Week Two - Cybersecurity Basic Flashcards
What’s the core idea of cybersecurity?
Protecting systems, data, and users from getting hacked, leaked, or misused.
Basically—it’s about keeping people out who shouldn’t be in.
What’s the biggest weak point in most cyber breaches?
Humans. Most attacks start with someone clicking a bad link or reusing weak passwords.
It’s almost always people, not tech, that opens the door.
What’s phishing?
Fake messages (usually emails) that trick people into giving up passwords or clicking malicious links.
It’s like someone pretending to be your boss and asking you to send a file.
What’s MFA and why do companies use it?
Multi-Factor Authentication—extra login step using your phone or app. Makes it way harder for hackers to break in.
Even if they get your password, MFA stops them.
What does ‘encryption’ actually do?
It scrambles your data so only the right people (with the key) can read it.
Even if someone steals it, it’s gibberish without the unlock.
What’s a firewall?
A barrier that filters what gets in or out of a network. Stops sketchy traffic before it reaches systems.
Think of it like a bouncer—it keeps bad traffic out.
What’s ransomware?
A type of attack where hackers lock your files and demand money to unlock them.
They hijack your system and hold it hostage.
Why do companies care about ‘endpoint protection’?
It secures devices like laptops and phones so they don’t become entry points for attackers.
Even one vulnerable laptop can put the whole company at risk.
What’s the point of SOC 2 or similar security certifications?
They prove a company takes data protection seriously—often required in B2B SaaS.
It’s like a trust badge that shows you’re not reckless with customer data.
What does it mean when someone says ‘we follow a zero trust model’?
It means no one—inside or outside the company—automatically gets access. Every user and device has to verify constantly.
It’s like: trust no one, even inside the house. Prove who you are, every time.
