In the continuation of our Interview Question Series, we are publishing our second part of total five series. In this part we will be briefly seeing the Interview Questions for cybersecurity from the perspective of malware, a most common threat, almost encountered in each event and still a preferred choice for various APT groups.
Let’s begin
1 . Describe the malware from its early inception to the present day ?
- Many early infectious programs, including the first Internet Worm, were written as experiments or pranks. Today, malware is used primarily to steal sensitive personal, financial, or business information for the benefit of others. Malware is sometimes used broadly against government or corporate websites to gather guarded information, or to disrupt their operation in general.
- However, malware is often used against individuals to gain personal information such as social security numbers, bank or credit card numbers, and so on.
2. What are the type of Malwares ?
Types of Malware :
- Viruses
- Trojan horses
- Worms
- Spyware
- Phishing
- Spamware
- Adware
- Ransomware
3. What is a computer Virus?
A computer virus is a type of malicious software, or malware, that spreads between computers and causes damage to data and software. Computer viruses aim to disrupt systems, cause major operational issues, and result in data loss and leakage. A key thing to know about computer viruses is that they are designed to spread across programs and systems. Computer viruses typically attach to an executable host file, which results in their viral codes executing when a file is opened. The code then spreads from the document or software it is attached to via networks, drives, file-sharing programs, or infected email attachments.
4. What are the symptoms of presence of computer virus ?
It A computer virus will more than likely have an adverse effect on the device it resides on and may be discoverable through common signs of performance loss, including:
- Speed of System
- Pop-up Windows
- Programs Self-executing
- Accounts Being Logged Out
- Crashing of the Device
- Mass Emails Being Sent from Your Email Account
- Changes to Your Homepage
5. What is a Trojan Horse?
A Trojan Horse Virus is a type of malware that downloads onto a computer disguised as a legitimate program. The delivery method typically sees an attacker use social engineering to hide malicious code within legitimate software to try and gain users’ system access with their software.
6. Name some common types of Trojan horses?
These are some of the common examples of Trojan:
- Backdoor Trojan
- Banker Trojan
- Distributed denial-of-service (DDoS) Trojan
- Downloader Trojan
- Exploit Trojan
- Fake antivirus Trojan
- Game-thief Trojan
- Instant messaging (IM) Trojan
- Remote access Trojan
- Rootkit Trojan
- SUNBURST
7. Name some of the well known Trojan Horses.
Some of the examples are:
- Rakhini Trojan
- Tiny Banker
- Zeus or Zbot
8. What is a worm?
A computer worm is a standalone malware computer program that replicates itself in order to spread to other computers. It often uses a computer network to spread itself, relying on security failures on the target computer to access it. It will use this machine as a host to scan and infect other computers. When these new worm-invaded computers are controlled, the worm will continue to scan and infect other computers using these computers as hosts, and this behavior will continue
9. What is a Ransomware?
A Ransom malware, or ransomware, is a type of malware that prevents users from accessing their system or personal files and demands ransom payment in order to regain access. While some people might think “a virus locked my computer,” ransomware would typically be classified as a different form of malware than a virus. The earliest variants of ransomware were developed in the late 1980s, and payment was to be sent via snail mail. Today, ransomware authors order that payment be sent via cryptocurrency or credit card, and attackers target individuals, businesses, and organizations of all kinds.
10. How are ransomwares are identified ?
Generally, ransomwares are identified with these three techniques:
- Signature Based technique (Which is a common method for identifying malwares)
- Behavior-based detection methods
- File System Changes
- Traffic Analysis
- API Calls
- Deception based technique
So, with this we conclude this article on Interview Questions on Cybersecurity here, but stay connected for the next parts of the article. In this article we analyzed malware from interview perspective along with deep insights which aptly covers the malware with complete information. Stay connected for the next part in the interview series.