Rootkits and Their Symptoms

Questions and Answers

What distinguishes IT professionals from other workers?

Their work is always standardized.

They work in teams more often.

They require specialized knowledge and advanced training. (correct)

They have less responsibility compared to other professions.

Which of the following is NOT a factor affecting ethical behavior in IT professionals?

Market demand (correct)

Professional organizations

Certification

Codes of ethics

What is meant by compliance in the context of IT ethics?

Adhering to established laws and regulations. (correct)

Following industry trends at all times.

Engaging in continuous self-study without oversight.

Avoiding training due to operational limitations.

Which of the following best describes the responsibilities of IT professionals?

They must act with discretion and exercise judgment in their work.

What is a key characteristic that differentiates IT work from other types of employment?

IT work requires long and intensive academic preparation.

What is the primary difference between smishing and vishing?

Smishing uses SMS, while vishing uses voice mail.

Which component of the CIA security triad refers to ensuring data can only be altered by authorized individuals?

Integrity

Which of the following statements about the Information Technology Act, 2000 is correct?

It is based on the Model Law on Electronic Commerce 1996.

What does availability in the CIA triad ensure?

Data can be accessed when needed, including during disasters.

Under the Information Technology Act, 2000, who can be indicted for cybercrimes?

Persons of other nationalities if the crime involves Indian systems

Which of the following is NOT a symptom of rootkit infections?

Email settings are automatically changed

What does the term 'spear-phishing' refer to?

Phishing targeting an organization’s employees

Which act provides legal guidelines for email spamming?

CAN-SPAM Act

What is a common method used by con artists in phishing scams?

Sending a link requiring immediate action

Which of the following is a method marketers use to ensure their emails comply with the CAN-SPAM Act?

Including a physical postal address

How does a rootkit primarily affect a computer?

By allowing unauthorized access without detection

Which of the following is a characteristic of email spam?

Often sent in bulk to many recipients

What is the main aim of phishing attacks?

To gather personal data from the recipient

Which of the following is illegal for an employee to do in the workplace?

Falsify the results of a quality assurance test

What organization aims to stop unauthorized copying of software?

Business Software Alliance

What defines a trade secret?

Confidential information that provides economic value

Which of these is an example of a trade secret?

The Colonel’s secret recipe

What is the consequence for IT workers involved in software piracy?

Legal penalties and fines

What type of information can be considered a trade secret?

Undisclosed business plans

Which of the following is NOT a characteristic of a trade secret?

It is easily accessible to the public

In what area can IT workers be tempted to violate laws and policies?

Software licensing agreements

What is the primary function of a router?

Connects multiple networks and forwards data packets

Which of the following is true about a proxy server?

It acts as an intermediary between a client and a web server

What is two-factor authentication?

A security measure requiring two types of credentials for access

Which of the following best describes an intrusion detection system (IDS)?

Software and/or hardware that monitors network activities for security threats

What is the purpose of data encryption?

To protect data from unauthorized access by converting it into a secure format

What should be included in security education for end-users?

Reporting unusual activity to the IT security group

What general role do enterprise resource planning (ERP) systems play?

Integrating all facets of an operation, including supply chain and manufacturing

What is a common practice in guarding against unauthorized access?

Regularly changing passwords based on a fixed schedule

Study Notes

Rootkits

• Designed to be difficult to detect on a computer system.
• Symptoms of infection include system freezes, unexpected screen saver changes, taskbar disappearance, and slow network performance.

Spam

• Unsolicited email sent to large groups.
• CAN-SPAM Act regulates spam email, allowing it under certain conditions.
• CAPTCHAs are tools that differentiate humans from automated software to reduce spam.

Phishing

• Fraudulent emails aim to extract personal information from recipients.
• Common tactics include pressing the recipient to click links or open attachments.
• Spear-phishing targets specific organizations, making it a more focused threat.

Ethics for IT Workers

• Professionalism in IT requires specialized knowledge and extensive training.
• IT employees have unique responsibilities and rights tied to ethical behavior and compliance with laws.
• IT professionals can face malpractice and must adhere to various standards and ethical codes.

Relationships Between IT Workers and Employers

• Employment laws protect IT workers from illegal demands, such as tampering with software quality assurance.
• Software piracy constitutes illegal copying or unauthorized access to software, impacting industry integrity.
• The Business Software Alliance aims to combat software piracy and promote authorized use.

Trade Secrets

• Trade secrets consist of confidential business information that provides a competitive advantage.
• Protected information includes software designs, manufacturing processes, and business strategies.

Smishing & Vishing

• Smishing involves fraudulent text messages prompting recipients to take urgent action regarding bank accounts.
• Vishing entails voice messages urging victims to call back specific numbers or visit websites, often for malicious purposes.

CIA Security Triad

• Confidentiality: Only authorized individuals can access sensitive data.
• Integrity: Data changes are restricted to authorized personnel, ensuring accuracy.
• Availability: Data should be accessible during normal operations and crises.

Information Technology Act, 2000

• Primary law in India addressing cybercrime and electronic commerce, enacted on October 17, 2000.
• Influenced by the UN Model Law on Electronic Commerce.
• Jurisdiction extends to crimes involving computers or networks located in India, regardless of the offender's nationality.

Networking Concepts

• Routers connect multiple networks and manage data packet transfers.
• Proxy servers act as intermediaries between users and web servers to enhance privacy.
• VPNs allow secure remote access to organizational systems without compromising security.

Intrusion Detection Systems (IDS)

• IDS monitors network resources and alerts personnel to suspicious activities threatening security.

Implementing CIA at Different Levels

• Application Level: Requires authentication methods and encryption to secure data.
• End-User Level: Emphasizes security education, secure password practices, and reporting unusual activity.
• Effective access control measures (e.g., file permissions) protect sensitive information.

Description

This quiz explores rootkits and the various symptoms that indicate their presence on a computer. Participants will learn how these hidden threats can affect system performance and user experience, and how to identify them effectively.