Module 17

Question 1

When logging off a browser on an office computer or with my personal computer if connected to free/open network what should i do?

Answer 1

Clear the cache

Question 2

The _________ is one of the most well-exploited vectors for infecting a system with malware or stealing information.

Answer 2

web browser

Question 3

what does vector mean

Answer 3

the methods and pathways that attacks use to gain unauthorized access to systems, networks, or application.

Question 4

__________ is malicious software threats and tools designed to vandalize or compromise computer systems.

Answer 4

Malware

Question 5

Name four forms that malware can appear.

Answer 5

1. Viruses and worms
2. Trojan horse
3. Adware
4. Spyware

Question 6

What do you call malware designed to spread to other PCs?

Answer 6

Viruses and worms

Question 7

What do you call an apparently legitimate application that conceals malicious functions, such as spyware or a bot allowing remote control of the PC?

Answer 7

Trojan horse

Question 8

SubSeven RAT management console. What does RAT stand for?

Answer 8

Remote Trojan horse
This console allows users to control a computer system from a remote location.

Question 9

What do you call software or configuration files installed with your agreement that helps a company track what pages you visited and display personalized adverts to you?

Answer 9

Adware

Question 10

What do you call malware installed covertly, possibly as a Trojan or as a result of a worm or virus infection, that tries to track everything you use the computer for. Spyware might record keystrokes, take screenshots of the desktop, or even hack the computer’s camera and microphone.

Answer 10

Spyware

Question 11

Why is it important to use the latest browser software versions?

Answer 11

Legacy browsers are more likely to be susceptible to malware.

Question 12

Are adware and symptoms designed with intent to vandalize the computer system?

Answer 12

No, it’s designed with commercial or criminal intent, but not to destroy the computer system.

Question 13

Why is it difficulty to know whether a computer is infected?

Answer 13

The malware is designed to be hidden. It won’t destroy the computer system, because it’s instead designed to steal information.

Question 14

What two types of malware may spawn pop-ups without the user opening the browser?

Answer 14

Viruses and Trojans

Question 15

Name five obvious symptoms that you computer system is infected by spyware or adware.

Answer 15

1. additional toolbars
2. home page or search results changing suddenly
3. searches returning different results from other PCs
4. slow performance
5. excessive crashing (faults)
6. redirection

Question 16

If I try to open a web page and another opens up, what would I call this symptom? It may imitate the targeted page.

Answer 16

redirection

Question 17

Redirection attacks often attack __________.

Answer 17

Internet search engines

Question 18

Why would a hacker use adware redirection?

Answer 18

Simply to drive traffic through a site.

Question 19

Why would a hacker user spyware redirection?

Answer 19

To capture authentication details

Question 20

Malware may be able to infect your computer because OS or browser software is not up to date and is therefore vulnerable to some sort of exploit. What is the only way to mitigate this type of threat?

Answer 20

By installing the latest software patches.

You should also configure browser settings to ensure you are using the best safe browsing practices.

Question 21

What does CSS stand for?

Answer 21

Cascading style sheets

Question 22

HTTP is a limited protocol in terms of serving any content other than text and pictures. Many websites use active content to play video or add animated and interactive features. There are four ways of creating this type of content. Name them.

Answer 22

1. Scripting
2. Add-ons
3. Flash/Silverlight
4. Java

Question 23

__________ can run either on the server or on the client (browser) to perform quite sophisticated actions. __________ is usually based on JavaScript. JavaScript can also be used to create browser add-ons.

Answer 23

Scripting

Question 24

__________ are two rival development environments, created by Adobe and Microsoft respectively, used to provide interactive web applications and video. The browser must have the __________ or ___________ plug-in installed to view this type of content.

Answer 24

Flash/Silverlight

Question 25

Animated or interactive content often uses a browser __________. these are mini applications that work within the browser. There are many different __________, each working with a different type of content. __________ can also be used to extend or change the functionality of the browser by adding a custom toolbar for instance.

Answer 25

add-ons

Question 26

__________ unlike JavaScript, this is a fully-featured programming language used to develop sophisticated web applications. __________ applications require the Java Virtual Machine to be installed on Windows and for the Java plug-in to be enabled in the browser

Answer 26

Java

Question 27

What does 'server-side scripting' mean?

Answer 27

The code runs on the server to display the web page.

Question 28

Can server-side scripting be disabled?

Answer 28

no

Question 29

What does client-side scripting mean?

Answer 29

The code is placed in the page itself and runs within the browser to display the web page.

Question 30

Name three types of add-ons

Answer 30

1. Extensions 2. Plug-ins 3. Themes

Question 31

Which type of add-on can add functionality to the browser. They might install a toolbar or change menu options. They can run scripts to interact with the pages you are looking at.

Answer 31

Extensions

Question 32

What type of add-on is designed to play some sort of content embedded in a web page, such as Flash, Silverlight, or other video/multimedia format. They can only interact with the multimedia object placed on the page, so it's more limited than an extension.

Answer 32

Plug-ins

Question 33

Which type of add-on changes the appearance of the browser using custom images and color schemes.

Answer 33

Themes

Question 34

How can you view installed add-ons and choose to remove or enable/disable them?

Answer 34

By using the browser settings button or menu.

Question 35

What's a cookie?

Answer 35

A cookie is a plain text file created by a website when you visit it. The purpose of cookies is to store session information so that the website can be personalized for you.

Question 36

An IP address can be quite closely tied to what?

Answer 36

A geographical location.

Question 37

What are the two classes of cookies?

Answer 37

first party cookies third party cookies

Question 38

Which class of cookie is set by the domain you visit.

Answer 38

first party

Question 39

Which class of cookie is set by another domain?

Answer 39

third party

Question 40

Can cookies spread malware?

Answer 40

No, but if there is a virus or a Trojan, it may be able to steal the information contained within the cookie.

Question 41

Do cookies have a self-delete date?

Answer 41

Yes, but sometimes the date is set in the very distant future.

Question 42

What's a pop-up?

Answer 42

A sub-window that appears over the main window.

Question 43

Pop-ups can be implemented using __________ or ___________.

Answer 43

Scripts add-ons

Question 44

How to go incognito mode in google chrome?

Answer 44

CTRL+SHIFT+N

Question 45

How to use incognito mode on Firefox?

Answer 45

CTRL+SHIFT+P

Question 46

When a web browser communicates with a secure (HTTPS) server, it accepts the server's __________ to use its public key to encrypt communications.

Answer 46

digital certificate

Question 47

What does PKI stand for?

Answer 47

Public Key Infrastructure

Question 48

What does CA stand for?

Answer 48

Certificate Authority

Question 49

What represents the commercial CAs that grant certificates to most of the companies that do business on the web.

Answer 49

root certificates

Question 50

If the certificate is highly trusted the address bar is colored _________.

Answer 50

green

Question 51

If the certificate is untrusted or otherwise invalid, the address bar is colored __________ and the site is blocked by a warning message.

Answer 51

maroon

Question 52

What restricts access to a computer or network to a defined list of hosts and applications?

Answer 52

firewall

Question 53

Basic __________ work on the basis of filtering network data packets as they try to pass into or out of the machine.

Answer 53

packet filtering firewall

Question 54

On a TCP/IP network, each host is identified by an IP address, while each application protocol (HTTP, FTP, SMTP, and so on) is identified by a __________.

Answer 54

portal number

Question 55

What two things can a packet firewall be applied to?

Answer 55

1. IP address 2. port number

Question 56

This type of firewall is more advanced and can analyze the contents of network data packets, so long as they are not encrypted, and block them if any suspicious signatures are detected and identify suspicious patterns of activity.

Answer 56

Stateful inspection

Question 57

A __________ firewall is a dedicated appliance with the firewall installed as firmware.

Answer 57

hardware

Question 58

A __________ firewall is installed as an application on a workstation or server.

Answer 58

software

Question 59

Most __________ feature a built-in firewall, configured via the web management interface.

Answer 59

Internet routers

Question 60

A __________ may be installed on a client PC to protect it.

Answer 60

simple host firewall

Question 61

What's another name for simple host firewall?

Answer 61

personal firewall

Question 62

What is enabled on all network connections by default unless it has been replaced by a third-party firewall?

Answer 62

Windows Defender Firewall

Question 63

Why isn't it a good idea to run two host firewalls at the same time?

Answer 63

They would conflict with each other and be very difficult to configure and troubleshoot.

Question 64

If I want to configure my firewall what is the path I'd have to take to access it?

Answer 64

Windows Defender Security Center > Firewall & network protection.

Question 65

What link lets you configure applications that are allowed to accept incoming Internet connections?

Answer 65

Allow an app or feature

Question 66

On an enterprise network, a network firewall is likely to be deployed to monitor and control all traffic passing between the local network and the Internet. On networks like this, clients might not be allowed to connect to the Internet directly but forced to use a ___________ instead.

Answer 66

proxy server

Question 67

A proxy server can be configured as a _________ and apply other types of content filtering rules.

Answer 67

firewall

Question 68

Some proxy servers work __________ so that clients use them without any extra configuration of the client applications. Other proxies require that client software, such as the browser, be configured with the __________ and port of the proxy server. (This information would be provided by __________).

Answer 68

transparently IP address network administrator