Module 3

Question 1

What is the primary goal of cyber security?

Answer 1

To protect computers and data from risks and threats

Cyber security is akin to securing the doors to our homes.

Question 2

Define ‘Cracker’ in the context of cyber security.

Answer 2

A computer-savvy programmer who creates attack software

Crackers are often associated with malicious intent.

Question 3

What are ‘Script Kiddies’?

Answer 3

Unsophisticated computer users who execute pre-written programs

They often lack deep technical knowledge.

Question 4

List three leading threats in cyber security.

Answer 4

• Viruses
• Worms
• Trojan Horses

Other threats include logic bombs, social engineering, rootkits, and botnets.

Question 5

How does a virus function?

Answer 5

It attaches itself to a program or file and activates upon execution

Viruses can be benign or malignant and may cause data loss.

Question 6

What is a worm in cyber security?

Answer 6

An independent program that replicates itself across network connections

Worms can spread without user intervention.

Question 7

What is a Logic Bomb?

Answer 7

Malware that executes upon certain conditions being met

Often used in legitimate programs that malfunction under specific circumstances.

Question 8

True or False: A Trojan Horse is a benign program.

Answer 8

False

A Trojan Horse masquerades as a benign program but harms the system.

Question 9

What is social engineering?

Answer 9

Manipulating people into divulging confidential information

Techniques often resemble confidence tricks.

Question 10

Define Phishing.

Answer 10

Counterfeit emails requesting sensitive information

Commonly includes requests for SSN, credit card numbers, or passwords.

Question 11

What is Pharming?

Answer 11

Counterfeit web pages that mimic real websites to collect information

These pages extract sensitive account information.

Question 12

What is a Man in the Middle attack?

Answer 12

An attacker pretends to be a legitimate network access point

This allows the attacker to intercept communication between two parties.

Question 13

What is a rootkit?

Answer 13

A collection of programs installed by a hacker to maintain access

Rootkits can hide their presence and modify the operating system.

Question 14

List three examples of personal information.

Answer 14

• Social Security Number
• Driver’s license number
• Account passwords

This information can be used for identity theft.

Question 15

What are common symptoms of a security compromise?

Answer 15

• Antivirus detects a problem
• Unexplained disk space loss
• Pop-ups selling security software
• Unexpected files or transactions

Other symptoms include slow performance and unusual system behavior.

Question 16

What can excessive pop-up windows indicate?

Answer 16

Possible spyware infection

This is a common symptom along with changes to browser settings.

Question 17

What is the purpose of anti-virus software?

Answer 17

To detect and destroy malware before it causes damage

Regular updates are essential for effectiveness.

Question 18

What does ‘Defense in depth’ mean?

Answer 18

Using multiple layers of defense to address security threats

This strategy enhances overall security.

Question 19

What is the function of a firewall?

Answer 19

Acts as a barrier between a computer and the internet to prevent unauthorized access

Firewalls filter incoming and outgoing network traffic.

Question 20

How should one protect their operating system?

Answer 20

Regularly apply patches and updates

Both Microsoft and Apple provide updates to enhance security.

Question 21

What are the characteristics of a strong password?

Answer 21

• At least ten characters long
• Contains characters from at least two of four types
• Does not include easily guessable personal information

This helps protect against unauthorized access.

Question 22

Fill in the blank: Always use a _______ browser for online activities.

Answer 22

secure

This is crucial for protecting sensitive transactions.

Question 23

What should you do if you suspect a cyber security incident?

Answer 23

Notify your organization’s help desk immediately

Do not attempt to investigate the incident on your own.

Question 24

List four risks caused by poor security knowledge.

Answer 24

• Identity Theft
• Monetary Theft
• Legal Ramifications
• Sanctions or termination

These risks affect both individuals and organizations.

Question 25

What are the top vectors for vulnerabilities according to the SANS Institute?

Answer 25

• Web Browser
• IM Clients
• Web Applications
• Excessive User Rights

These are frequently exploited by cyber criminals.