Task-1
Q1
Assume you have found a USB memory stick in your work parking area. What threats might this pose to your work computer should you just plug the memory stick in and examine its contents? In particular, consider whether each of the malware propagation mechanism we study in chapter 10 of our text book could use such memory stick for transport. What steps could you take to mitigate these threats and safely determine the contents of the memory stick?
Q2
Assume you receive an e-mail that appears to come from your bank, with your bank logo in it and with the following contents:
"Dear customer, our records show that your Internet Banking access has been blocked due to too many logging attempts with invalid information such as incorrect access number, password, or security number. We urge you to restore your account access immediately and avoid permanent closure of your account, by clicking on this link to restore your account. Thank you from your customer service team."
What form of attack is this e-mail attempting? What is the most likely mechanism used to distributed e-mail? How should respond to such e-mails?
Task-3
Q3
Write a comprehensive report (800 - 1000 words) on the following topic:
a) Bug Bunty and its programme.
• What is bug bounty?
• What is the benefit for an IT company to join in bug bounty program?
• Why people participate in bug bounties?
• Will you plan to participate? If your answer is yes or no then explain.
• List (minimum ten) common targets of bug bounties.
Name some sector/company so far not interested in bug bounty.
Why they are not interested in joining Bug Bounty programme?