Section 5

Question 1

What is hacking?

Answer 1

Hacking means finding weaknesses in an established system and exploiting them, for example, unauthorised access.

Question 2

What might a hacker be motivated by?

Answer 2

Profit
Protest
Challenge

Question 3

What is white hat hacking?

Answer 3

This is where the hacker is given permission to hack into systems to identify any loopholes or vulnerabilities.

Question 4

What is grey hat hacking?

Answer 4

This is where the hacker hacks into computer systems for fun or to troll but without malicious intent towards the computer system.
If a grey hat hacker finds a weakness, they often ask for a fee; companies often pay this rather than risk having their vulnerabilities exposed.

Question 5

What is black hat hacking?

Answer 5

Hacking with malicious intent. This intent can include theft, exploiting the data stole or seen, and selling the data on. Black hat hackers carry out illegal hacking activities and can be prosecuted.
Black hat hackers use randomware to prevent the owners from accessing their own computer system until they pay a sum of money.

Question 6

What is social engineering?

Answer 6

The art of manipulating people so that confidential information can be found out.

Question 7

Name the six types of social engineering:

Answer 7

Phishing
Baiting
Pretexting
Quid pro quo
Tailgating/ piggybacking
Shoulder surfing

Question 8

What is phishing?

Answer 8

Phishing uses a fake website that looks identical to the real one.

Question 9

What is baiting?

Answer 9

Similar to phishing.
Cybercriminals make a promise of goods to get the information they need.

Question 10

What is pretexting?

Answer 10

Pretexting is when a cybercriminal lies to get data or information.
Usually involves a scam, where the criminal pretends to need the information to confirm the identity of the person they’re talking to.

Question 11

What is Quid pro quo?

Answer 11

Quid pro quo tries to disable anti-virus software so that software updates, usually malware, can be installed to gain access to a computer system.
Similar to baiting, but promises a service rather than goods.

Question 12

What is tailgating/ piggybacking?

Answer 12

Means trying to gain access to a secure building or room. Takes the form of a person who doesn’t have the authority to enter following someone through the doors.

Question 13

What is shoulder surfing?

Answer 13

Shoulder surfing aims to steal data or information. It’s when a person’s private and confidential information is seen.
For example, an attacker may stand very close to someone in a crowded place when using a cash machine or device.

Question 14

What is malware (malicious software)?

Answer 14

It is installed on a computer system and collects information about users without their knowledge.

Question 15

Name 6 types of malware:

Answer 15

Viruses
Worms
Trojan Horses
Spyware
Key logging
Ransomware

Question 16

What are viruses?

Answer 16

Programs that replicate themselves on a system by modifying programs and inserting their own code.
The virus could enter the system due to software vulnerabilities or be activated as a result of clicking on a link within a message.

Question 17

What are worms?

Answer 17

A type of virus that infects the computer without the user’s knowledge.
Worms are created to modify or delete files to steal data. Another way a worm can cause damage is by duplicating itself so many times that it exhausts the system’s resources, so it runs more and more slowly.

Question 18

What is a Trojan horse?

Answer 18

A type of virus that enters the system in the form of a legitimate program.

Question 19

What is spyware?

Answer 19

A program that collects data from a computer system and sends it to a third party without the user’s consent.
As the name suggests, it is designed to spy on you.
It collects login and account details, and feeds this information back to the program creator without you having any idea this is happening.

Question 20

What is key logging?

Answer 20

A form of spyware.
An activity-monitoring program that logs everything you type on your keyboard, and sends this information to the creator of the program. In this way, the cybercriminal gets access to your passwords and other sensitive information.

Question 21

What is ransomware?

Answer 21

Ransomware is created to prevent someone from accessing data on their computer. The software encrypts the files and the cybercriminal demands a random payment in exchange for the decryption key.
In a busy world, organisations can be tempted to pay the money as it is possibly the cheapest and easiest option to restore access to their files.

Question 22

What is Distributed Denial of Service (DDoS)?

Answer 22

DDoS is an attack designed to disrupt or deny an organisation’s service.
The server is bombarded with so many fake internet requests that it gradually slows down until it can no longer function; the website then crashes.

It can also affect network usage and network resources such as Internet of Things devices.

Question 23

Give 2 examples of accidental damage.

Answer 23

Mechanical damage to hard drive
Natural disasters (fires and floods)
Unexpected power cut
Spilled drink

Question 24

What are access levels?

Answer 24

Access levels are used in organisations to limit which areas various staff can access on the computer system, and which functions they can use.

Question 25

Give 5 cyber-attack types.

Answer 25

Identity theft
Data destruction
Data manipulation
Data modification
Data theft

Question 26

What is identity theft?
And identity fraud?

Answer 26

When personal details are stolen during a cyber-attack. The details are then used to make a copy of a person, usually for illegal activity like a passport being issued.

Identity fraud could also occur. Identity theft is when the details are used to commit fraud, such as taking a loan out in someone else’s name.

Question 27

Give a famous identity fraud which happened in 2001.

Answer 27

Abraham Abdallah stole the identity of several famous people, including Steven Spielberg, in an attempt to steal millions of dollars.

Question 28

What is data destruction?

Answer 28

When stored data is destroyed. The data no longer exists.

Question 29

What is data manipulation?

Answer 29

Data is edited or manipulated to meet the needs of the cyber-security attackers.
This type of attack is usually found very quickly, for example, the attackers could change the data in a news feed in Twitter. This could result in false news being published.

Question 30

What is data modification?

Answer 30

Data is changed to meet the needs of the cyber-security attacker. The attack may not be found for some time. The attack is usually financially motivated.

Question 31

What is data theft?

Answer 31

Data is stolen (computer-based data or portable storage or mobile devices).

Question 32

What are vulnerabilities?

Answer 32

A vulnerability is a weakness that allows an attacker to launch a cyber-security attack.

Question 33

Give 3 categories of vulnerabilities you need to be aware of:

Answer 33

Environmental
Physical
System

Question 34

Give an example of environmental vulnerability.

Answer 34

Natural disasters (flooding, earthquakes, lightning strikes)

Question 35

Give two effects of environmental vulnerabilities:

Answer 35

Unusable computer system.
Data + information stored on computers are inaccessible.
Cloud could be accessible.
Buildings storing data could be damaged.
Lightning strikes > electricity surges > affect how storage devices/ computer systems operate.

Question 36

What are physical vulnerabilities?

Answer 36

Physical vulnerabilities relate to the physical computer and storage devices. The most common vulnerability is theft.

Question 37

Give two types of theft.

Answer 37

Intentional
Accidental

Question 38

Give an example of intentional theft.

Answer 38

A break-in happens and the devices are stolen.

Question 39

Give two examples of accidental theft.

Answer 39

An authorised user loses a device.
The device is then found by someone else.
The device may be returned or the contents can be used for illegal activity.
This could lead to identity theft.

Question 40

What is a system vulnerability?

Answer 40

System vulnerabilities relate to the running of the devices and computer system.

Question 41

What are patches?

Answer 41

Software must be kept up to date. Patches are issued by software vendors. These attempt to close any vulnerabilities. The vulnerabilities may have been identified by: the vendors or users of the software.

Patches can be installed automatically. When software is closing, checks are made for any patches. If patches are found these are installed automatically. The software will then close as normal. The user does not have to check for patches and so none are missed.

Question 42

Why do some software updates in real time?

Answer 42

Updates are constantly checked for when a device is connected to the internet.

This can be done automatically and the user does not have to remember to check. This makes sure no updates are missed and the software is always up to date.

Question 43

What are manual updates?

Answer 43

Manual updates can be forgotten by a user. There could be a time delay between the update being released and it being downloaded by the user. If the updates are manually scheduled the computer system may be switched off. The update may not be installed. This increases the risk of a vulnerability and an attack.

Question 44

Internet connectivity devices.

Answer 44

May not need a password to join the connection. This can increase device vulnerability and increases the risk of any device connected to the Wi-Fi network being accessed.

Question 45

The greatest vulnerability of any device or software is the USERS. They must be aware of the vulnerabilities so they do not cause any issues. These issues could compromise the security of (give two):

Answer 45

Computer devices
The computer system
The data and information

Question 46

What can social engineering be used for?

Answer 46

Persuading users to part with information such as passwords, user names/ IDs and other security codes.

Question 47

Give two points of VULNERABILITY TESTING:

Answer 47

• Can be carried out when a computer system is running.
• These tests identify vulnerabilities.
• Steps can then be taken to close these before the system is attacked.

Question 48

Give two CONSEQUENCES of cyber-security attacks (business/ individuals/ both):

Answer 48

Loss (financial, data and reputation)
Disruption (operational, financial, and commercial)
Safety (individuals, equipment, and finance).

Question 49

LOSS (Financial)

Answer 49

Increased security may be needed (this is expensive - purchase, installation, maintenance).

Customers may lose confidence in the business (There could be a reduction in customers. This could lead to reduced income for the business).

Question 50

LOSS - Data

Answer 50

A range of data could be lost: financial, customer, supplier.

A backup may be available.

However, there is always a delay between the data being updated and the backup being completed.

Question 51

Loss - (Reputation)

Answer 51

The reputation of a business may suffer.

The confidence of the customers and suppliers may reduce.

This could leave to a reduction in customers.

Which could lead to less income.

Question 52

Disruption - (Operational)

Answer 52

A business will have backups of data, financial records.

However, it can take time to restore these from the backup.

This may mean the business is not able to function.

This can be because they do not have the up-to-date data.

This will have a negative impact on the business.

Question 53

Disruption - (Financial)

Answer 53

Loss of customers, leading to loss of revenue.

Possible payment of compensation.

Increased costs to improve security and computer devices including installation and maintenance.

Loss of revenue if, for example, invoices are lost.

Question 54

DISRUPTION - Commercial

Answer 54

A business may not be able to operate after an attack.

The commercial consequences depends on the function of the business.

These consequences could include: safety of individuals and/ or limited functioning leading to financial loss.

Question 55

SAFETY - Individual

Answer 55

Big Data means that many businesses, government departments and security services are linked.

An attack can lead to individuals being unsafe.

For example: (prisoners being released early. Transport links being fed incorrect data - railways and airports).

Personal data could also be stolen. These details could be sold on the dark web. This could lead to: (identity theft, burglaries).

Question 56

SAFETY - Equipment

Answer 56

People rely on internet connected equipment to carry out many tasks. These tasks include online shopping, banking.

If the internet connection devices are targeted then none of these tasks can be carried out.

Question 57

SAFETY - Finance

Answer 57

This can occur during and after the attack and during the attack: (access may be denied to a website. If the attack targeted personal data then after the attack identity theft may occur and this also has financial consequences on the person(s) affected).