Computer Security Chapter 12

Questions and Answers

What does the term 'malware' refer to?

• Hardware damage
• Network configuration
• Internet speed issues
• Malicious software (correct)

How does a computer virus typically infect another computer?

• Via system updates
• By attaching itself to documents or software (correct)
• By accessing the internet directly
• Through direct network connections

What is a characteristic of a Trojan horse?

• It behaves like a useful program but contains malicious code (correct)
• It replicates itself to other systems
• It deletes files on the computer
• It can only be installed through USB drives

What is the primary function of worms in malware?

To slow or disrupt network operations (C)

What should individuals regularly do to protect their computers from malware?

Use antivirus and update it regularly (B)

What is the main goal of phishing attacks?

To convince users to share personal information (A)

Which type of malware is designed to replicate and spread automatically?

Worm (D)

Why do organizations often have written security policies regarding software installation?

To prevent unauthorized software installations (C)

What are smart watches designed to combine?

The functions of a watch and some mobile device functions (D)

Which feature is common in most smart watches?

Touchscreen display (D)

What is the primary purpose of fitness monitors?

To track daily activity and body metrics (C)

How do smart headsets primarily connect to the internet?

By connecting to a smartphone (D)

What type of devices are considered wearable devices?

Smartwatches and fitness trackers (B)

What is a unique feature of smart headsets?

They have a display visible to the wearer (D)

Which statement is true about the functionality of laptops and mobile devices?

They can operate on battery power and are lightweight. (A)

Which of the following can fitness monitors do?

Upload activity data for review (B)

What is the primary function of antivirus protection?

To continuously monitor for viruses (A)

Which type of protection warns users about unsafe programs before they are installed?

Trusted / untrusted sources protection (D)

What action should you take when encountering a suspicious warning window?

Close the tab or browser (D)

Why is it recommended to run only one malware protection program at a time?

Multiple programs can conflict with each other (A)

What is the role of phishing protection software?

To block IP addresses of known phishing sites (D)

What might a rogue antivirus product do to trick users?

Pretend to clean an actually infected computer (B)

What is a common method to handle a persistent malicious warning window?

Press ALT+F4 to close the window (D)

What type of software actively searches for programs that display advertisements?

Adware protection (B)

What action is used to zoom in on objects on a mobile device?

Touch the screen with two fingers and spread them apart (D)

What is the purpose of a proximity sensor in a smartphone?

To turn off the touchscreen when near the user's ear (B)

What feature distinguishes laptops from desktop computers?

Laptops are typically more lightweight. (A)

Which of the following is NOT a common input device found in laptops?

Monitor (B)

Which of the following describes accessories for mobile devices?

They enhance the user experience but are not necessary. (C)

What kind of power source do laptops use?

Either battery or AC power adapter (C)

What can protective covers for mobile devices protect against?

Water damage and physical damage (B)

What is the primary function of external batteries or portable chargers?

To provide extra power for mobile devices while on the go (D)

Where are the LEDs indicating device status commonly located on a laptop?

Below the display screen or above the keyboard (C)

What is a defining characteristic of mobile devices compared to laptops?

They have a touchscreen for input. (A)

What feature do most docking stations have?

They allow easy connection and act as a charger. (D)

How does the CPU architecture of mobile devices differ from that of laptops?

Mobile devices have a reduced instruction set. (A)

What is a primary benefit of using headsets or ear buds?

They allow for hands-free phone conversations. (B)

Which of the following accessories can be used for processing credit card payments?

Credit card readers (B)

Which of the following is a built-in input device typically found on laptops?

Pointing stick (A)

What is the primary reason for the increasing popularity of laptops and mobile devices?

Their size and weight have decreased, enhancing portability. (B)

What is spear phishing?

A phishing attack targeted at a specific individual or organization. (C)

What is a primary characteristic of spam?

It is unsolicited email often used for advertising. (C)

Why are organizations encouraged to educate users about phishing?

Users may frequently be targeted by attackers. (B)

What should a user do if they are unsure about a request for personal information?

Contact the organization by mail or phone for verification. (D)

What usually causes the bulk sending of spam emails?

Multiple computers infected by viruses or worms. (D)

What is an effective measure against spam?

Installing software that automatically filters spam. (D)

What does social engineering involve?

Deceiving individuals into revealing sensitive information. (B)

What is a common misconception about email attachments?

Attachments from trusted contacts are safe. (B)

Flashcards

Laptop

A compact, portable computer with built-in features like keyboard, touchpad, and webcam.

Laptop power adapter

An external power source for laptops, allowing them to run without needing a power outlet. It plugs into the laptop's power port.

Touchpad

A small, sensitive surface on a laptop that controls the cursor on the screen. It uses multi-touch gestures for navigation and commands.

Pointing stick

A small, stick-like pointing device embedded in the keyboard. It can be used to control the cursor on the screen.

LEDs in laptops

Integrated LEDs on a laptop that indicate the status of different components like power, Wi-Fi, or battery life.

Mobile device

Any hand-held, lightweight device with a touchscreen interface. They use an operating system to run apps, games, and multimedia.

Mobile device operating system

The software that manages the basic functions of a mobile device. It allows users to run applications, access data, and interact with the device.

Mobile device CPU architecture

A specific type of processor in mobile devices that is optimized for low power consumption and efficiency.

What are game pads?

Peripheral devices used for playing video games.

What are wearable devices?

Mobile devices that are worn like clothing or accessories.

What are smart watches?

Watches that combine watch functions with functions of a mobile device.

What are fitness monitors?

Devices worn on the wrist or clipped to clothing, used for tracking activity.

What are smart headsets?

Headsets worn like eye glasses, with a small screen for notifications and communication.

What is a key characteristic of laptops and mobile devices?

Laptop and mobile devices can operate without plugging in.

How do mobile devices increase storage?

Devices that can store more data through memory card readers.

What is an example of a category of mobile devices?

Smartwatches, fitness monitors, and smart headsets are all examples of this category of mobile devices.

Spread Zoom

A feature that allows users to zoom in on objects like photographs, maps, and text by spreading two fingers on the screen.

Proximity Sensor

A sensor that detects proximity, often used to turn off the touchscreen when a phone is brought to the ear and turn it back on when pulled away.

Mobile Device Accessories

Accessories that can enhance the user experience of mobile devices but are not essential for their basic functionality.

Protective Covers for Mobile Devices

Cases and covers that protect mobile devices from physical damage during use or transport.

External Batteries/Portable Chargers

External power sources for mobile devices, such as batteries and chargers, that provide additional power while on the go.

Docking Stations

Devices that allow mobile devices to easily connect to other devices, often also providing charging capabilities.

Headsets/Ear Buds

Audio accessories that allow users to privately listen to audio output, sometimes with a microphone for hands-free calls.

Speakers for Mobile Devices

Audio devices used to amplify sound output from mobile devices, available in various colors, shapes, and sizes.

Phishing

A type of attack that tricks users into providing sensitive information, often impersonating a legitimate organization.

Spear Phishing

A targeted phishing attack aimed at a specific individual or organization.

Spam

Unsolicited email, often used for advertising or spreading malware.

Social Engineering

Using deception and manipulation to gain unauthorized access to systems or information by tricking people into revealing passwords or granting access.

Worm

A harmful program that replicates itself and spreads to other computers.

Virus

A program that can replicate itself and spread to other computers, often requiring user interaction to do so.

Antivirus Software

A type of software designed to detect and remove malware from computers.

Email Filtering

The process of filtering unwanted emails, often preventing spam and malicious content from reaching the recipient's inbox.

Antivirus Protection

Software that actively monitors for and protects against malware threats like viruses, worms, and Trojans.

Adware Protection

Software that detects and blocks programs that display unwanted advertisements on your computer.

Phishing Protection

Software that protects against phishing attacks, which are attempts to steal personal information through fraudulent websites or emails.

Spyware Protection

Software that scans for and removes spyware, which secretly collects information about your computer usage and browsing history.

Trusted/Untrusted Source Protection

Software that warns you about potential threats, such as unsafe programs or websites, before they are installed or accessed.

Rogue Antivirus

A deceptive program that pretends to be legitimate antivirus software but actually installs malware.

Computer Security

The practice of taking preventive measures to protect computer equipment, networks, and data from threats.

Malware

A software that is designed to harm or disrupt computer systems without the user's knowledge or consent.

Trojan Horse

A type of malware disguised as a legitimate program, containing harmful code.

Computer Virus

A type of malware that attaches itself to other files, executing and spreading when the file is accessed.

Browser Redirection

The act of manipulating web browsers to redirect users to unintended websites.

Security Policy

A written document outlining rules and guidelines for maintaining system security within an organization.

Study Notes

Chapter 12: Security

• This chapter reviews types of attacks threatening computer security.
• Technicians are responsible for data and equipment security.
• Understanding physical and data threats is crucial for protection.
• Physical threats involve stealing, damaging, or destroying equipment (e.g., servers, wiring).
• Data threats involve removing, corrupting, denying access, or stealing information.

Types of Security Threats

• Malware: software designed for malicious activities.
• Malware is often installed without user knowledge and can change computer configurations or redirect web browsers.
• Malware can collect information without consent.
• Virus: a form of malware that spreads via files, transfers, emails, and instant messages.
• Worm: self-replicating malware damaging networks.
• Trojan horse: malware disguised as a useful program.

Phishing

• Phishing involves deceitful emails, calls, or texts to trick users into providing personal or financial information.
• Attackers often impersonate legitimate organizations like banks.

Spam

• Unsolicited email often used for advertising, harmful links, or malware distribution.
• Spam is filtered by ISPs and antivirus software.
• Opening suspicious attachments can spread malware.

Social Engineering

• Attackers manipulate individuals to gain access to networks or equipment.
• Employees should be cautious and verify requests before divulging information.
• Precautions include not giving out login details, securing computer areas, and verifying the identity of visitors.

Security Procedures

• Security policy: a set of objectives ensuring network, data, and system security.
• Security policies are dynamic, adapting to changing technologies, businesses, and employee needs.
• Security policy is usually created and managed by organizational management and the IT staff.
• Usernames and passwords: should adhere to a standard naming convention.
• Passwords are crucial for security and should not be revealed.

Protection Against Malicious Software

• Malware protection programs: include antivirus, anti-spyware, and anti-adware software.
• Regularly updating malware protection software is essential.
• Malware programs continuously monitor for malware.
• Running multiple malware protection programs simultaneously is discouraged.
• Rogue antivirus programs are malicious software disguised as security tools. Be cautious about downloading and installing unverified programs.
• Organizations should scan for threats regularly to ensure systems are secure.

Summary

• Security threats can come from inside or outside the organization.
• Viruses, worms, and Trojans can compromise data or physical equipment.
• Develop security plans to protect data and physical equipment.
• Keep operating systems and applications up-to-date.