Cyber Security

Question 1

Brute Force Attack:

Answer 1

trial-and-error method to crack passwords by trying every possible combination until the correct one is found

Question 2

Aim of brute force attack

Answer 2

to gain unauthorised access to a system or network

Question 3

Data interception

Answer 3

eavesdropping on communication channels to intercept and steal sensitive information, It uses packet sniffing

Question 4

Packet sniffing

Answer 4

uses packet sniffers to examine data packets sent over a line, all data collected is sent back to the attacker

Question 5

Aims of data interception

Answer 5

• to steal sensitive information
• Can delete or corrupt files/data

Question 6

Distributed Denial of Service (DDoS) Attack

Answer 6

multiple computers are used as bots, to flood a server with lots of requests at the same time which the server can’t respond to; causing it to crash and become unavailable to users

Question 7

Aims of DDoS

Answer 7

Revenge
Entertainment value
To affect a company’s reputation
To test a systems resilience
To demand a ransom to stop it

Question 8

Process of DDoS

Answer 8

• Malware downloaded to several computers
• Computers turn into bots.
• Creating a network of bots
• Third party initiates the attack
• Bots send requests to a web SERVER at the same time
• Web server fails due to the requests
• Legitimate requests cannot reach the web server

Question 9

Hacking

Answer 9

gaining unauthorised access to a system or network to steal or manipulate data

Question 10

Aims of hacking

Answer 10

• Identity theft
• gain personal information
• Data can be deleted, changed or corrupted.

Question 11

Virus

Answer 11

piece of code that attaches itself to a file and replicates itself to spread to other files on the computer.

Question 11

Aims of virus

Answer 11

• cause damage to the system
• deleting data
• damaging hardware

Question 12

Worm

Answer 12

standalone program that can spread and replicate itself over computer networks. It can take up storage space and bandwidth

Question 13

Trojan horse

Answer 13

software that is disguised as a legitimate software, when downloaded the other malware it contains is installed.

Question 14

Adware

Answer 14

code that generates unwanted adverts on a user’s computer, when clicked may link to viruses or redirects users to fake websites.

Question 15

Ransomware:

Answer 15

code that stops a user accessing data by encrypting the data, a fee has to be paid to decrypt the data

Question 16

Effect of ransomware

Answer 16

• It can cause data loss
• financial damage
• disrupt business operations

Question 17

Spyware

Answer 17

software that records the key presses on computer by user, the data is analysed for patterns and personal details are identified and sent to a third party

Question 18

Prevention of spyware

Answer 18

• drop down boxes
• touchscreen keyboard
• an algorithm that scrambles the data

Question 19

Phishing

Answer 19

Attackers send legitimate looking emails, this contains a link to a fake website where the user is encouraged to enter their details

Question 20

Aim of phishing

Answer 20

steal sensitive information

Question 21

Pharming

Answer 21

malicious code being downloaded on computer without the user’s knowledge
This redirects the user to a fake website where they’re encouraged to enter their personal details

Question 22

Aims of pharming

Answer 22

steal sensitive information

Question 23

Social engineering

Answer 23

manipulating individuals to gain access to confidential information.

Question 24

Aims of social engineering

Answer 24

Exploit human behaviour and vulnerabilities to gain unauthorised access to a system or network

e.g baiting, impersonation

Question 25

Phising prevention

Answer 25

• Don’t open links from unknown emails
• Use anti-phishing tools
• Block pop up ads

Question 26

Firewalls

Answer 26

• can be software or hardware based
• monitors incoming and outgoing traffic between the computer and the network
• user sets criteria for the traffic (whitelist and blacklist), traffic is compared with this
• firewall will accept or reject based on this
• Can alert user

Question 27

DDoS prevention

Answer 27

Proxy server

Question 28

Proxy Server

Answer 28

• act as an intermediate between a user and a web server.
• It examines and filters incoming internet traffic
• Protects against DDoS
• If an attack is launched it hits the proxy server instead
• Used to direct invalid traffic away from server
• Proxy server blocks multiple requests from the same IP address within a timeframe
• Keeps users IP addresses hidden

Question 29

Similarities of Firewalls and Proxy servers:

Answer 29

Filter incoming network traffic
Store backlist or whitelast
Block unauthorised access
Keep a log of traffic
Can be hardware or software or both.

Question 30

Differences of firewalls and proxy servers:

Answer 30

Proxy server used to prevent DDoS
Proxy can hide users IP address, firewall does not hide users IP address
Proxy intention is to divert attack from server, firewall is to stop unauthorised access.
Proxy protects web servers, firewalls protect individual computers.

Question 31

NOTE:
when to say firewall and when to say proxy server?

Answer 31

if questions says to protect a server, say proxy, if it says a computer, say firewall

Question 32

SSL

Answer 32

• Security protocl which encrypts data transmitted over internet
• It works by sending a digital certificate to the user’s browser
• This contains the public key which can be used for authentication
• Once the certificate is authenticated, the transaction will begin

Question 33

Saftey preventions

Answer 33

• Access Rights
• Passwords
• Virtual Methods (touchscreen keyboard)
• Physical Methods (CCTV)
• Firewall
• Proxy Server
• Two-factor authentication
• Biometric Device
• Encryption
• Anti/spyware/virus/malware