Cybercrime Statistics Quiz

Questions and Answers

Which type of hacker acts frequently in accordance with the law but may occasionally engage in illegal activities?

Grey Hat (correct)

White Hat

Phishing Expert

Black Hat

What is the primary intention behind a phishing attack?

To steal sensitive information (correct)

To infect the system with malware

To elevate user privileges

To gain unauthorized access to a network

What does a zero-day exploit refer to in the context of hacking?

A type of malware released after a security patch

A system that has been secured against all attacks

An exploit that targets a previously undiscovered vulnerability (correct)

A vulnerability that is publicly known

Which type of malicious software is specifically designed to demand a ransom for data recovery?

Ransomware

In the context of data theft, which of the following is a direct consequence of financial losses?

Loss of customer confidence

Which of the following best describes social engineering as a malicious tactic?

Manipulating individuals to gain sensitive information

What type of malware impersonates legitimate software to gain unauthorized access to a system?

Trojan

What is the main distinction between white hat hackers and black hat hackers?

White hat hackers are ethical and do not break laws.

What is the primary goal of the CIA Triad in cybersecurity?

To ensure the availability, integrity, and confidentiality of information

Which of the following is NOT a requirement for processing personal data?

Data should be shared with third parties indiscriminately

In the context of information gathering in cybersecurity, what is considered personal information?

User credit scores and health insurance details

Which of the following must personal data be, according to good practice?

Compatible with the purpose for which it was collected

Which principle of cybersecurity emphasizes that data should only be accessible to certain users?

Confidentiality

Why is it important to gather information in a cybersecurity context?

To assess potential vulnerabilities in systems

What does it mean for personal data to be processed in a fair manner?

Data is collected only for the minimum necessary purposes

Which aspect of personal data processing relates to keeping information current and accurate?

Accuracy

What is a primary reason for implementing biometric security systems?

They provide a more secure and reliable method of authentication.

Which tactic is NOT a method of social engineering used by hackers?

In-depth coding knowledge

What is the initial implication of identity theft?

The effort and resources needed to restore one’s identity and credit history.

Which of the following is NOT a biological characteristic used for biometric data?

Handwriting style

What is a crucial step to ensure file security in Microsoft Office applications?

Encrypting files with a password.

What do macros in Microsoft Office applications primarily aim to achieve?

Automate repetitive tasks.

What is a key characteristic of personal information that should be safeguarded?

It is often targeted by hackers for financial gain.

How can users protect against malicious macros?

By disabling macros by default and enabling them only from trusted sources.

What is the primary feature that differentiates symmetric encryption from asymmetric encryption?

Symmetric encryption relies on a single key for both operations, while asymmetric uses a pair of keys.

Which of the following algorithms is NOT classified as a symmetric encryption algorithm?

RSA (Rivest–Shamir–Adleman)

What is a significant challenge associated with symmetric encryption?

Securely distributing the secret key to communicating parties.

Which characteristic contributes to the speed advantage of symmetric encryption over asymmetric encryption?

The simplicity of symmetric algorithms compared to asymmetric ones.

Which statement about encryption algorithms is correct?

Symmetric encryption relies heavily on the length and randomness of the key for security.

What is meant by 'cipher text' in the context of encryption?

The encrypted version of the message that cannot be easily read.

What is the role of encryption keys in symmetric encryption?

They are used to create the cipher text from plain text and vice versa.

Which type of encryption cannot be used to achieve confidentiality without the risk of key interception?

Symmetric encryption

What was the estimated global financial loss due to cybercrime in 2023?

$2 trillion

Which of the following is a definition of cybercrime?

An illegal act involving computer systems and the Internet

What type of threat results from user mistakes or system malfunctions?

Accidental Threats

How frequently does a hacker attack occur on average against computers connected to the Internet?

Every 39 seconds

Which of the following is NOT a category of cyber threats mentioned?

Systematic Threats

Which activity exemplifies hacking?

Accessing computer systems without authorization

What is a common consequence of malicious threats?

Unauthorized access to computer resources

Which of the following contributes to accidental threats?

User mistakes

Study Notes

Internet and Cybercrime

• The Internet is a global network connecting millions of businesses, agencies, institutions, and individuals.
• Cybercrime incidents occur at an alarming rate with reports indicating that global financial losses reached around $2 trillion in 2023.

Cybercrime and Hacking

• Cybercrime includes illegal activities done over the Internet, often for financial gain, such as identity theft and social engineering scams.
• Hacking is the unauthorized access to computer systems, which can lead to tampering with data, using system resources, or proving one's capability.

Threats and Vulnerabilities

• Cybersecurity threats can be categorized into natural disasters, accidental threats from user mistakes, and malicious attacks.
• A hacker attack occurs approximately every 39 seconds, averaging 2,244 attacks daily against Internet-connected computers.

Types of Malicious Threats

• Malware: Includes viruses, worms, spyware, adware, trojans, and ransomware that seeks to exploit vulnerabilities.
• Social Engineering: Techniques used by hackers to manipulate users into revealing personal information or following malicious instructions.
• Phishing Attacks: Deceptive attempts to acquire sensitive information by pretending to be a trustworthy entity.

Hacking Classifications

• White Hat Hackers: Ethical hackers working legally to improve security.
• Black Hat Hackers: Malicious hackers engaging in illegal activities.
• Grey Hat Hackers: Individuals who typically obey the law but may breach it for personal gain or experimentation.

Basic Cybersecurity Concepts

• Cybersecurity protects software, hardware, and data stored online, focusing on the common CIA triad: Confidentiality, Integrity, and Availability.
• Unauthorized access prevention is crucial, reinforced through systematic processes and stringent access controls.

Importance of Personal Data Security

• Personal information includes sensitive data like bank details, identifications, and employment history.
• Organizations must ensure fair, lawful processing of personal data, maintaining accuracy and relevance and avoiding unnecessary retention.

Identity Theft Implications

• Identity theft involves impersonating another person's identity for financial gain, leading to significant recovery costs and time to restore one’s identity and credit.

Biometric Security Measures

• Biometric systems utilize unique biological traits for authentication, such as fingerprints and facial features, providing enhanced security compared to traditional passwords.

File Security Protocols

• Files must be secured to protect sensitive business and personal information. Key practices include enabling Macro Security Settings and encrypting documents with passwords.
• Macros can automate tasks but also pose security threats if created with malicious intent.

Concept and Types of Encryption

• Encryption: The process of converting understandable data (plaintext) into an unreadable format (ciphertext) to ensure confidentiality.
• Symmetric Encryption: Uses the same key for both encryption and decryption, resulting in faster processing suitable for large data volumes.
• Asymmetric Encryption: Employs a pair of keys (public and private) for secure communication, enhancing security when sharing data over untrusted networks.

Description

Test your knowledge on global cybercrime statistics and incidents. This quiz covers key information about the prevalence of cybercrime and its impact on individuals and organizations. Challenge yourself to see how much you really know about this critical issue in today's digital world.