Malware and Malicious Code Quiz

Questions and Answers

What type of malware requires end-user initiation to activate?

Worms

Ransomware

Trojan horse

Viruses (correct)

What is a Trojan horse in malware?

Malware that carries out malicious operations under the guise of a desired operation.

What does ransomware do?

Holds a computer system captive until payment is made (correct)

Displays annoying pop-ups

Steals personal information

Replicates by exploiting vulnerabilities in networks

A worm requires a host program to run.

False

A ______ is a malicious program that uses a trigger to activate its code.

logic bomb

What is spyware?

Software that monitors user activities and collects data without their consent.

What does scareware do?

Tricks the user into taking action based on fear

Match the following types of malware with their descriptions:

Worms = Replicate by exploiting vulnerabilities in networks Trojan horse = Malware disguised as legitimate software Ransomware = Holds system data captive for payment Adware = Displays annoying advertisements

Spam is a type of unsolicited email that can contain harmful links.

True

Which of the following is a type of malware that requires end-user initiation to activate?

Viruses

What type of malware exploits vulnerabilities in networks by replicating itself?

Worms

What is a Trojan horse in cybersecurity?

Malware that carries out malicious operations disguised as a legitimate program.

A __________ is a malicious program that uses a trigger to activate its harmful code.

Logic Bomb

Ransomware encrypts data and holds it captive until payment is made.

True

What does spyware do?

Obtains information about a user's computer activities.

Which type of malware generates annoying pop-ups to create revenue?

Adware

Phishing is a method used by cyber criminals to gather sensitive information through deception.

True

Study Notes

Malware and Malicious Code

• Cyber criminals target users' devices by installing malware.
• Viruses are malicious code attached to executable files (like programs). They usually require user action and can activate at specific times.
• Worms are malicious code that replicate independently, exploiting network vulnerabilities. They slow down networks and unlike viruses, don't need user involvement after initial infection.
• Trojan horses are disguised as legitimate programs, carrying out malicious actions. They exploit the privileges of the user they run under. Unlike viruses, Trojan horses bind to non-executable files (images, audio, games).
• Logic bombs are malicious programs with triggers (dates, times, other programs running). They sit inactive until the trigger activates, then run the malicious code.
• Ransomware holds data captive, demanding payment for its release; it usually encrypts data using a key the user doesn't know.
• Backdoors/Rootkits are programs introduced by criminals who have compromised a system. They bypass normal system access authentication. Rootkits modify the operating system to create a backdoor, allowing attackers remote access.

Email and Browser Attacks

• Email is used globally, making it a significant vulnerability.
• Spam is unsolicited email, often used for advertising, but can carry harmful links, malware, or deceptive content.
• Spyware gathers information about user's computer activities. It can track activity, collect keystrokes, capture data, and even modify security settings to bypass security measures.
• Adware displays pop-ups and generates revenue for its creators. It tracks user interests based on visited websites and sends relevant pop-up ads.
• Scareware convinces users to act based on fear. It uses fake pop-ups that resemble OS messages.
• Phishing is a form of fraud that uses email, messaging, or social media to gather user information. It often involves fake websites or emails that mimic legitimate ones.

Malware and Malicious Code

• Malware generally refers to malicious code that targets users' end devices.
• Viruses are malicious code attached to legitimate programs. Viruses usually need user initiation.
• Worms are malicious code that exploit network vulnerabilities to replicate. They do not require user initiation after the initial infection.
• Trojan Horse are malicious code disguised as legitimate programs, often using files like images or audio files. They exploit user privileges.
• Logic Bombs are malicious code that activate when a specific condition is met, like a date or time.
• Ransomware encrypts data and demands payment for its release.
• Backdoors and Rootkits are programs that bypass normal authentication and access a system. Rootkits modify the operating system to create backdoors.

Email and Browser Attacks

• Spam is unsolicited email, often used for advertising, harmful links, malware, or deceptive content.
• Spyware gathers information about user activity and often modifies security settings to avoid detection.
• Adware displays pop-ups to generate revenue for its creators. Adware can analyze user interests to show relevant advertising.
• Scareware uses fear to manipulate users into taking specific actions. Scareware often imitates operating system warnings.
• Phishing is a form of fraud using email, instant messaging, or social media to gain user information.

Description

Test your knowledge on various types of malware and malicious code. This quiz covers viruses, worms, Trojan horses, and more, exploring how they operate and affect users' devices. Perfect for understanding fundamental cybersecurity concepts.