1.4 - Network security

Question 1

What are the forms of attack?

Answer 1

• Active
• Passive
• External
• Internal

Question 2

What is an active attack?

Answer 2

Where the hacker attempts to modify or delete data

or

to prevent a network from operating correctly

Question 3

What is a passive attack?

Answer 3

Where the hacker monitors a network in order to gain information

Question 4

What is a passive attack also known as?

Answer 4

Eavesdropping

Question 5

What is malware?

Answer 5

Malicious software that is designed to hack a system

Question 6

What is an Internal attack?

Answer 6

Where someone within an organisation attempts to hack its network

Question 7

What is an External attack?

Answer 7

Where someone outside of an organisation attempts to hack its network

Question 8

What is Social engineering?

Answer 8

Tricking others into revealing their personal data by posing as a trusted source

Question 9

Give some examples of some types of Social engineering:

Answer 9

• Phishing
• Shoulder surfing
• Blagging

Question 10

What is phishing?

Answer 10

An attempt to gain personal information about someone by way of deception by email

Question 11

What is a Brute force attack?

Answer 11

Automated or manual attempts to gain unauthorized access to secure areas by trying all the possible password or key combinations

Question 12

How can a Brute force attack be sped up?

Answer 12

If multiple computer systems are used

Question 13

What is a DoS attack?

Answer 13

Severs & devices are flooded w/too many requests/ packets, causing them to crash or become unstable

Question 14

What does DoS stand for?

Answer 14

Denial of service

Question 15

What is a DDoS?

Answer 15

A coordinated attack using a botnet of infected systems to overload a server with requests

Question 16

What does DDoS stand for?

Answer 16

Distributed Denial of Service

Question 17

What is a botnet?

Answer 17

A large group of devices controlled and use maliciously by an attacker

Question 18

What is Data interception & theft?

Answer 18

Data may be intercepted during transmission, but physical theft can occur where storage devices/ data files are left insecurely

Question 19

What are SQL injections?

Answer 19

Pieces of malicious SQL is entered into a website’s input box which then reveal sensitive information

Question 20

When is a SQL used?

Answer 20

To search databases/ access information

Question 21

What does SQL stand for?

Answer 21

Structured Query Language

Question 22

Describe what happens when data is entered into a webform?

Answer 22

The website will contact the database server to find the account details & display them

Question 23

Describe what happens when a hacker enters a malicious SQL into the password field:

Answer 23

It will modify the SQL that is executed
—> They can gain administrator privileges or view + edit contents of the database

Question 24

What is Interception?

Answer 24

When data packets on a network are intercepted by a third party and copied to a different location than the intended destination

Question 25

Name the software that is used in **interception**

Answer 25

Packet sniffers

Question 26

What is **Blagging**?

Answer 26

Dishonestly persuading someone to divulge personal information by deception

Question 27

Give an example of **Blagging**

Answer 27

Someone makes up a story to gain a person’s interest and uses this to encourage them to give away information about themselves, or even send money

Question 28

What is **Shouldering**?

Answer 28

Looking over someone's shoulder when they enter a password or PIN

Question 29

What is **spyware**?

Answer 29

Software that secretly records the activities of a user on a computer

Question 30

What is **keyloggers**?

Answer 30

Secretly records the key presses of a user on a computer ---> Data is sent back to the attacker

Question 31

What is the *main aim* of **keyloggers and spyware**?

Answer 31

To record usernames, passwords & credit card information

Question 32

What are **worms**?

Answer 32

Self-replicate without any user help. They spread from system to system by finding weaknesses in software. ---> Spread very quickly

Question 33

What are **Viruses**?

Answer 33

Self replicates without any user help and spreads from system to system by attaching itself to infected files

Question 34

How are **viruses** activated?

Answer 34

When opened by a human

Question 35

What is **Trojans**?

Answer 35

Malware that is disguised as legitimate software - users are tricked into installing it

Question 36

How are *Trojans* spread?

Answer 36

Users install them not realising they have a hidden purpose ---> Gives the attacker a backdoor access to the system

Question 37

What is **Ransomware**?

Answer 37

Locks files on a computer system using encryption so that a user can no longer access them

Question 38

What is the *main aim* of **Ransomware**?

Answer 38

Attacker demands money from the victim to decrypt the data

Question 39

Why are **ransomware attackers** so hard to *trace*?

Answer 39

They use digital currencies (like bitcoin) which makes it hard to trace them

Question 40

What measures should organisations be taking to prevent their network from having any *vulnerabilities*?

Answer 40

* Regularly test network & find any weaknesses * Use passwords * Enforce user access levels * Install anti-malware software & firewall * Encrypt sensitive data

Question 41

Why should organisations be **using passwords** to prevent their network from having any *vulnerabilities*?

Answer 41

To prevent unauthorised people from accessing the network

Question 42

Why should organisations **Enforce user access levels** to prevent their network from having any *vulnerabilities*?

Answer 42

To limit the number of people with access to sensitive information

Question 43

What do **user access levels** determine the access to?

Answer 43

* Software * Email * Internet access * Documents and data * Ability to install and/or remove software * Ability to maintain other users' accounts

Question 44

What is **encryption**?

Answer 44

The process of scrambling data into an unreadable format so that attackers cannot understand it if intercepted during transmission

Question 45

How is *data* **encrypted**?

Answer 45

Using an encryption key - only at the correct destination will the encryption key convert the data back into its original form

Question 46

What is **anti-malware software**?

Answer 46

Software used to locate and delete malware (like viruses) on a computer system

Question 47

How does **anti-malware software** work?

Answer 47

* Software scans each file on computer and compares it against a database of known malware. * Files w/ similar features of malware are identified and deleted.

Question 48

Why must **anti-malware software** be regularly **updated**?

Answer 48

New forms of malware are created each day by attackers, therefore it must be regularly updated to keep systems secure

Question 49

What are some other *roles* of **anti-malware software**?

Answer 49

* Checks all incoming and outgoing emails + attachments * Checks files as they are downloaded * Scans the hard drive for viruses and deletes them

Question 50

Why should organisations **Install anti-malware software & firewall** to prevent their network from having any *vulnerabilities*?

Answer 50

To prevent & destroy malicious software attacks

Question 51

Give some examples of **anti-malware**?

Answer 51

* Anti-virus software * Anti-phishing tools * Anti-spyware software

Question 52

What is the main *disadvantage* of anti-malware?

Answer 52

It can only detect, prevent and remove known malware

Question 53

What is a **firewall**?

Answer 53

A tool that examines all data entering & leaving the network & block any potential threats

Question 54

How does a **firewall** check whether a *data packet* should be given **access to the internet**?

Answer 54

It examines the source and destination address of each data packet

Question 55

What are some *roles* of a **firewall**?

Answer 55

* Blocks access to insecure websites * Blocks certain programs from accessing the internet * Blocks unexpected / unauthorised downloads * Prevents specific users on a network accessing certain files

Question 56

How can **physical security** be used to protect computer systems?

Answer 56

* Lock - Can be used to prevent access to certain locations that store confidential data (e.g. Server rooms) * Biometric devices - Require input of a human characteristic. When inputted, this is checked against a database and will allow access to a certain user * CCTV cameras * Alarms

Question 57

What is *Penetration testing*?

Answer 57

When organisations employ specialists to *simulate* potential attacks on their network

Question 58

What is *Penetration testing* used for?

Answer 58

To identify possible weaknesses in a network's security by trying to exploit them ---> Results are then reported back

Question 59

What is *Penetration testing* also known as?

Answer 59

Pentesting

Question 60

Give some common prevention methods for **Spyware**?

Answer 60

Anti-spyware

Question 61

Give some common prevention methods for **Viruses**?

Answer 61

Anti-malware

Question 62

Give some common prevention methods for a **DoS attack**?

Answer 62

Having a firewall

Question 63

Give some common prevention methods for a **Brute-force attack**?

Answer 63

Strong passwords

Question 64

Give some common prevention methods for **Phishing**?

Answer 64

User awareness

Question 65

Give some common prevention methods for **Blagging**?

Answer 65

User awareness

Question 66

Give some common prevention methods for **Shoulder surfing**?

Answer 66

Concealing passwords/ PINs

Question 67

Give some common prevention methods for a **SQL injection**?

Answer 67

Penetration testing

Question 68

What are features of a **strong password**?

Answer 68

*At least eight characters * Include upper case * Include lower case * Include special characters * Include numbers