6. Cyber Security

Question 1

What is cybersecurity?

Answer 1

The protection of a computer/network from a cyber attack.

Question 2

What is pharming?

Answer 2

Pharming is a cyber attack intended to redirect a website’s traffic to a fake website.

Question 3

What is social engineering?

Answer 3

the art of manipulating people so they give up confidential information.

Question 4

What are the 3 main methods of social engineering?

Answer 4

• blagging
• phishing
• shouldering

Question 5

What is blagging?

Answer 5

Blagging is the act of creating and using an invented scenario to make a targeted victim directly give away information such as passwords.

Question 6

what is Phishing?

Answer 6

Sending emails pretending to be a reputable company to try and gain people’s personal details

Question 7

What is fraud?

Answer 7

The crime in which you purposefully deceive someone for monetary gain

Question 8

What is shouldering?

Answer 8

Spying on people to find out usernames, passwords or pin codes.

Question 9

What is malware?

Answer 9

Software that is designed to disrupt or harm a user’s computer

Question 10

What are the three main types of malware?

Answer 10

• virus
• trojan horse
• spyware

Question 11

What is a virus?

Answer 11

This is a computer program that infiltrates a computer system and replicates itself. It is intended to cause damage to a computer system by corrupting data or by using up all the available memory, causing it to crash.

Question 12

What is a Trojan horse?

Answer 12

This is a type of malware that is disguised as a harmless file or download. When the file is downloaded, the malware is downloaded with it. Once the malware is downloaded, it can carry out the attack it was designed to perform.

Question 13

What is spyware?

Answer 13

These are computer programs that to gather data about people without their knowledge.


Question 14

Why does having a weak password make you susceptible to a cyber attack?

Answer 14

Because a weak password is easier to guess and therefore it would be easier for an attacker to gain access to your system.

Question 15

Why does having misconfigured access rights make you susceptible to a cyber attack?

Answer 15

For example, if a new employee for a company gets full access rights, they may decide to sell them for a profit, which would be terrible for the company as now sensitive, private information is being made public.

Question 16

Why does having removable media make you susceptible to a cyber attack?

Answer 16

Removable media is very easily lost, which could result in the compromise of large volumes of sensitive information stored on it. Some media types will retain information even after user deletion, placing information at risk if in the wrong hands.

Question 17

Why does having unpatched or outdated software proved to be a cyber security threat?

Answer 17

Data Breaches: Unpatched security vulnerabilities give attackers an entry point to gain unauthorized access to the company’s sensitive data.
System Downtime: Outdated software and systems are more prone to performance issues, crashes, and instabilities, resulting in the system not working properly

Question 18

What is penetration testing?

Answer 18

Penetration testing is the process of attempting to gain access to resources without knowledge of usernames, passwords and other normal means of access.

Question 19

What is the purpose of penetration testing?

Answer 19

To evaluate the security of the system.

Question 20

What are the two types of penetration testing?

Answer 20

• white-box testing
• black-box testing

Question 21

What is white-box testing and what does it simulate?

Answer 21

when the person or team testing the system has knowledge of and possibly basic credentials for the target system, simulating an attack from inside the system (a malicious insider)

Question 22

What is black-box testing and what does it simulate?

Answer 22

when the person or team testing the system has no knowledge of any credentials for the target system, simulating an attack from outside the system (an external attack).

Question 23

what is biometric security

Answer 23

Authentication method which verify users by their physical characteristics like their fingerprints

Question 24

What are password systems?

Answer 24

Using another authentication system in addition to users having passwords to add an extra layer of confidence that the correct person is trying to access the system.

Question 25

What is a CAPTCHA?

Answer 25

Showing text to a user which cannot be recognised by computers, as the phrase has been distorted past the point of computer recognition, and then asking the user to input the phrase into a text box

Question 26

What is the purpose of CAPTCHA?

Answer 26

to differentiate bots from authentic users to stop spammers from hijacking forums and comment sections of various sites

Question 27

What are automatic software updates?

Answer 27

the process in which your software applies critical updates without seeking confirmation from a user

Question 28

What does ‘CAPTCHA’ stand for?

Answer 28

Completely Automated Public Turing test to tell Computers and Humans Apart

Question 29

give 3 examples of when it would be suitable to use a CAPTCHA system. (3)

Answer 29

any 3 from
- making an account on a website
- accessing an account in a website
- online voting
-ticket purchasing
- pages where comments/reviews can be posted