English Guide for Computer Science Students

9 HACKING

VOCABULARY

1 Read and learn the words and phrases.

2 Choose the correct term to each definition.

1hacher / process / zeal – extreme enthusiasm

2systematic / tiresome making you feel annoyed or bored

3systematic / tiresome – done using a fixed and organized plan

4compromise / deface – to have a harmful effect on something

5insidious / up-and-coming – becoming popular and likely to achieve success

6hacher / process / zeal – a series of actions that you take in order to achieve a result

7hacher / process / zeal – someone who illegally gets into someone else’s computer system

8compromise / deface – to spoil the appearance of something, especially by writing or painting on it

9insidious / up-and-coming – having harmful effects that happen gradually so you do not notice them for a long time

3 In the modern world, there are several types of hackers. Match the most common ones and their activities.

a hacker who destroys, modifies, or steals data; he/she violates computer security for little reason beyond maliciousness or for personal gain; a cracker

1Footprinting: The objective is to gather information essential to an attack and enable an attacker to obtain a complete profile of an organization’s security posture.

2Scanning: hackers gain a more detailed view of a company’s network to understand what specific computer systems and services are in use.

3Enumeration: the objective is the process of identifying user accounts and poorly protected computing resources.

4Penetration: the attacker attempts to gain control of one or more systems in the target network.

5Advance: the attacker leverages computers or accounts that have been compromised during penetration to launch additional attacks on the target network.

6Covering Tracks: the hacker eliminates any records or logs showing his malicious behaviour.

Both private companies and government entities are targeted by hackers. In the vast majority of incidents, hackers attempt to either launch denial-of-service attacks or deface internet web pages with inappropriate content. However, some of the attacks are far more insidious. There is a substantial body of statutory law that applies directly to computer crime and hackers. It is unclear how many corporations are hacked successfully; however, from all accounts, the number is definitely large and growing.

Among hackers, one of the most frequently cited motivations is that hacking is fun and is like solving a game or a puzzle. Many hackers perceive their activities to be harmless and they do not believe that they are victimizing anyone. The chance to earn recognition from within a hacker group also offers strong incentive for up-and-coming hackers who have yet to gain a reputation. Many hackers justify their actions by explaining that they are doing a service for other computer users by identifying new security holes.

http://www.encyclopedia.com/science-and-technology/computers-and-electrical- engineering/computers-and-computing/hacking

6 Find the English equivalents to the following words or phrases.

7 Write a word that is similar in meaning to the underlined part.

1During footprinting the hacker collects information about the company.

2During examining the hacker gains more detailed information.

3During enumeration the hacker discovers user accounts.

4During moving into the hacker attempts to gain control of the systems.

5During the advance step the hacker begins additional attacks.

6During the covering tracks step the hacker changes the existing software system.

8 Match the six steps in the hacking process to their explanation.

In this phase of hacking, the attacker leverages computers or accounts that have been compromised during penetration to launch additional attacks on the target network. For instance, the attacker can break into more sensitive administrator root accounts, install backdoors or Trojan horse programs, and install network sniffers to gather additional information (for example, passwords) from data flowing over the network.

In this phase of hacking, the hacker eliminates any records or logs showing his malicious behavior. By deleting log files, disabling system auditing (which would otherwise alert the administrator to malicious activities), and hiding hacking files that the hacker has introduced, he can cover his tracks and avoid detection. Finally, the hacker can install a root kit—a series of programs that replace the existing system software to both cover his tracks and gather new information.

This phase is the process of identifying user accounts and poorly protected computing resources. During this stage, the hacker connects to computers in the target network and pokes around these systems to gain more information. While the scanning phase might be compared to a knock on the door or a turn of the doorknob to see if it is locked, it could be compared to entering an office and rifling through a file cabinet or desk drawer for information. It is definitely more intrusive.

During this phase the attacker attempts to gain control of one or more systems in the target network. For example, once an attacker has acquired a list of usernames during enumeration, he can usually guess one of the users' passwords and gain more extensive access to that user's account. Alternatively, once the attacker has determined that a target computer is running an old or buggy piece of software or one that is configured improperly, the hacker may attempt to exploit known vulnerabilities with this software to gain control of the system.

The objective is to gather information essential to an attack and enable an attacker to obtain a complete profile of an organization's security posture. During this phase, the hacker might gain information about the location of the company, phone numbers, employee names, security policies, and the overall layout of the target network. Often, hackers can perform this work with a simple web browser, a telephone, and a search engine. Unfortunately, humans are often the weakest security link in a corporation. A clever phone call to the technical support department can often compromise critical information: "Hi—this is Bill and I forgot my password. Can you remind me what it is?"

Next, hackers perform it to gain a more detailed view of a company’s network and to understand what specific computer systems and services are in use. During this phase, the hacker determines which systems on the target network are live and reachable from the Internet. Commonly used scanning techniques include network ping sweeps and port scans. A ping sweep lets the attacker determine which individual computers on the network are alive and potential targets for attack. Port scanning can be used to determine what ports (a port is like a door or window on a house) are open on a given computer, and whether or not the software managing those ports has any obvious vulnerabilities.

GRAMMAR

MODAL VERBS: HAVE TO, MUST AND SHOULD

We can use have to + infinitive, must + infinitive and should + infinitive to express obligation (something you have to do).

Be careful about the difference between mustn’t and don’t have to!

Compare:

Mustn’t means it’s not allowed, or it’s a bad idea:

You mustn’t eat so much chocolate, you’ll be sick.

Don't have to means you don't need to do something, but it’s fine if you want to do it:

I don’t have to get up early at the weekend (of course, if I want to get up early, that’s fine, but I can stay in bed if I want).

Task 1. Choose must or have to.

1My back has been hurting for weeks. I ………… go to the doctor’s.

2Professor Watkins told me today that I ………… give in that assignment by Friday.

3Thanks for everything. It was a great party. I ………… go now. I am really tired.

4John! This is a one way street. You ………… turn back and use Smith Street.

5My company said that if I want this promotion, I ………… go to the doctor’s for a thorough medical check-up first.

6I went to see ‘Alien 9’ at the cinema last night. What a great film! You ………… go and see it!

7I am taking out a bank loan this month. I ………… pay a lot of taxes all together.

8Hey, you boys! You are not supposed to be in this room. You ………… leave now!

9The local council is really strict about protecting that piece of lawn! You …………

walk around it!

10Jane. Thanks for everything. It was a great party. I ………… go now. My husband is waiting for me outside.

Task 2. Choose musn’t or don’t have to.

1You __________ drive without a seatbelt.

2John __________ pay for me!

3You __________ smoke in the lift.

4We __________ go home yet, it’s only 9:30 p.m.

5You __________ stay out so late, you’re sick and it’s bad for you.

6I __________ forget my mother’s birthday again!

7Children __________ wear a uniform in this school.

8You __________ leave without saying ‘good-bye’!

9You __________ buy me flowers every time you see me! But it’s very nice.

10I’ve told you before. You __________ touch that hot stove.

Task 3. Fill in one of the following verb forms.

1Tom doesn't know what to do? What do you think he ………… do?

2It isn't necessary to dress up tonight. We ………… wear suits.

3I think you ………… worry about what they are saying about you. That's my advice anyway.

4You ………… take your medicine or you won't get better.

5How ………… I phrase my application letter? What do you think?

6I ………… work in the evening, it is necessary

7Children ………… watch too much TV.

8She ………… cut the grass. It’s too long.

9John won the lottery last year so he ………… work.

10We ………… be ready for any emergency.

Task 4. Choose the right answer.

8 He __________ take everything so seriously.

a mustn’t b doesn’t c shouldn’t d must have to

9 You __________ be careful about what you eat if you want to stay healthy.

Hyperlinks to grammar

1http://www.esl-lounge.com

2http://www.perfect-english-grammar.com

3https://agendaweb.org

4https://off2class-sol5y8kuafeozy9kld6.netdna-ssl.com/wp- content/uploads/2014/10/Slide22.jpg

5software that automatically puts advertisements onto a computer screen when a person is using the internet

6software that collects information about how someone uses the internet, or personal information such as passwords, without the user knowing about it

nagware / malware

7computer software that is designed to damage the way a computer works

8software that tries to make users buy a program, service etc. by making pop-ups appear regularly on their computer screens

freeware / shareware

9computer software that you do not have to pay for, for example from the internet

10software that you get from the internet that you can use free for a short time without paying for it

READING

5 Read and translate the information about different types of software. Types of Software

Malware is short for malicious software. Malware refers to software designed specifically to damage or disrupt a system. As the phrase malware includes any type of malicious code, there are many different types of malware, from spyware to key loggers and computer viruses or worms. Financial malware is designed to scan a computer system for information related to financial transactions. The standard protection from malware is antimalware – software tools and programs designed to identify, remove and prevent malicious

software from infecting computer systems or electronic devices.