Augmenta Cyber Security

DropCore

FAQ

In today’s digital world, protecting our data is highly crucial. Individuals to organizations find it challenging to safeguard crucial digital data. To overcome these challenges, we implement cybersecurity. This FAQs on cybersecurity will acquaint you with a set of top questions and answers.

General Question

There are a few steps that one has to implement in order to keep their computer secure. A few of these steps are:

  1. Implement a 2-way or multi-factor authentication 
  2. Use uncommon alphanumeric passwords and secure them 
  3. Update your computer regularly
  4. Install a good antivirus to protect your computer from malware
  5. Have a specialized firewall to keep attacks at a minimum
  6. Have anti-phishing software installed to identify fraudulent mails
  7. Use encryption to reduce data leakage and loss
  8. Finally, it is very crucial to secure your DNS.

Aspects


C


C++


Java


 Pointers


Supports pointers, most secure.


Supports pointers, secure.


Not supported, direct access to the memory location.


Code translations


Compiled, not secure.


Compiled, not secure.


Interpreted, abstracted, and secure.


Storage allocation


Uses malloc, calloc, less secure.


Uses new, delete, comparatively secure.


Uses garbage collector, more secure.


 Inheritance


No inheritance, not secure.


Supported, most secure.


Multi-inheritance not supported, comparatively secure.

 

Overall


Least secure


More secure


Most secure

Malware is a malicious software that harms the security of your device. The different sources of malware are:

  1. Pop-ups
  2. Removable media
  3. Documents and executable files
  4. Internet downloads
  5. Network connections
  6. Email attachments
  7. Malicious advertisements

Honeypots are computer systems that are used to lure attackers. It is used to deceive attackers and defend the real network from any attack. As seen below, the real network is safeguarded.

40-honeypots-cs

Let's now head to the final section of this article on cybersecurity interview questions.

As you can see below, here, there are two servers, both using SMTP. We have John and Jack, and in this scenario, John wants to send an email to Jack. Thus, they have an email client installed on their machine connected to the mail exchange server, which has a DNS server that maps the routing and maps the exchange server and inboxes. 

14-mail-cs

So when John composes the message and clicks on send, he should be connected to a mail exchange server where the email is sent through that particular person's inbox. So John's inbox will then be validated, and that email will then be sent through the DNS server through the internet and will be received by the recipient mail server. 

While John composes the mail, the from the field will have his email address, and the to the field will have Jack's email address. When he clicks on send, it will go to their exchange server. The exchange server will then validate the inbox and identify where the inbox is located for Jack, and then through the internet, it will be sent to the mail server of Jack. 

The mail server will then identify the right inbox that email needs to be sent to, and it stores the email in that particular inbox of the recipient. This way, when Jack accesses his inbox, the email from John will be waiting in his inbox. Jack can then reply the same way John sent the email.

In black box testing, the tester has zero knowledge of the IT infrastructure. Here, the testers will be unaware of the application, and they would have to gather information all by themselves. Based on the gathered information, testers will identify system vulnerabilities, if any. It is important as it emulates the attack of an external hacker.

A white box attack emulates an insider who can be an employee in the organization trying to make un-validated profits. In this form of testing, the tester has complete knowledge of the IT infrastructure. 

A Denial of Service attacks' objective is to flood networks and systems with traffic to exhaust their resources and bandwidth. By doing so, a website is unable to cater to legitimate service requests. When hackers use multiple systems to launch this attack, it is known as a Distributed Denial of Service (DDOS) attack.

33-attacker-cs

As seen below, in an active attack, the attacker attempts to disrupt a network's normalcy, edits data, and alters the system resources.

36-sender-cs

Whereas, in a passive attack, the hacker intercepts the data traveling through the network. Here as seen below, the intruder eavesdrops but does not modify the message. 

36-sender2

Our News

Latest News