What is the CIA Triad?
Confidentiality, Integrity and Availability
What does the C in CIA stand for and what does it do?
Confidentiality— keeps data private. Breaches occur when information is exposed to those who should not have access, whether through hacking, insider threats, or accidental disclosure.
What does the I in CIA stand for and what does it do?
Integrity—ensures that information has not been altered in an unauthorized way. Data corruption, unauthorized modification or tampering all threaten integrity which can lead to bad decisions, legal problems and financial loss.
What does the A in CIA stand for and what does it do?
Availability means that systems, networks, and data must be up and running when required. Disruptions, whether accidental (hardware failure) or intentional (e.g. denial-of-service attacks)-can harm operations if availability is compromised.
What is Network Sniffing?
Intercepting data packets as they travel across a network.
What are the different forms of identity theft?
Financial, medical, criminal.
Who is particularly vulnerable to Social Engineering?
New employees and users unfamiliar with procedures are especially vulnerable. Social engineering relies on trust, urgency, and authority.
What is considered a security breach?
An incident resulting in access to unauthorized data, applications, services or networks by bypassing underlying security measures.
True or false: Identity theft is-fraudulent acquisition and use of a person’s private identifying information.
True. There are at least three forms of identity theft: financial, medical and criminal.
What are some examples of financial identity theft?
Stealing a persons bank account or credit card information to apply for credit or take out loans.
What are some examples of medical identity theft?
Using personal information to obtain medical services, prescriptions, or submit fraudulent insurance claims, which can corrupt medical records. Also, buying prescription drugs and submitting fake billing to an insurance company.
What is Ransomware?
A type of malicious software designed to block off access to a computer system until a sum of money is paid.
True or false: Hacktivists target systems to promote political agendas. Cyberterrorists attack infrastructure to cause widespread harm.
True.
Extra credit: who are white-hat hackers?
Hackers employed by organizations to find and fix vulnerabilities before they are exploited.
What are some examples of criminal identity theft?
Providing identifying information to law enforcement in a way that results in a false criminal record or legal consequences for the victim.
What do Password Managers do?
Password Managers securely generate, store, and autofill string unique passwords for each site. Instead of remembering dozens of passwords, users unlock the manager with a single string master password or biometric authentication. The manager then encrypts stored credentials and automatically inserts the correct password ink on the legitimate website, reducing both guessing and phishing risk.
