Exam 4: Chapter 4- Information Security

Question 1

the degree of protection against criminal activity, danger, damage, or loss.

Answer 1

security

Question 2

all of the processes and policies designed to protect an organization’s information and information systems (IS) from unauthorized access, use, disclosure, disruption, modification, or destruction.

Answer 2

information security

Question 3

any danger to which a system may be exposed.

Answer 3

Threat (to an information resource)

Question 4

the harm, loss, or damage that can result if a threat compromises that resource.

Answer 4

Exposure (of an information resource)

Question 5

the possibility that a threat will harm that resource.

Answer 5

Vulnerability (of an information resource)

Question 6

What are the 5 key factors contributing to the increasing vulnerability of organizational information resources?

Answer 6

1. Today’s interconnected, interdependent, wirelessly networked business environment.
2. Smaller, faster, cheaper computers and storage devices
3. Decreasing skills necessary to be a computer hacker
4. International organized crime taking over cybercrime
5. Lack of management support

Question 7

any network within your organization

Answer 7

trusted network

Question 8

any network external to your organization.

Answer 8

untrusted network

Question 9

________ _________ enable employees to compute, communicate, and access the Internet anywhere and at any time.

Answer 9

wireless technologies

Question 10

__________ is an inherently unsecure broadcast communications medium.

Answer 10

wireless

Question 11

users with limited skills can download and use to attack any information system that is connected to the Internet.

Answer 11

scripts

Question 12

illegal activities conducted over computer networks, particularly the Internet.

Answer 12

cybercrime

Question 13

T or F: cybercrimes are typically nonviolent; however, they are quite lucrative. Losses from computer crimes can average hundreds of thousands of dollars. Computer crimes can be committed from anywhere in the world at any time, effectively providing an international safe haven for cybercriminals.

Answer 13

True

Question 14

What are the 2 major categories of threats?

Answer 14

Unintentional and deliberate threats

Question 15

acts performed without malicious intent that nevertheless represent a serious threat to information security. A major category of this is human error.

Answer 15

unintentional threats

Question 16

the higher the level of employee, the (smaller/greater) the threat he or she poses to information security

Answer 16

greater

Question 17

Employees in two areas of the organization pose especially significant threats to information security:
Why are these two significant threats?

Answer 17

• human resources and information systems
• H.R. employees generally have access to sensitive personal information about all employees.
• IS employees not only have access to sensitive organizational data, but they also frequently control the means to create, store, transmit, and modify those data.

Question 18

What are 3 other relevant employees in regard to information security?

Answer 18

1. Contract labor (such as temporary hires)
2. Consultants
3. Janitors and guards

Question 19

an attack in which the perpetrator uses social skills to trick or manipulate legitimate employees into providing confidential company information such as passwords.

Answer 19

social engineering

Question 20

What are 2 social engineering techniques?

Answer 20

Tailgating and shoulder surfing

Question 21

a technique designed to allow the perpetrator to enter restricted areas that are controlled with locks or card entry. The perpetrator follows closely behind a legitimate employee and, when the employee gains entry, the attacker asks him or her to “hold the door.”

Answer 21

tailgating

Question 22

occurs when a perpetrator watches an employee’s computer screen over the employee’s shoulder. This technique is particularly successful in public areas such as in airports and on commuter trains and airplanes.

Answer 22

shoulder surfing

Question 23

What are 10 common types of deliberate attacks?

Answer 23

1. Espionage or trespass
2. Information extortion
3. Sabotage or vandalism
4. Theft of equipment/information
5. Identity theft
6. Compromises to intellectual property
7. Software attacks
8. Alien software
9. SCADA attacks
10. Cyberterrorism and cyberwarfare

Question 24

occurs when an unauthorized individual attempts to gain illegal access to organizational information

Answer 24

espionage or trespass

Question 25

occurs when an attacker either threatens to steal, or actually steals, information from a company. The perpetrator demands payment for not stealing the information, for returning stolen information, or for agreeing not to disclose the information

Answer 25

information extortion

Question 26

An increasingly serious type of information extortion is _________.

Answer 26

ransomware

Question 27

blocks access to a computer system or encrypts an organization’s data until the organization pays a sum of money. Victims are told to pay the ransom, usually in Bitcoin. Attackers typically use the anonymizing Tor network.

Answer 27

ransomware

Question 28

Most commonly, ransomware attacks use _____ ______ and _______ attacks. These emails are carefully tailored to look as convincing as possible.

Answer 28

sphear phishing; whaling

Question 29

Some ransomware developers distribute ransomware to any hacker who wants to use it. This process is called

Answer 29

ransomware-as-a-service

Question 30

Rather than threatening to delete encrypted data, some cybercriminals are beginning to threaten to release it to the public, a strategy known as

Answer 30

doxxing

Question 31

What are the 5 things to do to protect against ransomware?

Answer 31

1. all organizations must provide education and training
2. Organizations must install the latest versions of software and apply patches immediately.
3. Organizations must back up crucial data and information often
4. Organizations should employ anti-ransomware software.
5. Organizations should utilize the No More Ransom initiative

Question 32

deliberate acts that involve defacing an organization’s website, potentially damaging the organization’s image and causing its customers to lose faith.

Answer 32

sabotage or vandalism

Question 33

T or F: not all attacks on organizations involve sophisticated software.

Answer 33

true

Question 34

a form of theft that involves rummaging through commercial or residential trash to find discarded information

Answer 34

dumpster diving

Question 35

the deliberate assumption of another person’s identity, usually to gain access to his or her financial information or to frame him or her for a crime.

Answer 35

identity theft

Question 36

T or F: Recovering from identity theft is costly, time consuming, and burdensome.

Answer 36

true

Question 37

the property created by individuals or corporations that is protected under trade secret, patent, and copyright laws.

Answer 37

intellectual property

Question 38

an intellectual work, such as a business plan, that is a company secret and is not based on public information. (ex: formula for Coca Cola)

Answer 38

trade secret

Question 39

an official document that grants the holder exclusive rights on an invention or a process for a specified period of time.

Answer 39

patent

Question 40

a statutory grant that provides the creators or owners of intellectual property with ownership of the property, also for a designated period.

Answer 40

copyright

Question 41

Current U.S. laws award patents for ____ years and copyright protection for the life of the creator plus ____ years. Owners are entitled to collect fees from anyone who wants to copy their creations.

Answer 41

20; 70

Question 42

The most common intellectual property related to IT deals with _________.

Answer 42

software

Question 43

copying a software program without making payment to the owner—including giving a disc to a friend to install on his or her computer

Answer 43

piracy

Question 44

Software attacks have evolved from the early years of the computer era, when attackers used malicious software—called ________—to infect as many computers worldwide as possible, to the profit-driven, Web-based attacks of today.

Answer 44

malware

Question 45

T or F: Not all cybercriminals are sophisticated.

Answer 45

true

Question 46

segment of computer code that performs malicious actions by attaching to another computer program

Answer 46

virus

Question 47

segment of computer code that modifies itself (ex: changes its computer code) to avoid detection by anti-malware systems, while keeping its same functionality

Answer 47

polymorphic virus

Question 48

segment of computer code that performs malicious actions and will replicate, or spread, by itself (without requiring another computer program)

Answer 48

worm

Question 49

attacks that use deception to acquire sensitive personal information by masquerading as official looking emails or instant messages

Answer 49

phishing attack

Question 50

phishing attacks target large groups of people. In these phishing attacks, the attackers find out as much information about an individual as possible to improve their chances that phishing techniques will be successful and obtain sensitive, personal information.

Answer 50

spear phishing

Question 51

attack that targets high-value individuals such as senior executives in an attempt to steal sensitive information from a company such as financial data or personal details about employees

Answer 51

whaling attack

Question 52

an attacker sends so many information requests to a target computer system that the target cannot manage them successfully and typically ceases to function (crashes)

Answer 52

denial-of-service attack

Question 53

an attacker first takes over many computers, typically by using malicious software. These computers are called zombies or bots. The attacker uses these bots—which form a botnet—to deliver a coordinated stream of information requests to a target computer, causing it to crash.

Answer 53

Distributed denial-of-service attack

Question 54

Software programs that hide in other computer programs and reveal their designed behavior only when they are activated.

Answer 54

trojan horse

Question 55

Typically a password, known only to the attacker, that allows him or her to access a computer system at will, without having to go through any security procedures (also called a trap door)

Answer 55

back door

Question 56

A segment of computer code that is embedded within an organization’s existing computer programs and is designed to activate and perform a destructive action at a certain time or date

Answer 56

logic bomb

Question 57

clandestine software that is installed on your computer through duplicitous methods. It typically isn’t as malicious as viruses, worms, or Trojan horses, but it does use up valuable system resources. It can also enable other parties to track your Web surfing habits and other personal behaviors

Answer 57

alien software (or pestware)

Question 58

The vast majority of pestware is _______

Answer 58

adware

Question 59

software that causes pop-up advertisements to appear on your screen; common because it works

Answer 59

adware

Question 60

software that collects personal information about users without their consent.

Answer 60

spyware

Question 61

3 common types of spyware:

Answer 61

1. stalkerware
2. keystroke loggers
3. screen scrapers

Question 62

spyware used to monitor people close to the perpetrator. Victims typically don’t know it is on their device unless they run an antivirus scan. Developers of this market their apps as child safety or anti-theft tools. However, these apps can easily be used for the purpose of spying on a partner.

Answer 62

stalkerware

Question 63

record both your individual keystrokes and your Web browsing history. The purposes range from criminal—for example, theft of passwords and sensitive personal information such as credit card numbers—to annoying—for example, recording your Internet search history for targeted advertising.

Answer 63

keystroke loggers (or keyloggers)

Question 64

How have companies attempted to counter keyloggers?

Answer 64

By using CAPTCHA

Question 65

software that records a continuous “movie” of a screen’s contents rather than simply recording keystrokes.

Answer 65

screen scrapers (screen grabbers)

Question 66

pestware that uses your computer as a launch pad for spammers.

Answer 66

spamware

Question 67

unsolicited email, usually advertising for products and services.

Answer 67

spam

Question 68

T or F: Spam wastes time and money; costs U.S. companies billions of dollars every year.

Answer 68

True

Question 69

small amounts of information that websites store on your computer, temporarily or more or less permanently. In many cases, they are useful and innocuous.

Answer 69

cookies

Question 70

can be used to track your path through a website, the time you spend there, what links you click on, and other details that the company wants to record, usually for marketing purposes. They can also combine this information with your name, purchases, credit card information, and other personal data to develop an intrusive profile of your spending habits.

Answer 70

tracking cookies

Question 71

a large-scale distributed measurement and control system.

Answer 71

SCADA

Question 72

used to monitor or to control chemical, physical, and transport processes such as those used in oil refineries, water and sewage treatment plants, electrical generators, and nuclear power plants; provide a link between the physical world and the electronic world.

Answer 72

SCADA systems

Question 73

malicious acts in which attackers use a target’s computer systems, particularly through the Internet, to cause physical, real-world harm or severe disruption, often to carry out a political agenda. These actions range from gathering data to attacking critical infrastructure; for example, through SCADA systems.

Answer 73

cyberterrorism/cyberwarfare

Question 74

Which describes cyberterrorism and which describes cyberwarfare?
1. typically carried out by individuals or groups
2. carried out by nation-states or non-state actors such as terrorists.

Answer 74

1. cyberterrorism
2. cyberwarfare

Question 75

T or F: IT security is the business of everyone in an organization.

Answer 75

true

Question 76

the probability that a threat will impact an information resource.

Answer 76

risk

Question 77

The goal of _______ _______ is to identify, control, and minimize the impact of threats. In other words, it seeks to reduce risk to acceptable levels.

Answer 77

risk management

Question 78

What are the 3 types of Information Security controls?

Answer 78

1. Physical controls
2. Access controls
3. Communications (network controls)

Question 79

What are the two parts of access controls?

Answer 79

1. Authentification (identification)
2. Authorization

Question 80

Security is almost all (good/bad) news; the bad guys only have to be right ____ time and the good guys (defenders) have to be right _____ time.

Answer 80

bad; one; every

Question 81

T or F: Cybersecurity people make a lot of money, but it is a very difficult proposition.

Answer 81

True

Question 82

As computer code software has gotten more complex, the number of errors that bad guys can exploit (increase/decrease).

Answer 82

increase

Question 83

Unfortunately, we are almost totally _______, not proactive.

Answer 83

reactive

Question 84

People are backing up their data now in ____ _____. To backup your data, you’ve got to back it up in almost real time, which connects your backup with your main site. The issue is: the bad guys know this, so they encrypt both.

Answer 84

hot sites

Question 85

an off-premises location where an organization can resume normal operations during a commercial disaster. All the equipment needed for the work to resume is available there, including phones, backup data, and computers.

Answer 85

hot site

Question 86

A backup facility that has the necessary electrical and physical components of a computer facility, but does not have the computer equipment in place.

Answer 86

cold site

Question 87

consists of elements providing power, networking capability, and cooling. It doesn’t include other hardware elements such as servers and storage.

Answer 87

cold site

Question 88

T or F: Using a cold site is very limiting to a business since before it can be used, backup data and some additional hardware must be sent to the site and installed

Answer 88

true

Question 89

contain all the elements of a cold site while adding additional elements, including storage hardware such as tape or disk drives, servers, and switches. Warm sites are “ready to go” in one sense, but they still need to have data transported for use in recovery should a disaster occur

Answer 89

warm sites

Question 90

Who drives the process of risk optimization?

Answer 90

You

Question 91

As security increase, productivity (decreases/increases)

Answer 91

decreases

Question 92

SCADA attacks are ________ attacks

Answer 92

infrastructure

Question 93

T or F: SCADA systems are critical

Answer 93

true

Question 94

Cyber crime is being taken over by the _______

Answer 94

cartel

Question 95

Most ransomeware attacks come from _________

Answer 95

Russia

Question 96

What is the biggest white collar theft right now?

Answer 96

Identity theft

Question 97

What is the cheapest software attack? Most expensive?

Answer 97

• Cheapeast= cyberwarfare
• Most expensive = nuclear

Question 98

T or F: Risk analysis is the MIS’s job.

Answer 98

False; it is YOUR job

Question 99

What are the 4 steps of risk management?

Answer 99

1. Risk
2. Risk management
3. Risk analysis
4. Risk Mitigation

Question 100

What are 3 ways to avoid risk (aka risk mitigation)?

Answer 100

1. Risk acceptance (not rlly used anymore)
2. Risk limitation (control measures)
3. Risk transference (insurance)

Question 101

T or F: risk optimization has nothing to do with MIS

Answer 101

True

Question 102

Less potential loss = spending (less/more) on countermeasures

Answer 102

more

Question 103

Who handles communication controls?

Answer 103

MIS