3.6 Cyber Security Flashcards
What is Cyber Security?
Cyber security is the different practices processes and technologies to protect networks, computers, programs and data from attacks, damage or unauthorized access
What is a process in cyber security
Backing up data is a process
What is a practice in cyber security
Changes passwords regularly and using strong passwords
What is a technology in cyber security
A firewall
What is pharming
Pharming is hacking the DNS server so the destination IP address is changed and it sends you to a fake website where a hacker can steal information
What is removable media
Removable media is USB sticks
They are a problem because they can steal data or infect a computer with malware
What is unpatched or outdated software
Unpatched software has loopholes that a cybercriminal can use to hack your computer and infect it with malware or log on to it
Why are automatic software updates useful
Automatic software updates will automatically patch the loopholes a cyber criminal can use
What is misconfigured access rights
When access rights get misconfigured, it can allow unauthorized people getting access to authorized things
What are weak and default passwords
Weak passwords are easily guessable or can be brute forced quickly by a cyber criminal
Default passwords are set by the company and are easily guessable
What is social engineering
Cyber criminals using tricks to get people to share sensitive information, performing actions or compromising security measures
What is Blagging
Making up an invented scenario to make a targeted victim to share information by using psychological tricks
what information does blagging use to get the targeted victim to share information
Blagging uses personal information from the victim that they get from social media to make it sound more believable
What is shoulder surfing
Shoulder surfing is looking at a password while it is being entered to be able to get the password and log onto an account
What is Phishing
Phishing is when a cyber criminal sends emails to a targeted victim with a link which takes them to a fake website so when they enter their details the cyber criminal will get their username and password and use it on the real website