1.4 Network Security

Question 1

What is meant by malware?

Answer 1

Malicious software - an umbrella term for hostile or intrusive executable programs that run on the computer.

Question 2

What are the 5 different types of malware?

Answer 2

• virus
• worm
• Trojan
• spyware
• ransomware

Question 3

What is the intended impact of a virus?

Answer 3

• Damage / delete / corrupt data
• Slow down the device

Question 4

What is the intended impact of a worm?

Answer 4

• Damage / delete / corrupt data
• Slow down the device

Question 5

What is the intended impact of a Trojan?

Answer 5

To infect the device with malware

Question 6

What is the intended impact of spyware?

Answer 6

To record keypresses and transmit to a 3rd party , allowing the gain of personal info

Question 7

What is the intended impact of ransomware?

Answer 7

To prevent users accessing files in order to extort a payment

Question 8

How are viruses used?

Answer 8

• They replicate their code in other programs
  • They infect other computers
  • They harm the computer by deleting, corrupting or modifying files

Question 9

How are worms used?

Answer 9

• A worm replicates itself in order to spread to other computers
  • They might cause no damage to the attacked computers
  • They slow down networks and computers

Question 10

How are trojans used?

Answer 10

• They have a program, game or file which is something the user wants
  • They have negative program code which causes damage, takes control, or provides access to the computer

Question 11

How is ransomware used?

Answer 11

• Holds a computer hostage by locking or encrypting access to it
  • If the data is encrypted, meaning it can’t be recovered by an IT specialist
  • Once a ransom is paid to the attacker, they claim access is restored

Question 12

What is meant by social engineering?

Answer 12

the ability to obtain confidential information by asking people for it. It is based on the premise that ‘People are the weakest link in any system / network’

Question 13

What are the three types of social engineering?

Answer 13

• Shoulder Surfing
  • Phishing
  • Pretexting

Question 14

What is the intended impact of social engineering?

Answer 14

• Obtain personal information and profit from it
  • Gain access to personal data / sensitive files
  • Install malware

Question 15

What is meant by shoulder surfing?

Answer 15

Shoulder surfing is the ability to get information or passwords by observing as someone types them in.

Question 16

What is meant by pretexting?

Answer 16

Impersonating an IT or Account support representative use this false identity to deceive the victim into providing confidential information or granting access to secure areas.

Question 17

What is meant by phishing?

Answer 17

Sending victims a communication that looks genuine, containing a link to fraudulently obtain their personal information.

Question 18

What is the purpose of a brute force attack?

Answer 18

To gain access to a computer system via a user’s account, to then edit / delete data or install malware or use gained password elsewhere or block access to the account.

Question 19

How are brute force attacks orchestrated?

Answer 19

Programs which attempt all the possible password combinations

Question 20

How are denial of service attacks conducted?

Answer 20

People / software make many requests for data from a web server.

Question 21

What is the purpose of denial of service attacks?

Answer 21

The web server cannot respond to all requests and crashes. This could be for financial gain (request payment to stop the attack) or to damage the company’s reputation.

Question 22

How is data interception and theft used?

Answer 22

To gain unauthorised access to data being sent to another device

Question 23

What is the purpose of data interception?

Answer 23

Data transmission is read by an an unauthorised user / program, meaning personal information can be obtained and profited from + can gain access to personal data / sensitive files + can install malware

Question 24

What is the purpose of an SQL injection?

Answer 24

It results in unauthorised access to data / modification of data / deletion of data

Question 25

What 2 methods could be used to limit malware?

Answer 25

Anti-malware software Firewalls

Question 26

What method could be used to limit phishing?

Answer 26

- spam filter

Question 27

What 2 methods would be used for more general social engineering?

Answer 27

User access levels to minimise access to confidential data Firewalls to block known suspicious IP addresses / content

Question 28

What 2 methods could be used to limit a brute force attack?

Answer 28

- set strong passwords - firewalls

Question 29

What method can be used to limit DOS attacks?

Answer 29

- firewall

Question 30

What method can be used to limit data interception and theft?

Answer 30

Encryption

Question 31

What method can be used to limit SQL injections?

Answer 31

- User access levels - restricts what SQL can be executed by a user

Question 32

What does penetration testing ensure?

Answer 32

It makes sure that the system is secure from hackers or other malicious attacks.

Question 33

How does penetration testing limit the attack?

Answer 33

- used to discover weaknesses or vulnerabilities in a system that could be exploited.

Question 34

What does anti-malware software prevent?

Answer 34

- software-based, it prevents malware infecting the system

Question 35

How does anti-malware software limit the attack?

Answer 35

- scans for malware - compares the data to a database of malware - alerts the user and requests actions such as quarantining / deleting the malware or stopping the download of malware

Question 36

What do firewalls prevent?

Answer 36

- software based, they prevent unauthorised access

Question 37

How do firewalls limit the attack?

Answer 37

- scan incoming and outgoing traffic - compare traffic to a set of rules - block traffic that is unauthorised - block incoming/outgoing traffic

Question 38

What do user access levels limit?

Answer 38

- software based, it prevents unauthorised access to data + accidental changes to data

Question 39

How do user access levels limit the attack?

Answer 39

- limits data which users can access - restricts which data can be read / written

Question 40

What do passwords limit?

Answer 40

- software-based, they make it harder for a brute-force attack to succeed (if strong password + locked after set number of failed attempts)

Question 41

How do passwords limit the attack?

Answer 41

- code has to be correctly entered to gain access - use a strong password (letters / symbols / numbers / long) - lock after set number of failed attempts

Question 42

What does encryption prevent?

Answer 42

- any intercepted data is rendered useless

Question 43

How does encryption limit the attack?

Answer 43

- scrambles data using an algorithm, so that if intercepted, it cannot be understood - key needed to decrypt the data

Question 44

What does physical security limit?

Answer 44

- unauthorised access to computer systems and data

Question 45

Give 5 examples of physical security.

Answer 45

- locks - CCTV - alarms - passcode entry to a room - security guards