Answer:- In phishing, an attacker masquerades as a trusted entity (as a legitimate person/company) to obtain sensitive information by manipulating the victim. It is achieved by any kind of user interaction, such as asking the victim to click on a malicious link and to download a risky attachment, to get confidential information such as credit card information, usernames, passwords, and network credentials. The following are some of the ways to prevent phishing: 1. Install firewalls 2. Rotate passwords frequently 3. Do not click on or download from unknown sources 4. Get free anti-phishing tools 5. Do not provide your personal information on an unsecured/unknown site

Answer:- SQL injection is an injection attack where an attacker executes malicious SQL commands in the database server, including MySQL, SQL Server, or Oracle, that runs behind a web application. The intent is to gain unauthorized access to sensitive data such as client information, personal information, intellectual property details, and so on. In this attack, the attacker can add, modify, and delete records in the database, which results in the data integrity loss of an organization. Ways to prevent SQL injection: 1. Limit providing read access to the database 2. Sanitize data with the limitation of special characters 3. Validate user inputs 4. Use prepared statements 5. Check for active updates and patches

Answer:- 1. Do not download the attachment as it may have malicious viruses, malware, or bugs, which might corrupt your system. 2. Do not visit any links as it might redirect you to an unintended page. 3. As fake email addresses are common and easy to create, you should not perform any action like clicking/downloading any links, unless you confirm it with the actual person. 4. Many websites masquerade as a legitimate site to steal sensitive information, so you should be careful not to fall into the wrong hands.

Answer:- It is highly likely that the above-mentioned three newsletters are from a parent company, which are distributed through different channels. It can be used to gather essential pieces of information that might look safe in the user’s eyes. However, this can be misused to sell personal information to carry out identity theft. It might further ask the user for the date of birth for the activation of the fourth newsletter. In many scenarios, questions that involve personal details are unnecessary, and you should not provide them to any random person, company, or website unless it is for a legitimate purpose.

Answer:- To avoid this situation, you should always sign out of all accounts, close the browser, and quit the programs when you use a shared or public computer. There are chances that an illegitimate user can retrieve your authorized data and perform actions on behalf of you without your knowledge when you keep the accounts in a logged-in state.

Answer:- There are two possible scenarios: 1. The attacker can visit the browser’s history to access her account if she hasn’t logged out. 2. Even if she has logged out but has not cleared the web cache (pages a browser saves to gain easy and quick access for the future)

Answer:- Any sensitive information cannot be shared via email as it can lead to identity theft. This is because emails are mostly not private and secure. Sharing or sending personal information along the network is not recommended as the route can be easily tracked. In such scenarios, the involved parties should call each other and work with ITS as a secure way of sending the information.

Answer:- The answer is (D) and (E). This kind of activity is surely suspicious as an unknown authority seems to have the access to control the computer remotely. In such cases, you should immediately report it to the respective supervisor. You can keep the computer disconnected from the network till help arrives.

Answer:- The answer is C (UcSc4Evr!). As per the UCSC requirements, a password should be: Minimum of 8 characters in length Having any of the three from these four types of characters: lower case, upper case, numbers, and special characters.

Answer:- It appears to be an unsolicited email. You should report it as spam and move the email to the trash immediately in the respective web client you use (Yahoo Mail, Gmail, etc.). Before providing any bank-related credentials online, you should call the bank to check if the message is legitimate and is from the bank.

Answer:- This type of attack happens when the password is hacked. To avoid this, whenever you set a password, always use a proper standard, i.e., use passwords that are at least 8-character length and have a combination of upper case/lower case letters, symbols/special characters, and numbers. Other scenarios of the above attack could be: 1. Dated antivirus software or the lack of it 2. Dated updates or security patches

Answer:- • MongoDB • Document • Read • Multi-indexed • Cassandra • Bigtable like • Write • Using Key or Scan

Answer:- MongoDB is considered to be the best NoSQL database because of its following features: • Document-oriented (DO) • High performance (HP) • High availability (HA) • Easy scalability • Rich query language

Answer:- MongoDB does not use conventional locking with reduction as it is planned to be light, high-speed, and knowable in its presentation. It can be considered as parallel to the MySQL MyISAM auto entrust sculpt. With the simplest business sustain, performance is enhanced, particularly in a structure with numerous servers.