Computer Virus and Malware Quiz

Questions and Answers

Which of the following is NOT considered a type of malware?

• Spyware
• Virus
• Ransomware
• Firewall (correct)

Social engineering techniques only involve digital manipulation.

False (B)

What is a common tactic used in spear phishing?

Impersonating a known source

A type of phishing attack that targets high-profile individuals is called __________.

whaling

Match the types of malware with their descriptions:

Virus = Malicious code that attaches to files and replicates Worm = Self-replicating malware that spreads independently across networks Spyware = Software that collects user data without consent Ransomware = Malware that encrypts data and demands payment for access

Which technique involves leaving infected USB drives in public places?

USB baiting (D)

Flashcards are hidden until you start studying

Study Notes

Computer Virus and Malware

• A computer virus is malicious code intended to disrupt operations and damage software or data.
• Malware encompasses software specifically designed to harm networks or devices.
• Common types of malware include:
  • Virus: Attaches to files and spreads through infected files.
  • Worm: Self-replicating and spreads through networks independently.
  • Spyware: Collects user information without consent.
  • Ransomware: Encrypts data, demanding payment for decryption.

Social Engineering Techniques

• Social engineering is a manipulation technique that exploits human psychology to gain sensitive information.
• Types of social engineering techniques:
  • Social Media Phishing: Tricking users into disclosing personal information through deceptive messages or links.
  • Water Hole Phishing: Compromising a commonly visited website to target specific groups.
  • USB Baiting: Leaving infected USB drives in public venues to entice victims to use them.
  • Physical Social Engineering: Direct manipulation of individuals in physical environments to access restricted information or areas.

Phishing

• Phishing involves the use of digital communications to acquire sensitive data from individuals or organizations.
• Most common types of phishing:
  • Business Email Compromise (BEC): Attackers impersonate a trusted source to illegally obtain financial information or transactions.
  • Spear Phishing: Targeted attempts directed at specific individuals or organizations.
  • Whaling: Focuses on high-profile individuals, such as executives, for more substantial gains.
  • Vishing: Phishing conducted via voice calls, often using spoofed numbers.
  • Smishing: Involves phishing attempts through SMS or text messages.