computer and internet crimes

Question 1

Levin reportedly accomplished the break-ins by dialing into Citibank‘s cash management system. This system allowed clients to initiate their own fund transfers to other banks.

Answer 1

Citibank and Vladimir Levin (June-October, 1994)

Question 2

It is a computer virus discovered in 2012 that attacks computers running the Microsoft Windows operating system. It is also known as Disttrack. Shamoon is capable of wiping files and rendering several computers on a network unusable.

Answer 2

Shamoon (2012)

Question 3

a self-replicating program that spreads by inserting copies of itself into other executable code or documents.

Answer 3

virus

Question 4

is a virus that uses an application‘s own macro programming language to distribute itself.

Answer 4

macro virus

Question 5

a derogatory term for inexperienced crackers who use scripts and programs developed by others for the purpose of compromising computer accounts and files, and for launching attacks on whole computer systems.

Answer 5

script kiddie

Question 6

are people who are not only capable of writing scripts to exploit known vulnerabilities, but also capable of discovering new ones.

Answer 6

Elite hackers

Question 7

conducted against information and information processing equipment used by an adversary

Answer 7

Information Warfare

Question 8

is a protection of networks and their services from unauthorized modification, destruction, or disclosure, and provision of assurance that the network performs its critical functions correctly and there are no harmful side-effects.

Answer 8

Network security

Question 9

The original goal of computer and network security is to provide (3)

Answer 9

confidentiality, integrity, and availability

Question 10

refers to the security principle that states that information should not be disclosed to unauthorized individuals.

Answer 10

Confidentiality

Question 11

is the security principle that requires information to not be modified except by individuals authorized to do so.

Answer 11

Integrity

Question 12

applies to hardware, software, and data. All of these should be present and accessible when the subject (the user) wants to access or use them.

Answer 12

Availability

Question 13

deals with the desire to ensure that an individual is who they claim to be.

Answer 13

Authentication

Question 14

is a concept that complements the idea of various layers of security.

Answer 14

Diversity of defense

Question 15

is an approach which puts human needs and capabilities at the focus of designing technological systems.

Answer 15

Ergonomics

Question 16

make it possible to commit unethical acts quickly.

Answer 16

Time Information systems

Question 17

Ensures access of individuals to personal data collected about them and about government activities in federal agency files.

Answer 17

Freedom of Information Act of 1970.

Question 18

• General prohibition on pen register and trap and trace device use
• Pen Registers and Trap and Trace Devices
• Standards against fraud by wire, radio, or television
• Standards against Interception and disclosure of wire, oral, or electronic communications prohibited
• Wire and Electronic Communications Interception and Interception of Oral Communications

Answer 18

mail fraud law

Question 19

is a person who enjoys computer technology and spends time learning and using computer systems.

Answer 19

hacker

Question 20

also called a ???, is a computer-savvy person who attempts to gain unauthorized or illegal access to computer systems. In many cases, they are people who are looking for fun and excitement – the challenge of beating the system.

Answer 20

A criminal hacker; cracker

Question 21

The following are the four (4) unique INFORMATION SYSTEM attributes:

Answer 21

● Location
● Time
● Separation of Act from Consequences
● Individual Power

Question 22

There are basically three overlapping types of Risks:

Answer 22

• bugs/misconfiguration problems
• browser-side risks
• interception of network data (via network eavesdropping)

Question 23

Bugs or misconfiguration problems that allow unauthorized remote users to: (4)

Answer 23

● Steal confidential documents
● Execute commands on the host machine, allowing them to modify the system
● Gain information about the host machine, allowing them to break into the system
● Launch denial-of-service attacks, rendering the machine temporarily unusable

Question 24

Browser-side risks, including: (2)

Answer 24

● Active content that crashes the browser, damages the user’s system,
● The misuse of personal information