What is Cybersecurity? Cybersecurity is the practice of protecting systems, networks, and data from cyber threats like unauthorized access, attacks, and data theft.
What are the three main goals of cybersecurity? The three main goals of cybersecurity are Confidentiality (protecting data), Integrity (ensuring data accuracy), and Availability (ensuring data is accessible).
What is a firewall? A firewall is a security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.
What is the difference between a virus and a worm? A virus attaches itself to files and spreads when the file is opened, while a worm is a self-replicating program that spreads across networks without any user interaction.
What is a DDoS attack? A Distributed Denial of Service (DDoS) attack overwhelms a target server with excessive traffic, causing the server to crash or become unavailable.
What is encryption? Encryption is the process of converting data into a code to prevent unauthorized access, using encryption algorithms and keys.
What is multi-factor authentication (MFA)? Multi-factor authentication (MFA) is a security method that requires users to provide two or more forms of identification (e.g., password, phone, or biometric scan) to access an account.
What is a VPN? A VPN (Virtual Private Network) creates a secure and encrypted connection over the internet to protect user privacy and ensure safe communication.
What is a phishing attack? Phishing is when attackers impersonate legitimate entities, such as banks or online services, to trick individuals into revealing sensitive information like passwords or credit card numbers.
What is social engineering in cybersecurity? Social engineering involves manipulating people into disclosing confidential information or performing actions that can compromise security, often by exploiting human psychology.
What is a botnet? A botnet is a network of infected devices (bots) that are controlled remotely by hackers, often used to perform tasks like launching DDoS attacks or spreading malware.
What is SQL injection? SQL injection is a type of attack where malicious SQL code is inserted into a database query to manipulate the database and gain unauthorized access.
What is the principle of least privilege (PoLP)? The principle of least privilege (PoLP) is the concept of granting users the minimum level of access or permissions necessary to perform their jobs, reducing security risks.
What is a zero-day vulnerability? A zero-day vulnerability is a flaw in software that is unknown to the software vendor and has not been patched yet, making it vulnerable to exploitation by attackers.
What is penetration testing (pen testing)? Penetration testing is a simulated cyberattack on a system or network to identify and fix security vulnerabilities before they can be exploited by hackers.
What is the difference between symmetric and asymmetric encryption? Symmetric encryption uses the same key for both encryption and decryption, while asymmetric encryption uses a pair of public and private keys.
What is an IDS and how does it work? An Intrusion Detection System (IDS) monitors network traffic for suspicious activities and alerts administrators of potential security threats or breaches.
What is the CIA triad in cybersecurity? The CIA triad stands for Confidentiality, Integrity, and Availability, which are the three core principles of cybersecurity.
What is malware? Malware is malicious software designed to disrupt, damage, or gain unauthorized access to a system or network. Types include viruses, worms, and ransomware.
What is the difference between a public key and a private key? A public key is used to encrypt data, while a private key is used to decrypt it. The private key must be kept secret.
What is a security patch? A security patch is an update released by a software vendor to fix vulnerabilities or bugs in software that could be exploited by attackers.
What is an exploit? An exploit is a piece of code or a technique used to take advantage of a security vulnerability in a system or application.
What is the role of a security analyst? A security analyst monitors systems for vulnerabilities, analyzes security threats, and implements security measures to protect the organization from cyberattacks.
What is ransomware? Ransomware is a type of malware that locks or encrypts a victim’s files and demands payment (ransom) to restore access.
What is an access control list (ACL)? An access control list (ACL) is a list of permissions attached to an object, such as a file or directory, specifying who can access it and what actions they can perform.
What is a sandbox in cybersecurity? A sandbox is a controlled, isolated environment where suspicious programs or code can be executed safely to observe their behavior without affecting the system.
What is network segmentation? Network segmentation involves dividing a network into smaller, isolated segments to enhance security and minimize the impact of potential security breaches.
What is a vulnerability scan? A vulnerability scan is an automated process that checks a system or network for known security weaknesses that could be exploited by attackers.
What is a hash function? A hash function is a one-way algorithm that converts input data (like a file or password) into a fixed-size string of characters, commonly used for data integrity verification.
What is a security information and event management (SIEM) system? A SIEM system collects, analyzes, and correlates security-related data from various sources in real-time to detect, respond to, and report on potential threats.