Chapter 4: E - safety

Question 1

what is social engineering

Answer 1

• manipulation technique that exploits human error to get private information
• tend to lure unsuspecting users into exposing data, spreading malware infections, or giving access to restricted systems
• built around how people think and act. (Once an attacker understands what motivates a user’s actions, they can deceive and manipulate the user effectively. )

Question 2

how does social engineering work //

tactics

Answer 2

• gather bg info
• establishing a relationship or initiating an interaction, started by building trust.
• Exploit the victim once trust and a weakness are established to advance the attack.
• Disengage once the user has taken the desired action
• urgency
• trust
• “shoulder surf” users working on their tablets or laptops. Doing so can result in a large number of passwords and usernames, all without sending an email or writing a line of virus code.

Question 3

phishing

Answer 3

spam/mass
spear (personalized info, target high value 
Caution w links 
Sender?
Link legit?
spellimg/grammar

Question 4

pharming

Answer 4

Obtain personal info
Infect legit web w malicious code,, redirect to bogus ver
Web address?
Secure ssl ,, https

Question 5

Smishing

Answer 5

Sms phishing

- phone no. or link

Question 6

Vishing

Answer 6

Alerting the victim to an issue w their account or

Advising the victim of a profitable gain

Question 7

Malware: Trojan horse

Answer 7

• malicious comp program
• disguise itsled as diff application
• act similar to comp virus

Question 8

worm

Answer 8

• small comp program
• find securiy hole, replicate itself
• in piece of software or OS
• make things slow

Question 9

Adware

Answer 9

• ad supported software
• software program used to display, ads, target users by analyzing the web
• bundled w legit software
• hard to delete

Question 10

Malicious bot

Answer 10

• automated
• carry out completely, repetitive tasks
• spam bots
• zombie bots
• bot network
• chatter bot

Question 11

How to avoid malware

Answer 11

• ! Only open legit programs/ emails/ messages
• install firewall ( monitor internet traffic )
• antivirus
• wifi

Question 12

Rootkit

Answer 12

• comp program
• gain admin access to victims computer
• installed cuz pw is cracked
• stop comp from recognizing rootkit
• victim will not know that someone elsehas complete Access

Question 13

Ransomware

Answer 13

• restricts users access to files / comp system
• demand a ransom be paid in order to access comp system
• files either gone or encrypted
• enter similar to Trojan horse
• Falsely claim that the system had been used for illegal activities

Question 14

repetitive strain injury

Answer 14

• repetitive movements

- need good posture

Question 15

back ache

Answer 15

-

Question 16

deep vein thrombosis

Answer 16

• blood clot

-