Safety and Security in ICT

Questions and Answers

Which of the following is NOT considered a health risk associated with daily contact with information systems?

Heavy equipment falling (correct)

Eye strain

Headaches

Back and neck problems

What is the primary focus of e-safety?

Ensuring personal data safety while using information systems (correct)

Reducing the costs associated with electronic communication

Maintaining employee productivity in the workplace

Avoiding physical health issues related to ICT

Which of the following is an example of an inappropriate contact hazard in e-safety?

Plagiarism (correct)

Eye strain

Back and neck problems

Electrocution

What can heavy equipment falling potentially lead to?

Serious injury or loss of life

Which of the following is NOT listed under safety aspects?

Bullying

Which of the following health risks is specifically associated with long hours in front of a screen?

Eye strain

What type of hazard does e-safety address?

Inappropriate contact and content risks

Which of the following safety risks can be caused by trailing wires?

Trip hazards

Which of the following is a health risk that could prevent effective work performance?

Back and neck problems

What type of risks might arise from engaging with social network software in e-safety?

Bullying and inappropriate contact

Which of the following actions can lead to e-safety issues?

Opening emails from unknown sources

What should a user consider before disclosing personal information online?

Who is collecting the information and why

What is hacking primarily associated with?

Unauthorized access to computer systems

Which of the following is NOT categorized under physical security threats?

Social engineering

What characteristic defines phishing attacks?

Fraudulent attempts to obtain sensitive information

What is an appropriate way to maintain internet security?

Using antivirus software and keeping it updated

Which method does NOT fall under the category of social engineering?

Hacking

What is the primary goal of smishing?

Obtaining information through deceptive text messages

Which of the following is a suggested strategy for preventing e-safety issues?

Regularly evaluating personal social media usage

What does pharming typically involve?

Redirecting users to fraudulent websites

What is the primary goal of phishing attacks?

To gather personal data by pretending to be a trustworthy source.

How does pharming differ from phishing?

Pharming installs malicious code to redirect users, while phishing uses deceptive communication.

Which of the following describes smishing?

Phishing carried out via SMS text messages.

What is the main characteristic of vishing?

Employing telephone calls to trick users into revealing personal data.

Which of the following is NOT a form of malware?

Phishing

What distinguishes a computer virus from other types of malware?

It replicates with the intention to damage or corrupt files.

Which type of malware is specifically designed to collect personal information covertly?

Spyware

What is a common method used by attackers in phishing attacks to lure victims?

Encouraging the user to click on a link.

What type of malware can operate undetected and provide remote access to a computer?

Rootkit

What is the main risk associated with malware such as ransomware?

It encrypts files and demands payment to restore access.

What is the primary function of a Trojan Horse in computer security?

To disguise itself and act like a harmless application

How do worms primarily spread across computer systems?

By exploiting security holes in networks

What distinguishes spyware from other types of malicious software?

It monitors user keystrokes and collects data

Which statement accurately describes adware?

It displays targeted advertisements based on user behavior

What is the main purpose of a rootkit?

To gain and maintain administrator access

Which of the following is NOT a characteristic of a worm?

It requires user interaction to spread

What method can a Trojan Horse use to install itself on a victim's computer?

By masquerading as an update for legitimate software

What is a common misconception about adware?

It does not collect user data

Which type of malware typically results in a user’s data being stolen without their knowledge?

Spyware

How can a computer be protected against worms effectively?

By using firewalls and regular software updates

Study Notes

Safety and Security Overview

• Increase in ICT usage correlates with physical dangers in the workplace, categorized into health and safety aspects.

Health Aspects

• Daily exposure to computer-based information systems (CBIS) can lead to health issues.
• Common health risks include:
  • Back and neck strain
  • Eye strain
  • Frequent headaches

Safety Aspects

• Safety risks in the workplace can cause serious injuries or fatalities.
• Examples of safety risks include:
  • Electrocution from faulty equipment
  • Tripping hazards from trailing wires
  • Injuries from heavy equipment falls
  • Risks associated with electrical overloads
  • Fire hazards due to poor electrical management

E-safety

• E-safety encompasses keeping personal data secure while using the internet and electronic media.
• It addresses the benefits, risks, and responsibilities associated with information systems.

E-safety Hazards

• Hazards related to e-safety can be categorized into:
  • Illegal/Inappropriate Content
    • Copyright violations
    • Plagiarism
    • Exposure to inappropriate images
  • Contact Risks
    • Inappropriate interactions with adults
    • Bullying
    • Financial scams

Common E-safety Issues

• Risks include:
  • Sharing personal information with unknown individuals
  • Sending personal photos online
  • Poor management of privacy settings on devices
  • Visiting unsecured websites
  • Opening emails from unknown senders
  • Engaging in cyberbullying through social networks

Managing E-safety Issues

• To safeguard personal data:
  • Adjust privacy settings on social networks.
  • Evaluate the purpose of shared information by asking:
    • Who collects the information?
    • Why is it necessary?
    • What will happen with it?
    • What are the potential consequences?
  • Utilize updated antivirus and security software.

Physical Security and Data Protection

• Data security risks include:
  • Hacking
  • Phishing
  • Smishing (SMS phishing)
  • Vishing (voice phishing)
  • Pharming

Definitions of Cybersecurity Threats

• Hacking: Unauthorized access to a computer system, leading to identity theft, data manipulation, or corruption.
• Phishing: Deceptive emails targeting personal data by impersonating trustworthy entities.
• Pharming: Redirecting users to fraudulent websites without consent through malicious code.
• Smishing: Phishing via SMS messages rather than email.
• Vishing: Phishing through phone calls to extract personal information.

Malware Types

• Malware disrupts computer systems and includes:
  • Viruses: Self-replicating programs that corrupt data.
  • Trojan Horses: Malicious programs disguised as legitimate software.
  • Worms: Programs that exploit network vulnerabilities for replication.
  • Spyware: Monitors user actions and collects data.
  • Adware: Displays targeted ads based on user activity.
  • Rootkits: Provides unauthorized administrative access to computers.

Summary of Malware Impact

• Virus: Malicious software that causes system malfunction or data loss.
• Trojan Horse: Disguised malicious software that acts like a legitimate application.
• Worms: Self-replicating software exploiting security flaws.
• Spyware: Collects data by monitoring user input.
• Adware: Targets users with advertisements based on online behavior.
• Rootkit: Allows for covert access to a victim's system after password compromise.

Description

This quiz focuses on the safety and security aspects of Information and Communication Technology (ICT) as discussed in Lecture 7. It covers health and safety dangers that employees may encounter due to the increased use of ICT. Test your knowledge on these critical issues.