Cybercrime and Identity Theft Overview

Questions and Answers

What characterizes a black-hat hacker?

• Works with companies to enhance security
• Breaks into systems only for educational reasons
• Breaks into systems to destroy information or for illegal gain (correct)
• Breaks into systems for research purposes

What is a common approach used by cybercriminals to steal personal information?

• Utilizing packet analyzers or keyloggers (correct)
• Implementing two-factor authentication
• Employing firewall systems
• Encouraging password changes regularly

Which of the following is NOT a type of scan used by fraudsters?

• Counterfeiting credit and debit cards
• Requesting changes of address
• Providing educational seminars (correct)
• Opening new credit cards

What occurs during a denial-of-service (DoS) attack?

The system is overloaded with requests and becomes unavailable (D)

What is the primary function of a rootkit?

To enable hackers to gain unauthorized access and control (B)

What is the primary purpose of computer viruses?

To replicate themselves and spread code to other files (B)

Which type of cookie collects information about a user's browsing habits?

Tracking cookies (D)

How do stealth viruses avoid detection?

By erasing their code from the hard drive and residing in active memory (D)

What is a common characteristic of phishing attacks?

They lure users to reveal personal information via deceptive means (A)

What is the function of antivirus software's quarantining feature?

It isolates the virus to prevent it from spreading (B)

Flashcards

Cybercrime

Any criminal activity primarily carried out using computers or the internet.

Hacker

Someone who gains unauthorized access to computer systems.

Identity Theft

Stealing personal information like name, address, or social security number to commit fraud.

Denial-of-Service (DoS) Attack

An attack that floods a computer system with requests, preventing legitimate users from accessing it.

Trojan Horse

A program that appears harmless but contains malicious code that secretly damages a computer.

What is a virus?

A program that attaches itself to another computer program, spreading when files are exchanged. Its main goal is to replicate and copy its code to as many files as possible.

What are the secondary objectives of a virus?

Aside from replicating, viruses can also slow down networks, show annoying messages, or even destroy files on your hard drive.

What are cookies?

Small text files websites store on your computer, providing info about your browsing habits. They don't search for personal information, only collecting what you provide in forms.

What is 'Social Engineering'?

Any technique using social skills to trick people into revealing sensitive information. This often doesn't involve computers or face-to-face interaction.

What is 'phishing'?

A type of social engineering that uses emails to lure people into revealing personal information like credit card numbers or social security numbers.

Study Notes

Cybercrime and Hacking

• Cybercrime: Criminal actions primarily done through computers
• Hackers: Individuals who break into computer systems illegally
• Types of Hackers:
  • White-hat hackers: Break in for non-malicious reasons
  • Black-hat hackers: Break in for illegal gain or to harm systems
  • Grey-hat hackers: Break in to show expertise
• Cybercriminals: Individuals who use computers to commit crimes
• Common complaints:
  • FBI-related scams
  • Identity theft
  • Non-delivery of merchandise
• Complaints not related to fraud:
  • Computer intrusions
  • Child pornography
  • Blackmail

Identity Theft

• Identity theft: Thief steals personal info to run up debt in a person's name
• Types of scams:
  • Counterfeiting credit/debit cards
  • Requesting address changes
  • Opening new credit cards
  • Obtaining medical services
  • Buying a home

Data and Internet Travel

• Data travels through the Internet in packets
• Packet analyzer (sniffer): A program that examines Internet packets
• IP address: Used to identify packets

Trojan Horses and Rootkits

• Trojan horse: Useful-looking program with malicious intent
• Rootkits: Programs that allow hackers to take control of a computer without knowledge

Denial-of-Service (DoS) Attacks

• DoS attack: Hackers bombard a system with requests to make it shut down
• Botnet: A large group of software programs that operates independently on computers to perform attacks

Computer Viruses

• Virus: A program that attaches to and spreads to other programs
• Virus types:
  • Polymorphic: Periodically rewrite themselves to avoid detection
  • Multipartite: Infect multiple file types
  • Stealth: Erase from hard drive and reside in active memory
• Virus categories:
  • Boot-sector
  • Script/macro
  • Logic bomb/time bomb
  • Worms
  • E-mail
  • Encryption
• Methods of attack:
  • Downloading infected files
  • Sharing flash drives
  • Opening infected emails
• Virus functions:
  • Detection: Identify virus code
  • Stopping execution: Prevent virus spread
  • Quarantining: Securely isolate virus
  • Preventing future infection: Storing virus records

Online Annoyances and Social Engineering

• Spyware: Program that secretly tracks activity and transmits information
• Cookies: Small text files websites store on your computer
• Phishing: Fraudulent attempt to obtain sensitive information (like credit card numbers)

Authentication & Passwords

• Strong Passwords: Use long, complex passwords, not common words, use different passwords for different accounts
• Biometric Authentication: Using unique biological characteristics for verification

Backing Up Data

• Backing up data: Creating copies of files for security and recovery
• Types of backups:
  • Incremental backups (partial backup for files changed since last backup)
  • Image backups to copy entire system

Protecting Physical Computing Assets

• Power surges: Electrical current exceeding normal voltage
• Surge protectors: Devices that protect computers and other devices from power surges
• Theft prevention: Keeping devices and data secure

Firewalls and Antivirus

• Firewalls: Protect computers from hackers by blocking unwanted access
• Antivirus software: Designed to detect and remove viruses
• Software Updates: Regularly updating software to protect it and patch security vulnerabilities