Cyber Law Questions And Answers Pdf

[Gwenda Arguin]

1What is cryptography?

2. What is a traceroute? Mention its uses.

3. What is a firewall? Mention its uses.

4. What is a three-way handshake?

5. What is a response code? List them.

6. What is the CIA triad?

7. Name various types of cyberattacks.

8. What is data leakage?

9. Explain port scanning.

10. Explain brute force attacks and the ways to prevent them.

Cyber Security is one of the most highly sought-after careers in the IT industry now. The demand keeps growing as the need to get things online increases every day. It also poses the industry with the major concern of securing data assets to prevent misuse. The increase in cybercrimes has become a threat to major companies, which compels them to hire cybersecurity professionals like cybersecurity Engineers and Cyber security analysts. So, you can take advantage of this market trend and become a cyber security expert. Skim through these top 75 cybersecurity interview questions and answers to prepare yourself for the interview.

Cryptography refers to the domain of cyber security that serves the purpose of safeguarding information from individuals known as adversaries, thereby ensuring that the data is exclusively accessed by only senders and intended recipients.

Traceroute is a network diagnostic tool that helps track the route taken by a packet sent across the IP network. It also shows the IP addresses of all the routers it pinged between the source and the destination.

In cybersecurity, a firewall refers to a type of network security system that blocks malicious traffic from hackers and hence maintains the data privacy. This includes bots, phishing links, worms viruses, malware, trojan viruses, etc.

It is a process that happens in a TCP/IP network when you make a connection between a local host and the server. It is a three-step process to negotiate the acknowledgment and synchronization of packets before communication starts.

Data leakage is the term used to describe the unauthorized release of data from a business to a third party. The internet, email, mobile data, as well as storage devices like USB keys, laptops, and optical discs, are just a few of the routes via which this transmission may take place.

A firewall in cybersecurity is like a wall that keeps track of incoming and outgoing traffic to block any malicious activity from hackers. This acts like a network security system that can maintain data privacy. Some malicious activities include bots, phishing links, worms viruses, malware, trojan viruses, etc.

Traceroute is a network analytical tool that helps track the way taken by a packet traveling across the IP (Internet Protocol) network. It also shows the IP addresses of all the routers moving from the source to the destination.

A three-way handshake is a term given to the process of making the connection between a local host and the server in a TCP/IP network. As the name suggests, it is a three-way process where a reliable connection is set up between 2 devices with synchronization (SYN) and acknowledgment (ACK) before sharing of data.

Your online activities are protected from the risks of a public internet connection by a virtual private network, or VPN, which establishes a private and secure network. You may protect tasks like sending emails, making online payments, and conducting e-commerce by utilizing a VPN to increase your anonymity and privacy.

A black hat hacker uses his/her hacking skills to breach confidential data without permission. With the obtained data, the individual performs malicious activities such as injecting malware, viruses, and worms.

White Hat Hackers

A white hat hacker uses his/her hacking skills to break into a system but with the permission of the respective organizations. They are professionals known as Ethical Hackers. They hack the system to identify its vulnerability and to fix it before a hacker takes advantage of it.

A grey hat hacker has the characteristics of both a black hat hacker and a white hat hacker. Here, the system is violated with no bad intention but they do not have the essential permission to surf the system, so it might become a potential threat at any time.

Immediate action is required to perform patch management as soon as software updates are released. It is crucial that all network devices within the organization undergo patch management within a timeframe of one month or less.

In the Man-in-the-Middle attack, the hacker eavesdrops on the communication between two parties. The individual then impersonates another person and makes the data transmission look normal for the other parties. The intent is to alter the data, steal personal information, or get login credentials for sabotaging communication.

Flooding attacks: This is the most commonly occurring type of DDoS attack. Flooding attacks stop the system when the server is accumulated with massive amounts of traffic that it cannot handle. The attacker sends packets continuously with the help of automated software.

Crash attacks: This is the least common DDoS attack where the attacker exploits a bug in the targeted system to cause a system crash. It prevents legitimate users from accessing email, websites, banking accounts, and gaming sites.

Address Resolution Protocol is a communication protocol of the network layer in the OSI model. Its function is to find the MAC address for the given IP address of the system. It converts the IPv4 address, which is 32-bit, into a 48-bit MAC address.

A botnet is usually always responsible for large-scale attacks since a bot herder can control millions of bots at a time. All the bot can receive updates from the attacker to change their behavior in no time.

When two users have the same password, it will result in the creation of the same password hashes. In such a case, an attacker can easily crack the password by performing a dictionary or brute-force attack. To avoid this, a salted hash is implemented.

It employs encryption algorithms to keep any sensitive data that is sent between a client and a server by scrambling the data in transit. This helps prevent hackers from reading any data, such as credit card details and personal and other financial information; it is done by keeping the internet connection secure.

TLS is the successor of SSL. It is an improved protocol version that works just like SSL to protect information transfer. However, to provide better security, both TLS and SSL are often implemented together.

Two-factor authentication (2FA) requires a password, along with a unique form of identification like a login code via text message (SMS) or a mobile application, to verify a user. When the user enters the password, they are prompted to enter the security code to log in to the website. If the code mismatches, the user will be blocked from entering the website.

The Secure Socket Layer (SSL) functions as a security protocol utilized for encryption, enabling network privacy, data integrity, and authentication, particularly in scenarios like online transactions.

Cognitive Cybersecurity is a way of using human-like thought mechanisms and converting them to be used by Artificial Intelligence technologies in cyber security to detect security threats. It is to impart human knowledge to the cognitive system, which will be able to serve as a self-learning system. This helps identify the threats, determine their impact, and manifest reactive strategies.

In phishing, an attacker masquerades as a trusted entity (a legitimate person/company) to obtain sensitive information by manipulating the victim. It is achieved by any kind of user interaction, such as asking the victim to click on a malicious link and to download a risky attachment, to get confidential information such as credit card information, usernames, passwords, and network credentials.

SQL injection is an injection attack where an attacker executes malicious SQL commands on the database server, including MySQL, SQL Server, or Oracle, that runs behind a web application. The intent is to gain unauthorized access to sensitive data such as client information, personal information, intellectual property details, and so on. In this attack, the attacker can add, modify, and delete records in the database, which results in the loss of data integrity in an organization.

In phishing, an attacker masquerades as a trusted entity (as a legitimate person/company) to obtain sensitive information by manipulating the victim. It is achieved by any kind of user interaction, such as asking the victim to click on a malicious link and to download a risky attachment, to get confidential information such as credit card information, usernames, passwords, and network credentials.

SQL injection is an injection attack where an attacker executes malicious SQL commands in the database server, including MySQL, SQL Server, or Oracle, that runs behind a web application. The intent is to gain unauthorized access to sensitive data such as client information, personal information, intellectual property details, and so on. In this attack, the attacker can add, modify, and delete records in the database, which results in the loss of data integrity in an organization.

As a rule of thumb, you should never revert to a sender who demands personal information and passwords via emails, phone calls, text messages, and instant messages (IMs). You must not disclose your data to any external party even if the sender works for organizations such as ITS or UCSC.

To avoid this situation, you should always sign out of all accounts, close the browser, and quit the programs when you use a shared or public computer. There are chances that an illegitimate user can retrieve your authorized data and perform actions on behalf of you without your knowledge when you keep the accounts in a logged-in state.

The DMZ is designed to host publicly accessible services such as web servers, email servers, or FTP servers that need to be accessed by users outside the organization. Placing these services in the DMZ separates them from the internal network, reducing the potential attack surface and minimizing the risk to sensitive resources and data. A DMZ is implemented using firewalls and network segmentation techniques.

3a8082e126