Chapter 19 - Incidents And Ethics Flashcards
Hacktivists are motivated by what factors?
Political motivation with thrill of hacking
What is the best way to recognize abnormal and suspicious behavior on your system?
Know what your normal system activity looks like.
According to (ISC)2 code of ethics, how are CISSPs expected to act?
Key word is act. Answer is honorably, honestly, justly, responsibly, and legally.
Which actions are considered unacceptable and unethical according to RFC 1087, “Ethics and Internet”
Seeks to gain unauthorized access to the resources of the Internet
Disrupts the intended use of the Internet
Wastes resources (people, capacity, computer) through such actions
Destroy the integrity of computer-based information
Compromises the privacy of users
Direct Evidence
Direct evidence can prove a fact all by itself and does not need backup information to refer to. When using direct evidence, presumptions are not required. One example of direct evidence is the testimony of a witness who saw a crime take place. Although this oral evidence would be secondary in nature, meaning a case could not rest on just it alone, it is also direct evidence, meaning the lawyer does not necessarily need to provide other evidence to back it up. Direct evidence often is based on information gathered from a witness’s five senses.
Three steps for virus escalation
- Identify the virus and notify personnel.
- Action/Reaction involves containing the virus and determining how to solve the problem.
- Follow up is repairing any damage and implementing controls to prevent future viruses.
Three steps for virus escalation
- Identify the virus and notify personnel.
- Action/Reaction involves containing the virus and determining how to solve the problem.
- Follow up is repairing any damage and implementing controls to prevent future viruses.
