CYBER CHAPTER 1

Question 1

Cat fishing

Answer 1

The process of creating a fake online profile in order to trick people into believing they are someone else for financial gain.

Question 2

Blacklist

Answer 2

Used to refer to a list of banned IP addresses, applications or users

Question 3

Whitelist

Answer 3

Used to refer to a list of explicitly allowed IP addresses, applications, or users

Question 4

Authentication

Answer 4

The process of proving an individual is who they claim to be

Question 5

Threat

Answer 5

This generally refers to anything that has the potential to cause our data, systems and networks harm

Question 6

Exploit

Answer 6

A clearly defined way to breach the security of a system

Question 6

Availability

Answer 6

Ensures systems and data are accessible and operational for authorized users when needed

Question 6

Non-Repudation

Answer 6

Guarantees proof of actions or communications, preventing denial of their occurrence

Question 7

Data Mining

Answer 7

The activity of analyzing and/or searching through data in order to find items of relevance, significance or value

Question 8

Vulnerabilities

Answer 8

These are weaknesses within a system or network that can be exploited to cause us harm

Question 9

Risk

Answer 9

This refers to the likelihood of something bad happening. A risk requires both a threat and a vulnerability to exist

Question 10

Zero Day

Answer 10

This is used to describe a threat that is unknown to security specialists and has not been addressed

Question 11

Hack Value

Answer 11

The perceived worth or challenge of hacking a target, making it attractive to hackers for prestige, curiosity, or potential gain.

Question 12

Logic Bomb

Answer 12

A malicious code that is only triggered when a set of conditions are met

Question 13

Obfuscation

Answer 13

A term used to describe the tactic of making code unclear so that humans or programs like an antivirus cannot understand it

Question 14

Honey Pot

Answer 14

A decoy or trap for hackers

Question 15

Spoof

Answer 15

The act of falsifying the identity of the source of a communication or interaction

Question 16

Malware

Answer 16

Malicious software designed to disrupt, damage, or gain unauthorized access to systems

Question 17

Virus

Answer 17

A type of malware that attaches itself to files and spreads between devices when executed

Question 18

Trojan (Trojan Horse)

Answer 18

Malicious software disguised as legitimate, granting unauthorized access to systems

Question 19

Spyware

Answer 19

Software that secretly gathers user information without consent

Question 20

Adware

Answer 20

Software displaying unwanted advertisements, often bundled with free software

Question 21

Ransomware

Answer 21

Malware that encrypts files and demands payment for decryption

Question 22

Phishing

Answer 22

Fraudulent attempts to acquire sensitive information by impersonating trustworthy entities

Question 23

Spoofing (Email)

Answer 23

Faking the sender’s email address to deceive recipients

Question 24

Social Engineering

Answer 24

A method of attack where an attacker manipulates people into revealing sensitive information or preforming actions that compromise security, often through deception or psychological manipulation by taking advantage of human nature.

Question 25

Denial of Service Attack (DoS)

Answer 25

An attack designed to make a computer, network, or service unavailable to its intended users by overwhelming it with a flood or traffic or by exploiting vulnerabilities to disrupt its normal opereation.

Question 26

Authorization

Answer 26

Granting users permission to access specific resources or perform specific actions based on their credentials

Question 27

Disclosure

Answer 27

The unauthorized release or exposure of confidential information to unauthorized entities

Question 28

Deniability

Answer 28

The ability to deny involvement in an action or communication, often by obscuring the origin or attribution of an attack or message, making it difficult to prove the party responsible.

Question 29

Accounting

Answer 29

Tracking user actions and resource usage within a system to ensure accountability and traceability

Question 30

Alteration

Answer 30

Modification or tampering of data, potentially impacting its integrity or trustworthiness

Question 33

On-Boarding policy

Answer 33

A set of procedures and security guidelines for integrating new employees, users, or devices into an organization's systems. It ensures proper access control, security configurations, and compliance with cyber-security policies.

Question 34

Tailgating

Answer 34

(also called piggybacking) is a social engineering attack where an unauthorized person gains physical access to a restricted area by following an authorized individual. This often happens when someone holds the door open for them without verifying their credentials.