Chapter 2

Question 1

malware

Answer 1

Software designed to infiltrate a computer system and possibly damage it
without the user’s knowledge or consent.

Question 2

virus

Answer 2

Code that runs on a computer without the user’s knowledge

Question 3

worm

Answer 3

Code that runs on a computer without the user’s knowledge; a worm selfreplicates,
whereas a virus does not.

Question 4

Trojan horse

Answer 4

An application that appears to perform desired functions but is actually
performing malicious functions behind the scenes.

Question 5

ransomware

Answer 5

A type of malware that restricts access to a computer system, and demands
a ransom be paid.

Question 6

spyware

Answer 6

A type of malicious software either downloaded unwittingly from a website or
installed along with some other third-party software.

Question 7

adware

Answer 7

Type of spyware that pops up advertisements based on what it has learned
about the user.

Question 8

grayware

Answer 8

applications that are behaving improperly
but without serious consequences; often describes types of spyware.

Question 9

rootkit,

Answer 9

A type of software designed to gain administrator-level control over a computer
system without being detected

Question 10

spam

Answer 10

The abuse of electronic messaging systems such as e-mail, broadcast media, and
instant messaging.

Question 11

threat vector

Answer 11

The method a threat uses to gain access to a target computer.

Question 12

attack vector

Answer 12

The path or means by which an attacker gains access to a computer.

Question 13

typosquatting

Answer 13

A method used by attackers that takes advantage of user
typos when accessing websites.

Question 14

botnet

Answer 14

group of compromised computers used to distribute malware across the
Internet

Question 15

active
interception

Answer 15

Normally refers to placing a computer between the sender and
the receiver in an effort to capture and possibly modify information.

Question 16

privilege escalation

Answer 16

The act of exploiting a bug or design flaw in a software or fi rmware
application to gain access to resources that normally would’ve been protected from
an application or user.

Question 17

time bomb

Answer 17

Trojan set off on a certain date.

Question 18

open mail relay

Answer 18

enables anyone on the Internet to
send e-mail through an SMTP server.

Question 19

hardware security module

Answer 19

physical device that deals with the encryption of
authentication processes, digital signings, and payment processes.

Question 20

bluejacking

Answer 20

The sending of unsolicited messages to Bluetooth-enabled devices such as
mobile phones and tablets.

Question 21

bluesnarfing

Answer 21

The unauthorized access of information from a wireless device through a
Bluetooth connection.

Question 22

storage segmentation

Answer 22

A clear separation of organizational and personal information,
applications, and other content.

Question 23

mobile device management (MDM)

Answer 23

A centralized software solution that allows for the
control and confi guration of mobile devices.