Computers 💻 | Cyber S̸̈ẻ̸c̴̒ǘ̶̫r̷̋i̵̗̔ţ̸̍y̴̝̅| 5.2

Question 1

List some examples of cyber security threats.

Answer 1

• Brute-force attack
• Data interception
• Distributed denial of service (DDoS) attack
• Hacking
• Malware (virus, worm, Trojan horse, spyware,
  adware, ransomware)
• Pharming
• Phishing
• Social engineering

Question 2

Define brute-force attack

Answer 2

A ‘trial and error’ method used by cybercriminals to crasck passwords by finding every possible combination of letters, numbers, and symbols until the password is found

Question 3

Describe how a brute force attack tries to crack a password in a reduced number of attempts

Answer 3

1. Start by cheecking if the password is one of the most common ones used
2. If not, start with a strong word list

Question 4

Define word list

Answer 4

A text file containing a collection of words used in a brute force attack

Question 5

Define data interception

Answer 5

An attempt to eavesdrop on a wired or wireless network transmission

Question 6

Define packet sniffer

Answer 6

A method used by a cybercriminal to examine data packets being sent over a network and to find the contents of a data packet, which are sent back to the cybercriminal

Question 7

Define wardriving

Answer 7

Using a laptop, antenna, GPS device and software to intercept Wi-Fi signals and illegally obtain data

Question 8

Name two methods of data interception

Answer 8

• Packet sniffing
• Wardriving

Question 9

Define Wired Equivalency Privacy

(WEP)

Answer 9

An algorithm for wireless networks to protect them against data interception

Question 10

What are some ways to prevent data interception?

Answer 10

• Encryption
• Using WEP encryption protocol
• Using a firewall
• Using complex passwords for routers
• Not using public Wi-Fi due to no data encryption

Question 11

Define Denial of Service

(DOS)

Answer 11

A cyberattack in which crybercriminals seek to disrupt the normal operation of a website by flooding it with requests

Question 12

What is the purpose of DOS?

Answer 12

To prevent users from accessing part of a network

Question 13

What does DoS commonly try to prevent users from accessing?

Answer 13

• Emails
• Websites/webpages
• Online services such as banking

Question 14

How does a DoS attack prevent a website from operating?

Answer 14

The server can only handle a finite number of requests. So if it becomes overloaded by an attacker sending out thousands of requests, it cannot service a user’s legitimate request

Question 15

What does DDoS stand for?

Answer 15

Distributed Denial of Service

Question 16

How does a DDoS differ from a DoS?

Answer 16

In a DDoS attack, the spam traffic originates from many computers, making it difficult to block the traffic

Question 17

How does a DoS attack target emails?

Answer 17

1. An attacker sends many spam emails to an email account
2. As ISPs only allow a specific data quota for each user, it clogs up the account
3. The user cannot recieve legitimate emails

Question 18

In what ways can a website or user guard against a DoS attack?

Answer 18

• Use an upto date malware checker
• Set up a firewall to restrict traffic to and from the web server or user’s computer
• Apply email filters to filter out unwanted traffic such as spam

Question 19

What signs may signify a DoS attack?

Answer 19

• Slow network performance
• Inability to access certain websites
• Large amounts of spam emails reaching user’s email account

Question 20

Define hacking

Answer 20

The act of gaining illegal access to a computer system without the owner’s permission

Question 21

Why can’t encryption prevent hacking?

Answer 21

It makes the data meaningless to the hacker but it doesn’t stop them from deleting, corrupting, or passing on the data

Question 22

How can hacking be prevented?

Answer 22

• Firewalls
• Anti-hacking software / intrusion detection
• Frequently changed strong password

Question 23

Define ethical hacking

Answer 23

When companies authorise paid hackers to check out their seurity measures and test how tobust their computer systems are to hacking attacks

Question 24

Define malware

Answer 24

Programs installed on a user’s computer with the aim of deleting, corrupting, or manipulating data illegally

Question 25

List the types of malware.

Answer 25

1. Viruses
2. Worms
3. Trojan horse
4. Spyware
5. Adware
6. Ransomware

Question 26

Define virus

Answer 26

A program or progam code that replicates itself with the intention of deleting or corrupting files, or by causing the system to malfunction

Question 27

Define active host

Answer 27

Functioning software that a virus can affect by attatching itself to the code or by altering the code to allow the virus to carry out its attack

Question 28

What are some ways in which a virus can cause a computer to malfunction?

Answer 28

• Corrupting important files
• Deleting .exe files
• Filling up the hard drive with ‘useless’ data

Question 29

How can viruses be avoided?

Answer 29

• Don’t open emails from unknown sources
• Don’t install non-original software
• Don’t download unknown email attatchments
• Always run an up-to-data virus scanner

Question 30

Define worm

Answer 30

A standalone type of malware that can self-replicate.

Question 31

How do worms differ from viruses?

Answer 31

Unlike viruses, worms don’t need an active host; they can spread throughout a network without the need for any action by an end-user

Question 32

How do worms spread?

Answer 32

They remain inside applications allowing them to move thoughout networks. Rather than targeting specific files, they rely on security failures in networks

Question 33

How do worms frequently arrive to users?

Answer 33

As messager or email attatchement: one email opened may infect the whole network

Question 34

Define Trojan Horse

Answer 34

A type of malware that is designed to look like legitimate software but contains malicious code that can cause damage to a computer system

Question 35

Why can security measures such as firewalls often be useless against trojan horses?

Answer 35

Trojan horses rely on tricking the end user, so such security systems can be overridden when users initiate the running of malware

Question 36

Define spyware

Answer 36

A type of malware that gathers information by monitoring a user’s activities on a computer and sends the gathered information back to the cybercriminal who sent out the spyware

Question 37

What kind of data does spyware try to capture?

Answer 37

Bank account numbers, passwords, credit card numbers

Question 38

Define adware

Answer 38

A type of malware that attempts to flood the end-user with unwanted advertising

Question 39

Despite adware not necessarily being harmful, what are the concerns surrounding it?

Answer 39

• It highlights weaknesses in the user’s security defences
• It can be hard to remove, as most anti-malware software do not know if it is harmful
• It can hijack a browser and create its own default search requests

Question 40

Define ransomware

Answer 40

A type of malware that encrypts data on a user’s computer and ‘holds the data hostage’. A decryption key is sent to the user if they pay a sum of money

Question 41

Define phishing

Answer 41

Sending out legitimate-looking emails designed to trick the recipients into giving their personal details to the sender of the email

Question 42

How can users avoid phishing?

Answer 42

• Be aware of new phishing scams
• Not click on email links unless totally certain it is safe to do so
• Run anti-phishing toolbars on browsers
• Always look out for https in address bar
• Regularly check online accounts and passwords
• Use an up-to-date browser and a good firewall
• Be wary of popups and block them

Question 43

Define pharming

Answer 43

Redirecting a user to a fake website in order to illegally obtain personal data about the user without their knowledge

Question 44

How does pharming differ from phishing?

Answer 44

The user doesn’t need to take any action for it to be initiated - the website merely redirects

Question 45

What method is often used by pharmers to redirect users to a fake website?

Answer 45

DNS cache poisoning

Question 46

How does DNS cache poisoning work?

Answer 46

Changing the real IP addresses on a DNS server so that the user’s computer redirects to a fake website

Question 47

How can the risk of pharming be mitigated?

Answer 47

• Use of antivirus software to detect unauthorised alterations to a website address
• Using a modern browser that alertts the user of such an attack
• Checking the spelling of website
• Making sure websites are https

Question 48

Define social engineering

Answer 48

Manipulating people into breaking normal security procedures in order to gain illegal access to computer systems or place malware on the computer

Question 49

List some examples of social engineering threats

Answer 49

• Malicious links in instant messages
• Scareware: popup messages telling the user they are infected
• Emails that trick the user with how genuine it is
• Baiting: leaving a malware-infected memory stick somewhere it can be found
• Phone calls: “IT professionals” calling users and claiming their device is compromised

Question 50

Define access levels

Answer 50

Different levels of access in a computer system allowing a hierarchy of access levels depending on user’s level of security

Question 51

How do access levels improve security?

Answer 51

Only the trusted administrator will have the rights to delete important files, have access to vital data, etc.

Others will not have those rights but still be able to use the computer

Question 52

Define anti-spyware

Answer 52

Software that detects and removes spyware programs installed on a system; the software is based on typical spyware rules or known file structures

Question 53

How does an anti-spyware based on rules work?

Answer 53

The software looks for typical features usually associated with spyware

Question 54

How does an anti-spyware based on file structures work?

Answer 54

The software looks for file structures generally associated with potential spyware

Question 55

What are the general features of anti-spyware?

Answer 55

• Detect and remove malware already on device
• Prevent a user from downloading spyware
• Encrypt files to make the data more secure in case it is spied on
• Encrypt keyboard strokes to remove the risk poised by keylogging
• Blockin acceess to webcam and microphone
• Scanning for signs that the user’s personal information is stolen, warning the user

Question 56

Define authentication

Answer 56

The process of proving a user’s identity by using something they know, have, or is unique to them

Question 57

What features does a strong password contain?

Answer 57

• At least one capital letter
• At least one numerical value
• At least one other keyboard character

Question 58

What are the methods of authentication?

Answer 58

• Username and password
• Biometrics

Question 59

What are some examples of biometrics?

Answer 59

• Fingerprint scans
• Retina scans
• Face recognition
• Voice recognition

Question 60

Define biometrics

Answer 60

Type of authentication that uses a unique human characteristic

Question 61

Explain how fingerprint scans work

Answer 61

• Images of fingerprints are compared against previously scanned fingerprint images stored in a database. If they match, the user has been correctly recognised.
• The system compares patterns of ‘ridges’ and ‘valleys’

Question 62

What are the benefits of fingerprint scanning as a biometric?

Answer 62

• Fingerprints are unique
• Other security devices like magnetic cards can be stolen, but u cant steal a finger

Question 63

What are the drawbacks of fingerprint scanning?

Answer 63

• Relatively expensive to install and set up
• If a person’s fingers are damaged via injury it may effect scanning accuracy

Question 64

Explain how a retina scan works.

Answer 64

Infrared light is used to scan the unique pattern of blood vessels in the retina.

Question 65

What are the benefits of retina scanning?

Answer 65

• Very high accuracy
• No known way to replicate a person’s retina

Question 66

What are the drawbacks of retina scans?

Answer 66

• Very intrusive
• Can be relatively slow to verify retina scan
• Very expensive

Question 67

What are the benefits of face recognition?

Answer 67

• Non intrusive method
• Relatively inexpensive technoloy

Question 68

What are the drawbacks of face recognition?

Answer 68

• Can be affected by lighting, age, hair, glasses, etc.
• Can be fooled with a picture sometimes

Question 69

What are the benefits of voice recognition?

Answer 69

• Non-intrusive method
• Quick verification
• Relatively inexpensive

Question 70

What are the drawbacks of voice recognition?

Answer 70

• Person’s voice can be easily recorded and used for unauthorised access
• Low accuraccy
• An illness can change a person’s voice

Question 71

Define two-step verification

Answer 71

A type of authentication that required two methods of verification to prove the identity of the user

Question 72

How is the second step of two-step verification often carried out?

Answer 72

A one-time pass code is sent to the user, after they enter a password, via email or app, and the code is entered to verify the authenticity

Question 73

What are automatic software updates?

Answer 73

Software on computers an mobile phones or tablets that is kept up-to-date.

Question 74

How are automatic software updates important?

Answer 74

They may contain patches to improve the software security or performance.

Question 75

What actions can users take to determine the genuinity of emails or websites?

Answer 75

• Watching for spelling or grammatical errors
• Making sure the tone of the email is appropriate

Question 76

Define firewall

Answer 76

Software or hardware that sits between a computer an an external network. The firewall monitors and filters all incoming and outgoing traffic

Question 77

List the tasks carried out by a firewall.

Answer 77

• To examine the traffic between user’s computer and a public network
• Checks whether incoming or outgoing data meets a given set of criteria; blocking if not.
• Logging all incoming and outgoing traffic to allow later interrogation by the user

Question 78

A firewall can either be …

Answer 78

hardware or software

Question 79

In what circumstances is a firewall ineffective?

Answer 79

• When individuals use their own hardware devices to bypass the firewall
• Employee misconduct
• When users on standalone computers choose to disable the firewall

Question 80

Define proxy servers

Answer 80

A server that acts as an intermediary server through which internet requests are processed; it ooften makes use of cache memory to speed up webpage access

Question 81

What are the features of a proxy server?

Answer 81

• Can filter internet access
• Keeps user IP address secret
• Blocking requests from certain IP addresses
• Preventing direct access to a web server by sitting between the user and the web server
• If an attack is launched such as DoS, it hits the proxy server instead
• Using cache, it can speed up access to data from a website
• Can act as a firewall

Question 82

Define privacy settings

Answer 82

Controls available on social networking and other websites which allow users to limit who can access their profile

Question 83

What are some examples of privacy settings?

Answer 83

• ‘do not track’ setting
• A check to see if payment methods are saved on websites
• Web browser privacy options - history and cookies
• Website adveritising opt-outs
• Sharing of location data or not

Question 84

Define Secure Sockets Layer

(SSL)

Answer 84

A security protocol used when sending data over a network such as the internet

Question 85

How does SSL work?

Answer 85

Whe a user logs onto a website SSL encrypts the data so only the user’s computer and the web server can make sense of what is being transmitted. The padlock symbol in the status bar shows this.

Question 86

Define SSL certificate

Answer 86

A form of digital certificate which is used to authenticate a website; providing the SSL certificate can be authenticated, any communication or data exchange between browser and website is secure