Digital Forensics: Cyber Crime Categories and Web Security Threats

FACT Digital Forensics paper drill on cyber crime categories and web security threats, covering the four-fold Indian taxonomy of cyber crime under the Information Technology Act 2000, internal versus external attacks and insider threat motivation, social media offences under Section 67 IT Act, ATM and banking frauds including skimming and card cloning, the phishing family in its email, voice (vishing), and SMS (smishing) variants, ransomware behaviour drawn from the WannaCry 2017 incident along with the symmetric-plus-asymmetric hybrid encryption model, the virus, worm, and Trojan distinctions in classical malware taxonomy, identity theft under Section 66C IT Act, packet sniffing in promiscuous mode using Wireshark, IP and ARP and DNS spoofing, SPF email authentication under RFC 7208, man-in-the-middle attacks, SQL injection and cross-site scripting from the OWASP Top 10, cyberstalking under Section 354D IPC 1860 with the carried-forward Section 78 BNS 2023, business email compromise and 419 advance-fee fraud, social engineering techniques including tailgating, and the foundations of web security covering HTTPS on TCP 443 and the same-origin policy.

For FACT aspirants and MSc digital forensics students working through cyber crime and information security modules, and useful as a revision pass before NFSU MSc, GCFA, CHFI, and Security+ exams. Questions emphasise definitions, statute mapping, and the Indian procedural framework including the IT Act 2000 with its 2008 amendment and the carried-forward BNS 2023 provisions.

Topics covered:

• Cyber crime taxonomy: against person, property, state, and society
• Internal and external attacks, insider threat motivation
• Phishing, spear phishing, vishing, smishing, and 419 advance-fee fraud
• Ransomware behaviour and hybrid encryption model
• Virus, worm, and Trojan distinctions in malware taxonomy
• Packet sniffing, IP and ARP and DNS spoofing, MITM attacks
• SQL injection and cross-site scripting (stored versus reflected)
• IT Act 2000 sections 43, 65, 66, 66C, 66D, 67 and Section 354D IPC 1860 / Section 78 BNS 2023

Useful for revision and self-testing before the FACT Digital Forensics paper.

Allow 30 minutes.