5.3 cyber security

Question 1

process of brute-force attack

Answer 1

• hacker systematically try
• all diff combos of letters, numbers, symbols
• until eventually find password

Question 2

aim of carrying out brute-force attack

Answer 2

figure out passwork

Question 3

process of data interception

Answer 3

• steal data by tapping into wired/wireless communication link
• wardriving (wireless)
• packet sniffing (wired)

Question 4

aim of data interception

Answer 4

• compromise privacy
• obtain confidential information

Question 5

explain wardriving

Answer 5

locating and using wireless internet connections illegally

Question 6

explain packet sniffing

Answer 6

• uses packet sniffers
• examine packets sent over a line
• all data collected sent back to attacker

Question 7

process of DDoS attack

Answer 7

• flood network with useless spam traffic
• server can only handle finite number of requests
• so server fails as result, struggles to respond to all requests

Question 8

explain how the spam traffic works in DDoS attack

Answer 8

• originates from many diff comptuers (hard to block traffic)
• network of computers infected with malware called bots
• send multiple requests to access web server all at same time
• while bot not being used, called zombie

Question 9

aim of DDoS attack

Answer 9

• prevent users from accessing part of network
• notably, internet server

Question 10

process of hacking

Answer 10

gaining unauthorised access to computer system

Question 11

aim of hacking

Answer 11

• gain personal info
• data change, corrupt, passed on

Question 12

types of malware

Answer 12

• virus
• ransomware
• adware
• trojan horse
• spyware
• worms

Question 13

explain virus

Answer 13

• programs that can replicate themselves
• delete or corrupt files
• cause computer to malfunction
• need active host program on target computer before can actually run and cause harm (need to be executed by trigger)

Question 14

explain ransomware

Answer 14

• attackers encrypt users data
• until certain amount of money paid
• then, decryption key sent to user

Question 15

explain adware

Answer 15

display unwanted ads on user screen

Question 16

explain trojan horse

Answer 16

• program disguised as legitimate software
• used to invite other malware, often installed via trojan horse malware

Question 17

explain spyware

Answer 17

• software that gathers info by monitoring user activity on computer
• send back to cybercriminal who originally sent spyware
• include web browsing activities, personal data

Question 18

explain worms

Answer 18

• programs that can replicate themselves
• intention of corrupting entire network instead of computer alone
• no need for active host program

Question 19

process of pharming

Answer 19

• attacker install malicious code on computer
• redirects user to fake websites

Question 20

process of phishing

Answer 20

• attackers send legitimate-looking emails
• bait user into giving out info

Question 21

process of social engineering

Answer 21

• attacker creates social situation
• leads to victim giving out details

Question 22

what is malware

Answer 22

malicious software

Question 23

aim of pharming

Answer 23

give login details and other personal details

Question 24

aim of phishing

Answer 24

give out personal information

Question 25

aim of social engineering

Answer 25

give out personal details

Question 26

how do access levels keep data safe

Answer 26

different level of access for diff people

Question 27

what are the types of anti-malware

Answer 27

anti-virus, anti-spyware

Question 28

features of anti-virus software

Answer 28

- check software/files before run/loaded on computer - compares possible virus against database of known viruses - any files/programs potentially infected put into quarantine

Question 29

what does anti-spyware do

Answer 29

detects and removes spyware programs

Question 30

types of authentication

Answer 30

- username and password - biometric - two-step verification

Question 31

how does automating software updates help keep data safe

Answer 31

- contain patches that update software security - improve software performance

Question 32

what are firewalls

Answer 32

- either software or hardware - sits between user computer and external network - primary defense against hacking

Question 33

tasks of firewall

Answer 33

- examine traffic between user comp and public network - log all incoming and outgoing traffic and give user warning if security issue

Question 34

how do proxy servers work

Answer 34

- intermediate between user and web server - keep user IP address secret - allow internet traffic to be filtered - can act as firewalls

Question 35

diagram for proxy server

Answer 35

Question 36

what is SSL

Answer 36

-