Lesson 5

Question 1

What is scareware?

Answer 1

Exploits fear to trick users into paying for unnecessary software or services.

Question 2

What are Trojans?

Answer 2

Disguise themselves as legitimate files or applications to trick users into executing them.

Question 3

What are botnets?

Answer 3

Networks of compromised devices that can be used to launch attacks or spam.

Question 4

What is phishing?

Answer 4

Involves collecting sensitive user information, usually passwords and credit card numbers.

Typically carried out through e-mails or messages disguised as genuine.

Question 5

What are SQL injections?

Answer 5

Attack data-based applications by breaching security measures and using malicious code.

Can collect, alter, or delete classified data and interrupt certain website transactions.

Question 6

What is rogue security software?

Answer 6

Deceives users by claiming their systems are infected with a virus or have outdated security measures.

Question 7

What is a Man-in-the-Middle attack?

Answer 7

Allows a hacker to intercept and listen to conversations between two entities.

The hacker can appear as one of the entities while obtaining private keys.

Question 8

What is pharming?

Answer 8

A more complex version of phishing that misuses the domain name system (DNS).

Pharmers create web pages that mimic those of reliable businesses, such as online banking login pages.

Question 9

What is data governance?

Answer 9

The basic level that implements Information Governance (IG).

Involves processes and controls to ensure unique, accurate, and reliable data that meet business standards and rules.

Question 10

What is Information Technology Governance (IT Governance)?

Answer 10

Aims to improve business organizations’ IT performance.

Ensures delivery of optimal business value and compliance with rules and regulations.

Question 11

What are the elements of data governance?

Answer 11

1. People - Responsible for managing data assets and supporting business activities and initiatives.
2. Process - Includes how data is stored, modified, accessed, moved, and secured.
3. Technology - Supports the implementation and maintenance of Data Governance.

Question 12

What is the Information Technology Infrastructure Library (ITIL)?

Answer 12

A set of best process-oriented practices identified to regulate the delivery of IT services management.

Question 13

What is CobiT?

Answer 13

Can be applied to three basic organizational levels:

1. Top Management
2. IT Management and Business Management
3. Security Level of Governance, Control, and Worker

Question 14

What is a legacy system?

Answer 14

Uses old versions of technology that business organizations may consider as investments.

Question 15

What is a manual system?

Answer 15

Uses source documents and paper-based ledgers and journals.

Question 16

What is a modern and integrated IT system?

Answer 16

Modern and user-friendly.

Utilizes the latest powerful technologies, offers high data storage, and can be accessed through different platforms.

Question 17

What are business processes?

Answer 17

Refers to the sequence of performed tasks that produce a desired output for a business organization.

It is a process that has a beginning and an end.

Question 18

What is information generation?

Answer 18

A process where relevant information is compiled, arranged, formatted, and presented to users.

The information should be summarized, accurate, relevant, complete, and related to the transactions done in the AIS.

Question 19

What is storage in an AIS?

Answer 19

Allows users to add new records in an AIS and store them in a certain place in a database.

Question 20

What is retrieval in an AIS?

Answer 20

Allows users to locate and extract existing records from a database and process them accordingly.

Once the process is complete, users can store the records in a specific place in a database.

Question 21

What are data sources in an AIS?

Answer 21

AISs allow data to enter the system through data sources such as financial transactions.

These data, coming from financial transactions, could either be from internal or external sources.

Question 22

Who are external users in an AIS?

Answer 22

Those who are not part of a business organization but play a significant role in an AIS.

They include stockholders, suppliers, customers, investors, and others.

Question 23

What is data management?

Answer 23

The database is the main repository of any IS of a business organization.

The AIS database should perform the three essential tasks of storage, retrieval, and completion.