Password Nightmares
Requires two forms of verification such as password + phone code.
What is multi-factor authentication?
Clicking a fake email that asks for your login credentials.
What is phishing?
Creating copies of data to protect against loss.
What is a data backup?
A private connection that encrypts your online traffic.
What is a VPN (Virtual Private Network)?
Running outdated Windows or Office versions without security updates.
What is unpatched software?
Passwords like “123456” or “password” are examples of this.
What are weak passwords?
Malware that encrypts files and demands payment for decryption.
What is ransomware?
The process of restoring systems and files after a failure.
What is data recovery?
Automatically assigns IP addresses to devices on a network.
What is DHCP?
Logging into sensitive accounts on a personal laptop without company protection.
What is using unsecured devices?
Policy that forces users to change passwords every 90 days.
What is password expiration?
Someone in marketing uploads sensitive client data to an unapproved cloud service.
What is shadow IT?
A backup that only saves changes since the last full backup.
What is an incremental backup?
Translates human-readable domain names to IP addresses.
What is DNS?
Malware that locks systems, often demanding money.
What is ransomware?
A tool that securely stores and generates complex passwords.
What is a password manager?
A temporary contractor has full admin access to critical servers.
What is overprivileged access?
Keeping backup copies in a different location to protect against local disasters.
What are offsite backups?
Dividing a network into zones to limit breaches spreading.
What is network segmentation?
Not reviewing user permissions periodically.
What is failing access audits?
Principle of giving users only the access they need.
What is the principle of least privilege?
Accessing the company network from public Wi-Fi without protection.
What is connecting without a VPN?
A documented plan to restore critical operations after a major outage.
What is a disaster recovery plan?
Protects web traffic from being intercepted on the internet.
What is HTTPS?
Employees reusing the same password across multiple accounts.
What is password reuse?