S6 Cyber Security Flashcards
(36 cards)
What is computer security and why is it important?
Computer security involves protecting computer systems and information from harm, theft, and unauthorized use. It is important to safeguard sensitive data and ensure the smooth operation of services.
How does a firewall help secure a computer system?
A firewall monitors and controls incoming and outgoing network traffic based on security rules.
Example: Blocking unauthorized access while permitting legitimate communication.
What role does antivirus software play in securing a computer system?
Antivirus software detects, prevents, and removes malware.
Example: Regularly scanning files and quarantining infected ones to prevent damage.
How does encryption contribute to computer security?
Encryption converts data into a coded format to prevent unauthorized access.
Example: Using encryption for email communications and storing sensitive information.
Why are strong passwords and multi-factor authentication important for security?
Strong Passwords: They are difficult to guess, usually containing a mix of letters, numbers, and symbols. Multi-Factor Authentication (MFA): Requires more than one method of authentication to verify a user.
Example: Passwords like P@ssw0rd123! and MFA involving both a password and a code sent to a phone.
What is the significance of regular software updates and patching?
Regularly updating software fixes security vulnerabilities.
Example: Installing security patches for operating systems and applications.
How does data backup enhance security?
Regularly backing up data ensures recovery from data loss or corruption.
Example: Using cloud storage or external hard drives for backups.
Why is education and training important in cybersecurity?
Educating users about cybersecurity best practices helps prevent attacks.
Example: Training employees on how to recognize phishing attempts and avoid social engineering attacks.
Summarize the importance of a multi-layered approach to secure computer systems.
Implementing firewalls, antivirus software, encryption, strong passwords, regular updates, data backups, and user education collectively provide robust protection against threats.
What is cyber security?
The processes, practices and technologies designed to protect networks, computers, programs and data from attack, damage or unauthorised access.
What is the main purpose of cyber security?
To protect systems and data from unauthorised access, damage, or theft.
What is social engineering?
Manipulating people to give up confidential information.
What is malware?
Malicious software designed to damage, disrupt or gain unauthorised access to systems.
What is pharming?
A cyber attack that redirects a website’s traffic to a fake website.
Why are weak or default passwords a threat?
They are easy to guess or crack, making systems vulnerable to unauthorised access.
What is the risk of misconfigured access rights?
Users might have access to data or functions they shouldn’t, increasing security risk.
Why are removable media a security threat?
They can carry malware or be lost/stolen, leading to data breaches.
What is the danger of unpatched software?
It may have known vulnerabilities that can be exploited by attackers.
What is penetration testing?
Attempting to gain access to a system without normal credentials to test for vulnerabilities.
What is internal penetration testing?
Simulates an attack from within the organisation using some knowledge or credentials.
What is external penetration testing?
Simulates an attack from outside the organisation, with no credentials or insider knowledge.
What is blagging (pretexting)?
Creating a fake scenario to trick someone into giving up information.
What is phishing?
Fraudulently obtaining private info, usually via email or text, by pretending to be trustworthy.
What is shouldering (shoulder surfing)?
Watching someone enter private info, such as PINs, over their shoulder.
