Test: Computer Security - 2 - SSC CGL MCQ

The Salami Technique in the realm of computer security threats involves diverting small amounts of money from numerous accounts. This method is named after the idea of slicing thin pieces, akin to how small amounts are stealthily taken from various accounts to avoid detection. It is a form of financial fraud that can be challenging to detect due to the small increments involved.

Rootkits are a type of malware designed to gain administrative-level control over a computer system without being detected. Once installed, they can be used by attackers to carry out various malicious activities, such as stealing sensitive information, spying on user activities, or launching further attacks. They are particularly dangerous due to their ability to evade traditional security measures.

Phishing is a form of cyber attack where attackers fraudulently attempt to acquire sensitive information like passwords, credit card details, and personal information by pretending to be a trustworthy entity. They often use deceptive emails, messages, or websites to trick individuals into providing their confidential data. It is crucial for users to be vigilant and cautious when interacting with online communications to avoid falling victim to phishing attacks.

Adware is software that is designed to automatically display advertisements with the aim of generating revenue for the creator. While not inherently malicious like other forms of malware, adware can be intrusive and annoying to users as it displays unwanted ads and may track user behavior to deliver targeted advertisements. Users should be cautious when downloading software to avoid unintentionally installing adware along with legitimate programs.

Spoofing involves unauthorized access to data by disguising oneself as an authorized user, often over a network. It is a deceptive technique where attackers manipulate information to masquerade as a legitimate entity to gain access to confidential data or systems. Common types of spoofing include IP spoofing, email spoofing, and website spoofing, highlighting the importance of implementing robust security measures to prevent such attacks.

Hacking involves unauthorized intrusion into someone else's computer or network with the potential to cause a Denial of Service (DoS) attack, which disrupts legitimate users from accessing resources. Hackers, individuals who perform hacking activities, may exploit vulnerabilities in systems to gain access, steal data, or disrupt operations. It is crucial for organizations and individuals to implement robust cybersecurity measures to protect against hacking attempts and safeguard sensitive information.

Cracking involves breaking into computers, often utilizing tools like password crackers, trojans, viruses, and war-dialers to compromise systems and gain unauthorized access. Cyber crackers may engage in malicious activities such as stealing data, disrupting operations, or causing harm to individuals or organizations. It is essential for individuals and businesses to implement strong security practices to mitigate the risks associated with cracking attacks and protect their digital assets.

Anti-virus software is designed to prevent, detect, and remove viruses and other malicious software such as worms, trojans, and adware. It plays a crucial role in safeguarding a computer system by constantly scanning for threats and taking action to mitigate them. This software helps to maintain the security and integrity of the system by identifying and eliminating harmful programs that could compromise data and system functionality.

A digital certificate is an attachment to an electronic message used to verify the sender's identity. It enables the receiver to confirm the authenticity of the sender and ensures that the message has not been tampered with during transmission. By providing a secure way to establish trust between communicating parties, digital certificates play a critical role in secure online communications.

A logic bomb is a type of malicious code that is inserted into a computer's memory and is programmed to execute when specific conditions are met. Unlike viruses or worms, a logic bomb does not replicate itself but remains dormant until triggered. This type of threat is designed to cause damage or disruption to a system or network at a predetermined time or under certain circumstances.

A firewall is a security system, either hardware or software-based, that monitors and controls incoming and outgoing network traffic based on predetermined security rules. By acting as a barrier between a trusted internal network and untrusted external networks, firewalls help prevent unauthorized access and protect against malicious activities, such as hacking attempts and malware infections.

File access permissions are used to assign specific rights to users or groups, controlling their ability to view, modify, or execute files on a computer system. By setting permissions such as read, write, and execute, administrators can restrict or grant access to files based on the security requirements of the system. This helps in maintaining data confidentiality, integrity, and availability by ensuring that only authorized users can perform certain actions on files.

Eavesdropping is the security threat that involves the unauthorized real-time interception of private communications, such as phone calls or instant messages. Attackers engage in eavesdropping to access sensitive information exchanged between parties without their knowledge or consent. This type of surveillance can compromise privacy, confidentiality, and the security of communication channels.

Masquerading refers to the security threat where an attacker impersonates an authorized user to gain unauthorized privileges or access to sensitive information. By assuming the identity of a legitimate user or system, the attacker can deceive security mechanisms and bypass authentication controls to carry out malicious activities. Masquerading poses a significant risk to the security and integrity of computer systems and networks.

Spam refers to the abuse of messaging systems to send unsolicited bulk messages, typically through email. These messages are often commercial in nature and can contain advertisements, promotions, or links to malicious websites. Spam not only clutters inboxes and wastes resources but can also be used as a vector for spreading malware or phishing attacks. Users should be cautious when interacting with unsolicited emails to avoid falling victim to spam-related threats.