Ch. 4 Information Security and Controls

Question 1

Difference between security and information security

Answer 1

Security is the degree of protection against criminal act. , damage or loss while information security is defined as the processes and policies designed to protect the org. info. from unauthorized issues.

Question 2

How does a threat and exposure connect with each other

Answer 2

A threat is something that can affect the org. and then an exposure is the result of the threat

Question 3

Vulnerability

Answer 3

is the possibilty that a threat will harm a resource

Question 4

Factors that increase vulnerability of org. res.

Answer 4

-Today’s interconnected, interdependent business environment
-Smaller, faster computers &storage devices
-Decreasing skills necessary to be a computer hacker
-International organized crime taking over cybercrime
-Lack of management support

Question 5

Types of Threats

Answer 5

Unintentional and deliberate threats

Question 5

What is a form of unintentional threat

Answer 5

Human error

Question 5

Diiference bet. human error and social engineering

Answer 5

Human error is committed by employees while social engineering is when employees makes mistake due to a response of action by an attacker

Question 6

Techniques of social engineering

Answer 6

• Tailgating: hold the door
• Shoulder surfing: amebo

Question 7

Types of Deliberate Threats

Answer 7

*Espionage or trespass; illegal access to info.
*Information extortion; threaten to steal but stop when paid. Use Ransomware/digital extortion to block coy info. until payment is made.
*Sabotage or vandalism
*Theft of equipment or information
*Identity theft
*Compromises to intellectual property; is the property created by individual protected by trade secret, patent and copyright
*Software attacks: use of malicious software called malware
*Alien software: Sneaky software installed without your knowledge
*Supervisory control and data acquisition (SCADA) attacks; provides link between the physical world and the electronic world.
*Cyberterrorism and cyberwarfare

Question 8

What is Doxxing

Answer 8

a strategy where cybercrimanal threaten to release a coy info. to the public.

Question 9

Indirect costs are the ransom payment

Answer 9

No, they are the direct costs.

Question 10

A form of online vandalism is ?

Answer 10

Hacktivist or cyberactivist operation

Question 11

What is trade secret, patent and copyright

Answer 11

Trade secret is an intellectual work such as the coy. secret. Patent is an official document that grants an indiv. exclusive rights on an invention(20 yrs). Copyright is a statutory grant that provides owners of the prop. with ownership(70 yrs).

Question 12

Which attack targets large group of people and which one targets senior executives

Answer 12

Spear phishing and whaling

Question 13

Types of spyware

Answer 13

Stalkerware
Keystroke loggers; stealing ur web history (CAPTCHA- that thing in US application)
Screen tapers

Question 14

What is Enterprise Risk Management

Answer 14

ERM is a risk-based approach to managing an enterprise that integrates internal control, legal requirements, and strategic planning.

Question 15

Main Purpose of COBIT 5 framework

Answer 15

To align IT with business objectives and assist in managing risk

Question 16

Reasons why it’s difficult to protect Info.

Answer 16

Computing resources may be situated in many locations.
Many individuals control or have access to information assets.
Computer networks can be located outside the organization, making them difficult to protect.
Rapid technological changes make some controls obsolete as soon as they are installed.
Many computer crimes are undetected for a long time, so it is difficult to learn from experience.

Question 17

Categories of Control

Answer 17

. Control environment encompasses management attitudes toward controls, as evidenced by management actions, as well as by stated policies and procedures that address ethical issues and the quality of supervision.
* General controls apply to more than one functional area. For example, passwords are general controls.
* Application control A typical payroll application control would be the approval of payroll wage rates by a human resources supervisor. Controls specific to one application, such as payroll, are application controls.

Question 18

Diff. bet. Firewall and Anti malware

Answer 18

Anti-malware systems are generally reactive. Whereas firewalls filter network traffic according to categories of activities that are likely to cause problems, anti-malware systems filter traffic according to a database of specific problems

Answer 19

Whereas whitelisting allows nothing to run unless it is on the whitelist, blacklisting allows everything to run unless it is on the blacklist.