Malware

Q1: What is malware?
A1: A program inserted into a system covertly to compromise security.

Q2: What are the two broad classifications of malware?
A2: How it spreads (viruses, worms) and what it does (payload effects).

Q3: How do viruses spread?
A3: They infect programs and spread when executed.

Q4: What are the four phases of a virus lifecycle?
A4: Dormant, Triggering, Propagation, Execution.

Q5: What is the difference between a virus and a worm?
A5: Viruses require execution to spread, worms self-replicate over networks.

Q6: Name an example of a worm.
A6: Morris Worm (1988), WannaCry (2017).

Q7: What is a Trojan horse?
A7: A malware disguised as legitimate software, does not self-replicate.

Q8: Define Advanced Persistent Threat (APT).
A8: Long-term, targeted attacks by state-sponsored or criminal groups.

Q9: What is ransomware?
A9: Malware that encrypts data and demands a ransom for decryption.

Q10: How do botnets work?
A10: A network of infected computers controlled remotely for attacks.

Q11: What are common propagation mechanisms of malware?
A11: Exploiting vulnerabilities, social engineering, content infection.

Q12: What are the key malware countermeasures?
A12: Prevention, detection, removal, and perimeter defense.