Chapter 5: Security

Question 1

4 Costs of Cyber crime

Answer 1

1. Stolen identities, intellectual property, trade secrets
2. Damaged reputations
3. Cost of upgrading security after an attack
4. Opportunity costs associated with downtime, lost trust, loss of sensitive business information

Question 2

Spyware

Answer 2

• Software that secretly gathers information about users while they browse the web
• Install antivirus or anti spyware software

Question 3

Adware

Answer 3

• Type of spyware that collects information about the user to determine which advertisements to display in the user’s Web browser
• Install ad-blocking feature

Question 4

Phishing

Answer 4

• Sending fraudulent e-mails that seem to come from legitimate sources that direct recipients to false Web sites to capture private information
• Provides http address and attaches file
• User types in password

Question 5

Pharming

Answer 5

• Hijacking and altering the Internet Patrol (IP) address of an official Web site
• Users who enter the correct Web address are directed to the pharmer’s fraudulent Web site
• Similar to phishing, it directs internet users to fraudulent web sites with the intention of stealing their personal information, such as social security numbers, passwords, bank account numbers, and credit card numbers.

Question 6

Baiting

Answer 6

Similar to phishing (sending emails to fake websites) but the the baiter promises something to the recipient

Question 7

Quid pro quo

Answer 7

• Hacker requests the exchange of critical data or login information in exchange for a service or prize
• Requests exchange of data or login information for service or prize

Question 8

Keystroke Loggers

Answer 8

• Know everything that you are typing by reading key strokes
• Monitor and record keystrokes
• Can be software or hardware
• Prevented by antivirus and anti spyware programs

Question 9

Sniffing

Answer 9

Intercepts information by recording and capturing network traffic

Question 10

Spoofing

Answer 10

Poses as an authorized user to find information

Question 11

Computer fraud

Answer 11

Unauthorized use of computer data for personal gain

Question 12

CIA Triangle

Answer 12

1. Confidentiality: Disclosing information from unauthorized users
2. Integrity: Accuracy of information
3. Availability: Authorized users can access information

Question 13

Virus

Answer 13

• Attaches itself to other programs or files, cycle continues
• Not independent
• Triggered by specific time or event

Question 14

Worm

Answer 14

• Take up space and makes computer unable to work properly
• Does not usually erase data
• Independent programs that spread themselves without having to be attacked to a host program
• Multiple, replicates, takes computer resources (space)

Question 15

Logic bombs

Answer 15

• Sits in system and waits to be activated
• Type of trojan program
• Releases virus, worm, or other destructive code
• If-then statement

Question 16

Trojan program

Answer 16

• Contain code intended to disrupt a computer, network, or Web site
• Hidden inside a popular program

Question 17

Denial of service (DoS)

Answer 17

Flooding a network or server with service requests to prevent user from accessing the system

Question 18

Mirror disks

Answer 18

Back up disk

Question 19

Uninteruptable power supply (UPS)

Answer 19

Back up battery like generator

Question 20

Fraud tolerant systems

Answer 20

Ensures availability in the event of a system failure by using a combination of hardware and software

Question 21

Backdoor (trapdoor)

Answer 21

Allows the designer to bypass system security and sneak into the system later to access programs or files

Question 22

Blended threat

Answer 22

Security threat that combines the characteristics of computer viruses, worms, and other malicious codes found on public and private networks.

Question 23

Botnet

Answer 23

Type of internal threat (Denial of service DoS) attack that includes a network of computer and loT (internet of things: interrelated computing devices) devices infected with malicious software

Question 24

Telephony denial of service (TDoS) attacks

Answer 24

Use high volumes of automated calls to tie up a target phone system, halting incoming and outgoing calls

Question 25

Intentional Threats: Social Engineering

Answer 25

Using "people skills" to trick others into revealing private information

Question 26

Biometric Security Measures

Answer 26

- Use a physiological element unique to a person that cannot be stolen, lost, copied, or passed on to others - Ex: Facial recognition, fingerprints, hand, eye, palm, signature, vein and voice recognition

Question 27

Nonbiometric Security Measures (3 of them)

Answer 27

1) Callback modems: Logs user off after and calls them back later to try again 2) Firewall: Wall/barrier that protects private network 3) Intrusion detection system: In front of a firewall, identifies attacks and alarms network administrator

Question 28

Nonbiometric Security Measure: Callback Modems

Answer 28

Verifies whether a user’s access is valid by logging the user off and then calling the user back at a predetermined number

Question 29

Nonbiometric Security Measure: Firewall

Answer 29

- Firewall acts as a filter between a private network and external networks - Network administrator defines rules for access, and all other data transmissions are blocked - Wall/barrier that protects private network against external access - Protects data that goes in and out of network - Types: Packet-filtering firewalls, application-filtering firewalls, and proxy servers (software that acts as an intermediary between 2 systems such as the user and the internet) - Private network -> outgoing data -> firewall -> internet - Internet -> incoming data -> firewall -> private network

Question 30

Nonbiometric Security Measure: Intrusion Detection System (IDS)

Answer 30

- Protects against external and internal access - Placed in front of a firewall - Can identify attack signatures, trace patterns, and alarms the network administrator - Causes routers to terminate connections with suspicious sources - Prevents DoS attacks

Question 31

Physical Security Measures

Answer 31

- Control access to computers and networks and include devices for securing computers and peripherals from theft - Ex: Cable shielding, room ceiling, corner bolts and steel encasements, electronic trackers, ID badges, proximity release door openers

Question 32

Access Controls

Answer 32

- Designed to protect systems from unauthorized access in order to preserve data integrity - 2 Types: 1) Terminal resource security: Erases the screen and signs the user off automatically after a specified length of inactivity 2) Passwords: Combination of numbers, characters, and symbols that is entered to allow access to a system

Question 33

Virtual Private Network (VPN)

Answer 33

- Provides a secure "tunnel" through the Internet for transmitting messages and data via a private network - Used so that remote users have a secure connection to the organization’s network - Used to provide security for extranets (blend of internet, public network and intranet, private network) - Data is encrypted (coded) before sent through tunnel

Question 34

E-Commerce Transaction Security Measures

Answer 34

Concerned with the issues such as: 1) Confidentiality 2) Authentication 3) Integrity 4) Nonrepudiation of origin 5) Nonrepudiation of receipt

Question 35

Computer Emergency Response Team (CERT)

Answer 35

- Focuses on security breaches and DoS attacks | - Offers guidelines on handling or preventing attacks

Question 36

Business Continuity Planning

Answer 36

- Outlines procedures for keeping a firm operational in the event of a natural disaster or network attack - Disaster recovery plan: Lists the tasks that must be performed to restore damaged data and equipment and steps to prepare for disaster