Hacking

Question 1

Cybercriminal (Black Hat)

Answer 1

A hacker who violates computer security for personal gain.

Question 2

Social Engineering

Answer 2

Tricking people into breaking normal security rules and procedures and/or divulging personal information.

Question 3

Trojan

Answer 3

A malicious program that pretends to be benign/normal.

Question 4

The word “malware” comes from the term?

Answer 4

Malicious Software

Question 5

Phishing

Answer 5

Sending a fake email that looks like it’s from a real company, to fool people

Question 6

Hactivist

Answer 6

Subversive use of computer systems to promote a political/social agenda.

Question 7

Asymmetric encryption

Answer 7

Uses a key-pair, a public key and a private key

Question 8

Which type of attack does not require human assitance?

Answer 8

Worm

Question 9

Zero-day exploit

Answer 9

Taking advantage of a software vulnerability on the day it is discovered, before the developers can patch it.

Question 10

Which form is for Biometrics

Answer 10

It is a known and registered physical attribute of a user specifically used for verifying their identity

Question 11

Ransomware

Answer 11

A virus that encrypts your files then demands payment to decrypt them

Question 12

Malicious Insider

Answer 12

A hacker who uses their access to harm their employer.

Question 13

DDOS

Answer 13

A malicious attempt to make an internet/network server unavailable to legitimate users.

Question 14

Pharming

Answer 14

Having users directed to a fake website instead of a genuine website, to fool them

Question 15

What is cyber security?

Answer 15

the practice of protecting systems, networks, and programs from digital attacks.

Question 16

Which backup strategy includes only the files and software that have changed since the last full backup?

Answer 16

Incremental

Question 17

Certified Ethical Hacker (White Hat)

Answer 17

An expert hacker who uses abilities for good, ethical, legal purposes.

Question 18

Hacker

Answer 18

Is a person who breaks into computers, usually by gaining access to administrative controls.

Question 19

Virus

Answer 19

A malicious file that can attach to other files and replicate when the user shares the file.

Question 20

Which of these is regularly used to secure online communication?

Answer 20

Public-key encryption

Question 21

Static heuristic

Answer 21

Decompile and look for source code, and compare against heuristic database of existing, known viruses.

Question 22

Dynamic heuristic

Answer 22

Lets the program run in a controlled situation (sandbox) while antivirus observes actions.

Strange actions e.g. deleting files and duplicating, quarantines the program.

Question 23

Physical security

Answer 23

Fire detection and supression systems, CCTV, locks, biometrics, and ensuring that the hardware is in a safe location.

Question 24

Encryption

Answer 24

Converting data into an illegible, scrambled format so it cannot be understood by unauthorsised parties. Uses an encryption algorithm and a unique key.

Key needed to convert other format back to plaintext

Question 25

Audit trails

Answer 25

Improve accountability by keeping track of who made what changes (and when) during development.

Question 26

Blagging

Answer 26

Creating and using an invented scenario to engage a targeted victim in divulging personal info.

Question 27

Acceptable Use Policy

Answer 27

A collection of rules and procedures that employees are required to follow in order to protect their organisation’s systems and networks.

Question 28

Quid pro quo

Answer 28

QPP means “something for something”. Provides a benefit in exchange for information. e.g You won an iPad!

Question 29

Baiting

Answer 29

The promise of cash or goods that people with malicious intent use to entice victims e.g. offering free music or movie downloads to trick users into revealing their login credentials.