1.4 Network Security

Question 1

Malware

Answer 1

Malware is malicious software designed to damage, disrupt, or gain unauthorised access to a computer system.
Examples: Viruses, worms, trojans, ransomware.

Question 2

Virus

Answer 2

A computer program often hidden inside another program - it replicates and causes harm like deleting files and corrupting data

Question 3

Worms

Answer 3

Self-replicating programs used to overload systems and consume bandwidth

Question 4

Trojan horses

Answer 4

Passes as a legitimate software. It contains malicious core - users are tricked into downloading this & it is then used to steal data or spy on users

Question 5

Ransomware

Answer 5

Malware that encrypts files/systems and the attacker demands a ransom to unlock them

Question 6

Spyware

Answer 6

Gathers information about a user and sends it back to the originator. - used to steal sensitive information like passwords

Question 7

Social engineering

Answer 7

Tricking people into giving away sensitive information

Question 8

Social engineering eg

Answer 8

Phishing - fake emails/messages that look real & trick users into revealing their personal information through a fake link or other mechanism

Question 9

Brute force attack

Answer 9

When a program automatically tries many password combinations until it finds the correct one (used to break into accounts with simple/weak passwords)

Question 10

Denial of service (DoS) attack

Answer 10

Floods a server or network with huge amounts of traffic to make it slow/crash making services unavailable to disrupt websites

Question 11

Data interception & theft - give 2 examples

Answer 11

When data is intercepted as it travels across a network - attackers can steal sensitive information this way
E.g. packet sniffing, shouldering

Question 12

SQL (Structured Query Language) injection

Answer 12

Where a hacker inserts malicious SQL code into a database query to access, modify, or delete data in a database illegally

Question 13

Penetration testing

Answer 13

A simulated attack on a system by white-hat hackers to find weaknesses before black-hat hackers do; this helps identify vulnerabilities

Question 14

Physical security

Answer 14

-protects the physical parts of a network from damage (fire, flooding, theft, vandalism)
-involves: locks, restricted access to areas (server rooms), surveillance equipment

Question 15

User access levels

Answer 15

-controls which part of the network different users have access to
-helps limit the number of people with access to important data (prevents insider attacks)

Question 16

Anti-malware software

Answer 16

-designed to find and stop malware from damaging a network (eg antivirus programs)
-companies use firewalls to block unauthorised access. They examine all data entering and leaving the network and block any potential threats

Question 17

Encrypting

Answer 17

The process of scrambling data so it can be sent securely over networks

Question 18

Firewall

Answer 18

Hardware or software based security which controls incoming and outgoing network traffic based on a set of rules

Question 19

Passwords

Answer 19

A string of characters used to gain access to a computer system