Answer:- Here is a list of common cyberattacks aimed at inflicting damage to a system. 1. Man in the Middle attack: The attacker puts himself in the communication between the sender and the receiver. This is done to eavesdrop and impersonate to steal data. 2. Phishing: Here, the attacker will act as a trusted entity to perform malicious activities such as getting usernames, passwords, and credit card numbers. 3. Rogue Software: It is a fraudulent attack where the attacker fakes a virus on the target device and offers an anti-virus tool to remove the malware. This is done to install malicious software into the system. 4. Malware: Malware is software that is designed to attack the target system. The software can be a virus, worm, ransomware, spyware, and so on. 5. Drive-by Downloads: The hacker takes advantage of the lack of updates on the OS, app, or browser, which automatically downloads malicious code to the system. 6. DDoS: This is done to overwhelm the target network with massive traffic, making it impossible for the website or the service to be operable. 7. Malvertising: Malvertising refers to the injections of maleficent code to legitimate advertising networks, which redirect users to unintended websites. 8. Password Attacks: As the name suggests, here, the cyber hacker cracks credentials like passwords.

Answer:- Data leakage means the unauthorized transmission of data from an organization to an external recipient. The mode of transmission can be electronic, physical, web, email, mobile data, and storage devices, such as USB keys, laptops, and optical media. Types of data leakage: Accidental leakage: The authorized entity sends data to an unauthorized entity accidentally. Malicious insiders: The authorized entity intentionally sends data to an unauthorized entity. Electronic communication: Hackers make use of hacking tools to intrude the system.

Answer:- A port scan helps you determine the ports that are open, listening, or closed on a network. Administrators use this to test network security and the system’s firewall strength. For hackers, it is a popular reconnaissance tool to identify the weak point to break into a system. Some of the common basic port scanning techniques are: UDP Ping scan TCP connect TCP half-open Stealth scanning

Answer:- A brute force attack is a hack where the attacker tries to guess the target password by trial and error. It is mostly implemented with the help of automated software used to login with credentials. Here are some ways to prevent a brute force attack: Set a lengthy password Set a high-complexity password Set a limit for login failures

Answer:- • Hashing • A one-way function where you cannot decrypt the original message • Used to verify data • Used to send files, passwords, etc. and to search • Encryption • Encrypted data can be decrypted to the original text with a proper key • Used to transmit data securely • Used to transfer sensitive business information

Answer:- • Vulnerability Assessment (VA) • Identifies the vulnerabilities in a network • Tells how susceptible the network is • Conducted at regular intervals when there is a change in the system or network • Penetration Testing (PT) • Identifies vulnerabilities to exploit them to penetrate the system • Tells whether the detected vulnerability is genuine • Conducted annually when there are significant changes introduced into the system

Answer:- Following are the steps you have to follow to set up a firewall: 1. Username/password: Alter the default password of a firewall device. 2. Remote Administration: Always disable the Remote Administration feature. 3. Port Forward: For the web server, FTP, and other applications to work properly, configure appropriate ports. 4. DHCP Server: Disable the DHCP server when you install a firewall to avoid conflicts. 5. Logging: Enable logs to view the firewall troubleshoots and to view logs. 6. Policies: Configure strong security policies with the firewall.

Answer:- Secure Socket Layer is a security protocol that is used for the purpose of encryption. It ensures privacy, data integrity, and authentication in the network like online transactions. The following are the steps for setting up an SSL encryption: 1. A browser connects to an SSL-secured web server. 2. The browser requests the server’s public key in exchange for its own private key. 3. If it is trustworthy, the browser requests to establish an encrypted connection with the web server. 4. The web server sends the acknowledgment to start an SSL encrypted connection. 5. SSL communication starts to take place between the browser and the web server.

Answer:- A server that is secured uses the Secure Socket Layer (SSL) protocol to encrypt and decrypt data to protect it from unauthorized access. Below are the four steps to secure a server: Step 1: Secure the root and administrator users with a password Step 2: Create new users who will manage the system Step 3: Do not give remote access to administrator/default root accounts Step 4: Configure firewall rules for remote access

Answer:- • Host Intrusion Detection System • Detects the attacks that involve hosts • Analyzes what a particular host/application is doing • Discovers hackers only after the machine is breached • Network Intrusion Detection System • Detects attacks that involve networks • Examines the network traffic of all devices • Discovers hackers at the time they generate unauthorized attacks

Answer:- • Symmetric Encryption • Only one key to encrypt and decrypt a message • Encryption is faster and simple • RC4, AES, DES, and 3DES • For the transmission of large chunks of data • Asymmetric Encryption • Two different keys (public and private keys) to encrypt and decrypt the message • Encryption is slower and complicated • RSA, Diffie-Hellman, and ECC • For smaller transmission to establish a secure connection prior to the actual data transfer

Answer:- • Intrusion Detection System • A network infrastructure to detect intrusion by hackers • Flags invasion as threads • Detects port scanners, malware, and other violations • Intrusion Prevention System • A network infrastructure to prevent intrusions by hackers • Denies the malicious traffic from threads • Does not deliver malicious packets if the traffic is from known threats in databases

Answer:- OSI model was introduced by the International Organization for Standardization for different computer systems to communicate with each other using standard protocols. Below are the various layers of the OSI model: • Physical layer: This layer allows the transmission of raw data bits over a physical medium. • Datalink layer: This layer determines the format of the data in the network. • Network layer: It tells which path the data will take. • Transport layer: This layer allows the transmission of data using TCP/UDP protocols. • Session layer: It controls sessions and ports to maintain the connections in the network. • Presentation layer: Data encryptions happen in this layer, and it ensures that the data is in a usable/presentable format. • Application layer: This is where the user interacts with the application.

Answer:- VPN stands for virtual private network. It is a private network that gives you online anonymity and privacy from a public Internet connection. VPN helps you protect your online activities, such as sending an email, paying bills, or shopping online. How does a VPN work? When you make a VPN connection, your device routes the Internet connection to the VPN’s private server, instead of your Internet Service Provider (ISP). During this transmission, your data is encrypted and sent through another point on the Internet. When it reaches the server, the data is decrypted. The response from the server reaches the VPN where it is encrypted, and it will be decrypted by another point in the VPN. At last, the data, which is decrypted, reaches you.