Computer and Cybersecurity Overview

Questions and Answers

What is computer security?

The protection of systems and information from harm, theft, and unauthorized use.

What is cybersecurity?

The practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.

Which of the following is NOT a common category of security?

• Operational security
• Network security
• End-user education
• Application security
• Information security
• Disaster recovery and business continuity
• Environmental security (correct)

Network security is the practice of securing a computer network from intruders, whether targeted attackers or opportunistic malware.

True (A)

Application security focuses on keeping software and devices free of threats.

True (A)

Information security protects the integrity and privacy of data, both in storage and in transit.

True (A)

Operational security includes the processes and decisions for handling and protecting data assets.

True (A)

Disaster recovery and business continuity define how an organization responds to a cyber-security incident or any other event that causes the loss of operations or data.

True (A)

What does business continuity refer to?

It's the plan the organization falls back on while trying to operate without certain resources.

Disaster recovery policies dictate how the organization restores its operations and information to return to the same operating capacity as before the event.

True (A)

End-user education addresses the most unpredictable cyber-security factor: people.

True (A)

Teaching users to delete suspicious email attachments, not plug in unidentified USB drives, and various other important lessons is vital for the security of any organization.

True (A)

The goal of information security follows three main principles: Confidentiality, Integrity, and Availability.

True (A)

Confidentiality is ensuring that information is available only to the intended audience.

True (A)

Integrity is protecting information from being modified by unauthorized parties.

True (A)

Availability is ensuring that when the individual that needs that piece of data to perform a job duty is ready to utilize it, it must be readily accessible.

True (A)

What is a firewall?

A network security device that monitors incoming and outgoing network traffic and decides whether to allow or block specific traffic based on a defined set of security rules.

What is a hacker?

A person who breaks into a computer system.

What is a threat in cybersecurity?

Anything that can compromise the confidentiality, integrity, or availability of an information system.

What is vulnerability in cybersecurity?

Any weakness in the information technology (IT) infrastructure that hackers can exploit to gain unauthorized access to data.

Which of the following is NOT a computer security threat?

Human resources (A)

What are the four major threats addressed by computer security precautions?

Vandalism (A), Theft of data (B), Fraud (C), Invasion of privacy (D)

What is malware?

A collective term for malicious software or computer programs that perform malicious activities.

Malware is always unintentional and a result of programming errors.

False (B)

What are worms?

Spread across computers.

Spyware is a type of malware that infects files to spread or propagate.

False (B)

Spyware is different from a virus as it replicates and embeds into other device files.

False (B)

What is the primary function of a computer worm?

To self-replicate and infect other computers while remaining active on infected systems.

How do worms spread?

By exploiting vulnerabilities on the target system or using some kind of social engineering to trick users into executing them.

Worms require an infected host to spread.

False (B)

A bot is a malware.

False (B)

Which of the following is NOT a distribution channel for malware?

Social engineering (A)

What is phishing?

Sending out a spoofed email that appears to come from a legitimate company.

Why is phishing effective?

It often demands urgent action, which can lead the victim to act without thinking.

A phishing email can include a link that is used to steal the victim's personal information or install malware on the mobile device.

True (A)

A denial of service attack (DoS) is a cyberattack on devices, information systems, or other network resources that prevents legitimate users from accessing expected services and resources.

True (A)

In a DoS attack, rapid and continuous online requests are sent to a target server to overload the server's bandwidth.

True (A)

A distributed denial of service (DDoS) attack is a common type of DoS attack.

True (A)

Unlike most cyberattacks initiated to steal sensitive information, initial DDoS attacks are launched to make websites inaccessible to their users.

True (A)

DDoS attacks can serve as a facade for other malicious acts.

True (A)

Flashcards

Computer Security

The protection of computer systems and information from harm, theft, and unauthorized use.

Cybersecurity

The practice of protecting computer systems from malicious attacks, including viruses, worms and cybercriminals.

Network Security

The practice of securing a computer network from intruders, like hackers or malicious software.

Application Security

Ensuring software and devices are free from vulnerabilities and threats that could expose data and system vulnerabilities.

Information Security

The practice of safeguarding the integrity and privacy of data, both while stored and during transmission.

Operational Security

Processes and decisions for handling and protecting data assets, including user permissions and data storage procedures.

Disaster Recovery

Plans for an organization to recover from cyberattacks or other events that disrupt operations or data.

Business Continuity

A plan that allows an organization to continue operating without certain resources in case of a disaster or disruption.

End-user Education

Training users on good security practices to prevent them from accidentally introducing threats to a system.

Confidentiality

Ensuring that information is only accessible to authorized individuals.

Integrity

Protecting information from unauthorized modification or alteration.

Availability

Making sure that authorized users can easily access the information they need, when they need it.

Anti-virus Software

Software designed to detect and remove malicious programs, such as viruses and worms.

Password

A unique combination of characters that grants access to an account or system.

Log off Public Computers

Logging out of public computers to prevent unauthorized access to your accounts or data.

Saving and Backing Up

Saving and creating backups of important files to protect them from loss or corruption.

Limit Social Network Information

Limiting the amount of personal information shared online to reduce the risk of identity theft and other security breaches.

Download Files Legally

Downloading files from legitimate sources to avoid accidentally installing malware or potentially harmful software.

Keep Personal Information Safe

Not sharing personal information online with unknown or untrusted sources, such as in phishing emails

Lock Your Computer

Locking your computer when unattended to prevent unauthorized access

Avoid Suspicious Links

Avoiding suspicious links or pop-up notifications that could lead to malware infection

Keep Applications Up to Date

Keeping all software applications updated to patch security vulnerabilities and protect against malware.

Firewall

A network security device that acts as a gatekeeper, controlling incoming and outgoing network traffic based on defined security rules.

Hacker

A person who exploits vulnerabilities in computer systems for various reasons, including stealing data, causing damage or disrupting service.

Threat

Anything that can compromise the confidentiality, integrity or availability of an information system.

Vulnerability

A weakness in an IT infrastructure that can be exploited by hackers to gain unauthorized access.

Malware

Malicious software designed to infect computers and perform harmful activities without the user's knowledge.

Ransomware

A type of malware that encrypts a victim's files and demands a ransom payment to decrypt them.

Virus

A type of malware that infects files and replicates itself, spreading to other programs and systems.

Worm

A type of malware that replicates itself and spreads across networks, often exploiting vulnerabilities in systems.

Trojan Horse

A type of malware disguised as legitimate software, but contains malicious code that can harm a computer.

Bot

An automated program that interacts with network services, often used for malicious activities.

Study Notes

Computer and Cybersecurity

• Computer Security: Protecting computer systems and information from harm, theft, and unauthorized use. Hardware protection uses standard security measures like serial numbers, locks, and alarms. Protecting information and system access uses more complex tactics.

• Cybersecurity: Protecting computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks. Also known as information technology security or electronic information security. It encompasses a broad range of contexts, from business to mobile computing.

Common Security Categories

• Network Security: Securing computer networks from intruders, whether targeted attackers or opportunistic malware.

• Application Security: Keeping software and devices free of threats. A compromised application can provide access to sensitive data. Successful security begins in the design stage, before deployment.

• Information Security: Protecting the integrity and privacy of data, both in storage and transit.

• Operational Security: Includes the processes and decisions for handling and protecting data assets. Access permissions and procedures for data storage and sharing fall under this category.

• Disaster Recovery and Business Continuity: Defining how an organization responds to cybersecurity incidents or events causing operational or data loss. This includes restoring operations and information to their pre-incident state. This involves policies that dictate recovery steps.

• End-User Education: Critical to mitigate the unpredictable human factor in cybersecurity. Includes teaching users to avoid suspicious emails, attachments, or links. Important to educate users on the vital role they play in maintaining security.

CIA Triad

• Confidentiality: Ensuring information is accessible only to the intended audience.

• Integrity: Protecting information from unauthorized modification.

• Availability: Ensuring information is readily accessible to authorized users when needed.

Good Security Practices for Individuals

• Install Antivirus and Anti-malware Software: Verify the software legitimacy to minimize vulnerabilities, keep updated.

• Use Strong Passwords: Avoid reusing passwords across multiple accounts and websites. Change passwords on a schedule for better security, and avoid saving them on insecure sites.

• Log off Public Computers: Public computers are susceptible to malware, so log out completely after use.

• Save and Back up Data: Implement regular data backups to protect against inevitable events like hardware failure or virus infection. Validate backup files to ensure they can be easily restored.

• Limit Social Network Information: Be cautious about personal information shared online. Use privacy and security settings to protect yourself and personal information.

• Download Files Legally: Avoid peer-to-peer (P2P) networks and file-sharing clients.

• Keep Personal Information Safe: Avoid clicking on suspicious links or divulging information online if unsure of the sender or website. Be wary of phishing attempts which try to trick users.

• Lock Your Computer: Lock devices when unattended to maintain security.

• Keep Applications Up-to-Date: Enable automatic updates or manually ensure all applications are current to mitigate vulnerabilities.

Malware

• Malware: A general term to describe various malicious software. These softwares are unwanted and potentially dangerous.

• Different types of Malware: Ransomware, Spyware, Adware, Worms, Trojans, Botnets, Viruses.

• Software Bugs vs Malicious Activities: Understanding that software errors (bugs) differ from the intentional actions of malware.

Distribution Channels for Malware

• Download: Unintended downloads from the internet.

• Unsolicited Email: Unwanted attachments or embedded links.

• Physical Media: Integrated or removable media (thumb drives).

• Self-Propagation: Malware's ability to spread from computer to computer.

Common Computer Fraud Techniques

• Phishing: Spoofed emails that appear to come from legitimate companies, tricking users into revealing information on fake Websites. Attackers also use fraudulent texts and voicemails to collect sensitive data. Examples of actions include clicking on attachments, enabling macros in documents, updating passwords, and connecting to new Wi-Fi hotspots.

• Denial-of-Service (DoS) Attacks: Overloading a service or website or servers with traffic to make it unusable, or very slow.

• Distributed Denial-of-Service (DDoS) Attacks: Similar to DoS, but using multiple compromised systems to overwhelm the target, making it very hard to defend against.

Description

Dive into the essentials of computer and cybersecurity, examining key concepts such as computer security, cybersecurity, and various security categories. This quiz will enhance your understanding of how to protect systems from threats and malicious attacks. Test your knowledge about network security, application security, and information security.