Skip to content
Digital Forensicseasy Premium

Digital Forensics: Cyber Crime Categories and Web Security Threats

Published:

Questions

30

Duration

30 min

Faculty-reviewed

0

Updated

20 May 2026

Score, per-question explanations and topic breakdown shown right after you submit.

About this mock

FACT Digital Forensics paper drill on cyber crime categories and web security threats, covering the four-fold Indian taxonomy of cyber crime under the Information Technology Act 2000, internal versus external attacks and insider threat motivation, social media offences under Section 67 IT Act, ATM and banking frauds including skimming and card cloning, the phishing family in its email, voice (vishing), and SMS (smishing) variants, ransomware behaviour drawn from the WannaCry 2017 incident along with the symmetric-plus-asymmetric hybrid encryption model, the virus, worm, and Trojan distinctions in classical malware taxonomy, identity theft under Section 66C IT Act, packet sniffing in promiscuous mode using Wireshark, IP and ARP and DNS spoofing, SPF email authentication under RFC 7208, man-in-the-middle attacks, SQL injection and cross-site scripting from the OWASP Top 10, cyberstalking under Section 354D IPC 1860 with the carried-forward Section 78 BNS 2023, business email compromise and 419 advance-fee fraud, social engineering techniques including tailgating, and the foundations of web security covering HTTPS on TCP 443 and the same-origin policy.

For FACT aspirants and MSc digital forensics students working through cyber crime and information security modules, and useful as a revision pass before NFSU MSc, GCFA, CHFI, and Security+ exams. Questions emphasise definitions, statute mapping, and the Indian procedural framework including the IT Act 2000 with its 2008 amendment and the carried-forward BNS 2023 provisions.

Topics covered:

  • Cyber crime taxonomy: against person, property, state, and society
  • Internal and external attacks, insider threat motivation
  • Phishing, spear phishing, vishing, smishing, and 419 advance-fee fraud
  • Ransomware behaviour and hybrid encryption model
  • Virus, worm, and Trojan distinctions in malware taxonomy
  • Packet sniffing, IP and ARP and DNS spoofing, MITM attacks
  • SQL injection and cross-site scripting (stored versus reflected)
  • IT Act 2000 sections 43, 65, 66, 66C, 66D, 67 and Section 354D IPC 1860 / Section 78 BNS 2023

Useful for revision and self-testing before the FACT Digital Forensics paper.

Allow 30 minutes.

Sources & references

Questions in this mock are written and verified against the following sources. Citations are recorded per question and shown in the explanation after submission.

  • Stallings, William

    Cryptography and Network Security: Principles and Practice, 7th Edition, Chapter on Malicious Software

    cited in 8 questions
  • Casey, Eoghan

    Digital Evidence and Computer Crime, 3rd Edition (Academic Press, 2011), Chapter on Malware Classification

    cited in 5 questions
  • CERT-In

    Advisories on Business Email Compromise and CEO fraud

    Open source
    cited in 3 questions
  • Nelson, Bill; Phillips, Amelia; Steuart, Christopher

    Guide to Computer Forensics and Investigations, 6th Edition (Cengage), Chapter on Network Forensics and Packet Capture

    cited in 3 questions
  • Information Technology Act, 2000

    Section 67: Punishment for publishing or transmitting obscene material in electronic form

    Open source
    cited in 2 questions
  • OWASP

    OWASP Top 10 (2021), A03: Injection — SQL Injection Cheat Sheet

    Open source
    cited in 2 questions
  • Ministry of Home Affairs, Government of India

    Indian Cyber Crime Coordination Centre (I4C), Cyber Crime Categories

    Open source
    cited in 1 question
  • Indian Penal Code, 1860 (carried forward as Bharatiya Nyaya Sanhita, 2023)

    Section 354D IPC (Stalking) / Section 78 BNS 2023

    Open source
    cited in 1 question
  • Reserve Bank of India

    Customer awareness circulars on vishing and OTP fraud

    Open source
    cited in 1 question
  • Mozilla Developer Network

    Same-origin policy reference and Web Security Fundamentals

    Open source
    cited in 1 question
  • IETF RFC 7208

    Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1

    Open source
    cited in 1 question
  • IETF RFC 8446

    The Transport Layer Security (TLS) Protocol Version 1.3

    Open source
    cited in 1 question
  • CERT Insider Threat Center

    Common Sense Guide to Mitigating Insider Threats, Carnegie Mellon Software Engineering Institute

    Open source
    cited in 1 question

How our mocks are built

Questions are written and edited by the ForensicSpot team and cited from peer-reviewed forensic textbooks, official syllabi and primary case law. Each one is verified before publishing. Detailed explanations show after you submit, so the test stays a real test. See a mistake? Tell us.

Common questions

What does the Digital Forensics: Cyber Crime Categories and Web Security Threats mock cover?+

FACT Digital Forensics paper drill on cyber crime categories and web security threats, covering the four-fold Indian taxonomy of cyber crime under the Information Technology Act 2000, internal versus external attacks and insider threat motivation, social media offences under Section 67 IT Act, ATM and banking frauds including skimming and card cloning, the phishing family in its email, voice (vishing), and SMS (smishing) variants, ransomware behaviour drawn from the WannaCry 2017 incident along

How many questions and how long is the test?+

30 multiple-choice questions, 30 minutes total. Difficulty: easy. Tier: Premium.

Who is this mock for?+

Forensic science students and aspirants who want timed, exam-style practice with explanations and verified source citations on Digital Forensics, FACT. Useful for postgraduate entrance preparation and for BSc / MSc forensic students testing their recall under time.

Are the questions reviewed?+

Each question carries a verified source citation. Faculty review for individual questions is in progress.

Do I need an account to take this mock?+

Yes, a free ForensicSpot account is required to start a timed attempt — this lets you save progress, see per-question explanations after submission, and track your topic-level performance over time.

Your journey to becoming a forensic professional starts here.

Practice with mock tests, learn from structured notes, and get your questions answered by a global forensic community, all in one place.