ITF+ 6.5 to 6.7 Security Concerns

Use of multi-factor authentication

Use of a complex password

Use of a token generated by software

Use of biometrics

It may prevent a natural disaster from damaging the hardware and corrupting the data.

It may prevent the computer or server from overheating and shutting down.

It may prevent a hacker from obtaining remote unauthorized network access.

It may prevent the user from switching the machine on/off or accessing removable drives and ports.

Confidentiality

Integrity

Availability

Authentication

It exposes the passwords to brute-force attacks from malicious hackers.

It provides technical support staff with access to the user's personal files stored on the network.

It exposes users to social engineering attacks that try to gather login credentials for malicious use.

It prevents the user from needing to change a password following the password history component of the policy.

Replay

Power outage

Man-in-the-Middle (MitM)

Distributed Denial of Service (DDoS)

A virus has to infect a file whereas a worm propagates in memory and over computer networks.

A virus propagates in memory and over computer networks whereas a worm has to infect a file

A virus uses sequences of code that insert themselves into an executable whereas a worm uses document macros.

A virus uses a macro programming language to automate tasks where as a worm executes when the application is executed.

Spyware

Ransomware

Trojans

Worm

Using heuristics to detect suspicious behavior

Using definitions or signatures of known virus code

Using signatures of zero-day exploits

Using AutoRun to execute files of unknown provenance

Quarantining the file

Cleaning the infection

Erasing the file

Updating the signatures