Disaster Management and Human Error

Questions and Answers

What can be a consequence of web site defacing for an organization?

Enhanced public image

Increased consumer loyalty

Improved operational efficiency

Diminished sales and reputation (correct)

What type of failure can result from a manufacturer distributing flawed equipment?

Technological obsolescence

Theft-related failure

Cyberattack failure

Technical hardware failures (correct)

Which measurement indicates hardware failure rates?

Sales revenue decrease

Mean time between failure (correct)

Total production time

Time since last repair

Which of the following scenarios best illustrates sabotage?

A state-sponsored attack disrupts a country's power grid.

What is the main challenge of electronic theft compared to physical theft?

Evidence of the crime is less apparent

What is the primary intent behind cyber vandalism?

To deface and disrupt content without aiming for strategic damage.

What is a common characteristic of social engineering attacks?

Tricks individuals to disclose confidential information

What can significantly prevent threats associated with human errors in an organization?

Implementation of ongoing training and awareness programs.

Which type of attack is characterized by overloading a service to make it unavailable?

DoS attacks

Which of the following is an example of accidental data mishandling by employees?

An employee stores sensitive data in an unprotected area.

Which of the following describes information extortion?

An attacker demands compensation for stolen information.

What distinguishes malware attacks from network traffic attacks?

Network traffic attacks manipulate data flow

Which cause is NOT typically associated with human error or failure?

Deliberate sabotage for financial gain.

What type of threat involves using social skills to manipulate people into revealing confidential information?

Social engineering

What does technological obsolescence primarily result from?

Outdated infrastructure

What is a common result of cyber extortion?

The organization pays to regain access to stolen information.

What is the primary goal of a Denial of Service (DoS) attack?

To prevent legitimate users from accessing services

In a Distributed Denial-of-Service (DDoS) attack, how does the attacker typically operate?

By using a botnet to distribute requests from multiple sources

Which of the following describes packet sniffing?

Monitoring and collecting data packets on a network

What is the technique called when an attacker masquerades as a trusted source?

Spoofing

What characteristic distinguishes a Distributed Denial-of-Service (DDoS) attack from a simple Denial of Service (DoS) attack?

The use of botnets to launch attacks from many locations

Which of the following is an example of a software vulnerability?

Buffer Overflow

What distinguishes ransomware from other types of malware?

It demands payment for access to data.

What type of vulnerability can arise from human behavior?

Weak Passwords

Which of the following is NOT a characteristic of a Trojan?

It can replicate itself.

Which of the following attacks involves intercepting communication between two parties?

Man-in-the-Middle Attack

What can be classified as a hardware vulnerability?

Firmware Exploit

What is a key feature of a worm compared to a virus?

A worm can propagate through the network.

Which statement is true regarding network vulnerabilities?

They can involve weak encryption protocols.

Which malware type specifically sends collected information back to an attacker?

Spyware

Which type of attack manipulates individuals into sharing confidential information?

Social Engineering

What is a common method used by ransomware to deceive users?

Threatening legal action unless payment is made.

What is a characteristic of botnets?

They operate independently without user consent.

Which control type includes training and personnel security?

Administrative Control

Which of the following best describes adware?

Software that displays unwanted advertisements.

Which example demonstrates a network attack that disrupts services?

Denial of Service

Logic bombs in malware are activated by what?

Certain predetermined conditions.

Study Notes

Threats to Organizations

• Threats include natural disasters (fires, floods, earthquakes, hurricanes), human actions (civil unrest, acts of war), and technological issues (solar activity, ESD, dust contamination).
• Organizations need to implement controls and contingency plans to mitigate damage and ensure operational continuity.

Human Error or Failure

• Human error can stem from factors like inexperience, improper training, and incorrect assumptions.
• Employee mistakes often lead to grave data breaches, such as accidental data deletion or unauthorized data exposure.
• Regular training and awareness can significantly reduce these risks.

Social Engineering

• Social engineering manipulates individuals into revealing confidential information, such as access credentials, typically via deceptive tactics.

Sabotage and Vandalism

• Cyber sabotage involves intentional damage or disruption of systems to hinder an organization’s operations. Examples include state-sponsored cyber attacks and malware targeting infrastructure.
• Cyber vandalism refers to the malicious defacement or destruction of digital properties without a clear strategic aim, such as defacing websites or unauthorized social media access.

Information Extortion (Cyberextortion)

• Cyberextortion involves stealing sensitive information and demanding ransom for its return, prevalent in cases of credit card theft.

Technical Failures

• Hardware failures can result from known or unknown flaws, causing systems to perform unpredictably.
• Mean time between failure and annualized failure rates are key metrics in assessing hardware reliability.

Technological Obsolescence

• Outdated infrastructure can render systems unreliable; proper managerial planning is essential to prevent obsolescence.

Theft

• Theft encompasses the illegal acquisition of physical, electronic, or intellectual property, with physical theft easier to control than electronic theft.

Types of Security Attacks

• Attacks exploit vulnerabilities and can be categorized by method (software, physical, social) and target (technological assets, physical assets, people).

Common Security Attacks

• Types of attacks include malware (ransomware, spyware), DoS/DDoS attacks, network traffic attacks (sniffing, spoofing), and social engineering (phishing, smishing).

Ransomware

• Ransomware restricts user access until a fee is paid, often delivered via deceptive pop-ups or emails.

Denial of Service (DoS) Attacks

• DoS attacks overwhelm a target system with requests, hindering legitimate access; DDoS attacks involve coordinated assaults from multiple sources.

Network Traffic Attacks

• Packet sniffing, spoofing, and Man-in-the-Middle attacks target data packets in networks, compromising confidentiality and integrity.

Types of Vulnerabilities

• Vulnerabilities can be categorized into software (e.g., buffer overflow, SQL injection), hardware (e.g., firmware exploits, device theft), network (e.g., weak encryption, DoS attacks), and human (e.g., social engineering, weak passwords) categories.

Security Controls and Mechanisms

• Security controls include administrative measures such as risk management, personnel security, training, and permissions to protect the confidentiality, integrity, and availability (CIA) of information.

Description

This quiz covers the various threats organizations face, including natural disasters and human error. It emphasizes the importance of implementing controls and contingency plans to minimize damage. Test your knowledge on effective strategies for disaster preparedness and the impact of human factors in organizational settings.