CHAPTER 10: COMPUTER SECURITY AND RISKS



Similar documents
10- Assume you open your credit card bill and see several large unauthorized charges unfortunately you may have been the victim of (identity theft)

COB 302 Management Information System (Lesson 8)

Chapter 12 Objectives. Chapter 12 Computers and Society: Security and Privacy


Spyware. Michael Glenn Technology Management 2004 Qwest Communications International Inc.

Chapter 11 Manage Computing Securely, Safely and Ethically. Discovering Computers Your Interactive Guide to the Digital World

ITSC Training Courses Student IT Competence Programme SIIS1 Information Security

Part I: Ethics. Moral guidelines that govern use of computers and information systems. Unauthorized use of computer systems

BE SAFE ONLINE: Lesson Plan

NEW JERSEY STATE POLICE EXAMPLES OF CRIMINAL INTENT

Chapter 11 Computers and Society, Security, Privacy, and Ethics

FORBIDDEN - Ethical Hacking Workshop Duration

Data Management Policies. Sage ERP Online

Don t Fall Victim to Cybercrime:

Threats and Attacks. Modifications by Prof. Dong Xuan and Adam C. Champion. Principles of Information Security, 5th Edition 1

Network Security and the Small Business

Loophole+ with Ethical Hacking and Penetration Testing

E-commerce. Security. Learning objectives. Internet Security Issues: Overview. Managing Risk-1. Managing Risk-2. Computer Security Classifications

When you listen to the news, you hear about many different forms of computer infection(s). The most common are:

Common Cyber Threats. Common cyber threats include:

Computers and Society: Security and Privacy

Cracking and Computer Security

9. Information Assurance and Security, Protecting Information Resources. Janeela Maraj. Tutorial 9 21/11/2014 INFO 1500

(Self-Study) Identify How to Protect Your Network Against Viruses

Topic 1 Lesson 1: Importance of network security

Open an attachment and bring down your network?

A Small Business Approach to Big Business Cyber Security. Brent Bettis, CISSP 23 September, 2014

E-Business, E-Commerce

TEMPLE UNIVERSITY POLICIES AND PROCEDURES MANUAL

OCT Training & Technology Solutions Training@qc.cuny.edu (718)

Infocomm Sec rity is incomplete without U Be aware,

How Security Testing can ensure Your Mobile Application Security. Yohannes, CEHv8, ECSAv8, ISE, OSCP(PWK) Information Security Consultant

Chapter 14 Computer Threats

COSC 472 Network Security

Security aspects of e-tailing. Chapter 7

Fraud Detection and Prevention. Timothy P. Minahan Vice President Government Banking TD Bank

INFOCOMM SEC RITY. is INCOMPLETE WITHOUT. Be aware, responsible. secure!

System Security Policy Management: Advanced Audit Tasks

An Introduction on How to Better Protect Your Computer and Sensitive Data

FBLA Cyber Security aligned with Common Core FBLA: Cyber Security RST RST RST RST WHST WHST

COMPUTER-INTERNET SECURITY. How am I vulnerable?

Contact details For contacting ENISA or for general enquiries on information security awareness matters, please use the following details:

Computer Crime & Security Survey

Enterprise Cybersecurity Best Practices Part Number MAN Revision 006

Cybersecurity for the C-Level

1 Introduction. Agenda Item: Work Item:

RLI PROFESSIONAL SERVICES GROUP PROFESSIONAL LEARNING EVENT PSGLE 123. Cybersecurity: A Growing Concern for Small Businesses

Computer Security Maintenance Information and Self-Check Activities

If you know the enemy and know yourself, you need not fear the result of a hundred battles.

Encyclopedia of Information Assurance Suggested Titles: March 25, 2013 The following titles have not been contracted.

Alexander Nikov. 9. Information Assurance and Security, Protecting Information Resources. Learning Objectives. You re on Facebook? Watch Out!

Network Incident Report

Spyware. Summary. Overview of Spyware. Who Is Spying?

Secure and Safe Computing Primer Examples of Desktop and Laptop standards and guidelines

3 day Workshop on Cyber Security & Ethical Hacking

COURSE NAME: INFORMATION SECURITY INTERNSHIP PROGRAM

E-commerce. business. technology. society. Kenneth C. Laudon Carol Guercio Traver. Second Edition. Copyright 2007 Pearson Education, Inc.

7 Cs of WEB design - Customer Interface

Network Security: Introduction

OCR LEVEL 3 CAMBRIDGE TECHNICAL

Cybersecurity: A Growing Concern for All Businesses. RLI Design Professionals Design Professionals Learning Event DPLE 160 October 7, 2015

INTERNET & COMPUTER SECURITY March 20, Scoville Library. ccayne@biblio.org

How To Protect The Time System From Being Hacked

Cyber Security Awareness

INFORMATION SECURITY INCIDENT MANAGEMENT PROCESS

Enterprise K12 Network Security Policy

Detailed Description about course module wise:

The Information Security Problem

ANTI-VIRUS POLICY OCIO TABLE OF CONTENTS

Certified Ethical Hacker Exam Version Comparison. Version Comparison

Technology in Action. Alan Evans Kendall Martin Mary Anne Poatsy. Eleventh Edition. Copyright 2015 Pearson Education, Inc.

INFORMATION SECURITY FOR YOUR AGENCY

ETHICAL HACKING CYBER SECURITY

Software Engineering 4C03 Class Project. Computer Networks and Computer Security COMBATING HACKERS

Cyber Security Awareness

PROTECT YOUR COMPUTER AND YOUR PRIVACY!

How to stay safe online

Cyber Security. Securing Your Mobile and Online Banking Transactions

CRYPTUS DIPLOMA IN IT SECURITY

1 Introduction. Agenda Item: Work Item:

Chapter 8: Security Measures Test your knowledge

How To Protect Your Information From Being Hacked By A Hacker

Learn to protect yourself from Identity Theft. First National Bank can help.

Cybersecurity Report on Small Business: Study Shows Gap between Needs and Actions

Content Teaching Academy at James Madison University

Network and Workstation Acceptable Use Policy

BCS IT User Syllabus IT Security for Users Level 2. Version 1.0

How To Monitor The Internet In Idaho

Malware, Spyware, Adware, Viruses. Gracie White, Scott Black Information Technology Services

Network Security. Chapter 12. Learning Objectives. Chapter Outline. After reading this chapter, you should be able to:

Transcription:

CHAPTER 10: COMPUTER SECURITY AND RISKS Multiple Choice: 1. In a survey of more than 500 companies and government agencies, percent detected computer security breaches. A. 20 B. 75 C. 85 D. 99 Answer: C Reference: The Digital Dossier Difficulty: Moderate 2. The survey showed that these businesses lost more than due to security breaches. A. $100,000 each B. $377 million C. five employees each D. $1 million Answer: B Reference: The Digital Dossier Difficulty: Moderate 3. The typical computer criminal is a(n): A. young hacker. B. trusted employee with no criminal record. C. trusted employee with a long, but unknown criminal record. D. overseas young cracker. Answer: B Reference: The Digital Dossier Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved.

4. The majority of computer crimes are committed by: A. hackers. B. insiders. C. overseas criminals. D. young teenage computer geniuses. Answer: B Reference: The Digital Dossier Difficulty: Moderate 5. The common name for the crime of stealing passwords is: A. spooling. B. identity theft. C. spoofing. D. hacking. Answer: C Reference: Theft by Computer Difficulty: Moderate 6. The FBI s Operation Cyber Loss was designed to crack down on: A. computer theft. B. identity theft. C. Internet fraud. D. theft in Banking. Answer: C Reference: Theft by Computer Difficulty: Moderate 7. Collecting personal information and effectively posing as another individual is known as the crime of: A. spooling. B. identity theft. C. spoofing. D. hacking. Answer: B Reference: Identity Theft Difficulty: Easy Copyright 2008 Prentice-Hall. All rights reserved. 2

8. is the term for the use of deception to get someone s sensitive information. A. Identity theft B. Social engineering C. Spoofing D. Hacking Answer: B Reference: Identity Theft Difficulty: Easy 9. Malicious software is known as: A. badware. B. malware. C. maliciousware. D. illegalware. Answer: B Reference: Software Sabotage: Viruses and Other Malware Difficulty: Easy 10. A program that performs a useful task while simultaneously allowing destructive acts is a: A. worm. B. Trojan horse. C. virus. D. macro virus. Answer: B Reference: Trojan Horses Difficulty: Moderate 11. An intentionally disruptive program that spreads from either from program-to-program or from disk-to-disk is known as a: A. Trojan horse. B. virus. C. time bomb. D. time-related bomb sequence. Answer: B Reference: Viruses Difficulty: Easy Copyright 2008 Prentice-Hall. All rights reserved. 3

12. In 1999, the Melissa virus was a widely publicized: A. email virus. B. macro virus. C. Trojan horse. D. Time bomb. Answer: A Reference: Viruses Difficulty: Challenging 13. This virus that attaches itself to macros is called: A. email virus. B. macro virus. C. Trojan horse. D. time bomb. Answer: B Reference: Viruses Difficulty: Easy 14. What type of virus uses computer hosts to reproduce itself? A. Time bomb B. Worm C. Melissa virus D. Macro virus Answer: B Reference: Worms Difficulty: Moderate 15. The Code Red worm attacked: A. UNIX operating systems B. Microsoft Word C. Microsoft server software D. personal computers Answer: C Reference: Worms Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved. 4

16. The thing that eventually terminates a worm is a lack of: A. memory or disk space. B. time. C. CD drive space. D. CD-RW. Answer: A Reference: Worms Difficulty: Moderate 17. When a logic bomb is activated by a time-related event, it is known as a: A. time-related bomb sequence. B. virus. C. time bomb. D. Trojan horse. Answer: C Reference: Trojan Horses Difficulty: Easy 18. A logic bomb that was created to erupt on Michelangelo s birthday is an example of a: A. time-related bomb sequence. B. virus. C. time bomb. D. Trojan horse. Answer: C Reference: Trojan Horses Difficulty: Moderate 19. What is the name of an application program that gathers user information and sends it to someone through the Internet? A. A virus B. Spybot C. Logic bomb D. Security patch Answer: B Reference: Spyware Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved. 5

20. When you visit certain Web sites spyware may be automatically downloaded. This is called a: A. virus. B. spybot. C. logic bomb. D. drive-by download. Answer: D Reference: Spyware. Difficulty: Moderate 21. Standardization of Microsoft programs and the Windows operating system has made the spread of viruses: A. more complicated. B. more difficult. C. easier. D. slower. Answer: C Reference: Virus Wars Difficulty: Easy 22. HTML viruses infect: A. your computer. B. a Web page in the HTML code. C. both a Web page and the computer that is viewing it. D. None of these answers is correct. Answer: B Reference: Virus Wars Difficulty: Moderate 23. Software programs that close potential security breaches in an operating system are known as: A. security breach fixes. B. refresh patches. C. security repairs. D. security patches. Answer: D Reference: Virus Wars Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved. 6

24. When customers of a Web site are unable to access it due to a bombardment of fake traffic, it is known as: A. a virus. B. a Trojan horse. C. cracking. D. a denial of service attack. Answer: D Reference: Hacking and Electronic Trespassing Difficulty: Easy 25. Unauthorized access to computers is called: A. a virus. B. a worm. C. cracking. D. hacking. Answer: D Reference: Hacking and Electronic Trespassing Difficulty: Easy 26. Criminal hacking is called: A. a virus. B. a Trojan horse. C. cracking. D. a worm. Answer: C Reference: Hacking and Electronic Trespassing Difficulty: Easy 27. Hackers who hijack legitimate Web sites and redirect users to other sites are called: A. hackers. B. Trojan horses. C. webjackers. D. denial of service attackers. Answer: C Reference: Hacking and Electronic Trespassing Difficulty: Easy Copyright 2008 Prentice-Hall. All rights reserved. 7

28. is the measurement of things such as fingerprints and retinal scans used for security access. A. Biometrics B. Biomeasurement C. Computer security D. Smart weapon machinery Answer: A Reference: Physical Access Restrictions Difficulty: Moderate 29. What is the most common tool used to restrict access to a computer system? A. User logins B. Passwords C. Computer keys D. Access-control software Answer: B Reference: Passwords Difficulty: Moderate 30. The most common passwords in the U.S. or Britain include all EXCEPT: A. love. B. Fred. C. God. D. 123. Answer: D Reference: Passwords Difficulty: Challenging 31. Hardware or software designed to guard against unauthorized access to a computer network is known as a(n): A. hacker-proof program. B. firewall. C. hacker-resistant server. D. encryption safe wall. Answer: B Reference: Firewalls, Encryption, and Audits Difficulty: Easy Copyright 2008 Prentice-Hall. All rights reserved. 8

32. The scrambling of code is known as: A. encryption. B. firewalling. C. scrambling. D. password-proofing. Answer: A Reference: Firewalls, Encryption, and Audits Difficulty: Moderate 33. If you want to secure a message, use a(n): A. cryptology source. B. encryption key. C. encryption software package. D. cryptosystem. Answer: D Reference: How It Works: Cryptography Difficulty: Moderate 34. To prevent the loss of data during power failures, use a(n): A. encryption program. B. surge protector. C. firewall. D. UPS. Answer: D Reference: Backups and Other Precautions Difficulty: Moderate 35. A(n) can shield electronic equipment from power spikes. A. encryption program B. surge protector C. firewall D. UPS Answer: B Reference: Backups and Other Precautions Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved. 9

36. All of these are suggestions for safe computing EXCEPT: A. Don t borrow disks from other people. B. Open all e-mail messages but open them slowly. C. Download shareware and freeware with caution. D. Disinfect your system. Answer: B Reference: Working Wisdom: Safe Computing Difficulty: Easy 37. Freeware encrypts data. A. encryption B. firewall software C. PGP D. private and public keys Answer: C Reference: Working Wisdom: Safe Computing Difficulty: Moderate 38. is defined as any crime completed through the use of computer technology. A. Computer forensics B. Computer crime C. Hacking D. Cracking Answer: B Reference: The Digital Dossier Difficulty: Moderate 39. Most computer systems rely solely on for authentication. A. logins B. passwords C. encryption D. lock and key Answer: B Reference: The Role of System Administrators Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved. 10

40. Creating strong computer security to prevent computer crime usually simultaneously helps protect: A. privacy rights. B. personal ethics. C. the number of cookies downloaded to your personal computer. D. personal space. Answer: A Reference: When Security Threatens Privacy Difficulty: Moderate 41. Over was spent by businesses and government to repair problems in regard to Y2K. A. 20 million dollars B. 100 million dollars C. 1 billion dollars D. 100 billion dollars Answer: D Reference: Bugs and Breakdowns Difficulty: Moderate 42. What is a complex system that takes on nearly complete responsibility for a task eliminating the need for people, verification, or decision making? A. Autonomous system B. Missile defense auto-system C. Smart weapon D. Independent system Answer: A Reference: Autonomous System Difficulty: Moderate 43. Security procedures can: A. eliminate all computer security risks. B. reduce but not eliminate risks. C. are prohibitively expensive. D. are inaccessible for the average home user. Answer: B Reference: Is Security Possible? Difficulty: Easy Copyright 2008 Prentice-Hall. All rights reserved. 11

Fill in the Blank: 44. The field of computer uses special software to scan hard drives of criminal suspects. Answer: forensics Reference: Online Outlaws: Computer Crime Difficulty: Challenging 45. Computer often goes unreported because businesses fear negative publicity. Answer: crime Reference: The Digital Dossier Difficulty: Moderate 46. connections are the most frequent point of attack for Internet commerce sites. Answer: Internet Reference: The Digital Dossier Difficulty: Easy 47. is the most common form of computer crime. Answer: Theft Reference: Theft by Computer Difficulty: Moderate 48. Operation Cyber Loss was designed by the FBI was to crack down on. Answer: Internet fraud Reference: Theft by Computer Difficulty: Moderate 49. The use of deception to get someone s sensitive information is called. Answer: Social engineering Reference: Theft by Computer Difficulty: Moderate 50. A survey by emarketer.com found that are the most frequently cited online fraud cases. Answer: online auctions Reference: Identity Theft Difficulty: Challenging 51. Theft of computers is most common for PDAs and computers. Answer: notebook Reference: Theft by Computer Difficulty: Moderate 52. When you use a disk in several different computers within the same day, you are taking the chance of contracting a(n). Answer: virus Reference: Viruses Difficulty: Easy 53. A(n) attaches itself to documents that contain embedded programs that automate tasks. Answer: macro virus Reference: Viruses Difficulty: Moderate 54. Both viruses and use computer hosts to replicate. Answer: worms Reference: Worms Difficulty: Challenging 55. The Code Red worm attacked. Answer: Microsoft servers Reference: Worms Difficulty: Challenging Copyright 2008 Prentice-Hall. All rights reserved. 12

56. programs search for and eliminate viruses. Answer: Antivirus Reference: Virus Wars Difficulty: Easy 57. A security patch is a software program that closes possible security breaches in the operating system. The cost to the consumer is. Answer: nothing or free Reference: Virus Wars Difficulty: Easy 58. refers to electronic trespassing or criminal hacking. Answer: Cracking Reference: Hacking and Electronic Trespassing Difficulty: Moderate 59. DoS stands for. Answer: denial of service Reference: Hacking and Electronic Trespassing Difficulty: Moderate 60. DDoS stands for. Answer: distributed denial of service Reference: Hacking and Electronic Trespassing Difficulty: Moderate 61. hijack Web pages and redirect users to other sites. Answer: Webjackers Reference: Hacking and Electronic Trespassing Difficulty: Challenging 62. software monitors and records computer transactions. Answer: Audit-control Reference: Firewalls, Encryption, and Audits Difficulty: Challenging 63. Each individual who uses a public key cryptosystem has keys. Answer: two Reference: How It Works: Cryptography Difficulty: Easy 64. Most widely used recovery technique is. Answer: Backups Reference: Backups and other precautions Difficulty: Easy 65. RAID stands for. Answer: Redundant array of independent disk Difficulty: moderate Reference: Backups and other precautions 66. A(n) guarantees that users have permission to perform particular actions. Answer: authorization mechanism Difficulty: Challenging Reference: The Role of System Administrators 67. PGP stands for. Answer: Pretty Good Privacy Reference: Working Wisdom: Safe Computing Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved. 13

68. In 2000 the U.S. government found Microsoft guilty of. Answer: Monopolistic activities Reference: Working Wisdom: Safe Computing Difficulty: Moderate 69. A microprocessor-controlled badge is called a(n). Answer: active badge Reference: Working Wisdom: Safe Computing Difficulty: Moderate 70. Most operating systems, including Windows XP, assign each user a unique. Answer: user identifier or user ID Reference: Human Security Controls Difficulty: Moderate 71. Special purpose hardware that will allow every message to be encrypted is called a(n). Answer: security processor Reference: The Future of Internet Security Difficulty: Moderate 72. The term once used for malicious computer wizardry is. Answer: hackers or hacking Reference: Hacking and Electronic Trespassing Difficulty: Moderate Matching: 73. Match the acts and centers with their purposes: I. Computer Fraud and Abuse Act A. created by Attorney General Janet Reno in 1998 II. USA Patriot Act III. Digital Millennium Copyright Act IV. Telecommunications Act of 1996 B. defines what kinds of communications are legal online C. created in 2001 as a response to the terrorist attacks of September 11, 2001 D. provides instant information on crimes and criminals V. Communications Decency Act E. declared unconstitutional by the Supreme Court VI. National Infrastructure Protection Center VII. National Crime Information Center F. created as a result of the first headline-making worm G. used to arrest a student for writing to crack an Adobe product Answers: F, C, G, B, E, A, D Reference: Multiple locations Difficulty: Challenging Copyright 2008 Prentice-Hall. All rights reserved. 14

74. Match the following rules of thumb about safe computing with the proper descriptions: I. share with care A. be aware of e-mail from what appear to be legitimate companies II. handle email carefully III. disinfect regularly IV. take your password seriously B. don t choose a dictionary word C. keep your disks in your own computer D. copy, copy, copy V. if it s important, back it up E. encrypt VI. sensitive info over the Internet? F. use antivirus software Answers: C, A, F, B, D, E Reference: Working Wisdom: Safe Computing Difficulty: Moderate Copyright 2008 Prentice-Hall. All rights reserved. 15

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information