BTE 210 Final Real Questions and Verified
Answers 100% Correct (A+)
• Why is information security important? -✓✓-Interconnected, interdependent, wirelessly
networked business environment
- Smaller, faster, cheaper computers & storage devices
-Decreasing skills required to be a computer hacker
-International organized crime taking over cybercrime
-Lack of management support
• Types of threats: -✓✓-Espionage or Trespass
-Information Extortion
-Sabotage or Vandalism
-Theft of Equipment or Information
-Identity Theft
- Compromises to Intellectual Property {Trade Secret, Patent, Copyright}
-Supervisory Control and Data Acquisition (SCADA) Attacks
-Cyberterrorism and Cyberwarfare
-Software Attacks {Virus, Worm, Phishing Attacks, Denial of Service Attack (DoS),
Distributed Denial of Service Attack (DDoS)}
-Alien Software {Adware, Spyware}
• Espionage or Trespass -✓✓unauthorized individual attempts to gain illegal access to
organizational information.
• Information Extortion -✓✓an attacker either threatens to steal, or actually steals,
information from a company AND demands payment for not stealing the information, for
returning stolen information, or for agreeing not to disclose the information.
• Sabatoge or Vandalism -✓✓deliberate acts that involve defacing an organization's
Web site, potentially damaging the organization's image and causing its customers to
lose faith.
• Theft of equipment or information -✓✓computing and storage devices (powerful with
vastly increased storage) are becoming smaller and as a result easier to be stolen.
• Identity Theft -✓✓deliberate assumption of another person's identity, usually to gain
access to his or her financial information or to frame him or her for a crime.
• Compromises to intellectual property -✓✓the property created by individuals or
corporations that is protected under trade secret, patent, and copyright laws
, • Trade secret -✓✓an intellectual work, such as a business plan, that is a company
secret and is not based on public information
• Patent -✓✓an official document that grants the holder exclusive rights on an invention
or a process for a specified period of time.
• Copyright -✓✓a statutory grant that provides the creators or owners of intellectual
property with ownership of the property, also for a designated period
• Supervisory Control and Data Acquisition (SCADA) Attacks -✓✓SCADA systems are
used to monitor or to control chemical, physical, and transport processes such as those
used in oil refineries, water and sewage treatment plants, electrical generators, and
nuclear power plants.
• Cyberterrorism and Cyberwarfare -✓✓malicious acts in which attackers use a target's
computer systems, particularly via the Internet, to cause physical, real-world harm or
severe disruption, often to carry out a political agenda.
• Software attack -✓✓a deliberate attempt to compromise or disrupt a computer system
or network using malicious software or techniques
• Remote attacks requiring user attention -✓✓virus, worm, phishing attacks
• remote attacks not requiring user attention -✓✓Denial of service attack (DoS),
Distributed denial of service attack (DDos)
• Virus -✓✓segment of computer code that performs malicious actions by attaching to
another computer program.
• worm -✓✓segment of computer code that performs malicious actions and will
replicate, or spread, by itself (without requiring another computer program)
• phishing -✓✓use deception to acquire sensitive personal information by masquerading
as official-looking e-mails or instant messages.
• Unintentional threats -✓✓Acts performed without malicious intent that nevertheless
represent a serious threat to information security
• Human errors -✓✓- High-level employees + great access privileges = greater threat
- Two areas pose significant threats: Human Resources (employees, contractors,
consultants, janitors, guards) and Information Systems
• Common human errors -✓✓- Carelessness with laptops: losing or misplacing laptops,
leaving them in taxis, and so on
Answers 100% Correct (A+)
• Why is information security important? -✓✓-Interconnected, interdependent, wirelessly
networked business environment
- Smaller, faster, cheaper computers & storage devices
-Decreasing skills required to be a computer hacker
-International organized crime taking over cybercrime
-Lack of management support
• Types of threats: -✓✓-Espionage or Trespass
-Information Extortion
-Sabotage or Vandalism
-Theft of Equipment or Information
-Identity Theft
- Compromises to Intellectual Property {Trade Secret, Patent, Copyright}
-Supervisory Control and Data Acquisition (SCADA) Attacks
-Cyberterrorism and Cyberwarfare
-Software Attacks {Virus, Worm, Phishing Attacks, Denial of Service Attack (DoS),
Distributed Denial of Service Attack (DDoS)}
-Alien Software {Adware, Spyware}
• Espionage or Trespass -✓✓unauthorized individual attempts to gain illegal access to
organizational information.
• Information Extortion -✓✓an attacker either threatens to steal, or actually steals,
information from a company AND demands payment for not stealing the information, for
returning stolen information, or for agreeing not to disclose the information.
• Sabatoge or Vandalism -✓✓deliberate acts that involve defacing an organization's
Web site, potentially damaging the organization's image and causing its customers to
lose faith.
• Theft of equipment or information -✓✓computing and storage devices (powerful with
vastly increased storage) are becoming smaller and as a result easier to be stolen.
• Identity Theft -✓✓deliberate assumption of another person's identity, usually to gain
access to his or her financial information or to frame him or her for a crime.
• Compromises to intellectual property -✓✓the property created by individuals or
corporations that is protected under trade secret, patent, and copyright laws
, • Trade secret -✓✓an intellectual work, such as a business plan, that is a company
secret and is not based on public information
• Patent -✓✓an official document that grants the holder exclusive rights on an invention
or a process for a specified period of time.
• Copyright -✓✓a statutory grant that provides the creators or owners of intellectual
property with ownership of the property, also for a designated period
• Supervisory Control and Data Acquisition (SCADA) Attacks -✓✓SCADA systems are
used to monitor or to control chemical, physical, and transport processes such as those
used in oil refineries, water and sewage treatment plants, electrical generators, and
nuclear power plants.
• Cyberterrorism and Cyberwarfare -✓✓malicious acts in which attackers use a target's
computer systems, particularly via the Internet, to cause physical, real-world harm or
severe disruption, often to carry out a political agenda.
• Software attack -✓✓a deliberate attempt to compromise or disrupt a computer system
or network using malicious software or techniques
• Remote attacks requiring user attention -✓✓virus, worm, phishing attacks
• remote attacks not requiring user attention -✓✓Denial of service attack (DoS),
Distributed denial of service attack (DDos)
• Virus -✓✓segment of computer code that performs malicious actions by attaching to
another computer program.
• worm -✓✓segment of computer code that performs malicious actions and will
replicate, or spread, by itself (without requiring another computer program)
• phishing -✓✓use deception to acquire sensitive personal information by masquerading
as official-looking e-mails or instant messages.
• Unintentional threats -✓✓Acts performed without malicious intent that nevertheless
represent a serious threat to information security
• Human errors -✓✓- High-level employees + great access privileges = greater threat
- Two areas pose significant threats: Human Resources (employees, contractors,
consultants, janitors, guards) and Information Systems
• Common human errors -✓✓- Carelessness with laptops: losing or misplacing laptops,
leaving them in taxis, and so on
