hw 12/5

Test yourself 241 
  1. A botnet aims to take control of digital systems. It is a type of malware that allows a cyber security attacker to take control of someone's system without their knowledge.  
  2. The aim of a DOS attack is to make a network inaccessible to users. It does this by flooding the network with traffic which in turn slows its speeds down to a point where it is basically unusable. 
  3. One of the main differences between a DOS attack and a DDOS attack is a DDOS attack tends to use multiple devices to try and infiltrate a network. The types of networks that are usually under threat from these would be ones like websites, banks, and payment websites.  
  4. Some of the main websites that are targeted by DDOS attacks would be ones like banks and payment websites.  
Test yourself 242
  1. One way of trying to find a password is using a dictionary software. This goes through some of the most common passwords and trying them when trying to get access to the account. 
  2. A brute force attack is a type of software that combines various letters, numbers, and symbols until the password is found. For smaller passwords it won't take long for the software to find it. However, for passwords long than 8 characters with a range of numbers, letters, and symbols would take much long for the software to find it. 
  3. When making a password, you should aim to have a minimum of 8 characters. 
  4. An SQLI threat exploits a weakness in a website or web-based applications. The main aim is to let hackers exploit vulnerabilities in a website or in a web-based application and they try and steal data that might be held on it. 
  5. When someone is trying to carry out an SQLI, all the person must do is identify the URL that they want to exploit.
Test yourself 243 
  1. Adware is the software that makes things like ad pop ups possible. They are the reason why the make of ads can get revenue of their ads. There is usually harmless, but they can have spyware or key loggers implemented into them. 
  2. A RAT stands for remote access trojan. This allows hackers to access, use, and infect a system.
  3. Ransomware is software that is being held ‘captive’ until someone pay the capture money to get it back. 
  4. When spyware is installed on a computer, some of the changes that can happen could be making internet connection slower, making the system itself feel slower, or there could be changes in your web browser setting (what websites you can visit or download). 
  5. A worm attack is a malware attack that doesn't attach itself to a system and instead just works through the network. Some of the things it can do can range from something as serious as opening devices on your network to make them more vulnerable to further attacks or even just consuming the bandwidth, making the connection slower.   
Test yourself 246 
  1. A turncloak is something that has affected a network from the inside. This could be by something like someone opening something that is able to connect itself to the network and infiltrate it. 
  2. The two steps in cross scripting are injecting the malicious code into the vulnerable web application. The next stage is then the execution of the attack.
  3. Phishing is used to try to lure users to either by posing as a safe download link or website. When the user opens it, it can automatically install malware onto the devices and then allows it to be infiltrated.
  4. The programming language that is most at risk of from a buffer overload is C and C++. 
  5. Two types of natural disasters that can be detrimental to a business would be a flood and an earthquake.  

Key terms 
Buffer – contains data stored at random access memory for a short amount of time before it is used. Social engineering – the art of manipulating people so that confidential information can be found.   

Comments

Post a Comment

Popular posts from this blog

ESP overview

  task number  focus  No. Of hours  Marks allocated  1  Trouble shooting and test planning  2 hours 30  22  2  Interview and communication  2 hours 10  12  3  Project proposal  4 hours  24  4  Post project review  3 hours 30  12    Task uno:  This focus on trouble shooting a fault based on a specified problems/issues and designing a test plan.   The troubleshooting document should include:  User details   Test dates  Computer specs and software  Proposed tests and expected outcomes   Record of diagnosis  The test plan should include:  Administrative details E.G. dates names.  Test dates   Hardwear specs and software   Actual and relevant tests carried out in a logical order including images/diagrams  Full and complete details of expected outcomes  Remedial action required   Task d...
Read more

Stakeholder roadmap

 A stakeholder roadmaps provides an overview of the main components of the project, it will include objectives, deliverables, milestones, resources, and timelines, and is used to show these to stakeholders as well as keeping stakeholders in the know of operations. unlike a project plan, it does not include day to day tasks or a detailed view of roles, only a quick overview to catch stakeholder interest Project timelines timelines show what phases of the project are complete, current, and to do they are used to keep track of different project tasks they include: start and end date of tasks the task duration who is assigned the task task dependencies (if it relies on another task being complete) they are important as they: a central area to display all tasks and project management phases provide a simple representation of the project to make it easier to understand allow team members to focus on important tasks help promote improved time and resource management  Linking pro...
Read more