Ch 3

Question 1

Advanced persistent threat

Answer 1

A network attack in which an intruder gains access to a network and stays there—undetected—with the intention of stealing data over a long period of time (weeks or even months).

Question 2

antivirus software

Answer 2

Software that scans for a specific sequence of bytes, known as a virus signature, that indicates the presence of a specific virus.

Question 3

blended threat

Answer 3

A sophisticated threat that combines the features of a virus, worm, Trojan horse, and other malicious code into a single payload.

Question 4

botnet

Answer 4

A large group of computers, which are controlled from one or more remote locations by hackers, without the knowledge or consent of their owners.

Question 5

business continuity plan

Answer 5

A risk-based strategy that includes an occupant emergency evacuation plan, a continuity of operations plan, and an incident management plan with an active governance process to minimize the potential impact of any security incident and to ensure business continuity in the event of a cyberattack or some form of disaster.

Question 6

CAPTCHA

Answer 6

Software that generates and grades tests that humans can pass and all but the most sophisticated computer programs cannot.

Question 7

CIA security triad

Answer 7

Refers to confidentiality, integrity, and availability.

Question 8

Computer Forensics

Answer 8

A discipline that combines elements of law and computer science to identify, collect, examine, and preserve data from computer systems, networks, and storage devices in a manner that preserves the integrity of the data gathered so that it is admissible as evidence in a court of law.

Question 9

CAN SPAM Act

Answer 9

A law that specifies that it is legal to spam, provided the messages meet a few basic requirements—spammers cannot disguise their identity by using a false return address, the email must include a label specifying that it is an ad or a solicitation, and the email must include a way for recipients to indicate that they do not want future mass mailings

Question 10

cyberespionage

Answer 10

The deployment of malware that secretly steals data in the computer systems of organizations, such as government agencies, military contractors, political organizations, and manufacturing firms.

Question 11

DHS

Answer 11

A large federal agency with more than 240,000 employees and a budget of almost $65 billion whose goal is to provide for a “safer, more secure America, which is resilient against terrorism and other potential threats.”

Question 12

disaster recovery plan

Answer 12

A documented process for recovering an organization’s business information system assets—including hardware, software, data, networks, and facilities—in the event of a disaster.

Question 13

distributed denial of service attack

Answer 13

A documented process for recovering an organization’s business information system assets—including hardware, software, data, networks, and facilities—in the event of a disaster.

Question 14

encryption

Answer 14

The process of scrambling messages or data in such a way that only authorized parties can read it.

Question 15

encryption key

Answer 15

A value that is applied (using an algorithm) to a set of unencrypted text (plaintext) to produce encrypted text that appears as a series of seemingly random characters (ciphertext) that is unreadable by those without the encryption key needed to decipher it.

Question 16

intrusion detection system

Answer 16

Software and/or hardware that monitors system and network resources and activities and notifies network security personnel when it detects network traffic that attempts to circumvent the security measures of a networked computer environment.

Question 17

logic bomb

Answer 17

A type of Trojan horse malware that executes when it is triggered by a specific event or at a predetermined time.

Question 18

managed security service provider

Answer 18

A company that monitors, manages, and maintains computer and network security for other organizations.

Question 19

mission critical process

Answer 19

Business processes that are more pivotal to continued operations and goal attainment than others

Question 20

next generation firewall

Answer 20

A hardware- or software-based network security system that is able to detect and block sophisticated attacks by filtering network traffic dependent on the packet contents.

Question 21

phishing

Answer 21

The act of fraudulently using email to try to get the recipient to reveal personal data.

Question 22

ransomware

Answer 22

Malware that stops you from using your computer or accessing your data until you meet certain demands, such as paying a ransom or sending photos to the attacker.

Question 23

reasonable assurance

Answer 23

A concept in computer security that recognizes that managers must use their judgment to ensure that the cost of control does not exceed the system’s benefits or the risks involved.

Question 24

risk assessment

Answer 24

The process of assessing security-related risks to an organization’s computers and networks from both internal and external threats.

Question 25

rootkit

Answer 25

A set of programs that enables its user to gain administrator-level access to a computer without the end user’s consent or knowledge.

Question 26

smishing

Answer 26

Another variation of phishing that involves the use of texting.

Question 27

spear phishing

Answer 27

A variation of phishing in which the phisher sends fraudulent emails to a certain organization’s employees.

Question 28

Transport Layer Security (TLS)

Answer 28

A communications protocol or system of rules that ensures privacy between communicating applications and their users on the Internet.

Question 29

US Computer Emergency readiness Team (US-CERT)

Answer 29

Established in 2003 to protect the nation’s Internet infrastructure against cyberattacks, it serves as a clearinghouse for information on new viruses, worms, and other computer security topics.

Question 30

vishing

Answer 30

Similar to smishing except that the victims receive a voice-mail message telling them to call a phone number or access a website.

Question 31

worm

Answer 31

A harmful program that resides in the active memory of the computer and duplicates itself.

Question 32

zero day exploit

Answer 32

A cyberattack that takes place before the security community and/or software developers become aware of and fix a security vulnerability