COURSE 1 – INTRODUCTION TO CYBERSECURITY TOOLS & CYBER ATTACKS

Module 1: History of Cybersecurity

IBM CYBERSECURITY ANALYST PROFESSIONAL CERTIFICATE

Complete Coursera Study Guide

Enroll in Coursera IBM Cybersecurity Analyst Professional Certificate Here

TABLE OF CONTENT

INTRODUCTION – History of Cybersecurity

This module provides a concise overview of the historical development of cybersecurity. Additionally, you will gain insights into essential terminology and the various roles within the cybersecurity domain.

Learning Objectives

  • Explain why comprehensive cybersecurity architecture is difficult to implement
  • Summarize what recent statistics demonstrate about the current state of cybersecurity
  • Discuss critical events that have shaped the United States’ attention and posture toward cybersecurity
  • Summarize the event that led to the creation of the first national policy on cybersecurity
  • Discuss typical roles in an information security department
  • Describe vulnerability assessment and common ways that vulnerabilities end up in systems
  • Contrast human and natural security threats and discuss examples of each threat
  • Define vulnerability, threat, exploit, and risk
  • Describe the three components of the CIA Triad
  • Define cybersecurity
  • List and describe essential elements of an organization’s cybersecurity program
  • Summarize the numerous challenges that make comprehensive cybersecurity complex to implement
  • Explain what makes critical thinking an essential skill for anyone working in cybersecurity
  • Summarize how rapidly changing technology and tools make critical thinking necessary for cybersecurity
  • Discuss each component of the critical thinking model
  • Describe the five key skills of critical thinking

INTRODUCTION TO CYBERSECURITY TOOLS & CYBER ATTACKS

1. Jeff Crume described 5 challenges in security today. Which three (3) of these are challenges because their numbers are increasing rapidly?

  • Needed knowledge (CORRECT­)
  • Alerts (CORRECT­)
  • Available analysts
  • Available time
  • Threats (CORRECT­)

Partially correct! A cybersecurity analyst can never know enough as new systems come online and new vulnerabilities are exposed.

Partially correct! The number of alerts that must be analysed is rising rapidly.

Partially correct! The number of threats facing a cybersecurity analyst is rising rapidly.

2. About how many unfilled cybersecurity jobs are expected by the year 2022?

  • 180,000
  • 1.8 million (CORRECT­)
  • 180 million
  • There is expected to be a surplus of available skills by 2022.

Correct! There will be many jobs available to those with the right skills.

WHAT ARE WE TALKING ABOUT WHEN WE TALK ABOUT CYBERSECURITY?

1. Which is the National Institute of Standards’ (NIST) definition of cybersecurity?

  • The protection of information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability. (CORRECT­)
  • The state of being protected against the criminal or unauthorized use of electronic data, or the measures taken to achieve this.
  • The measures taken to protect governmental and military computer and weapons systems from unauthorized use, alteration, disruption or destruction.

Correct! This is the NIST definition of cyber or information security.

2. Which three (3) are components of the CIA Triad?

  • Information
  • Availability (CORRECT­)
  • Access
  • Confidentiality (CORRECT­)
  • Integrity (CORRECT­)
  • Cyber

Partially correct! Availability is the “A” in CIA.

Partially correct! Confidentiality is the “C” in CIA.

Partially correct! Integrity is the “I” in CIA.

3. “A flaw, loophole, oversight, or error that can be exploited to violate system security policy.” Is the definition of which key cybersecurity term?

  • Threat
  • Vulnerability (CORRECT­)
  • Risk
  • Exploit

Correct! This is the definition of a cybersecurity vulnerability.

4. “An event, natural or man-made, able to cause a negative impact to an organization.” Is the definition of which key cybersecurity term?

  • Threat (CORRECT­)
  • Vulnerability
  • Exploit
  • Risk

Correct! This is the definition of a cybersecurity threat.

5.  Most cyber attacks come from which one of the following sources?

  • Natural factors, such as hurricanes, lightning and tornados.
  • External threats, such as hackers, malware and viruses.
  • Malicious events, such as an attack orchestrated by a foreign government.
  • Internal factors, such as current and former employees. (CORRECT)

Correct! Most cyber attacks originate with inside actors.

6. Vulnerabilities are weaknesses in a system that can be exploited. Which are the two (2) most common ways in which vulnerabilities are introduced to a system?

  • Many vulnerabilities are introduced to a system by malware such as Trojan horses.
  • Many vulnerabilities occur as a result of misconfiguration by the system administrator. (CORRECT)
  • Many vulnerabilities are inherent in a systems operating system and cannot be patched, only monitored.
  • Many systems are shipped with known and unknown security holes, such as insecure default settings. (CORRECT)

Partially correct! Many vulnerabilities are introduced by inexperienced administrators who leave security holes open to exploitation.

Partially correct! Many systems are shipped with known and unknown vulnerabilities to worry about… right out of the box!

7. Which security role would be responsible for conducting information security assessments for organizations, including analyzing events, alerts and alarms?

  • Information Security Analyst (CORRECT)
  • Chief Information Security Officer
  • Information Security Auditor
  • Information Security Architect

Correct! It is the Information Security Analyst who conducts security assessments and analyzes all security events.

FROM RONALD REAGAN TO WHERE WE ARE TODAY

1. Which American president first recognized the need for a national policy on cybersecurity?

  • George W Bush
  • Ronald Reagan (CORRECT)
  • Gerald Ford
  • Barack Obama

Correct, it was President Ronald Reagan!

2. In addition to specific events, what other factor has led to an enhanced need for strong cybersecurity?

  • There is nothing illegal about accessing any computer you wish, as long as you do not do harm.
  • To save money, common operating systems have paid little attention to security and are easily hacked.
  • Computing devices like PCs and smartphones are now used by a large majority of people. (CORRECT)
  • Weapons systems are now fully automated and can be controlled remotely.

Correct! There are many more computing devices of all sizes used by many more people than ever before.

3. Between 2010 and 2016 the number of new software vulnerabilities discovered during this 7-year period was in what range?

  • 50 to 100
  • 1000 to 2000
  • 7000 to 10,000 (CORRECT)
  • 35,000 to 40,000

Correct! Between 7000 and 10,000 new software vulnerabilities were discovered in this 7-year period.

4. An example of weaponizing a cybervulnerability is the use of the Stuxnet virus. Which attack by a government actor successfully used this virus?

  • Stuxnet was used by agents acting on behalf of the Russian government to hack Hillary Clinton’s email server.
  • Stuxnet was used by Edward Snowden to hack US intelligence agency servers and download classified information about secret surveillance programs.
  • Stuxnet was used to steal an estimated $100M from various banks in the United States and the UK.
  • Stuxnet was used to disable uranium processing equipment in an Iranian nuclear facility. (CORRECT)

Correct! Stuxnet is credited with damaging thousands of highly-sensitive uranium separation centrafuges.

CYBERSECURITY PROGRAMS

1. Which three (3) factors make cybersecurity far more difficult now than it was in the past when you only needed to protect the computer?

  • Mobile technology – everyone has a smartphone (CORRECT)
  • Data protection – your data is everywhere (CORRECT)
  • Local nature of business
  • Multiple different vendors, each supporting different technology and protocols (CORRECT)

Partially correct! Smartphones are computers that contain massive amounts of data and link us to our bank accounts, credit cards and shopping accounts, to name a few.

Partially correct! We have our data spread across far more online accounts and resources than ever before.

Partially correct! There is not one standard that all vendor’s support so a cybersecurity analyst must address vulnerabilities from all.

2. Which aspect of a comprehensive approach to cybersecurity includes these items: classification, implementation steps, asset control and documentation?

  • Security program
  • Asset management (CORRECT)
  • Administrative controls
  • Technical controls

Correct, these are all aspects of asset management

3. Which aspect of a comprehensive approach to cybersecurity includes these items: policies, procedures, standards, user education, incident response, disaster recovery, compliance and physical security?

  • Security program
  • Asset management
  • Administrative controls (CORRECT)
  • Technical controls

Correct, these are all aspects of administrative controls

4. Which aspect of a comprehensive approach to cybersecurity includes these items: network infrastructure, endpoints, servers, identity management, vulnerability management, monitoring and logging?

  • Security program
  • Asset management
  • Administrative controls
  • Technical controls (CORRECT)

Correct, these are all aspects of technical controls

CYBERSECURITY – A SECURITY ARCHITECT’S PERSPECTIVE

1. Which three (3) security challenges face today’s organizations?

  • Protectors have to be right just once
  • Protection of enforcement structure can complicate solutions (CORRECT)
  • Solutions can be attacked themselves (CORRECT)
  • Security is not as simple as it seems (CORRECT)

Partially correct. This is a case of the guards needing guards.

Partially correct. An effective attack often starts by disabling the defense.

Partially correct. Good security is far from simple.

2. In John’s example of friends and enemies, what is the name used to refer to the intruder?

  • Bob
  • Trudy (CORRECT)
  • Boris
  • Alice

Correct. Trudy (intruder) may intercept, delete, add messages

3. Only the sender and intended receiver of a message can “understand” the message contents is an example of which basic security concept?

  • Authentication
  • Confidentiality (CORRECT)
  • Integrity
  • Availability

Correct! The message is confidential if only the sender and intended receiver can read its contents.

4. The sender and receiver of a message can positively identity each other’s identity is an example of which basic security concept?

  • Authentication (CORRECT)
  • Integrity
  • Availability
  • Confidentiality

Correct! Authentication means that the sender and receiver can positively confirm each other’s identity.

WHAT IS CRITICAL THINKING?

1. Which is the presenter, Kristin Dahl’s definition of Critical Thinking?

  • Critical thinking is a mode the brain goes into during critical or emergency situations.
  • Critical thinking is the controlled, purposeful thinking directed toward a goal. (CORRECT)
  • Critical thinking is taking on the mindset of your opponent (the hacker for example) and trying to think like him/her.
  • Critical thinking involves always looking for the flaw or weakness in any given situation.

Correct! Critical thinking involves the controlled and purposeful thinking directed toward a goal.

2. The Critical Thinking Model presented places critical thinking at the overlap of which four (4) competencies?

  • Critical thinking characteristics (attitudes & behaviors). (CORRECT)
  • The strength necessary to be critical of others who are advocating unsafe practices.
  • Technical skills and competencies. (CORRECT)
  • Theoretical and experimental knowledge, intellectual skills and competencies. (CORRECT)
  • Interpersonal skills and competencies. (CORRECT)
  • The ability to place yourself in the mindset of an adversary or attacker.

Partially correct! this is one of the 4 components of critical thinking.

3. Put yourself in others’ shoes – reframe the problem is an example of which of the 5 Key  Skills of Critical Thinking?

  • Understand Context (CORRECT)
  • Identify Key Drivers
  • Consider Alternatives
  • Challenge Assumptions

Correct! It is important to be able to see the points of views of others in order to understand the full context of a situation.

HISTORY OF CYBERSECURITY

1. What was shown in the movie War Games that concerned President Reagan?

  • The movie gave an accurate portayal of the Iran-Contra scandle that could have only come from inside sources.
  • A teenager hacked into a Pentagon computer that was capable of launching nuclear weapons. (CORRECT)
  • US Army generals did not know how to use the advanced weapons systems they were responsible for.
  • KGB agents from the USSR were able to hack into Pentagon computer systems and steal plans for advanced US weapons.

2. In addition to the movie War Games, what other event made the need for advanced cybersecurity apparent?

  • The failed Bay of Pigs invasion.
  • Confirmed reports of Al Qaeda operatives hacking the E-mail servers of US Government agencies.
  • The attack against the USS Cole while it was in port in Yeman.
  • 9/11 (CORRECT)

3. According to a Forbes Magazine study, the annual cost of cybercrime in the United States alone has reached how much?

  • $100M
  • $1B
  • $10B
  • $100B (CORRECT)

4. Who are Alice, Bob and Trudy?

  • They are fictional characters used to illustrate how cryptography works. (CORRECT)
  • They were members of British Navel Intelligence who did pioneering work in secure communications that later became known as cryptography.
  • They are the founders of modern cryptography.
  • They are the pseudonyms (false names) used by members of the hacktivist group Anonymous.

5. Which of the following is considered a legitimate challenge to implementing a comprehensive cybersecurity solution?

  • Security practices are viewed as being “in the way”.
  • Security architectures require constant effort.
  • Security is often an after-thought; something that is added at the end of a project rather than baked into the project from the start.
  • All of the above (CORRECT)

6. “A defined way to breach the security of an IT system through a vulnerability” is the definition of which key cybersecurity term?

  • Risk
  • Vulnerability
  • Threat
  • Exploit (CORRECT)

7. “A situation involving exposure to a danger.” Is the definition of which key cybersecurity term?

  • Threat
  • Exploit
  • Vulnerability
  • Risk (CORRECT)

8. Which aspect of a comprehensive approach to cybersecurity includes these items: evaluate, create teams, establish baselines, identify and model threats, identify use cases, identify risks, establish monitoring and control requirements?

  • Security program (CORRECT)
  • Technical controls
  • Asset management
  • Administrative controls

9. In the examples using Bob, Alice and Trudy, what aspect of cybersecurity is being illustrated?

  • The availability of communication that needs to be shared between the 3 friends.
  • The complexity of communication between people who use different protocols.
  • The positioning of firewalls that assure the integrity of communication between the 3 friends.
  • The security of communication between Alice and Bob that risks interception by Trudy. (CORRECT)

10. Alice sends an unencrypted message to Bob but it is intercepted by Trudy. Trudy reads the message but does not in any way interfere with its content or delivery. Which precept of the CIA Triad would have been violated?

  • Confidentiality (CORRECT)
  • Integrity
  • Availability
  • All of the above.

11. Alice sends an encrypted message to Bob but it is intercepted by Trudy.  Trudy cannot read it so, in anger, she deletes it without allowing its delivery to Bob. Which precept of the CIA Triad would have been violated?

  • Confidentiality
  • Integrity
  • Availability (CORRECT)
  • All of the above

12. Alice sends an encrypted message to Bob but it is intercepted by Trudy. Trudy cannot read it but forwards it on to Bob from an anonymous address she controls. Which precept of the CIA Triad would have been violated?

  • Confidentiality
  • Integrity (CORRECT)
  • Availability
  • All of the above

13. According to the Vulnerability Assessment Methodology, Vulnerabilities are determined by which 2 factors?

  • Exposure and Sensitivity
  • Identify Indicators and Exposure
  • Sensitivity and Adaptive Capacity
  • Potential Impacts and Adaptive Capacity (CORRECT)

14. According to a 2018 report by Domo, over what period of time do the following things occur: 49,380 videos are uploaded to Instagram, 25,000 gifs are sent on Facebook Messenger, 4.2 million videos are viewed on Snapchat and 473,400 tweets are sent on Twitter? 

  • Every 1 minute (CORRECT)
  • Every 1 Second
  • Every 10 minutes
  • Every 10 seconds

CONCLUSION – History of Cybersecurity

In conclusion, this module has offered a foundational understanding of the evolution of cybersecurity and introduced key terminology and roles within the field. By grasping the historical context and essential concepts, you are better prepared to delve deeper into the intricacies of cybersecurity and its significance in modern digital landscapes.

As you progress in your learning journey, this fundamental knowledge will serve as a solid framework for further exploration and specialization in cybersecurity practices and principles.

IBM Courses
Next Week

Subscribe to our site

Get new content delivered directly to your inbox.

Quiztudy Top Courses

Popular in Coursera

Liking our content? Then, don’t forget to ad us to your BOOKMARKS so you can find us easily!

Subscribe