Cybercrime Overview and Classification

Questions and Answers

What constitutes a cyber crime?

• Any crime involving the use of a computer or network. (correct)
• Crimes that only target physical property.
• Offenses committed solely through face-to-face interaction.
• Cyber crimes that are not reported to law enforcement.

Which definition best summarizes cyber crime?

• Acts that are legal in traditional contexts but illegal online.
• Unlawful acts where a computer is either a tool or a target. (correct)
• Cyber crimes that exclusively involve social media platforms.
• Criminal acts that primarily aim to steal physical goods.

What was one of the consequences of cyber crime mentioned in the content?

• Threatening national security and financial stability. (correct)
• Boosting online commerce through internet exploitation.
• Enhancing personal privacy settings.
• Improving computer security protocols.

Which of the following was NOT listed as a major cyber attack in 2017?

Target Security Breach. (C)

What is the main motive typically associated with cyber crimes?

Criminal intent to harm or exploit. (B)

What distinguishes the Dark Web from the Deep Web?

The Dark Web involves large-scale illegal activities. (C)

Which of the following statements about the Surface Web is true?

The Surface Web is relatively small in size and involves little illegal activity. (B)

What is the approximate cost of a U.S. credit card with track data on the Dark Web?

$12 (C)

Which activity is less common in the Deep Web compared to the Dark Web?

Involvement in illegal activities. (C)

Which of the following examples is categorized under the type of cyber crimes where computers are used to commit crime?

Spamming emails. (A)

How is the Deep Web primarily characterized?

Larger in size and growing exponentially. (D)

What is the typical price range for hacking into a website on the Dark Web?

$100 to $300 (B)

Which of the following is NOT a characteristic of the Dark Web?

Offers access to legal content. (A)

What percentage of security safeguards relies on the computer user adhering to good practices?

90% (B)

What should you do to ensure your operating system and applications remain secure?

Install all necessary security patches and updates (C)

Which of the following is a good practice for creating passwords?

Use good, cryptic passwords that are hard to guess (B)

Why should you avoid clicking on unknown links or attachments?

They may contain malware or phishing attempts (B)

What is a sign that a website is secure for entering sensitive information?

The presence of 'https' and a padlock symbol (C)

What is one of the consequences of failing to adhere to security practices?

Potential identity theft (D)

How can you reduce the risk of data interception on wireless networks?

Looking for 'https' and a padlock before transmitting sensitive information (D)

What is the main responsibility of an individual using a computer regarding security?

Understand and practice good computing habits (C)

What is the primary goal of hacking?

To gain unauthorized access to computer systems (C)

Which of the following best defines theft of information?

Stealing electronic information such as identity theft (D)

Email bombing results in which of the following?

Crashing of mail servers or email accounts (A)

What characterizes a Trojan Attack?

It conceals its actions by functioning inside an authorized program. (C)

What type of cyber attack involves small unauthorized deductions over time?

Salami attack (A)

How do worms differ from viruses?

Worms replicate actively and consume system memory. (A)

What is the purpose of a Denial of Service (DoS) attack?

To overload resources and crash servers (D)

Which of the following correctly describes a virus?

A program that attaches itself to files and spreads to other systems (D)

What is the primary objective of Cyber-Terrorism?

To generate fear or cause violence against individuals or property. (A)

Which aspect does NOT fall under the umbrella of Computer Security?

Preventing natural disasters. (C)

What triggers a logic bomb to activate?

A scheduled time or event (C)

What is a key reason for the importance of Computer Security?

To support critical business processes. (B)

Which of the following is NOT a common method of cyber-crime?

Internet browsing (A)

What does the '90 / 10' Rule in computer security signify?

10% of safeguards are technical measures. (C)

Which of the following best describes Web Jacking?

Taking control of a website through hacking. (C)

What mechanism is NOT typically included in the processes of Computer Security?

Increasing hardware performance. (B)

Flashcards are hidden until you start studying

Study Notes

Cybercrime Definition

• Cybercrime is any crime that involves a computer or mobile device and a network.
• Cybercrime can be committed using a computer or targeting a computer.
• Cybercrime can be defined as "Offences that are committed against individuals or groups with a criminal motive to intentionally harm the reputation of the victim or cause physical or mental harm to the victim directly or indirectly, using modern telecommunication networks such as the Internet (Chat rooms, emails, notice boards and groups) and mobile phones (SMS/MMS)."

Classification of Cyber Crimes

• Cyber crimes can be categorized by how the computer is involved: either as a tool to commit the crime or as a target.

Computer Intrusions and Hacking

• Hacking is the illegal access to a computer system or network.
• Hacking can be used to commit various cyber crimes, including theft and terrorism.

Computer Security

• Computer security is the protection of computing systems and the data they store or access.
• Computer Security covers processes and mechanisms that protect computer-based equipment, information, and services from unauthorized access, change, or destruction.
• Computer security includes protection from unintended or unauthorized events and natural disasters.

Importance of Computer Security

• Computer security is essential for enabling job tasks, education, and research.
• Computer security supports critical business processes.
• Computer security protects personal and sensitive information.

90-10 Rule of Security

• The 90/10 Rule states that 10% of security safeguards are technical and 90% rely on user behavior.
• Example: A door lock provides technical security, but user habits like locking it, checking if it's closed, and keeping the keys secure are crucial for effective security.
• Everyone using a computer needs to understand and practice good security habits.

Consequence of Security Violations

• Security violations can lead to compromised personal or confidential information.
• Potential risks include identity theft, data corruption or destruction, and unavailability of critical information in emergencies.

Simple Security Measures

• Use strong and unique passwords that are difficult to guess.
• Keep passwords secret.
• Update operating systems and applications with necessary security patches.
• Use up-to-date antivirus and anti-spyware software.
• Avoid clicking on unknown or unsolicited links or attachments.
• Do not download unknown files or programs.
• Use HTTPS connections and look for the padlock symbol in the URL bar when entering sensitive information or passwords.

Biggest Cyber Attacks of 2017

• Equifax Data Breach – 145.5 Million Accounts
• Uber Data Breach – 57 Million Records
• WannaCry Cyber Attack – 300,000 Systems
• Yahoo! Makes History, Again – 3 Billion Accounts
• Deep Root Analytics Data Breach – 198 Million U.S. Voters
• Rasputin Attacks – 60 Universities and Federal Agencies

Dark Web vs Deep Web vs Surface Web

• Surface Web: Indexed by search engines, minimal illegal activity.
• Deep Web: Not indexed by search engines, little illegal activity outside of the Dark Web, large and growing.
• Dark Web: Restricted to special browsers, not indexed by search engines, significant illegal activity, accessed with passwords, encryption, or gateway software.

Cost of Information on the Dark Web

• Bank credential: $1,000 plus (6% of the total account balance)
• U.S. credit card with track data: $12
• EU, Asia credit card with track data: $28
• Hacking into a website: $100 to $300
• Counterfeit social security cards: $250 to $400
• Counterfeit driver's license: $100 to $150

Examples of Cyber Crimes where Computers are Tools

• Threatening emails
• Identity theft
• Defamation
• SPAM and Phishing

Examples of Cyber Crimes where Computers are Targets

• Viruses
• Worms
• Industrial espionage
• Software piracy
• Hacking

Specific Examples of Cybercrimes

• Theft of Information: Includes stealing data from computer hard disks or removable storage media, potentially leading to identify theft.
• Email Bombing: Involves sending massive amounts of email to a victim, causing the email account or server to crash.
• Salami Attacks: Financial crime where a small amount of money is deducted over time from multiple accounts, going unnoticed by the account holder.
• Denial of Service (DoS) Attack: Overloads a computer resource with requests, causing it to crash and deny service to authorized users.
• Virus: A program that attaches to a computer or file and replicates, often affecting data by altering or deleting it.
• Logic Bombs: Programs that activate only when a specific event occurs, such as a specific date.
• Trojan Attacks: Unauthorized programs disguised as authorized software, concealing their true purpose.
• Worm: Self-replicating programs that spread without needing a host file (unlike viruses), consuming memory and causing system problems.
• Web Jacking: The forceful taking control of a website by cracking passwords.
• Cyber-Terrorism: Hacking designed to instill terror, using similar tactics to conventional terrorism.