Digital Forensics: Cyber Crime Categories and Web Security Threats
Published:
Questions
30
Duration
30 min
Faculty-reviewed
0
Updated
20 May 2026
About this mock
FACT Digital Forensics paper drill on cyber crime categories and web security threats, covering the four-fold Indian taxonomy of cyber crime under the Information Technology Act 2000, internal versus external attacks and insider threat motivation, social media offences under Section 67 IT Act, ATM and banking frauds including skimming and card cloning, the phishing family in its email, voice (vishing), and SMS (smishing) variants, ransomware behaviour drawn from the WannaCry 2017 incident along with the symmetric-plus-asymmetric hybrid encryption model, the virus, worm, and Trojan distinctions in classical malware taxonomy, identity theft under Section 66C IT Act, packet sniffing in promiscuous mode using Wireshark, IP and ARP and DNS spoofing, SPF email authentication under RFC 7208, man-in-the-middle attacks, SQL injection and cross-site scripting from the OWASP Top 10, cyberstalking under Section 354D IPC 1860 with the carried-forward Section 78 BNS 2023, business email compromise and 419 advance-fee fraud, social engineering techniques including tailgating, and the foundations of web security covering HTTPS on TCP 443 and the same-origin policy.
For FACT aspirants and MSc digital forensics students working through cyber crime and information security modules, and useful as a revision pass before NFSU MSc, GCFA, CHFI, and Security+ exams. Questions emphasise definitions, statute mapping, and the Indian procedural framework including the IT Act 2000 with its 2008 amendment and the carried-forward BNS 2023 provisions.
Topics covered:
- Cyber crime taxonomy: against person, property, state, and society
- Internal and external attacks, insider threat motivation
- Phishing, spear phishing, vishing, smishing, and 419 advance-fee fraud
- Ransomware behaviour and hybrid encryption model
- Virus, worm, and Trojan distinctions in malware taxonomy
- Packet sniffing, IP and ARP and DNS spoofing, MITM attacks
- SQL injection and cross-site scripting (stored versus reflected)
- IT Act 2000 sections 43, 65, 66, 66C, 66D, 67 and Section 354D IPC 1860 / Section 78 BNS 2023
Useful for revision and self-testing before the FACT Digital Forensics paper.
Allow 30 minutes.
Sources & references
Questions in this mock are written and verified against the following sources. Citations are recorded per question and shown in the explanation after submission.
- cited in 8 questions
Stallings, William
Cryptography and Network Security: Principles and Practice, 7th Edition, Chapter on Malicious Software
- cited in 5 questions
Casey, Eoghan
Digital Evidence and Computer Crime, 3rd Edition (Academic Press, 2011), Chapter on Malware Classification
- cited in 3 questions
- cited in 3 questions
Nelson, Bill; Phillips, Amelia; Steuart, Christopher
Guide to Computer Forensics and Investigations, 6th Edition (Cengage), Chapter on Network Forensics and Packet Capture
- cited in 2 questions
Information Technology Act, 2000
Section 67: Punishment for publishing or transmitting obscene material in electronic form
Open source - cited in 2 questions
- cited in 1 question
Ministry of Home Affairs, Government of India
Indian Cyber Crime Coordination Centre (I4C), Cyber Crime Categories
Open source - cited in 1 question
Indian Penal Code, 1860 (carried forward as Bharatiya Nyaya Sanhita, 2023)
Section 354D IPC (Stalking) / Section 78 BNS 2023
Open source - cited in 1 question
- cited in 1 question
- cited in 1 question
IETF RFC 7208
Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1
Open source - cited in 1 question
- cited in 1 question
CERT Insider Threat Center
Common Sense Guide to Mitigating Insider Threats, Carnegie Mellon Software Engineering Institute
Open source
How our mocks are built
Questions are written and edited by the ForensicSpot team and cited from peer-reviewed forensic textbooks, official syllabi and primary case law. Each one is verified before publishing. Detailed explanations show after you submit, so the test stays a real test. See a mistake? Tell us.
Common questions
What does the Digital Forensics: Cyber Crime Categories and Web Security Threats mock cover?+
FACT Digital Forensics paper drill on cyber crime categories and web security threats, covering the four-fold Indian taxonomy of cyber crime under the Information Technology Act 2000, internal versus external attacks and insider threat motivation, social media offences under Section 67 IT Act, ATM and banking frauds including skimming and card cloning, the phishing family in its email, voice (vishing), and SMS (smishing) variants, ransomware behaviour drawn from the WannaCry 2017 incident along
How many questions and how long is the test?+
30 multiple-choice questions, 30 minutes total. Difficulty: easy. Tier: Premium.
Who is this mock for?+
Forensic science students and aspirants who want timed, exam-style practice with explanations and verified source citations on Digital Forensics, FACT. Useful for postgraduate entrance preparation and for BSc / MSc forensic students testing their recall under time.
Are the questions reviewed?+
Each question carries a verified source citation. Faculty review for individual questions is in progress.
Do I need an account to take this mock?+
Yes, a free ForensicSpot account is required to start a timed attempt — this lets you save progress, see per-question explanations after submission, and track your topic-level performance over time.