1.4 Network Security Diagnostic

Scenario: A user receives an email claiming to be from their bank, directing them to a fake website to log in.

Identify this type of attack and state its specific purpose.

Describe how a SQL Injection attack is carried out.

Explain the difference between a Virus and a Worm.

Define a Brute-Force Attack and its automated nature.

Identify the specific threat that encrypts a user's data and demands a fee for the key.

Explain why People are often cited as the "weak point" in network security.

Define Data Interception.

State the role of Anti-Malware software in preventing attacks.

Complete the description of a Firewall.

J277 Standard: Define User Access Levels.

Describe Penetration Testing and its role in a security strategy.

Identify two physical security measures used for server protection.

Define a DoS (Denial of Service) attack.

How do Limiting Login Attempts prevent brute-force attacks?

Explain Pharming and how it differs from Phishing.

Match the Malware to its effect.

AO3 Spec Audit: Identify why Encryption is effective but state its limitation regarding interception.

Explain the use of Two-Factor Authentication (2FA).

A company's database was deleted by an intern. Which administrative prevention method could have stopped this?

Identify the specific malware designed specifically to replicate across a network to cause a crash.

[AO3 Evaluation] Comprehensive Security: A bank relies entirely on a firewall and encryption for its servers. Discuss why Physical Security is still critical.