What is malware?
Software designed to harm or exploit a computer system.
What is a virus?
Malware that attaches to programs/files and spreads when shared.
What is a worm?
Standalone malware that self-replicates across networks.
What is a Trojan?
Malware disguised as legitimate software to trick users.
Why is a new reputable CD/DVD unlikely to contain a virus?
It is read-only and produced securely so cannot be altered after manufacture.
What is social engineering?
Tricking people into revealing confidential information.
What is phishing?
Fraudulent emails/websites used to steal personal or login details.
Give one sign of a phishing email
Spelling mistakes or generic greeting (not personalised).
How to protect against phishing?
Do not click suspicious links and verify sender authenticity.
What is blagging?
Tricking someone into giving confidential information.
What is brute force attack?
Trying many password combinations until correct one is found.
What is a DoS attack?
Flooding a network/server to make it unavailable.
What is shoulder surfing?
Watching someone enter passwords or PINs.
What is a man-in-the-middle attack?
Intercepting and possibly altering communication between two parties.
What is SQL injection?
Inserting malicious code into database queries to gain access.
How to prevent SQL injection?
Input validation and restricting database permissions.
What is penetration testing?
Testing a system to find security weaknesses.
What does antivirus software do?
Prevents
Why must antivirus be updated?
New viruses are constantly created.
What is a firewall?
System that monitors and blocks unauthorised network traffic.
How does a firewall protect?
Filters traffic based on rules (IP
What makes a strong password?
Long
Why use account lockouts?
Prevents repeated password attempts (brute force).
What are access levels?
Permissions controlling what users can view/edit.
