Ch.2

Question 1

software that enters a computer system without the user’s knowledge or consent and then performs an unwanted and usually harmful action

Answer 1

malware

Question 2

adware

Answer 2

software program that delivers advertising content in a manner that is unexpected and unwanted by the user

Question 3

virus that goes to great lengths in order to avoid detection. What is being defined

Answer 3

armored virus

Question 4

Define backdoor

Answer 4

software code that gives access to program or a service that circumvents normal security protections

Question 5

An attacker who controls a botnet. What is being defined

Answer 5

bot herder

Question 6

Define botnet

Answer 6

logical computer network of zombies under the control of an attacker

Question 7

The structure by which a bot herder gives instruction to zombies in a botnet

Answer 7

command and control (C&C or C2)

Question 8

Define computer virus (virus)

Answer 8

malicious computer code that, like its biological counterpart, reproduces itself on the same computer

Question 9

The act of digging through trash receptacles to find information that can be useful in an attack

Answer 9

dumpster diving

Question 10

Define hoax

Answer 10

a false warning designed to trick users into changing security settings on their computer

Question 11

A social engineering attack that involves masquerading as a real or fictitious character and then playing out the role of that person on a victim. What is being defined

Answer 11

impersonation

Question 12

Define keylogger

Answer 12

software or a hardware device that captures and stores each keystroke that a user types on the computer’s keyboard

Question 13

computer code that lies dormant until it is triggered by a specific logical event. What is being defined

Answer 13

logic bomb

*specific logical event such as going to be fired on a certain day or to force a contractor to hire

Question 14

define macro

Answer 14

a series of instructions that can be grouped together as a single command, often used to automate a complex set of tasks or a repeated series of tasks

Question 15

a computer virus that is written in a script known as a macro. What is being defined

Answer 15

macro virus

Question 16

define malware

Answer 16

software that enters a computer system without the user’s knowledge or consent and then performs an unwanted and usually harmful action

Question 17

malware that rewrites its own code and thus appears different each time it is executed

Answer 17

metamorphic malware

Question 18

define oligomorphic malware

Answer 18

malware that changes its internal code to one of a set number of predefined mutations whenever it is executed

Question 19

a phishing attack that automatically redirects the user to a fake site. What is being defined

Answer 19

pharming

Question 20

define phishing

Answer 20

sending an email or displaying a web announcement that falsely claims to be from a legitimate enterprise in an attempt to trick the user into surrendering private information

Question 21

malware code that completely changes from its original form whenever it is executed. What is being defined

Answer 21

polymorphic malware

Question 22

define program virus

Answer 22

a computer virus that infects executable program files

Question 23

malware that prevents a user’s device from properly operating until a fee is paid. What is being defined

Answer 23

ransomware

Question 24

define rootkit

Answer 24

a set of software tools used by an attacker to hide the actions or presence of other types of malicious software

Question 25

watching an authorized user enter a security code on a keypad. What is being defined

Answer 25

shoulder surfing

Question 26

define social engineering

Answer 26

a means of gathering information for an attack by relying on the weaknesses of individuals

Question 27

unsolicited email. What is being defined

Answer 27

spam

Question 28

define spear phishing

Answer 28

a phishing attack that targets only specific users

Question 29

a variation of spam, which targets instant messaging users instead of email users. What is being defined

Answer 29

spim

Question 30

define spyware

Answer 30

a general term used to describe software that spies on users by gathering information without consent

Question 31

when an unauthorized individual enters a restricted-access building by following an authorized user. What is being defined

Answer 31

tailgating

Question 32

define Trojan horse (trojan)

Answer 32

an executable program that is advertised as performing one activity but which actually performs a malicious activity

Question 33

redirecting a user to a fictitious website based on a misspelling of the URL. also called URL hijacking. What is being defined

Answer 33

typo squatting

Question 34

define URL hijacking

Answer 34

redirecting a user to a fictitious website based on a misspelling of the URL. Also called typo squatting

Question 35

a phishing attack uses telephone calls instead of emails. What is being defined

Answer 35

vishing

Question 36

define watering hole attack

Answer 36

a malicious attack that is directed toward a small group of specific individuals who visit the same website

Question 37

a phishing attack that targets only wealthy individuals. What is being defined

Answer 37

whaling

Question 38

define worm

Answer 38

a malicious program designed to enter a computer via a network to take advantage of a vulnerability in an application or an operating system

Question 39

an infected computer that is under the remote control of an attacker. What is being defined

Answer 39

zombie

Question 40

A (n) _____ requires a user to transport it from one computer to another.

a. worm
b. rootkit
c. virus
d. adware

Answer 40

c

Question 41

Which of these is NOT an action that a virus can take?

a. transport itself through the network to another device
b. cause a computer to crash
c. erase files from a hard drive
d. reformat the hard disk drive

Answer 41

a

Question 42

Which malware locks up a user’s computer and then displays a message that purports to come from a law enforcement agency?

a. virus
b. ransomware
c. worm
d. Trojan

Answer 42

b

Question 43

Which of the following is an attempt to influence a user by coercion?

a. authority
b. social proof
c. intimidation
d. familiarity

Answer 43

c

Question 44

A user who installs a program that prints out coupons but in the background silently collects her passwords has installed a ______.

a. virus
b. worm
c. Trojan
d. logic bomb

Answer 44

c

Question 45

What should you do to completely remove a rootkit from a computer?

a. Flash the ROM BIOS
b. Erase and reinstall all files in the WINDOWS folder
c. Expand the Master Boot Record
d. Reformat the hard drive and reinstall the operating system

Answer 45

d

Question 46

Which of these could NOT be defined as a logic bomb?

a. Erase all data if John Smith’s name is removed from the list of employees
b. Reformat the hard drive three months after Susan Jones left the company
c. Send spam email to all users in the company on Tuesday
d. If the company’s stock price drops below $10, then credit Jeff Brown with 10 additional years of retirement credit

Answer 46

c

Question 47

What is it called when a user makes a typing error when entering a URL that takes him to an imposter website?

a. URL variance
b. typo squatting
c. spell scraping
d. work hijacking

Answer 47

b

Question 48

Which of these is a general term used for describing software that gathers information without the user’s consent?

a. adware
b. spyware
c. scrapware
d. pullware

Answer 48

b

Question 49

Which statement regarding a keylogger is NOT true?

a. hardware keyloggers are installed between the keyboard connector and computer keyboard USB port
b. Software keyloggers are easy to detect
c. Keyloggers can be used to capture passwords, credit card numbers, or personal information
d. Software keyloggers can be designed to send captured information automatically back to the attacker through the Internet

Answer 49

b

Question 50

The preferred method today of bot herders for command and control of zombies is ______.

a. Internet Relay Chat (IRC)
b. botnets
c. Hypertext Transport Protocol (HTTP)
d. spam

Answer 50

c

Question 51

A watering hole attack is directed against _____.

a. wealthy individuals
b. attackers who send spam
c. all users of a large corporation
d. users who access a common website

Answer 51

d

Question 52

______ sends phishing messages only to wealthy individuals.

a. Spear phishing
b. Target phishing
c. Microing
d. Whaling

Answer 52

d

Question 53

What is unsolicited instant messaging called?

a. spim
b. spam
c. vishing
d. SMS phishing

Answer 53

a

Question 54

Michelle pretends to be the help desk manager and calls Steve to trick him into giving her his password. What social engineering attack has Michelle performed?

a. aliasing
b. impersonation
c. luring
d. duplicity

Answer 54

b

Question 55

How can an attacker use a hoax?

a. by sending out a hoax, an attacker can convince a user to read his email more often
b. A hoax could convince a user that a bad Trojan is circulating and that he should change his security settings
c. A user who receives multiple hoaxes could contact his supervisor for help
d. Hoaxes are not used by attackers today

Answer 55

b

Question 56

Which of these items retrieved through dumpster diving would NOT provide useful information?

a. calendars
b. memos
c. organizational charts
d. books

Answer 56

d

Question 57

_______ is following an authorized person through a secure door.

a. Tagging
b. Backpacking
c. Tailgating
d. Caboosing

Answer 57

c

Question 58

Each of these is a reason why adware is scorned EXCEPT ______.

a. it displays the attacker’s programming skills
b. it can interfere with a user’s productivity
c. it displays objectionable content
d. it can cause a computer to crash or slow down

Answer 58

a

Question 59

What is the term used for an attacker who controls multiple zombies in a botnet?

a. zombie shepherd
b. rogue IRC
c. bot herder
d. cyber-robot

Answer 59

c