Chapter 11 & 12

Question 1

phishing

Answer 1

e-mails contain links to text on a Web page

Question 2

Spear phishing

Answer 2

Targets a specific individual or group in an organization. Goals steal login credentials, trade secrets, financial documents, event details.

Question 3

Whaling-Phishing

Answer 3

Targets executive level employees in an organization. Often accomplished through social engineering. Goals get target to authorize wire transfers, provide login credentials, divulge sensitive information.

Question 4

Smishing

Answer 4

Fraudulent text messages meant to trick a person into revealing sensitive data or clicking on a malicious link

Question 5

Vishing

Answer 5

Fraudulent phone calls that induce a person to provide personal information or give remote access to their computer.

Question 6

Pharming

Answer 6

DNS poisoning takes user to a fake site

Question 7

Spoofing

Answer 7

A technique used in spam and phishing attacks to trick a user
into thinking the email came for an person or entity they know an trust.

Question 8

BEC

Answer 8

Business email compromise. A legitimate email account is taken
over. Fraudulent messages sent from the legitimate email account to trick someone into sending money or divulging sensitive info.

Question 9

Enhanced/Extended Simple Mail Transfer Protocol (ESMTP)

Answer 9

number in the message’s header to check for legitimacy of email. Reasons for email being bounced – Error codes can be looked up.

Question 10

applicable privacy laws

Answer 10

Electronic Communications Privacy Act (ECPA) and the Stored
Communications Act (SCA) apply to e-mail

Question 11

Forensic Linguistics

Answer 11

Where language and law intersect

Question 12

Examining E-mail Messages

Answer 12

-Find and copy any potential evidence
* Access protected or encrypted material
* Print e-mails

Question 13

Viewing E-mail headers

Answer 13

GUI clients
Web-based clients

After you open e-mail headers, copy and paste them into a text document
* So that you can read them with a text editor

Question 14

Information contained in headers?

Answer 14

-The main piece of information you’re looking for is the originating e-mail’s IP address
* Date and time the message was sent
* Filenames of any attachments
* Unique message number (if supplied)

Question 15

Tracing

Answer 15

Determining message origin

Question 16

What consists of Router logs?

Answer 16

• Record all incoming and outgoing traffic
• Have rules to allow or disallow traffic
• You can resolve the path a transmitted e-mail has taken

Question 17

Email logs identify:

Answer 17

• E-mail messages an account received
• Sending IP address
• Receiving and reading date and time
• E-mail content
• System-specific information

Question 18

E-mail forensic tools

Answer 18

• DataNumen for Outlook and Outlook Express
• FINALeMAIL for Outlook Express and Eudora
• Sawmill-Novell GroupWise for log analysis
• MailXaminer for multiple e-mail formatas and large data sets
• Fookes Aid4Mail and MailBag Assistant
• Paraben E-Mail Examiner
• AccessData FTK for Outlook and Outlook Express
• Ontrack Easy Recovery EmailRepair
• R-Tools R-Mail
• OfficeRecovery’s MailRecovery

Question 19

Online social networks (OSNs)

Answer 19

are used to conduct business, brag
about criminal activities, raise money, and have class discussions

Question 20

what can you rely on for business investigations?

Answer 20

For many e-mail investigations you can rely on e-mail message files, headers, and server log files

Question 21

Code Division Multiple Access (CDMA)

Answer 21

is a digital cellular technology that allows multiple users to access a shared communication channel simultaneously.

Question 22

Global System for Mobile Communications (GSM)

Answer 22

uses the Time
Division Multiple Access (TDMA) technique

widely used mobile communication standards globally
Multiple phones take turns sharing a channel

Question 23

MSISDN

Answer 23

Mobile Station International Subscriber Directory Number – Number
which you call or send text messages from. Linked to SIM

Question 24

IMEI –

Answer 24

International Mobile Equipment Identifier – Unique 15 digit number
identifies GSM and other types of phones. Differs from a serial number because the IMEI is broadcast with every transmission

Question 25

IMSI

Answer 25

Individual Mobile Subscriber Identity – 15 digit number tied to SIM card. Identifies Subscriber, Carrier, and Mobile Network.

Question 26

Pros of GSM

Answer 26

• Advantage – Users can transmit data and make phone calls at the same time.
  Not so with CDMA.
• GSM powered devices are cheaper and easier to produce.

Question 27

OS is stored in ROM

Answer 27

• Nonvolatile memory
• Available even if the phone loses power

Question 28

Subscriber identity module (SIM) cards

Answer 28

Found most commonly in GSM devices
Consist of a microprocessor and internal memory

Question 29

Internet of Things (IoT)

Answer 29

The number of devices that connect to the Internet is higher than the
amount of people
- That number is expected to reach 50 billion in the next few decades

Question 30

Base transceiver station (BTS)

Answer 30

Commonly referred to as cell towers.
Fixed transceiver. Main communications point for multiple wireless mobile
client devices.

Question 31

Base station controller (BSC)

Answer 31

Controls and monitors number of Base Stations. Interface between cell sites and mobile switching centers

Question 32

Mobile switching center (MSC)

Answer 32

Multi-function. Call setup and routing,
conference calling & fax, SMS text routing. Base stations connect to it. It is
an interface to other networks and PSTN.

Question 33

PSTN –

Answer 33

Public Switched Telephone Network. In use in one form or another for
a century. POTS – Plain Old Telephone System. Carries landline and cell voice
calls. Copper wiring to homes, switching centers and cellular networks.
Costly to maintain.

Question 34

VOIP

Answer 34

Voice Over IP. Uses Internet connection rather than PSTN. For voice
and other communications.
Mobile Phone Basics (5 of 5)

Question 35

Four things in SIM cards

Answer 35

1. the Network Authentication information where the SIM card contains information necessary to authenticate the subscriber to the mobile network.
2. The contacts and phonebook data where the SIM cards can store contact information like names and phone numbers.
3. SMS(short message service) Data where text messages are stored.
4. Security features the SIM cards often include features such as PIN codes that protect the SIM card.