Question 1

The deceptive method by which a perpetrator gains access to the system by pretending to be an authorized user is called

Accepted Answer

A) masquerading. 
B) bluebugging. 
C) eavesdropping. 
D) podslurping. 
A) masquerading. 
B) bluebugging. 
C) eavesdropping. 
D) podslurping.

Question 2

What is social engineering? Provide an example.

Accepted Answer

Social engineering refers to techniques

Question 3

A set of unauthorized computer instructions in an otherwise properly functioning program is known as a

Accepted Answer

A) logic bomb. 
B) spyware. 
C) trap door. 
D) Trojan horse. 
A) logic bomb. 
B) spyware. 
C) trap door. 
D) Trojan horse.

Question 4

Ashley Baker has been the webmaster for Berryhill Finance only ten days when Berryhill's website was flooded with access attempts.Ashley shut down the site and only opened it to Web addresses which she specifically identified as legitimate.As a result,many of Berryhill's customers were unable to obtain loans,causing Berryhill to lose a significant amount of business.Berryhill Finance suffered from a

Accepted Answer

A) denial-of-service attack. 
B) zero-day attack. 
C) phreaking attack. 
D) cyber-extortion attack. 
A) denial-of-service attack. 
B) zero-day attack. 
C) phreaking attack. 
D) cyber-extortion attack.

Question 5

A back door into a system that bypasses normal system controls is called a

Accepted Answer

A) virus. 
B) logic bomb. 
C) trap door. 
D) data diddle. 
A) virus. 
B) logic bomb. 
C) trap door. 
D) data diddle.

Question 6

A fraud technique that slices off tiny amounts from many projects is called the ________ technique.

Accepted Answer

A) Trojan horse 
B) man-in-the-middle 
C) salami 
D) trap door 
A) Trojan horse 
B) man-in-the-middle 
C) salami 
D) trap door

Question 7

Zeus is an example of a

Accepted Answer

A) virus. 
B) worm. 
C) Trojan horse. 
D) war dialing. 
A) virus. 
B) worm. 
C) Trojan horse. 
D) war dialing.

Question 8

LOLer was chatting online with l33ter."I can't believe how lame some people are! :)I can get into any system by checking out the company website to see how user names are defined and who is on the employee directory.Then,all it takes is brute force to find the password." LOLer is a ________,and the fraud he is describing is ________.

Accepted Answer

A) hacker; social engineering 
B) phreaker; dumpster diving 
C) hacker; password cracking 
D) phreaker; the salami technique 
A) hacker; social engineering 
B) phreaker; dumpster diving 
C) hacker; password cracking 
D) phreaker; the salami technique

Question 9

________ consists of the unauthorized copying of company data.

Accepted Answer

A) Phishing 
B) Masquerading 
C) Data leakage 
D) Eavesdropping 
A) Phishing 
B) Masquerading 
C) Data leakage 
D) Eavesdropping

Question 10

The unauthorized use of special program that bypass regular system controls to perform illegal acts is called

Accepted Answer

A) a Trojan horse. 
B) a trap door. 
C) the salami technique. 
D) superzapping. 
A) a Trojan horse. 
B) a trap door. 
C) the salami technique. 
D) superzapping.

Question 11

During a routine audit,a review of cash receipts and related accounting entries revealed discrepancies.Upon further analysis,it was found that figures had been entered correctly and then subsequently changed,with the difference diverted to a fictitious customer account.This is an example of

Accepted Answer

A) kiting. 
B) data diddling. 
C) data leakage. 
D) phreaking. 
A) kiting. 
B) data diddling. 
C) data leakage. 
D) phreaking.

Question 12

What is a denial of service attack?

Accepted Answer

A) It is an attack when the perpetrator is inserting malicious query in input such that it is passed to and executed by an application program. 
B) It is an attack when the perpetrator is inputting so much data that the input buffer overflows. The overflow contains code that takes control of the company's computer. 
C) It is an attack when the perpetrator uses software to guess company's addresses, send employees blank e-mails, and add unreturned messages to spammer e-mail list. 
D) It is an attacked when the perpetrator sends hundreds of messages from randomly generated false addresses, overloading an Internet service provider's e-mail server. 
A) It is an attack when the perpetrator is inserting malicious query in input such that it is passed to and executed by an application program. 
B) It is an attack when the perpetrator is inputting so much data that the input buffer overflows. The overflow contains code that takes control of the company's computer. 
C) It is an attack when the perpetrator uses software to guess company's addresses, send employees blank e-mails, and add unreturned messages to spammer e-mail list. 
D) It is an attacked when the perpetrator sends hundreds of messages from randomly generated false addresses, overloading an Internet service provider's e-mail server.

Question 13

Which method of fraud is physical in its nature rather than electronic?

Accepted Answer

A) cracking 
B) hacking 
C) eavesdropping 
D) scavenging 
A) cracking 
B) hacking 
C) eavesdropping 
D) scavenging

Question 14

Changing data before or during entry into a computer system to delete,alter,add,or incorrectly update data is called a

Accepted Answer

A) virus. 
B) logic bomb. 
C) trap door. 
D) data diddle. 
A) virus. 
B) logic bomb. 
C) trap door. 
D) data diddle.

Question 15

Secretly changing an already open browser tab using JavaScript is called

Accepted Answer

A) superzapping. 
B) tabnapping. 
C) pretexting. 
D) piggybacking. 
A) superzapping. 
B) tabnapping. 
C) pretexting. 
D) piggybacking.

Question 16

Carding is

Accepted Answer

A) verifying credit card validity; buying and selling stolen credit cards. 
B) inserting a sleeve into an ATM so that it will not eject the victim's card, pretending to help the victim as a means of obtaining his PIN, and using the card and PIN to drain the account. 
C) a technique that tricks a person into disclosing confidential information. 
D) changing data before, during, or after it is entered into the system in order to delete, alter, or add key system data. 
A) verifying credit card validity; buying and selling stolen credit cards. 
B) inserting a sleeve into an ATM so that it will not eject the victim's card, pretending to help the victim as a means of obtaining his PIN, and using the card and PIN to drain the account. 
C) a technique that tricks a person into disclosing confidential information. 
D) changing data before, during, or after it is entered into the system in order to delete, alter, or add key system data.

The deceptive method by which a perpetrator gains access to the system by pretending to be an authorized user is called

What is social engineering? Provide an example.

A set of unauthorized computer instructions in an otherwise properly functioning program is known as a

A back door into a system that bypasses normal system controls is called a

A fraud technique that slices off tiny amounts from many projects is called the ________ technique.

Zeus is an example of a

________ consists of the unauthorized copying of company data.

The unauthorized use of special program that bypass regular system controls to perform illegal acts is called

During a routine audit,a review of cash receipts and related accounting entries revealed discrepancies.Upon further analysis,it was found that figures had been entered correctly and then subsequently changed,with the difference diverted to a fictitious customer account.This is an example of

What is a denial of service attack?

Which method of fraud is physical in its nature rather than electronic?

Changing data before or during entry into a computer system to delete,alter,add,or incorrectly update data is called a

Secretly changing an already open browser tab using JavaScript is called

Carding is

Conceptual Foundations of Accounting Information Systems

Overview of Transaction Processing and Enterprise Resource Planning Systems

Systems Documentation Techniques

Relational Databases

Computer Fraud

Control and Accounting Information Systems

Controls for Information Security

Confidentiality and Privacy Controls

Processing Integrity and Availability Controls

Auditing Computer-Based Information Systems

The Revenue Cycle: Sales to Cash Collections

The Expenditure Cycle: Purchasing to Cash Disbursements

The Production Cycle

The Human Resources Management and Payroll Cycle

General Ledger and Reporting System

Database Design Using the Rea Data Model

Implementing an Rea Model in a Relational Database

Special Topics in Rea Modeling

Introduction to Systems Development and Systems Analysis

Ais Development Strategies

Systems Design, implementation, and Operation

Filters

Exam 6: Computer Fraud and Abuse Techniques

The deceptive method by which a perpetrator gains access to the system by pretending to be an authorized user is called

What is social engineering? Provide an example.

A set of unauthorized computer instructions in an otherwise properly functioning program is known as a

A back door into a system that bypasses normal system controls is called a

A fraud technique that slices off tiny amounts from many projects is called the ________ technique.

Zeus is an example of a

________ consists of the unauthorized copying of company data.

The unauthorized use of special program that bypass regular system controls to perform illegal acts is called

During a routine audit,a review of cash receipts and related accounting entries revealed discrepancies.Upon further analysis,it was found that figures had been entered correctly and then subsequently changed,with the difference diverted to a fictitious customer account.This is an example of

What is a denial of service attack?

Which method of fraud is physical in its nature rather than electronic?

Changing data before or during entry into a computer system to delete,alter,add,or incorrectly update data is called a

Secretly changing an already open browser tab using JavaScript is called

Carding is

Conceptual Foundations of Accounting Information Systems

Overview of Transaction Processing and Enterprise Resource Planning Systems

Systems Documentation Techniques

Relational Databases

Computer Fraud

Control and Accounting Information Systems

Controls for Information Security

Confidentiality and Privacy Controls

Processing Integrity and Availability Controls

Auditing Computer-Based Information Systems

The Revenue Cycle: Sales to Cash Collections

The Expenditure Cycle: Purchasing to Cash Disbursements

The Production Cycle

The Human Resources Management and Payroll Cycle

General Ledger and Reporting System

Database Design Using the Rea Data Model

Implementing an Rea Model in a Relational Database

Special Topics in Rea Modeling

Introduction to Systems Development and Systems Analysis

Ais Development Strategies

Systems Design, implementation, and Operation

Filters