Data Security and Integrity Processes

Question 1

Access Levels

Answer 1

allowing different users to have access to different data, such as giving some people Read Only access, or allowing some people to access more data than others

Question 2

APT

Answer 2

Advanced Persistent Threat

a set of stealthy and continuous computer hacking processes, often orchestrated by humans targeting a specific entity, usually organisations and/or nations for business or political nations

Question 3

APT1

Answer 3

a professional cyber espionage group in China

Question 4

APT28

Answer 4

Fancybear

state sponsored malware attacks for information gathering for foreign governments

Question 5

APT29

Answer 5

Hamertoss

a malware backdoor using Twitter and GitHub originating in Russia

Question 6

Adware

Answer 6

not dangerous in its own right, but may contains links to other malware, such as viruses and key loggers

Question 7

Attack Vectors

Answer 7

describes direction of attack

Question 8

Backdoor

Answer 8

built into a computer program that allows someone to bypass any security to get to it

Question 9

Back-Up of Servers

Answer 9

this should be done off-site to avoid back-ups being destroyed in situations such as fires or floods that also destroy the originals, and the location should be on a need-to-know basis

Question 10

Baudot Code

Answer 10

a 5-digit binary number used in the Vernam cipher to encrypt data

Question 11

Behavioural Identifiers

Answer 11

consists of the exceptional ways in which individuals act, including identification of typing patterns, gait and other gestures; some of these behavioural identifiers can be utilised for constant validation

Question 12

Bespoke Tools

Answer 12

specifically developed tools to target known vulnerabilities or poorly designed software

Question 13

Biometric Exposures

Answer 13

high-tech cameras and other devices support usage of biometrics, but can also be used by attackers; people do not cover or hide their physical and behavioural features, therefore, attacks can happen by simply capturing biometric data from people without their permission or knowledge

Question 14

Biometric Template

Answer 14

is compared to the data storage; data is encrypted for security measures

Question 15

Blagging

Answer 15

the act of convincing someone else to make them directly give away information such as passwords

Question 16

Bot Activity

Answer 16

software application that runs automated tasks on the Internet, usually with the intent to imitate human activity

Question 17

Anonymisation Proxy

Answer 17

a tool that attempts to make activity on the Internet untraceable by acting as an intermediary and privacy shield between a client computer and the rest of the Internet

Question 18

CAPTCHA Solving Zombie

Answer 18

bots that can solve CAPTCHA

Question 19

Click Fraud Zombie

Answer 19

the practice of artificially inflating traffic statistics for online advertisements

Question 20

DoS Extortion Zombie

Answer 20

a bot that carries out DoS

Question 21

Spam Zombie

Answer 21

a bot that sends out spam

Question 22

Botnet

Answer 22

where an entire network becomes infected with malware and are controlled as a group, eg to perform distributed DNS

Question 23

Browser Script Attack

Answer 23

a type of injection attack in which malicious scripts are injected into otherwise benign and trusted websites

Question 24

Brute Force Attack

Answer 24

where hacker have multiple guesses in quick succession at your password until they eventually guess it correctly

Question 25

Caesar Cipher

Answer 25

a substitution cipher that involves substituting letters in a message for other letters, symbols and characters. It can be broken using brute-force attacks or letter frequency attacks, but it isn’t very secure as patterns in the text are still persevered, the most frequently used letters will appear in the same places as the plaintext’s most frequently used letters, the number of possible keys is too small and the same shift is likely to be used for each message

Question 26

Cartesian Product

Answer 26

where the relationship between elements in two different sets are introduced

Question 27

Check Digit

Answer 27

an extra digit or character added to the end of a long code. It is computed by applying an algorithm to the other digits. When the long code is entered, the check digit is calculated and compared to the check digit at the end of the code

Question 28

Checksums

Answer 28

a simple error-detection scheme. Each transmitted package is accompanied by a numerical value based on the number of set bits in the message. The receiving station then applies the same formula to the message and checks to make sure the numerical value is the same. If not, the receiver can assume than an error has occurred and it will ask the sending computer to re-send the package

Question 29

Commodity Tools

Answer 29

freely available tools and scripts on the internet including specialist toos for vulnerability scanning or penetration testing

Question 30

Computer Misuse Act

Answer 30

legislation that protects personal data held by organisations from hackers, making unauthorised access to computers, unauthorised access to computer data and unauthorised modification of data illegal

Question 31

Contingency Planning

Answer 31

planning for disaster

Question 32

Cyberattack

Answer 32

attacks on computers or networks that use various types of malware

Question 33

Survey

Answer 33

researching the target and reviewing available information to identify potential vulnerabilities and possible lines of attack

Question 34

Delivery

Answer 34

crafting an attack to exploit a vulnerability and delivering it to the target

Question 35

Breach

Answer 35

exploiting a vulnerability to gain access to information in order to create some negative impact

Question 36

Attack

Answer 36

developing the attack to achieve the intention

Question 37

Data Protection Act 2018

Answer 37

laws about personal data held by an organisation, stating that personal data must be kept up-to-date and accurate, not held for any longer than is necessary, that individuals relating to that information can access it and correct it and that they can receive compensation if the law is not followed regarding their data

Question 38

First Data Protection Principle

Answer 38

processing of personal data for any of the law enforcement purposes must be lawful and fair

Question 39

Second Data Protection Principle

Answer 39

the law enforcement purpose for which personal data is collected on any occasion must be specified, explicit and legitimate, and personal data so collected must not be processed in a manner that is incompatible with the purpose for which it was collected

Question 40

Third Data Protection Principle

Answer 40

personal data processed for any of the law enforcement purposes must be adequate, relevant and not excessive in relation to the purpose for which it is processed

Question 41

Fourth Data Protection Principle

Answer 41

personal data processed for any of the law enforcement purposes must be adequate, relevant and, where necessary, kept up to date, and every reasonable step must be taken to ensure that personal data that is inaccurate, having regard to the las enforcement purpose for which it is processed, is erased and rectified without delay

Question 42

Fifth Data Protection Principle

Answer 42

personal data processed for any law enforcement purposes must be kept for no longer than is necessary for the purposes for which it is processed

Question 43

Sixth Data Protection Principle

Answer 43

personal data processed for any of the law enforcement purposes must be so processed in a manner that ensures appropriate security of the personal data, using appropriate technical and organisational measures

Question 44

Decision Process

Answer 44

makes use of matching outputs

Question 45

Decryption

Answer 45

the process of recovering original data, known as plaintext

Question 46

DoS Attack

Answer 46

Denial of Service Attack

attempt to make your website and servers unavailable to legitimate users by swamping a system with fake requests, usually in an attempt to exhaust server resources

Question 47

Dictionary Attack

Answer 47

where the hacker use a file containing every word in the dictionary to guess your password

Question 48

Disaster Recovery

Answer 48

plans to recovery after disaster

Question 49

Disposal of Files

Answer 49

allows better file integrity

Question 50

Distributed DoS

Answer 50

DoS involving may networks, possibly because several networks are all attacking at once, or because several networks are all being attacked at once

Question 51

Driving Table

Answer 51

the most important table in SQL

Question 52

Eavesdropping

Answer 52

where hackers attempt to intercept keys in order to decode encrypted messages

Question 53

Email Attacks

Answer 53

cyber attacks done through e-mail

• Access to Corporate Email
• Harvesting Associating Accounts
• Harvesting Email Contacts
• Stranded Abroad Advance Scams
• Webmail Scam

Question 54

Encryption

Answer 54

the process that transforms data into something that appears random or otherwise obscures the meaning of the data

Question 55

Enrollment

Answer 55

the process by which a reader or scanning device is used to record the biometric factor being authenticated

Question 56

Equation Group

Answer 56

one of the most sophisticated cyber-attack groups in the world

Question 57

External Code Blue

Answer 57

a cyber-attack feature that attacks SMB

Question 58

Fallback Process

Answer 58

if biometric identification fails

Question 59

Firewall

Answer 59

monitoring packets against attempts to exploit weaknesses in the TCP/IP protocol suite which worms and trojans can exploit

Question 60

GDPR

Answer 60

General Data Protection Regulation

EU framework for data protection laws, came into force on 25th May 2018,

Question 61

Guess Attack

Answer 61

where the hacker uses a file containing every word in the dictionary to guess your password

Question 62

Hacktivists

Answer 62

people who believe they are hacking for the greater good

Question 63

Hostage Attack

Answer 63

involves holding a company or person hostage

• Fake Antivirus
• Ransomware
• Email Account Ransom
• Webcam Image Extraction

Question 64

Hallucination

Answer 64

where AI presents lies as fact

Question 65

ICO

Answer 65

Information Commissioner’s Office

responsible for enforcing GDPR and Data Protection Act

Question 66

Injection Attack

Answer 66

an attacker tries to get the program to execute their malicious code by including it as a regular output, which can be avoided by using input validation

Question 67

Input Sanitisation

Answer 67

a cybersecurity measure of checking, cleaning, and filtering data inputs from users, APIs, and web services of any unwanted characters and strings to prevent the injection of harmful codes into the system

Question 68

Insider Threat Exploitation

Answer 68

coercion, bribery, political persuasion

Question 69

Internet of Things

Answer 69

things that wouldn’t traditionally connect to the internet such as Smart thermometers in fish tanks and Ring doorbells

Question 70

IP Address Spoofing

Answer 70

involves an attacker changing the IP address of a legitimate host so that a visitor who types in the URL of a legitimate site is taken to a fraudulent or spoofed web page, meaning the attacker can use this page to steal sensitive data or install malware

Question 71

Key Logger

Answer 71

a type of software that can be used to track keystrokes and capture passwords, account numbers, fraudulent use or people’s online activity

Question 72

Key Stream

Answer 72

the message created by the Vernam cipher

Question 73

Letter Frequency Attack

Answer 73

where the cipher is decrypted looking at how frequently different letters appear

Question 74

LOIC

Answer 74

Low Orbit Ion Cannon

software used in Denial of Service attacks

Question 75

Malware

Answer 75

any malicious software

Question 76

Miner

Answer 76

a form of malware that uses the resources of an infected device to generate units of cryptocurrency

Question 77

MitM Attack

Answer 77

Man in the Middle Attack

occurs when someone sits between two computers and intercepts traffic

Question 78

Name Generator Attack

Answer 78

attacks in which the victim is asked to put in personal data, often to produce a name, allowing attackers to find information for security questions

Question 79

Neural Network

Answer 79

a computer system modelled on the human brain and nervous system

Question 80

One-Time Pad

Answer 80

invented by Claude Shannon in 1949, where plaintext of a message is mixed with random text taken from a one-time pad resulting in a ciphertext which is truly random. The same one-time pad is used to unmix the random text from the cipher text, which results in the original plaintext. Pads can only be used once, hence the name. The red phone used in the 1980s for secure communication between the USA and the USSR was based on this

Question 81

Open Source Intelligence

Answer 81

the collection and analysis of data gathered from open sources to produce actionable intelligence

Question 82

Oracle Database

Answer 82

an object relational database management system

Question 83

Outerjoin

Answer 83

a SQL command that joins columns from one or more tables into one table

Question 84

Parity Checking

Answer 84

either a 0 or a 1 will be added to the end of a string of binary code to indicate whether it is odd or even. The receiving host will know whether the parity bit is 1 or 0 so will know that the correct amount of bytes has been transmitted

Question 85

Even Parity

Answer 85

where the parity bit is set to 1 if the number of bits is odd so the extra parity bit will make the number of 1s even

Question 86

Odd Parity

Answer 86

where the parity bit is set to 1 if the number of bits is even so the extra parity bit will make the number of 1s odd

Question 87

Password Attacks

Answer 87

any attacks that involve guessing passwords, such as guess attacks and brute force attacks

Question 88

Password Policies

Answer 88

the rules that state you must have a certain amount of capital letters, numbers and special characters in your passwords

Question 89

Port Scanner

Answer 89

an application designed to probe a server or host for open ports

Question 90

Pharming

Answer 90

where users are unknowingly redirected to a fake website with the intention of identity or information theft

Question 91

Phishing

Answer 91

emails sent to large numbers of people asking for sensitive information or encouraging them to visit a fake website

Question 92

Physiological Identifiers

Answer 92

associated with the structure of the user is confirmed and include facial recognition, fingerprints, finger geometry, iris recognition, vein recognition, retina scanning, voice recognition and DNA matching

Question 93

Plaintext

Answer 93

original data that gets encrypted

Question 94

Polyalphabetic Cipher

Answer 94

a cipher involving multiple alphabets, eg Vigenère cipher

Question 95

Port Scanner

Answer 95

an application designed to probe a server or host for open ports

Question 96

Pretexting

Answer 96

attack in which the perpetrator invents a scenario to convince the victim to give them data or money, often requiring the attacker to maintain conversation with the victim until they are persuaded to give money or information

Question 97

Pseudorandom

Answer 97

the idea that computer algorithms can never be truly random because they are generated deterministically

Question 98

Read/Write Permissions

Answer 98

limit the amount of people who can access or edit a file

Question 99

Reader

Answer 99

a device used to record a biometric factor

Question 100

Redundant Servers

Answer 100

active them if the original servers fail; these should be kept off-site and offline to ensure they are not compromised

Question 101

Relocating Key Personnel

Answer 101

in a disaster, key personnel should go to a new site and maintain it

Question 102

Root Kit

Answer 102

a type of malware that enables cyber criminals to gain access to and infiltrate data without being detected

Question 103

Sandbox

Answer 103

an isolated environment for testing code on an isolated network that mimics end-user environments

Question 104

Scanning

Answer 104

attacking wide swathes of the internet at random

Question 105

Scanning Device

Answer 105

a device used to record biometric data

Question 106

Sensor

Answer 106

grabs data and translates it into a usable digital format via software

Question 107

Shadow Brokers

Answer 107

branch of the FSB that do cyber attacks

Question 108

Shouldering

Answer 108

involves watching a user input passwords, for example, over their shoulder at PIN machines, but also by binoculars or CCTV

Question 109

Social Engineering

Answer 109

research on a person or organisation to gain information for an attack

Question 110

Spear Phishing

Answer 110

sending e-mails to targeted individuals

Question 111

Spyware

Answer 111

installed by opening attachments or downloading infected software, used to collect stored data without the user’s knowledge

Question 112

SQL Injection

Answer 112

a technique where users can inject SQL commands into statements via webpage input, which can alter SQL statements and compromise the security of information held in a database

Question 113

Subverting the Supply Chain

Answer 113

attack information, equipment or software used to support the organisaiton

Question 114

Theft

Answer 114

taking laptops, tablets or smartphones

Question 115

Traffic Analysis and Interception

Question 116

Trojan Horse

Answer 116

where malware is hidden with a program that appears to be useful

Question 117

Backdoor Trojans

Answer 117

enables remote control over the infected computer by a cyber criminal or hacker to do anything they wish on the infected computer

Question 118

Dropper

Answer 118

a form of trojan that facilitates delivery and installation of malware

Question 119

Trojan-Banker

Answer 119

programs designed to steal account data for online banking systems, e-payment systems and credit or debit cards from infected computers

Question 120

Trojan-DDoS

Answer 120

conducts designated Denial of Service attacks against a targeted web address

Question 121

Trojan-Downloaders

Answer 121

can download and install new versions of malicious programs onto your computer, including Trojans and adware

Question 122

Trojan-Mailfinders

Answer 122

can harvest e-mail addresses from a computer

Question 123

Trojan-Ransom

Answer 123

can modify data on your computer so that your computer doesn’t run correctly or you can no longer use specific

Question 124

Turing Test

Answer 124

tests how intelligent a computer is based on whether you could interact with it and not know you were talking to a machine

Question 125

Vernam Cipher

Answer 125

invented in 1917 by Gilbert Sandford Vernam, it mixes each letter in a message with a letter from a completely randomly chosen string called a key stream. Letters are translated into 5-digit binary numbers known as Baudot Code then a random string that is longer than or equal in length to the message created known as a key stream. Each binary digit can be combined with a binary digit from the key stream using an XOR operation, and to decrypt it, the ciphertext is XORed with the key stream again, then the Baudot code is decoded

Question 126

Vigenère Cipher

Answer 126

for the cipher, the plaintext and cipher must be the same length; using a Vigenère square, the plaintext is encrypted

Question 127

Virus

Answer 127

programs that spread from one system to another by attaching themselves to host files, used to modify or corrupt information on a targeted computer system

Question 128

Web Server Attacks

Answer 128

can either target the application itself in order to get access to sensitive data, or they can use the application as a staging area for attacks against the program’s users

• Child Pornography Server
• Malware Download Site
• Phishing Site
• Piracy Server
• Spam Site
• Warez Server

Question 129

Whale Phishing

Answer 129

a form of spear phishing targeting the boss

Question 130

Worm

Answer 130

self-replicating programs that identify vulnerabilities in operating systems and enable remote control of infected computers

Question 131

Zombie

Answer 131

a computer that has been taken over and is being used by a hacker

Question 132

Zombie Cookie

Answer 132

a form of cookie that recreates itself after being deleted from the computer