1.4.1 Threats to computer systems and networks

What is malware?

malicious software designed to cuase harm to a computer system/ network

What are the types of malware? Define each.

• virus

  • Programs embedded within other files and can replicate themselves to become part of other programs

  • often cause damage by deleting or modifying data

• worm

  • similiar to virus but doesn’t need to attatch itself to a program

  • can spread across a network

• trojan

  • programs disguised as a legitamate software but contains malicious code inside it

• spyware

  • programs that monitor user activity

• ransomware

  • program that locks/ encrypts your data and demands for ransom, often money, to unlock it

What is social engineering?

Methods of manipulating individuals into revealing confidentional information

What are the types of social engineering attacks? Define each.

• Phishing

  • emails designed to steal money/ logins/ identity by getting user to click a link

• Human error

  • humans using devices on their computer without knowing what is on them

• Blagging

  • act of knowingly or recklessly obtaining/ disclosing information of personal data without consent of owner

What are the other forms of attack?

• Brute force attack

  • using trial and error to guess a password

• Denial of service attacks

  • overloading a website or network, with the aim of degrading its performance or even making it completely inaccessible

• Data interception and theft

  • unauthorised act of capturing data as it is being transmitted across a network

• The concept of SQL injection

  • malicious SQL code that is inputted into an input box in a website, tricking server to give details if website is not secure