Computer Hardware And Software Startup Functions

1.

Which type of virus targets computer hardware and software startup functions?

Option 1

System infector

Option 3

Option 4

A system infector virus is a type of virus that specifically targets computer hardware and software startup functions. This means that it infects the system files and processes that are responsible for starting up the computer and running the operating system. Once infected, the virus can cause various issues such as system crashes, slow performance, and unauthorized access to the system.

Explanation

A system infector virus is a type of virus that specifically targets computer hardware and software startup functions. This means that it infects the system files and processes that are responsible for starting up the computer and running the operating system. Once infected, the virus can cause various issues such as system crashes, slow performance, and unauthorized access to the system.

2.

What is NOT a typical sign of virus activity on a system?

Option 1

Option 2

Unexpected power failures

Option 4

Unexpected power failures are not typically a sign of virus activity on a system. Power failures are usually caused by issues with the electrical supply or hardware malfunctions, rather than by viruses. Virus activity on a system is more commonly indicated by symptoms such as slow performance, frequent crashes, unusual error messages, unauthorized access to files, and unexpected network traffic.

Explanation

Unexpected power failures are not typically a sign of virus activity on a system. Power failures are usually caused by issues with the electrical supply or hardware malfunctions, rather than by viruses. Virus activity on a system is more commonly indicated by symptoms such as slow performance, frequent crashes, unusual error messages, unauthorized access to files, and unexpected network traffic.

3.

Alison discovers that a system under her control has been infected with malware, which is using a key logger to report user keystrokes to a third party. What information security property is this malware attacking?

Option 1

Option 2

Option 3

Confidentiality

The malware in this scenario is attacking the property of confidentiality. By using a key logger to report user keystrokes to a third party, the malware is compromising the privacy and confidentiality of the user's information. It is unauthorizedly accessing and disclosing sensitive data, violating the principle of confidentiality in information security.

Explanation

The malware in this scenario is attacking the property of confidentiality. By using a key logger to report user keystrokes to a third party, the malware is compromising the privacy and confidentiality of the user's information. It is unauthorizedly accessing and disclosing sensitive data, violating the principle of confidentiality in information security.

4.

Breanne's system was infected by malicious code after she installed an innocent-looking solitaire game that she downloaded from the Internet. What type of malware did she likely encounter?

Worm

Virus

Trojan horse

Logic bomb

Breanne likely encountered a Trojan horse malware after installing the innocent-looking solitaire game. Trojan horse malware disguises itself as legitimate software, tricking users into downloading and installing it. Once installed, it can perform malicious activities such as stealing personal information, damaging files, or giving unauthorized access to the attacker. Unlike worms or viruses, Trojan horses do not replicate themselves but rely on social engineering techniques to deceive users. A logic bomb is a type of malware that is triggered by a specific event or condition, which is not applicable in this scenario.

Explanation

Breanne likely encountered a Trojan horse malware after installing the innocent-looking solitaire game. Trojan horse malware disguises itself as legitimate software, tricking users into downloading and installing it. Once installed, it can perform malicious activities such as stealing personal information, damaging files, or giving unauthorized access to the attacker. Unlike worms or viruses, Trojan horses do not replicate themselves but rely on social engineering techniques to deceive users. A logic bomb is a type of malware that is triggered by a specific event or condition, which is not applicable in this scenario.

5. Adam discovers a virus on his system that is using encryption to modify itself. The virus escapes detection by signature-based antivirus software. What type of virus has he discovered?

Polymorphic virus

Stealth virus

Cross platform virus

Multipartite virus

Adam has discovered a polymorphic virus. This type of virus is able to modify itself by using encryption, making it difficult for signature-based antivirus software to detect. Polymorphic viruses change their code structure each time they replicate, making it challenging to identify and remove them.

Explanation

Adam has discovered a polymorphic virus. This type of virus is able to modify itself by using encryption, making it difficult for signature-based antivirus software to detect. Polymorphic viruses change their code structure each time they replicate, making it challenging to identify and remove them.

6.

What program, released in 2013, is an example of ransomware?

BitLocker

Crypt0locker

File Vault

CryptoVault

Crypt0locker, released in 2013, is an example of ransomware. Ransomware is a type of malicious software that encrypts a victim's files and demands a ransom in exchange for the decryption key. Crypt0locker gained notoriety for its ability to encrypt files on a victim's computer and network drives, making them inaccessible until the ransom was paid.

Explanation

Crypt0locker, released in 2013, is an example of ransomware. Ransomware is a type of malicious software that encrypts a victim's files and demands a ransom in exchange for the decryption key. Crypt0locker gained notoriety for its ability to encrypt files on a victim's computer and network drives, making them inaccessible until the ransom was paid.

7.

What file type is least likely to be impacted by a file infector virus?

.exe

.docx

.com

.dll

File infector viruses typically target executable files such as .exe and .com files, as they can easily inject their malicious code into these types of files. On the other hand, .docx files are Microsoft Word documents that do not contain executable code, making them less likely to be impacted by file infector viruses. However, it is important to note that no file type is completely immune to viruses, and it is always recommended to have antivirus software and practice safe browsing habits.

Explanation

File infector viruses typically target executable files such as .exe and .com files, as they can easily inject their malicious code into these types of files. On the other hand, .docx files are Microsoft Word documents that do not contain executable code, making them less likely to be impacted by file infector viruses. However, it is important to note that no file type is completely immune to viruses, and it is always recommended to have antivirus software and practice safe browsing habits.

8. Bob is developing a web application that depends upon a database backend. What type of attack could a malicious individual use to send commands through his web application to the database?

Cross-site scripting (XSS)

XML injection

SQL injection

LDAP injection

A malicious individual could use SQL injection to send commands through Bob's web application to the database. SQL injection is a type of attack where an attacker inserts malicious SQL code into a query, allowing them to manipulate the database and potentially gain unauthorized access or retrieve sensitive information. By exploiting vulnerabilities in the web application's input validation, the attacker can bypass security measures and execute arbitrary SQL commands.

Explanation

A malicious individual could use SQL injection to send commands through Bob's web application to the database. SQL injection is a type of attack where an attacker inserts malicious SQL code into a query, allowing them to manipulate the database and potentially gain unauthorized access or retrieve sensitive information. By exploiting vulnerabilities in the web application's input validation, the attacker can bypass security measures and execute arbitrary SQL commands.

9.

Larry recently viewed an auction listing on a website. As a result, his computer executed code that popped up a window that asked for his password. What type of attack has Larry likely encountered?

SQL injection

Command injection

XML injection

Cross-site scripting (XSS)

Larry has likely encountered a cross-site scripting (XSS) attack. XSS attacks occur when an attacker injects malicious code into a trusted website, which then executes on the victim's computer. In this case, Larry's computer executed code that popped up a window asking for his password after viewing an auction listing on a website. This is a typical behavior of an XSS attack, where the injected code can manipulate the website's content and interact with the user's browser.

Explanation

Larry has likely encountered a cross-site scripting (XSS) attack. XSS attacks occur when an attacker injects malicious code into a trusted website, which then executes on the victim's computer. In this case, Larry's computer executed code that popped up a window asking for his password after viewing an auction listing on a website. This is a typical behavior of an XSS attack, where the injected code can manipulate the website's content and interact with the user's browser.

10.

Yolanda would like to prevent attackers from using her network as a relay point for a smurf attack. What protocol should she block?

HTTP

TCP

ICMP

Option 4

Yolanda should block the ICMP protocol to prevent attackers from using her network as a relay point for a smurf attack. ICMP (Internet Control Message Protocol) is commonly exploited in smurf attacks, where attackers send a large number of ICMP echo request packets to IP broadcast addresses, causing a flood of responses to overwhelm the victim's network. By blocking ICMP, Yolanda can prevent her network from being used as a relay point for such attacks.

Explanation

Yolanda should block the ICMP protocol to prevent attackers from using her network as a relay point for a smurf attack. ICMP (Internet Control Message Protocol) is commonly exploited in smurf attacks, where attackers send a large number of ICMP echo request packets to IP broadcast addresses, causing a flood of responses to overwhelm the victim's network. By blocking ICMP, Yolanda can prevent her network from being used as a relay point for such attacks.