Module 2 - The Need for INFOSEC

Question 1

What is the #1 rated threat from internal sources?

Answer 1

Inability/unwillingness to follow established policy

Question 2

What is CAPEC?

Answer 2

A tool that security professionals can use to understand attacks hosted by MITRE

Question 3

What are the 12 categories of threats?

Answer 3

1. Deviations in quality of service
2. Espionage or trespass
3. Forces of nature
4. Human error or failure
5. Information extortion
6. Sabotage or vandalism
7. Software attacks
8. Technical hardware failures or errors
9. Technical software failures or errors
10. Technological obsolescence
11. Theft
12. Compromises to intellectual property

Question 4

Piracy, copyright infringement

Answer 4

Compromises to intellectual property

Question 5

Internet service provider (ISP), power, or WAN service problems

Answer 5

Deviations in quality of service

Question 6

Unauthorized access and/or data collection

Answer 6

Espionage or trespass

Question 7

Fire, floods, earthquakes, lightning

Answer 7

Forces of nature

Question 8

Accidents, employee mistakes

Answer 8

Human error or failure

Question 9

Blackmail, information disclosure

Answer 9

Information extortion

Question 10

Destruction of systems or information

Answer 10

Sabotage or vandalism

Question 11

Viruses, worms, macros, denial of service

Answer 11

Software attacks

Question 12

Equipment failure

Answer 12

Technical hardware failures or errors

Question 13

Bugs, code problems, unknown loopholes

Answer 13

Technical software failures or errors

Question 14

Antiquated or outdated technologies

Answer 14

Technological obsolescence

Question 15

Illegal confiscation of equipment or information

Answer 15

Theft

Question 16

Intellectual property (IP):

Answer 16

creation, ownership, and control of original ideas as well as the representation of those ideas

Question 17

IP includes (4):

Answer 17

1. Trade secrets
2. Copyrights
3. Trademarks
4. Patents

Question 18

The most common IP breaches involve:

Answer 18

software piracy

Question 19

Which two watchdog organizations investigate software abuse?

Answer 19

1. Software and Information Industry Association (SIIA)
2. Business Software Alliance (BSA)‏

Question 20

A short-term decrease in electrical power availability is known as a _____.

Answer 20

sag

Question 21

an increase in power availability

Answer 21

spike (or swell) or a surge

Question 22

Uses social skills to convince people to reveal access credentials or other valuable information to an attacker.

Answer 22

Social engineering

Question 23

What is Cyberextortion?

Answer 23

Attacker steals information from a computer system and demands compensation for its return or nondisclosure

Question 24

Used to overwhelm the processing capabilities of online systems or to gain access to protected systems via hidden means.

Answer 24

Malicious software (malware)

Question 25

It attacks a browser’s address bar to redirect users to an illegitimate site for the purpose of obtaining private information.

Answer 25

Pharming

Question 26

Communications interception attacks include (4):

Answer 26

1. Sniffers
2. Spoofing
3. Pharming
4. Man-in-the-Middle

Question 27

Measure hardware failure rates.

Answer 27

1. Mean time between failure
2. Annualized failure rates

Question 28

Dedicated to helping organizations create/operate trustworthy software and publishes a list of top security risks

Answer 28

Open Web Application Security Project (OWASP)

Question 29

Information security performs four important functions to ensure that information assets remain safe and useful:

Answer 29

1. Protecting the organization’s ability to function
2. Enabling the safe operation of applications implemented on the organization’s IT systems
3. protecting the data an organization collects and uses
4. Safeguarding the organization’s technology assets.

Question 30

Consider this statement:
“When security needs and business needs collide, business needs win out.”

Do you think there are times and circumstances when this is not completely true? When might that be?

If you are working in the area of information security, what does this statement indicate about how you should work with other units in the organization?