information security

Question 1

the quality or state of
being secure— to be free from danger

Answer 1

SECURITY

Question 2

malware that comes with a downloaded file that a user
requests

Answer 2

Drive-by downloads

Question 3

a computer program that has the ability to replicate or make copies of itself,
and spread to other files

Answer 3

Viruses

Question 4

malware that is designed to spread from computer to computer

Answer 4

Worms-

Question 5

malware that prevents you from accessing your computer or files and
demands that you pay a fine

Answer 5

Ransomware

Question 6

appears to be benign, but then does something other than expected.
Often a way for viruses or other malicious code to be introduced into a computer system

Answer 6

Trojan horses

Question 7

feature of viruses, worms, and Trojans that allows an attacker to remotely access a compromised computer

Answer 7

Backdoors

Question 8

type of malicious code that can be covertly installed on a computer when
connected to the Internet.

Answer 8

Bot

Question 9

collection of captured bot computers

Answer 9

Botnet

Question 10

is a threat at both the client and the server levels, although servers
generally engage in much more thorough anti-virus activities than do consumers.

Answer 10

Malicious code

Question 11

program that installs itself on a computer, typically without the user’s informed consent

Answer 11

Potentially unwanted programs (PUPs)

Question 12

a PUP that serves pop-up ads to your computer

Answer 12

Adware

Question 13

• a program that can monitor and change the settings of a user’s
  browser

Answer 13

Browser parasites

Question 14

a program used to obtain information such as a user’s keystrokes, e-mail,
instant messages, and so on

Answer 14

Spyware

Question 15

any deceptive, online attempt by a third party to obtain confidential information for
financial gain

Answer 15

Phishing -

Question 16

exploitation of human fallibility and gullibility to distribute
malware

Answer 16

Social engineering

Question 17

an individual who intends to gain unauthorized access to a computer
system

Answer 17

Hackers

Question 18

within the hacking community, a term typically used to denote a hacker
with criminal intent

Answer 18

Crackers

Question 19

cybervandalism and data theft for political purposes

Answer 19

Hacktivism

Question 20

-intentionally disrupting, defacing, or even destroying a site

Answer 20

Cybervandalism

Question 21

considered the good guys because they follow the rules when it comes to hacking into systems without permission and obeying responsible disclosure laws

Answer 21

white hat

Question 22

may have good intentions but might not disclose flaws for immediate fixes
prioritize their own perception of right versus wrong over what the law might say

Answer 22

gray hat

Question 23

considered cybercriminals; they don’t lose sleep over whether or not something is illegal or wrong
exploit security flaws for personal or political gain–or for fun

Answer 23

black hat

Question 24

common security threats

Answer 24

Malware
PUPs
Phishing
Hacking
Data breach
Sniffing
Insider attacks & unsecure software
Social network & mobile platform issues

Question 25

types of malware

Answer 25

Drive-by downloads
Viruses
Worms
Ransomware
Trojan horses
Backdoors
Bot

Question 26

types of PUPs

Answer 26

Adware
Browser parasites
Spyware

Question 27

PUP stands for?

Answer 27

Potentially unwanted programs

Question 28

types of phishing

Answer 28

Social engineering

Question 29

types of hacking

Answer 29

Crackers
Hacktivism
Cybervandalism

Question 30

types of data breach

Answer 30

Credit card fraud / theft
Identity fraud
Spoofing
Pharming
Spam

Question 31

types of sniffing

Answer 31

Denial of Service (DOS) Attack
Distributed Denial of Service (DDOS) Attack
E-mail wiretaps

Question 32

types of Insider
Attacks & Unsecured Software

Answer 32

SQL injection attack
Zero-day vulnerability

Question 33

types of Social
Network & Mobile Platforms

Answer 33

Vishing
Smishing
Madware

Question 34

occurs when an organization loses control over its information to outsiders

Answer 34

Data breach

Question 35

• is one of the most feared occurrences on the Internet. Fear
  that credit card information will be stolen prevents users from making online purchases in
  many cases

Answer 35

Credit card fraud / theft

Question 36

-involves the unauthorized use of another person’s personal data for
illegal

Answer 36

Identity fraud

Question 37

involves attempting to hide a true identity by using someone else’s e-mail
or IP address

Answer 37

Spoofing

Question 38

automatically redirecting a web link to an address different from the
intended one, with the site masquerading as the intended destination

Answer 38

Pharming

Question 39

also referred to as link farms; promise to offer products or services, but in
fact are just collections of advertisements

Answer 39

Spam

Question 40

-flooding a website with useless traffic to inundate and
overwhelm the network

Answer 40

Denial of Service (DOS) Attack

Question 41

using numerous computers to attack
the target network from numerous launch points

Answer 41

Distributed Denial of Service (DDOS) Attack

Question 42

DOS stands for

Answer 42

Denial of Service

Question 43

DDOS stands for

Answer 43

Distributed Denial of Service

Question 44

is a type of eavesdropping program that
monitors information traveling over a network

Answer 44

Sniffer

Question 45

a method for recording or
journaling e-mail traffic generally at the mail server level from
any individual.

Answer 45

E-mail wiretaps

Question 46

the largest financial threats to business institutions come not from robberies
but from embezzlement by insiders

Answer 46

Insider Attacks

Question 47

takes advantage of poorly coded web application software that
fails to properly validate or filter data entered by a user on a web page

Answer 47

SQL injection attack

Question 48

software vulnerability that has been previously unreported
and for which no patch yet exists

Answer 48

Zero-day vulnerability

Question 49

target gullible cell phone users with verbal messages to call a
certain number

Answer 49

Vishing

Question 50

exploit SMS/text messages

Answer 50

Smishing

Question 51

innocent-looking apps that contain adware that launches pop-up ads
and text messages on your mobile device

Answer 51

Madware

Question 52

security management (technology solutions)

Answer 52

authentication procedures
encryption
network security protocols
virtual private networks
firewalls
proxy servers
intrusion detection/prevention
automated software updates
anti-virus software
access controls`

Question 53

information security

Answer 53

confidentiality
integrity
availability

Question 54

threat to confidentiality

Answer 54

snooping
traffic analysis

Question 55

threat to integrity

Answer 55

modification
masquerading
replaying
repudiation

Question 56

threat to availability

Answer 56

denial of service

Question 57

Protect devices, networks, programs, and data
from attacks and unauthorized access – cyber realm

Answer 57

Cybersecurity

Question 58

Protecting the information regardless of the
realm – digital or analog

Answer 58

Information Security

Question 59

a message in its natural format readable by an attacker; it is the original
message or data

Answer 59

Plaintext

Question 60

a message altered to be unreadable by anyone except the intended
recipients.

Answer 60

Ciphertext –

Question 61

– transforming the plaintext, under the control of the key

Answer 61

Encryption

Question 62

it is the sequence that controls the operation and behavior of the cryptographic
algorithm

Answer 62

Key

Question 63

transforming the ciphertext back to the original plaintext

Answer 63

Decryption

Question 64

Any character of plain text from the given fixed set of characters is substituted by some other
character from the same set depending on a key

Answer 64

Substitution cipher

Question 65

The Caesar Cipher is a substitution cipher, named after _____.

Answer 65

Julius Caesar

Question 66

one which rearranges the order of the letters in the ciphertext
(encoded text), according to some predetermined method, without making any
substitutions.

Answer 66

transposition cipher

Question 67

– the secret key is shared between two parties

Answer 67

Private key ciphers

Question 68

the secret key is not shared and to parties can still communicate
using public keys.

Answer 68

Public key ciphers

Question 69

A common method to create session keys in a distributed manner.
It provides a way for two parties to establish a shared secret key that only two parties
know – even communicating over an insecure channel.

Answer 69

Diffie-Hellman Algorithm

Question 70

components of Cryptographic system

Answer 70

Plaintext
Ciphertext
Encryption
Key
Decryption

Question 71

types of cipher

Answer 71

Private key ciphers
Public key ciphers

Question 72

2 types of transposition cypher`

Answer 72

Rail fence cipher
Row transposition ciphers