Cybersecurity: Malware & Social Engineering

Questions and Answers

What type of malware replicates itself over a network?

• Virus
• Trojan
• Worm (correct)
• Spyware

What is a characteristic of a Trojan?

• Infects your computer and takes control of its functions
• Replicates itself without user intervention
• Monitors user movements and collects data
• Facilitates unauthorized access to your workstation (correct)

Which of the following statements best describes social engineering?

• An intricate phishing strategy involving complex software
• A method to patch human errors in systems
• An attack that relies on human interactions to gain confidential information (correct)
• An attack that targets software vulnerabilities

What is the main reason social engineering is considered effective?

It targets individuals and their information directly (B)

What does spyware primarily do?

Monitors a user's online activity and movements (C)

Which type of malware is described as malicious software that can take control of a computer's functions?

Virus (C)

Why is human error considered a significant vulnerability in information security?

Human actions can often bypass technical safeguards (B)

What is a common misconception about malware types?

All malware must replicate to be harmful (B)

What makes social engineering attacks particularly difficult to track?

They rely on personal manipulation rather than digital methods (A)

What is a crucial action to take when you step away from your workstation?

Lock your workstation using Windows key + L (D)

Why is it essential to keep your operating system and applications updated?

To receive security patches that address vulnerabilities (B)

What should you be cautious about when installing applications on your device?

The permissions the application requests (D)

What is the best practice regarding passwords for various accounts?

Employ strong, unique passwords for different accounts (B)

What should you avoid doing with smartphones and your PC?

Charging smartphones directly from the PC (D)

Which of the following statements about data backup is true?

Always back up sensitive data to prevent loss or damage (B)

What is a primary focus of incident reporting in information security?

Effective management of reported incidents (C)

Which of the following is NOT a characteristic of phishing emails?

Messages from known contacts (C)

Which scenario represents a positive outcome in incident reporting?

Detection of a phishing email before it causes harm (A)

What can be considered a significant risk in the context of digital information?

Digital information being more accessible than physical records (A)

What is an Advanced Persistent Threat (APT)?

An attack that remains undetected in a network over time (C)

What might be a potential consequence of a successful phishing attack as represented in the case?

Long-term damage to customer trust (A)

Which of the following actions can help prevent APTs?

Reporting odd user activities (C)

What is a crucial part of the incident reporting process as outlined?

Repair and support unit involvement (D)

What method is utilized in human-based attacks for gaining unauthorized access?

Impersonation of legitimate users (B)

Which action is critical within the incident reporting framework after an issue is fixed?

Documenting the incident and assessing any residual risk (A)

Which of the following represents a social engineering attack?

Shoulder surfing (C)

What is a common technique used in information gathering attacks?

Utilizing social media to collect data (A)

How does the awareness session relate to handling online scams effectively?

By informing staff of potential risks and countermeasures (A)

What characterizes a phishing attack, based on the examples provided?

High-level impersonation of trusted entities to obtain sensitive information (A)

Which of the following terms describes attacks that exploit user trust?

Human-based attacks (C)

In which way can staff play a role in preventing the consequences of phishing attacks?

By promptly reporting any unusual communication to the incident reporting coordinator (A)

Shoulder surfing primarily aims to achieve what?

Observing sensitive information being entered (B)

What is one of the primary roles of staff in information security?

To be the first line of defense (B)

What indicates a failed response to a phishing attempt in the scenario provided?

Responding to the phishing email and sharing personal information (B)

Which activities are part of dumpster diving as a social engineering attack?

Searching through trash for sensitive documents (A)

What is a fundamental guideline for selecting a strong password?

Mix of upper and lowercase characters (A)

Which statement best describes the Web of Trust (WOT)?

WOT displays a colored traffic light indicating website trustworthiness. (B)

What is one recommended practice for email security?

Contacting the sender about the attachment if unsure (C)

Which of the following is a best practice regarding social networking security?

Evaluate security settings regularly (B)

What should be done with documents containing sensitive information?

Use shredders for disposal (D)

What precaution should be taken when using mobile phones for work?

Using strong screen locks to protect data (A)

Which of the following is NOT considered a physical security measure?

Changing passwords frequently (B)

What should be the primary action when encountering a suspicious email?

Contact the IT department for guidance (C)

What is an important consideration regarding third-party applications on social networks?

They should be evaluated for their access permissions (D)

Which of the following is essential for mobile security?

Download applications from trusted sources only (A)

Flashcards are hidden until you start studying

Study Notes

Malware

• Malware is a malicious software designed to harm computer systems and steal information.
• Types of malware include: Spyware, Trojans, Viruses, and Worms.
• Spyware tracks your online activity and sends it to malicious entities, like phishing websites that steal your login information.
• Trojan viruses are hidden within legitimate programs that appear harmless. Trojans can give adversaries access to your workstation and steal data.
• A virus can infect your computer and take control of its functions.
• Worms are viruses that can replicate and spread across a network without human interaction.

Social Engineering

• Social engineering is the art of human hacking where adversaries exploit human error to gain access to networks and information.
• Social engineering is effective because every user has information, which adversaries try to steal.
• Social Engineering attacks are difficult to detect and track.

Types of Social Engineering Attacks

• Social-media vectors, shoulder surfing, dumpster diving, impersonation, phishing, and online scams are all attacks that involve humans.
• Phishing emails attempt to deceive recipients into clicking malicious links.
• Phishing email characteristics include deceptive subject lines, attractive or threatening messages, forged sender addresses, and forged content.
• Advanced Persistent Threats are long-term attacks where adversaries use social engineering to gain access to a network and steal data.

Information Gathering

• Staff are the first line of defense against information breaches.

Incident Reporting

• Report, fix, and follow-up are the key steps to minimize risks.
• Staff should report all incidents to the Incident reporting coordinator and Business line manager.
• The Repair and support unit will fix the issue and the Incident reporting coordinator will follow-up.

Security Tips and Countermeasures

• Use HTTPS links to safeguard information while browsing online.
• Use the Web of Trust (WOT) tool to identify trustworthy websites and ensure safe online shopping and banking.
• Use strong passwords, don't share them with anyone, and change them frequently.
• Implement physical security protocols, such as clear desk and screen policies and locking up portable devices.
• Always back up your sensitive data.
• Never open email attachments from unknown senders.
• Be aware of mobile threats and download apps only from trusted sources.
• Use screen locks on mobile devices.
• Never plug your phone into a PC.
• Keep your phone operating system and apps updated.

Security: Behavior vs Technology

• Security is 80% about behavior and 20% about technology.