security Flashcards
how do you defend against interception?
encryption
how to defend against malware?
firewall
how to defend against insider access?
user access levels
how to defend against brute force?
strong passwords and locking accounts after multiple failed attempts
how to defend against DDoS?
firewall
types of malware?
-virus
-worm
-trojan
-rookits
-spyware
-backdoors
-scareware
-ransomware
what does a virus do?
-delete or modify files
-manually activated by user opening infected file(s)
what does a worm do?
-delete or modify files
-automatically replicates so it can get deep into your computer by itself
what does a trojan do?
-delete or modify files
-malware disguised as legitimate software
what is social engineering?
-getting sensitive info or access to networks through influencing people
what is phishing?
-hacker pretends to be big company and baits people into giving away personal information
what is an SQL injection?
-sql code is entered as an input and can cause errors in the main code
how do you defend against network threats?
-penetration testing
-physical security
-passwords
-user access levels
-anti-malware
-encryption
what is penetration testing?
-when organisations employ specialists to simulate attacks on the network and find weaknessess
what is physical security?
-protection of hardware from damage
-protection of access (locks,biometric,surveillance equipment,removal of usb ports)
what are passwords?
-prevent unauthorised users from accessing the network
what are user access levels?
-amount of information that varies between role or rank
what is anti-malware?
-finds and stops malware from damaging a network
what is encryption?
-when data is translated into a code that only people with the correct key can access
