question 3

Why do backups need to be done regularly?

Answer 3

The older the backup becomes, the less likely it is to match the current data.

Question 4

What is the grandfather-father-son method of backing up files?

Answer 4

3 backup copies are kept, with the oldest being the grandfather, the second oldest being the father and the newest being the son. The grandfather backup eventually gets updated with the newest backup of the data, and so becomes the son. The Previous son becomes the father and the previous father becomes the grandfather.

Question 5

When would a backup need to be recovered?

Answer 5

• hardware failure
• human error
• software failure
• viruses
• hacking

Question 6

What is archiving?

Answer 6

The process of storing data that is no longer in current or frequent use. Archived data is stored on an appropriate storage medium, such as magnetic tape or a DVD.

Question 7

Why is archiving needed?

Answer 7

It allows for currently redundant data that could be useful in the future to be kept and stored, whilst also freeing up space on a computer system and allowing it to access data that is currently in use faster.

Question 8

What is cybersecurity?

Answer 8

The methods of use that can be used to protect computer systems, networks or data from cyberattacks.

Question 9

What is malware?

Answer 9

Malware is a type of harmful program that seeks to damage or gain unauthorised access to a computer system.

Question 10

What is a virus?

Answer 10

A program that replicates itself and can spread from one system to another by attaching themselves to host files. They are used to modify or corrupt data on a targeted computer system. They can only be activated when a user interacts with them.

Question 11

What is a worm?

Answer 11

Self-replicating programs that identify weaknesses in operating systems and gain remote control over the infected computer system. They do not need to be interacted with in order to spread.

Question 12

What is spyware?

Answer 12

Used to collect data without the user’s knowledge. They can be installed by opening attachments or downloading infected software. This data is then sent back to the attacker without the user’s knowledge.

Question 13

What are keyloggers?

Answer 13

A type of spyware that tracks keystrokes. This can be used to obtain passwords and account numbers for fraudulent use. They can also be used by parents to monitor their children’s online activity.

Question 14

What is a trojan?

Answer 14

A program that appears to be useful, but also provides a ‘backdoor’ which allows data to be stolen.

Question 15

How can you protect against malware?

Answer 15

• use a firewall
• keep operating systems up to date
• use the latest version of web browsers
• look out for phishing emails
• install anti virus software
  If you suspect malware is on your computer system, run a malicious software removal tool.

Question 16

How does antivirus software work?

Answer 16

It monitors activity on your computer and checks for viruses. Each virus has a signature, which is known to antivirus software and helps them detect viruses. Antivirus software needs to be updated frequently to keep up with the new viruses that are created daily.

Question 17

How do firewalls work?

Answer 17

They control incoming and outgoing network traffic by analysing data packets and deciding whether they should go through or not. This decision is based on a pre-defined set of rules.

Question 18

Why is it important to keep your operating system and web browsers up to date?

Answer 18

New ways of bypassing security are often discovered, and manufacturers are always trying to remove security vulnerabilities. Keeping these updated ensures you have the latest patch and minimal chances of your computer system becoming infected with malware.

Question 19

What is shoulder surfing?

Answer 19

When a person physically observes someone’s actions to obtain their sensitive data. This could be whilst they are filling out a form or entering a PIN number.

Question 20

What is an SQL injection?

Answer 20

A malicious SQL (a programming language used to manipulate data in a database) command is entered into a data input box on a website. If the website is insecure, then this will give the attacker unauthorised access to the website’s database.

Question 21

What is a DoS attack?

Answer 21

They attempt to slow a system or make websites temporarily unavailable by flooding them with requests and generating a huge amount of traffic. A DDoS attack is when this is done from multiple devices, so can therefore send even more requests.

Question 22

What are some password-based attacks?

Answer 22

• brute force: every single combination is tried until the password is obtained
• dictionary: words from a dictionary that would be typically used in a password
• guess: passwords can sometimes be obtained via an educated guess

Question 23

What is IP address spoofing?

Answer 23

When an IP address of a legitimate website is modified so that when a user enters the URL, they are taken to a fraudulent website as well. These are then used to steal data or install malware.

Question 24

What is social engineering?

Answer 24

When the attacker attempts to trick the user into giving out sensitive information. This could be done by posing as a legitimate system administrator to gain the user’s trust.

Question 25

What is footprinting?

Answer 25

Gathering all information from a computer system or network to see how much detail a potential attacker could find out. This allows organisations to then limit the amount of data that is publicly available.

Question 26

What does an ethical hacker do?

Answer 26

They attempt to bypass system security and identify any weak points that could be utilised by malicious hackers. They are given permission by the system owner to do this so that the owner can improve security.