Network Threats

Question 1

What is malware short for?

Answer 1

Malicious software

Question 2

What is malware a general term for?

Answer 2

For any hostile or intrusive software

Question 3

What are the 9 types of malware?

Answer 3

Computer Virus
Trojan
Spyware
Adware
Pharming
Click fraud
Ransomware
Rootkits
Scareware

Question 4

What threats are labelled as ‘social attacks’?

Answer 4

When hackers try and trick, fool, bribe, or threaten people online

Question 5

What do all social attacks have in common?

Answer 5

They attack people rather than hardware or software

Question 6

Give 3 examples of social attacks

Answer 6

Bribing a user into allowing an attacker access to a system
Putting a thumb-drive full of malware somewhere a user might pick it up, and labelling it so that they would want to open it on their system
Phoning up a user at work and convincing them to break policy and give them the information they want directly

Question 7

What does ‘phishing’ involve?

Answer 7

Sending out e-mails, instant messages, or phone calls pretending to be someone in authority. The attacker then uses that fake authority to convince users to voluntarily give up sensitive information such as passwords, bank account details

Question 8

What is the most common method of phishing?

Answer 8

By email

Question 9

What is a ‘brute force’ attack?

Answer 9

When a computer program is written to go through every possible combination of letters (and / or symbols) until the right one comes up to guess a user password

Question 10

How can ‘brute force’ attacks be stopped?

Answer 10

By limiting the number of attempts a user can have at logging in within a certain time period

Question 11

What is a ‘dictionary’ attack?

Answer 11

Where all the words of the most popular languages are used before brute force is tried to guess a password

Question 12

What is denial of service?

Answer 12

A method of preventing legitimate users from connecting to a server. Web sites can be blocked with this method

Question 13

How does denial of service work?

Answer 13

It works by flooding the targeted server with millions of bogus requests. There are so many requests that all the server memory and CPU cycles are used up and the server then crashes

Question 14

What does a denial of service attack often involve?

Answer 14

Hundreds or thousands of computers which have been infected with botnet malware

Question 15

What happens in a ‘Distributed Denial of Service’ attack?

Answer 15

Each machine sends a stream of bogus requests. The legitimate owner of the infected computers are unaware that their machine is being used in this way

Question 16

What is Data interception and theft?

Answer 16

It is a form of eavesdropping as users are unaware that their data is being extracted

Question 17

How does a data interception attack work?

Answer 17

When data packets are intercepted. An extra server or router is placed in the network so that packets coming from the target computer are re-directed, copied, and sent on. The data within each packet, such as passwords or confidential information, is then extracted from the copied packets

Question 18

What is an effective defence against data interception?

Answer 18

To encrypt each data packet. The eavesdropper would then have the extra task of decrypting the information

Question 19

What is an SQL injection?

Answer 19

Is the deliberate addition of malicious SQL code into a web form in order to view \ modify \ delete database records or to gain unauthorised access

Question 20

What do attackers do in an SQL injection?

Answer 20

The attacker tries to insert extra SQL commands, for the database, into the input boxes, hoping that these commands will be carried out by the server

Question 21

What is a good way of protecting against SQL injection?

Answer 21

Get the server to validate the information properly before the SQL request is formed. For example, the user name and password may only be a certain length and to not allow invalid characters

Question 22

What is the defence against SQL injection which involves adding a non-alphanumeric characters, for example & becomes “\&”?

Answer 22

Escape character. This forces the input to be treated as characters only rather than commands

Question 23

What are the risks with having a poor network policy?

Answer 23

Without precautions, guidance and training, there is a risk that some users, albeit unwittingly, will introduce threats to the network

Question 24

What should be in a network policy to do with passwords?

Answer 24

Passwords must be hard to guess

Question 25

What should be in a network policy to do with access rights?

Answer 25

People will only be given access to certain parts of the network to carry out their work

Question 26

What should be in a network policy to do with sharing passwords?

Answer 26

No one is allowed to share their username password

Question 27

What should be in a network policy to do with screensavers?

Answer 27

All computers will have password protected screen savers

Question 28

What should be in a network policy to do with confidential emails and files?

Answer 28

They should all be encrypted

Question 29

Why does a good network policy need to be in place?

Answer 29

To reduce security risk