ISTM 210 Final Exam ACTUAL UPDATED QUESTIONS AND CORRECT ANSWERS
Computer Security concerned with risk management, confidentiality, integrity, and the availability of
the electronic information that is processed and stored within a computing system
risk management includes the recognition, consequences, and assessment of risk to a computer's
assets, and developing strategies to manage and protect them
hacker also known as hacktivist, is somebody who attempts to invade of disable a
computer's security measures and then to steal the computer resources at their
leisure
unsecured computer computer that is extremely easy to breach, especially by a seasoned hacker
the key aspect of an intranet is ______ privacy
firewall entails specialized hardware and software working together that only authorized
personnel and employees within a business can use its intranet
_____ keep unauthorized users out of private intranets firewalls
any communications in or out of an intranet pass through proxy server
a special security computer called a ______ as a
precaution to protect from any external threats
port used to contain and delay structural fire from spreading to contiguous buildings
standard security practices dictate a_______ firewall rule default-deny
set in that the only network connections that are
permitted are the ones that have been explicitly allowed
default-allow rule set in that all traffic is allowed unless it has been specifically blocked
computer viruses computer files that reproduce by making copies of them within a computer's
memory, storage, or on a network
metamorphic virus Are viruses can alter how the appear and known to avoid detection.
malware programs specifically intended to penetrate or damage a computer system
without the end user's knowledge
experimental malware written as research project to further understand how to combat them
, worms self-replicating but can be potentially more insidious in that is does not need to
attach itself to an existing program to spread
Trojan horses program that often seems harmless and interesting at fist until it is executed
spyware program that is installed covertly on a computer to capture or take control of the
system without the user's knowledge or consent
adware also called advertising-supported software, programs that automatically display
or download advertising to a computer
spamming also called junk email, abuse of an email system to arbitrarily send millions of on
solicited bulk messages
denial of service attack DoS for short, attempt to make a a computer or any of its resources unavailable to
its intended users
reverse phishing/keylogging when a perpetrator logs onto a computer workstation and installs a program that
simply records every keystroke made at the workstation's keyboard
antivirus software computer programs that attempt to identify, prevent, and eliminate computer
viruses and malware
two popular antivirus programs are Symantec Corporation's Norton Antivirus and McAfee's VirusScan
system patches updates sent out to fix security threats in the operating system
strong passwords longer in length than ordinary passwords, typically 8-12 characters
passphrase memorable strong password
internet fraud refers to any fraudulent activity in an online setting; can occur through email
systems, message boards, chat rooms, or websites
click fraud manipulating the number of times an ad is clicked on to inflate advertising bills
purchase scams involve a buyer typically in another country that approaches merchants via spam
and asks if they can pay for shipping with a credit card
phishing uses social engineering techniques and attempts to deceptively gain private
information, like usernames, PIN numbers, passwords, and credit card details by
masquerading as a legitimate business organization
Computer Security concerned with risk management, confidentiality, integrity, and the availability of
the electronic information that is processed and stored within a computing system
risk management includes the recognition, consequences, and assessment of risk to a computer's
assets, and developing strategies to manage and protect them
hacker also known as hacktivist, is somebody who attempts to invade of disable a
computer's security measures and then to steal the computer resources at their
leisure
unsecured computer computer that is extremely easy to breach, especially by a seasoned hacker
the key aspect of an intranet is ______ privacy
firewall entails specialized hardware and software working together that only authorized
personnel and employees within a business can use its intranet
_____ keep unauthorized users out of private intranets firewalls
any communications in or out of an intranet pass through proxy server
a special security computer called a ______ as a
precaution to protect from any external threats
port used to contain and delay structural fire from spreading to contiguous buildings
standard security practices dictate a_______ firewall rule default-deny
set in that the only network connections that are
permitted are the ones that have been explicitly allowed
default-allow rule set in that all traffic is allowed unless it has been specifically blocked
computer viruses computer files that reproduce by making copies of them within a computer's
memory, storage, or on a network
metamorphic virus Are viruses can alter how the appear and known to avoid detection.
malware programs specifically intended to penetrate or damage a computer system
without the end user's knowledge
experimental malware written as research project to further understand how to combat them
, worms self-replicating but can be potentially more insidious in that is does not need to
attach itself to an existing program to spread
Trojan horses program that often seems harmless and interesting at fist until it is executed
spyware program that is installed covertly on a computer to capture or take control of the
system without the user's knowledge or consent
adware also called advertising-supported software, programs that automatically display
or download advertising to a computer
spamming also called junk email, abuse of an email system to arbitrarily send millions of on
solicited bulk messages
denial of service attack DoS for short, attempt to make a a computer or any of its resources unavailable to
its intended users
reverse phishing/keylogging when a perpetrator logs onto a computer workstation and installs a program that
simply records every keystroke made at the workstation's keyboard
antivirus software computer programs that attempt to identify, prevent, and eliminate computer
viruses and malware
two popular antivirus programs are Symantec Corporation's Norton Antivirus and McAfee's VirusScan
system patches updates sent out to fix security threats in the operating system
strong passwords longer in length than ordinary passwords, typically 8-12 characters
passphrase memorable strong password
internet fraud refers to any fraudulent activity in an online setting; can occur through email
systems, message boards, chat rooms, or websites
click fraud manipulating the number of times an ad is clicked on to inflate advertising bills
purchase scams involve a buyer typically in another country that approaches merchants via spam
and asks if they can pay for shipping with a credit card
phishing uses social engineering techniques and attempts to deceptively gain private
information, like usernames, PIN numbers, passwords, and credit card details by
masquerading as a legitimate business organization
