D1 - Threats to data, information and systems Flashcards
What is malware?
A malicious software is a computer program designed to harm / gain access to a computer
What are different types of malware?
- viruses
- worms
- trojans
- spyware
What is a virus?
A program that copies and inserts onto programs. Spread via data files / programs when sent via email attachment / USB stick
What are worms?
Similar to viruses. However, worms do not need to attach themselves to other programs. Stand alone programs which spread through a network / exploiting security holes
What are trojans?
Pretends to be a real software application and spreads by users downloading it
What is spyware?
Monitors users activity to steal personal information
EXAMPLE: keylogger that records every key stroke
How does malware have an impact on individuals?
- Personal photos lost ( stress )
- Bank details ( identity fraud, money stolen )
- Files ( jobless, stress )
- Music ( financial impact )
- Online banking ( financial credit rating making it harder to get loans )
How does malware have an impact on organisations?
- Spent time recovering backups ( DPA / GDPR )
- Lose sales records, stock levels, employee data, over/under ordering resulting in out of stock or too much
- Reputation ( lose consumers leading to bankruptcy )
- Online banking ( cant make / receive payments )
What are hackers?
People who gain unauthorised access to computers through methods such as guessing passwords
What are 3 different types of hacking?
- Brute Force Attack ( program that goes through common passwords )
- Technical ( programming knowledge )
- White hat hackers ( best systems for security as the software detects flaws in the security software and reports them to the organisation whom developed the software
How do hackers have an impact on individuals?
- steal financial information ( steal money )
- records stolen ( identity fraud )
- blackmail
How do hackers have an impact on organisations?
- reputation
- productivity of the business
- claiming damages from employees or customers
- breach of data
- site down for ‘maintenance’
What is phishing?
- Emails sent pretending to be a real company but gain personal financial info. Email has link to their website-takes user to a business looking page
- form contains personal into to be filled out (bank fraud)-submitted to malicious user.
- EXAMPLE fake phone calls
How does phishing have an impact on organisations and individuals?
- Steal money
- Identity fraud such as signing up for loans
- Perform a hack on the organisation ( reveal their login details )
How does accidental damage creating implications of threat to data?
- Dropping e.g.. laptop
- Spilling liquids
- misplacing external storage
- Accidentally deleting/overwriting files No malicious intent
-But massive impact on businesses -data lost
How does accidental damage impact individuals and organisations?
- Lose data ( emotional value )
- Expensive to recover and you have to pay a specialist
- Recapture and re-enter data and replace lost damage