Cyber Security

Question 1

What is cyber security?

Answer 1

It can be defined as the set of measures taken to protect a computer from harm to its data and software. It also includes the protection of computer networks from unauthorised access.

Question 2

What is a cyber attack?

Answer 2

It is an attempt to gain unauthorised access to, or control of, a computer and the network to which it is connected to

Question 3

Reasons for network security:

Answer 3

Prevention of data theft
Legal obligations
To keep confidential data
Prevention of data changes
Prevention of data loss

Question 4

What is a penetration test?

Answer 4

An authorised, simulated attack on a computer system, network or website. The aim of the test is to identify any potential vulnerabilities

Question 5

What is white box testing?

Answer 5

The tester is provided with all the technical details for the system before they begin the test. The point of this is to simulate an attack by an insider (or ex employee) who might have access to the data.

Question 6

What is black box testing?

Answer 6

The tester is not given any technical details about the system. The tester uses the same skills and techniques that a real hacker would employ. This enables flaws and weaknesses in the system to be identified, and then hopefully, fixed

Question 7

What is social engineering?

Answer 7

Manipulating or tricking people to divulge confidential information about a computer system

Question 8

What is a hacker?

Answer 8

A person who uses computers to gain unauthorised access to networks and data

Question 9

What is phishing?

Answer 9

This is where cyber criminals pose as trustworthy organisations in an attempt to trick people into giving away sensitive information.

Question 10

What is blagging?

Answer 10

This is using false pretenses to obtain personal information which can be later used for identity theft

Question 11

What is shouldering?

Answer 11

This is where someone stands nearby so that they can look over a person’s shoulder whilst they are entering data into a device.

Question 12

What is malware?

Answer 12

Malicious software, intended to attack a user’s computer

Question 13

What is a virus?

Answer 13

A piece of code that copies itself whenever it is run, often deleting or corrupting data

Question 14

What is a Trojan?

Answer 14

An apparently harmless application that performs harmful operations in the background while running

Question 15

What is a worm?

Answer 15

A piece of code that massively copies itself, using up system resources

Question 16

What is spyware?

Answer 16

Malware designed to spy on the user. Records keystrokes and takes screenshots

Question 17

What is adware?

Answer 17

Malware that forces a browser to display unwanted advertisements

Question 18

What is pharming?

Answer 18

Malware that redirects browsers to fake versions of websites designed to steal information

Question 19

What is ransomware?

Answer 19

Malware that encrypts critical files and data and demands a payment to unlock them

Question 20

What is an antivirus?

Answer 20

Software designed to protect a computer against malicious code by detecting and removing malware

Question 21

Examples of main threats to cyber security:

Answer 21

Weak passwords
Unpatched software
Malware attacks
Social engineering attacks
Use of removable media e.g. USB sticks

Question 22

What is authentication?

Answer 22

The process of verifying the identify of a user

Question 23

What is biometric authentication?

Answer 23

Biometric authentication uses the unique physical characteristics of a person to verify their identity.

Question 24

Examples of biometric authentication:

Answer 24

Fingerprints
Retinal scans
Voice recognition
Face scans

Question 25

Advantages of biometric authentication:

Answer 25

Convenient as the user will always have their body with them

Easy to use - no need to remember passwords

Secure - quite hard to fake biometric data

Question 26

Disadvantages of biometric authentication:

Answer 26

Privacy concerns - some people are sceptical of having their biometric data stored on a database

Biometric data may change due to age, surgery or an accident

The hardware for biometric authentication is expensive to purchase

Question 27

What is a password?

Answer 27

A set of alpha numeric characters that are used to verify the identity of a user when they attempt to gain access to a network, a device, a software application or web service

Question 28

Characteristics of a strong password:

Answer 28

Mixture of lowercase and uppercase letters

Mixture of letters and numbers

Special characters e.g. @, %, £

Should not contain any personal information

8 or more characters long

Question 29

What is CAPTCHA?

Answer 29

A CAPTCHA is a very short test designed to identify the difference between humans and bots

Question 30

Disadvantages of CAPTCHA:

Answer 30

Difficult for anyone with a visual impairment

There can be a letter in the image which is difficult to decipher

Until you correctly complete the CAPTCHA, you cannot proceed

Question 31

What is two factor authentication?

Answer 31

An additional security check which takes place after the username and password have been entered.

It may take the form of an email with a link to be clicked or a code sent as an SMS message

Question 32

What is a software patch?

Answer 32

A patch is an update which corrects problems or vulnerabilities in applications.