Exam 3: Computer and Internet Crime

The use of voice mail to tell someone to call a phone number, or access a Web site, in an attempt to gain personal information about that person is called .

is an annual gathering in Las Vegas of computer hackers.

The Fifth Amendment regulates the collection of the content of wire and electronic communications.

The leads the federal government's efforts in "securing civilian government computer systems, and works with industry and state, local, tribal, and territorial governments to secure critical infrastructure and information systems."

Rootkit is a set of programs that enables its users to gain administrator-level access to a computer without the end user's consent or knowledge.

In computing, a(n) is a term for any sort of general attack on an information system that takes advantage of a particular system vulnerability.

A spear-phishing attack typically employs a group of zombies to keep the target so busy responding to a stream of automated requests that legitimate users cannot access the target.

The USA Patriot Act defines cyberterrorism as hacking attempts that cause $5,000 in aggregate damage in one year to medical equipment, or that cause injury to any person.

The security of any system or network is a combination of technology, policy, and people and requires a wide range of activities to be effective.

A software and/or hardware that monitors system and network resources and activities, and notifies network security personnel when it identifies network traffic that attempts to circumvent the security measures of a networked computer environment is a(n) .

is the abuse of email systems to send unsolicited email to large numbers of people.

To initiate a denial­of­service attack, a tiny program is downloaded surreptitiously from the attacker's computer to dozens, hundreds, or even thousands of computers all over the world. Based on a command by the attacker or at a preset time, the botnet computers, called , go into action, each sending a simple request for access to the target site again and again.

A attack keeps the target so busy responding to a stream of automated requests that legitimate users cannot get in.

A strong security program begins by .

Often a successful attack on an information system is due to poor system design or implementation. Once such a vulnerability is discovered, software developers quickly create and issue a to eliminate the problem.

A security policy outlines exactly what needs to be done to safeguard computers and their data, but not how it must be accomplished.

The cost of creating an email campaign for a product or a service is typically more expensive and takes longer to conduct than a direct-mail campaign.

Discussing security attacks through public trials and the associated publicity has not only enormous potential costs in public relations but real monetary costs as well.

Even when preventive measures are implemented, no organization is completely secure from a determined computer attack.

As a safeguard against attacks by malicious insiders, organizations must define employee roles so that a single employee can input as well as approve purchase orders.