Network Security Flashcards
What is malware?
Malware is MALicious software installed onto devices without the user’s knowledge or consent with the intent of causing damage to the device or network.
What are three ways malware can access a network?
- Viruses
- Worms
- Trojans
What is an insider attack and how can it be prevented?
Insider attacks are when members of an organisation intentionally or accidentally leak sensitive data about a network or person.
Prevented by: Strong Network Policies, User-access Levels
What is a brute force attack and how can it be prevented?
Brute force attacks are when attackers use trial and error to crack passwords to gain access to networks.
Prevented by: Strong passwords, Locking login attempts
What is a DoS attack and how is it prevented?
A denial of service attack is where an attacker floods a network with random requests to slow down a network to limit access.
Prevented by: Anti-Malware software
What is a passive attack and how is it prevented?
Passive attacks are where attackers passively monitor data travelling across a network, to then intercept and examine it before returning it back.
Prevented by: Firewall
What is an active attack and how is it prevented?
An active attack is a planned attack that uses malware.
Prevented by: Anti-Malware software
What is penetration testing?
Penetration testing is when specialists are employed to simulate attacks on a network to identify and fix weaknesses.
What is encryption?
Encryption is where data is scrambles into cipher text so that it is difficult to interpret if in the hands of criminals.
What is network forensics?
Network forensics are investigations on data within a network to find weaknesses in the security. They are also used to find the causes of previous attacks to help prevent future ones.
What are User-Access Levels?
User-Access Levels are when different people are granted access to different information. In companies, highly-ranking employees have access to more sensitive information than lower-ranking employees.
Network Policies should…?
- Force users to use strong passwords
- Install anti-malware
Why do passwords need to be strong?
Passwords help prevent unauthorised access to accounts and networks. A stronger password is harder to crack so is less likely to be subject to attack.
What is Social Engineering?
Social engineering is when people (the weakest part of a system) are influenced and exploited by imposters to leak sensitive information.
What is phishing?
Phishing is a type of social engineering involving spam emails and texts to grasp the attention of recipients and lure them into clicking dodgy links.
