Computer Security Threats

Questions and Answers

What is the primary goal of ransomware?

To cause a computer to behave in an unexpected and undesirable manner

To duplicate itself in the active memory of the computer

To spread to other machines when a computer user shares an infected file

To stop users from accessing their data until certain demands are met (correct)

What can spread to other machines when a computer user shares an infected file or sends an email with a virus-infected attachment?

Worms

Ransomware

Malware

Viruses (correct)

What type of threat is characterized by attacking a specific organization or website?

Trojan horses

Distributed denial-of-service attacks

Advanced persistent threat (correct)

Phishing

What resides in the active memory of the computer and duplicates itself?

Worms

What is a type of malware that demands payment in exchange for restoring access to data?

Ransomware

What is a piece of programming code that causes a computer to behave in an unexpected and undesirable manner?

Viruses

What is a type of attack where an attacker sends fraudulent emails to trick victims into revealing sensitive information?

Phishing

What is the common term for all types of malicious programs mentioned in the text?

Malware

What is a type of malicious software that hides itself from the operating system?

Rootkits

What is a type of attack where multiple systems are compromised to attack a single system or network?

Distributed denial-of-service attacks

What is a type of malware that replicates itself and spreads to other devices?

Worms

What is the purpose of CAPTCHA software?

To generate and grade tests that humans can pass and computers cannot

What is a botnet?

A large group of computers controlled from one or more remote locations by hackers

What is the result of a Distributed Denial-of-Service attack?

The target site is flooded with requests, making it inaccessible to legitimate users

What is the purpose of a Distributed Denial-of-Service attack?

To make a website inaccessible to legitimate users

What is the term used to describe computers controlled by hackers without their owners' consent?

Zombies

What is the main difference between a human and a computer program in terms of CAPTCHA software?

Humans can pass CAPTCHA tests, but computers cannot

What is the primary function of a corporate firewall?

To limit network access based on the organization's access policy

What is a next-generation firewall (NGFW) capable of doing?

Filtering network traffic based on the packet contents

What is the purpose of a security dashboard?

To provide a comprehensive display of all vital data related to an organization's security defenses

What is a characteristic of a next-generation firewall (NGFW)?

It is able to inspect the payload of packets and match sequences of bytes for harmful activities

What is the primary difference between a corporate firewall and a next-generation firewall (NGFW)?

The depth of packet inspection they perform

What is the primary benefit of using a security dashboard?

It provides a comprehensive display of all vital data related to an organization's security defenses

What is the primary purpose of US-CERT's vulnerability summary?

To provide a summary of high-impact vulnerabilities for organizations to address

What is a crucial step in addressing high-impact vulnerabilities?

Installing a known patch to the software

What is the main objective of a security audit?

To evaluate whether an organization has a well-considered security policy in place

What is reviewed during a security audit?

User access and authority levels

What is the purpose of a penetration test?

To try to break through the security measures and identify vulnerabilities

What is the primary focus of a security audit and penetration test?

Evaluating security policies and measures