Lecture Delivery Plan • Techno Criminals will usually probe their prey system for weaknesses and will

• Techno Criminals will usually probe their prey system for weaknesses and will almost always leave
an electronic 'calling card' to ensure that their pseudonym identity is known.
UNIT 1: INTRODUCTION TO CYBER CRIME
Techno – vandalism: Passive attack
Lecture -1:
• Techno Vandalism is a term used to describe a hacker or cracker who breaks into a computer system
1.1 .1 Introduction of Course Outcomes & Overview of the Syllabus with the sole intent of defacing and or destroying its contents. • Techno Vandals can deploy 'sniffers' on
the Internet to locate soft (insecure) targets and then execute a range of commands using a variety of
The internet in India is growing rapidly. It has given rise to new opportunities in every field we can protocols towards a range of ports. If this sounds complex - it is! The best weapon against such attacks
think of be it entertainment, business, sports or education. There’re two sides to a coin. Internet also has is a firewall which will hide and disguise your organization's presence on the Internet.
it’s own disadvantages is Cyberc rime- illegal activity committed on the internet.
Malicious programs, Illegal imports, Crime committed using a computer and the internet to steal data Cybercrime and Information Security
or information. Lack of information security give rise to cybercrime. Cyber Security: means protecting information,
equipment, devices, computer, computer resource, communication device and information stored therein
1.1.2 Defining Cybercrime: from unauthorized access, use, disclosure, disruption, modification or destruction.
Cybercrime is not a new phenomenon. The first recorded cybercrime took place in the year
1820. In 1820, Joseph Marie Jacquard, a textile manufacturer in France, produced the loom. Challenges for Securing Data in Business Perspective:
This device allowed the repetition of a series of steps in the weaving of special fabrics. This Cybercrimes occupy an important space in information security due to their impact. Most organizations do
not incorporate the cost of the vast majority of computer security incidents into their accounting The
resulted in a fear amongst Jacquard's employees that their traditional employment and
difficulty in attaching a quantifiable monetary value to the corporate data and yet corporate data get
livelihood were being threatened. They committed acts of sabotage to discourage Jacquard from stolen/lost. Financial loses may not be detected by the victimized organization in case of Insider attacks: such
further use of the new technology. This is the first recorded cyber crime! as leaking customer data

Alternative definitions for cybercrime could be given as:

 Any illegal act where a special knowledge of computer technology is essential for its
perpetration, investigation or prosecution
 Any traditional crime that has acquired a new dimension or order of magnitude through the
aid of a computer, and abuses that have come into being because of computers
 Any financial dishonesty that takes place in a computer environment.
 Any threats to the computer itself, such as theft of hardware or software, sabotage and
demands for ransom

Another definition “Cybercrime (computer crime) is any illegal behavior, directed by means of
electronic operations, that target the security of computer systems and the data processed by them”.
Hence cybercrime can sometimes be called as computer-related crime, computer crime, E-crime,
Internet crime, High-tech crime

Cybercrime specifically can be defined in number of ways • A crime committed using a computer and
the internet to steal a person’s identity(identity theft) or sell contraband or stalk victims or disrupt
operations with malevolent programs. • Crimes completed either on or with a computer • Any illegal
activity through the Internet or on the computer. • All criminal activities done using the medium of
computers, the Internet, cyberspace and the WWW.

Cybercrime refers to the act of performing a criminal act using cyberspace as communication vehicle.
Two types of attacks are common: – Techno- crime : Active attack
• Techno Crime is the term used by law enforcement agencies to denote criminal activity which uses
(computer) technology, not as a tool to commit the crime, but as the subject of the crime itself. Techno
Crime is usually pre-meditated and results in the deletion, corruption, alteration, theft or copying of
data on an organization's systems.
Lecture -2: Unauthorized accessing of computer Password sniffing Denial-of-service attacks Virus
attack/dissemination of viruses E-Mail bombing/mail bombs Salami attack/ Salami technique Logic
1.2.1 Who are Cybercriminals? bomb Trojan Horse Data diddling Industrial spying/ industrial espionage Computer network intrusions
Software piracy
Cyber Criminals are those who conduct acts such as: – Credit card fraud – Cyber stalking – Defaming
another online – Gaining unauthorized access to computer systems – Ignoring copyrights – Software 4. Cybercrime against Society • Forgery • Cyber terrorism • Web jacking
licensing and trademark protection – Overriding encryption to make illegal copies – Software piracy –
Stealing another’s identity to perform criminal acts

Categorization of Cybercriminals

Type 1: Cybercriminals- hungry for recognition – Hobby Hackers :A person who enjoys exploring the
limits of what is possible, in a spirit of playful cleverness. May modify hardware/ software – IT
professional(social engineering)
Ethical hacker – Politically motivated hackers : Promotes the objectives of individuals, groups or
nations supporting a variety of causes such as : Anti globalization, transnational conflicts and protest
Terrorist organizations, Cyber terrorism: Use the internet attacks in terrorist activity
Large scale disruption of computer networks , personal computers attached to internet via viruses

Type 2: Cybercriminals- not interested in recognition – Financially motivated hackers • Make money
from cyber attacks • Bots-for-hire : fraud through phishing, information theft, spam and extortion –
State-sponsored hacking • Hacktivists • Extremely professional groups working for governments • Have
ability to worm into the networks of the media, major corporations, defense departments

Type 3: Cybercriminals- the insiders – Disgruntled or former employees seeking revenge – Competing
companies using employees to gain economic advantage through damage and/ or theft.
Motives Behind Cybercrime
Greed Desire to gain power Publicity Desire for revenge A sense of adventure Looking for thrill to
access forbidden information • Destructive mindset • Desire to sell network security services

1.2.2 Classification of Cybercrimes:

Cybercrime against an individual Cybercrime against property Cybercrime against organization

Cybercrime against Society Crimes emanating from Usenet newsgroup

1. Cybercrime against an Individual :

 Electronic mail spoofing and other online frauds
 Phishing, spear phishing
 Spamming
 Cyber defamation
 Cyber stalking and harassment
 Computer sabotage
 Pornographic offenses
 Password Sniffing

2. Cybercrime against property • Credit card frauds • Intellectual property( IP) crimes • Internet time
theft

3. Cybercrime against Organization

Lecture -3: 1.3.2 Cyber Crime Era: Survival Mantra for the Netizens

1.3.1 A Global Perspective on Cyber Crime Cyber Crime Era:

With the rapid development of computer technology and internet over the years, the problem of cyber Cybercrime is any criminal activity that involves a computer, networked device or a network. While
crime has assumed gigantic proportions and emerged as a global issue. It has created an entirely new set most cybercrimes are carried out in order to generate profit for the cybercriminals, some cybercrimes
of problems for law enforcement agencies all over the world. It has equally become cause of serious are carried out against computers or devices directly to damage or disable them.
concern for the legal fraternity to find effective ways and means to combat cyber criminality because of
its worldwide devastating effect. Survival Mantra for the Netizens

(Book Ref. Nina Godbole/Sunit Belapure)  Netizen is someone who spends considerable time online and also has a considerable presence
online (through websites about the person, through his/her active blog contribution and/or also
 In Australia, cybercrime has a narrow statutory meaning as used in the Cyber Crime Act 2001, his/her participation in the online chat rooms).
which details offenses against computer data and systems.  The 5P Netizen mantra for online security is: (a) Precaution, (b) prevention, (c) Protection, (d)
 In the Council of Europe’s (CoE’s) Cyber Crime Treaty, cybercrime is used as an umbrella term Preservation and (e) Perseverance.
to refer to an array of criminal activity including offenses against computer data and systems,
computer-related offenses, content offenses and copyright offenses. For ensuring cyber safety, the motto for the “Netizen” should be “Stranger is Danger!”
 Recently, there have been a number of significant developments such as
Cyber Security: Most Challenging:
1. August 4, 2006 Announcement: The US Senate ratifies CoE Convention on Cyber Crime.
2. In August 18, 2006, there was a news article published “ISPs Wary About ‘Drastic Obligations’ on Indeed, Cyber Security has become one of the most challenging tasks in computer science field; and it
Web Site Blocking.” is expected that the number and sophistication of cyber attacks will grow continually and exponentially.
3. CoE Cyber Crime Convention (1997–2001) was the first international treaty seeking to address
Internet crimes by harmonizing national laws, improving investigative techniques and increasing
cooperation among nations.

Cybercrime and the Extended Enterprise

 It is the responsibility of each user to become aware of the threats as well as the opportunities
that “connectivity” and “mobility” presents them with.
 Extended enterprise - represents the concept that a company is made up not just of its
employees, its board members and executives, but also its business partners, its suppliers and
even its customers (Fig. 5).

Fig. 1.1: Extended Enterprise

Lecture – 4 1. Crack the password;
2. exploit the privileges;
1.4.1. Cyber Offences: How Criminals Plan the Attacks
3. execute the malicious commands/applications;
1. Reconnaissance (information gathering) is the first phase and is treated as passive attacks.
4. hide the files (if required);
2. Scanning and scrutinizing the gathered information for the validity of the information as well as to 5. cover the tracks – delete the access logs, so that there is no trail illicit activity.
identify the existing vulnerabilities.

3. Launching an attack (gaining and maintaining the system access).

Reconnaissance:

“Reconnaissance” is an act of reconnoitering – explore, often with the goal of finding something or
somebody (especially to gain information about an enemy or potential enemy).

Reconnaissance begins with “Footprinting” – this is the preparation toward pre-attack phase

 involves accumulating data about the target’s environment and computer architecture to find
ways to intrude into that environment.

Passive Attacks
 A passive attack involves gathering information about a target without his/her (individual’s or
company’s) knowledge.
 It is usually done using Internet searches or by Googling an individual or company to gain
information.
Active Attacks
 An active attack involves probing the network to discover individual hosts to confirm the
information gathered in the passive attack phase.
 It involves the risk of detection and is also called “Rattling the doorknobs”or “Active
reconnaissance.”
 Active reconnaissance can provide confirmation to an attacker about security measures in place.

Scanning and Scrutinizing Gathered Information

The objectives of scanning are:
1. Port scanning: Identify open/close ports and services.
2. Network scanning: Understand IP Addresses and related information about the computer network
systems.
3. Vulnerability scanning: Understand the existing weaknesses in the system.
Attack (Gaining and Maintaining the System Access)
After the scanning and enumeration, the attack is launched using the following steps:
Lecture – 5 • Posting of women's personal information
• Harassment
1.5.1 Social Engineering
• Revenge & Hate
 It is the “technique to influence” and “persuasion to deceive” people to obtain the information
Types of Stalking
or perform some action.
 Social engineers exploit the natural tendency of a person to trust social engineers’ word, rather • E-mail talking: Direct communication through email.
than exploiting computer security holes.
 Social engineering involves gaining sensitive information or unauthorized access privileges by • Internet Stalking: Global communication through the Internet.
building inappropriate trust relationships with insiders. • Computer Stalking : Unauthorised control of an other person's computer.
 The sign of truly successful social engineers is that they receive information without any
suspicion. How Stalking Works?
1. Personal information gathering about the victim
Classification of Social Engineering:
2. Establish a contact with victim through telephone/cell phone. Once the contact is established,
1. Human-Based Social Engineering the stalker may make calls to the victim to threaten/harass.
Human-based social engineering refers to person-to-person interaction to get the required/desired
information. 3. Stalkers will almost always establish a contact with the victims through E-Mail. The stalker may
use multiple names while contacting the victim.
2. Computer-Based Social Engineering
Computer-based social engineering refers to an attempt made to get the required/desired information by 4. Some stalkers keep on sending repeated E-Mails asking for various kinds of favors or threaten
using computer software/Internet. the victim.
1.5.2 Cyber Stalking 5. The stalker may post the victim’s personal information on any website related to illicit services
such as sex-workers’ services or dating services, posing as if the victim has posted the
• Cyber-stalking, simply put, is online stalking.
information and invite the people to call the victim on the given contact details The stalker will
• In other words, the use of the internet or other electronic means to stalk or harass an individual,
use bad and/or offensive/attractive language to invite the interested persons.
a group of individuals, or an organization.
6. Whosoever comes across the information, start calling the victim on the given contact details
• "Stalking generally involves harassing or threatening behavior that an individual engages in
asking for sexual services or relationships.
repeatedly, such as following a person, appearing at a person home or place of business, making
7. Some stalkers subscribe/register the E-Mail account of the victim to innumerable pornographic
harassing phone calls, leaving written messages or objects, or vandalizing a person's property.
and sex sites, because of which victim will start receiving such kind of unsolicited E-Mails.

Ways of Stalking Way to Prevent Stalking

• False accusations,  Maintain vigilance over physical access to your computer and other Web enabled devices like
• Monitoring, cell phones
• Threats,  Cyber-stalkers use software and hardware devices sometimes attached to the back of your PC
• Posting personal informations without you even knowing to monitor their victims.
• Continuously following the victim in online  Make sure you always log out of your computer programs when you step away from the
Motives Behind Stalking computer and use a screensaver with a password.
 Make sure to practice good password management and security. Never share your passwords
• To control the victims
with others, and be sure to change your passwords frequently.
• Threats and other threats of violence
Lecture -6  Clear history and temporary files: Internet Explorer saves pages that you have visited in the
history folder and in temporary Internet files.
1.6.1 Cyber Cafe and Cyber Crime
 Your passwords may also be stored in the browser if that option has been enabled on the
• Cybercriminals prefer cybercafes to carry out their activities.
computer that you have used.
• The criminals tend to identify one particular personal computer PC to prepare it for their use.
 Therefore, before you begin browsing, do the following in case of the browser Internet
• Cybercriminals will visit these cafes at a particular time and on the prescribed frequency, maybe
Explorer: Go to Tools →Internet options → click the Content tab → click Auto Complete. If the
alternate day or twice a week.
checkboxes for passwords are selected, deselect them.
• Pirated software(s) such as OS, browser, office automation software(s) (e.g., Microsoft Office)
 Click OK twice. After you have finished browsing, you should clear the history and temporary
are installed in all the computers.
Internet files folders.
• Antivirus software is found to be not updated to the latest patch and/or antivirus signature
 For this, go to Tools →Internet options again → click the General tab → go to Temporary
• Several cybercafes had installed the software called "Deep Freeze" for protecting the computers
Internet Files →click Delete Files and then click Delete Cookies. Then, under history, click
from prospective malware attacks.
clear history. Wait for the process to finish before leaving the computer.
• Annual maintenance contract (AMC) found to be not in a place for servicing the computers;
 Be alert: One should have to stay alert and aware of the surroundings while using a public
hence, hard disks for all the computers are not formatted unless the computer is down.
computer. Snooping over the shoulder is an easy way of getting your username and password.
• Not having the AMC is a risk from cybercrime perspective because a cybercriminal can install a
 Avoid online financial transactions: Ideally one should avoid online banking, shopping or other
Malicious Code ona computer and conduct criminal activities without any interruption.
transactions that require one to provide personal, confidential and sensitive information such as
• Cybercafe owners have very less awareness about IT Security and IT Governance.
credit card or bank account details. In case of urgency one has to do it; however, one should
• Cybercafe association or State Police (cyber cell wing) do not seem to conduct periodic visits to
take the precaution of changing all the passwords as soon as possible. One should change the
cybercafes
passwords using a more trusted computer, such as at home and/or in office.
• Individual should take care while accessing computers in public places, that is, accessing the
 Change password
Internet in public places such as hotels, libraries and holiday resorts.
 Virtual keyboard: Nowadays almost every bank has provided the virtual keyboard on their
• Moreover, one should not forget that whatever is applicable for cybercafes (i.e., from
website.
information security perspective) is also true in the case of all other all public places where the
 Security warnings: One should take utmost care while accessing the websites of any
Internet is made available.
banks/financial institution.

1.6.2 Safety and Security @ Cyber Café

 Always logout: While checking E-Mails or logging into chatting services such as instant
messaging or using any other service that requires a username and a password, always click
"logout" or sign out" before leaving the system.
 Simply closing the browser window is not enough, because if somebody uses the same service
after you then one can get an easy access to your account. – However, do not save your login
information through options that allow automatic login. Disable such options before logon.
 Stay with the computer: While surfing/browsing, one should not leave the system unattended for
any period of time. – If one has to go out, logout and close all browser windows.
Lecture – 7
• Botnets are often used to conduct a range of activities, from distributing Spam and viruses to
1.7.1 Botnets: The Fuel for Cybercrime conducting denial-of-service (DoS) attacks.
• A Botnet (also called as zombie network) is a network of computers infected with a malicious
 A botnet is a collection of independent computers that have each been hacked by a cyber program that allows cybercriminals to control the infected machines remotely without the users'
criminal who uses them as a group to carry out many malicious attacks over the Internet. knowledge.
 In a botnet, each computer is remotely controlled by a hacker. • "Zombie networks" have become of income for entire groups of cybercriminals.
 A botnet is a collection of independent computers that have each been hacked by a cyber • The invariably low cost of maintaining a Botnet and the ever diminishing degree of knowledge
criminal who uses them as a group to carry out many malicious attacks over the Internet. require to manage one are conducive to the growth in popularity and, consequently, the number
 In a botnet, each computer is remotely controlled by a hacker. of Botnets.
• Botnet is a term used for collection of software robots, or Bots, that run
autonomously and automatically. Way of Safety:
• The term is often associated with malicious software but can also refer to the network of One can reduce the chances of becoming part of a Bot by limiting access into the system. Leaving your
computers using distributed computing software. Internet connection ON and unprotected is just like leaving the front door of the house wide open.
• In simple terms, a Bot is simply an automated computer. 1. Use antivirus and anti-Spyware software and keep it up-to-date: It is
• One can gain the control of your computer by infecting them with a virus or other Malicious important to remove and/or quarantine the viruses.
Code that gives the access. The settings of these softwares should be done during the installations so that these softwares get
• A computer system maybe a part of a Botnet even though it appears to be operating updated automatically on a daily basis.
normally. 2. Set the OS to download and install security patches automatically:
OS companies issue the security patches for flaws that are found in these systems.
3. Use a firewall to protect the system, from hacking attacks while it is connected on the Internet:
A firewall is a software and/or hardware that is designed to block unauthorized access while permitting
authorized communications.
is a device or set of devices configured to permit, deny, encrypt, decrypt, or proxy all (in and out)
computer traffic between different security domains based upon a set of rules and other criteria.
A firewall is different from antivirus protection. Antivirus software scans incoming communications
and files for troublesome viruses vis-a-vis properly configured firewall that helps to block all incoming
communications from unauthorized sources.
4. Disconnect from the Internet. when you are away from your computer: Attackers cannot get into the
system when the system is disconnected from the Internet.
Firewall, antivirus, and anti-Spyware softwares are not foolproof mechanisms to get access to the
system.
5. Downloading the freeware only from websites that are known and trustworthy: It is always
appealing to download free software(s) such as games, file-sharing programs, customized toolbars, etc.
However, one should remember that many free software(s) contain other software, which may include
Spyware.
6. Check regularly the folders in the mail box- "sent items" or "outgoing"-for those messages, you did
Fig. 1.2: Botnet Network not send: If you do find such messages in your outbox, it is a sign that your system may have infected
with Spyware, and maybe a part of a Botnet.
This is not full proof; many spammers have learned to hide their unauthorized access.
7. Take an immediate action if your system is infected: If your system is found to be infected by a
virus, disconnect it from the Internet immediately.
Then scan the entire system with fully updated antivirus, and anti-Spyware software. Report the
unauthorized accesses to ISP and to the legal authorities.
There is a possibility that your passwords may have been compromised in such cases, so change all the
passwords immediately.
Lecture -8:

1.8.1 Attack Vector

The attack vectors described here are how most of them are launched:
 An attack vector is a pathway or method used by a hacker to illegally access a network or
computer in an attempt to exploit system vulnerabilities. 1. Attack by E-Mail
 Hackers use numerous attack vectors to launch attacks that take advantage of system 2. Attachments (and other files)
weaknesses, cause a data breach, or steal login credentials. 3. Attack by deception
 An attacker can gain access to a computer or to a network server to deliver a payload or 4. Hackers
malicious outcome. 5. Heedless guests (attack by webpage)
 Attack vectors include viruses, E-Mail attachments, webpages, pop-up windows, instant 6. Attack of the worms
messages, chat rooms, and deception. 7. Malicious macros
 The most common malicious payloads are viruses, Trojan Horses, worms, and Spyware. 8. Foistware (sneakware)
 If an attack vector is thought of as a guided missile, its payload can be compared to the 9. Viruses
warhead in the tip of the missile.
 Payload means the malicious activity that the attack performs.
 It is the bits that get delivered to the end-user at the destination.

Fig. 1.3: Attack Vector

 Printed Page: 1 of 1 Printed Page: 1 of 2
Subject Code: BCC301 Subject Code: BCC301
0Roll No: 0 0 0 0 0 0 0 0 0 0 0 0 0 0Roll No: 0 0 0 0 0 0 0 0 0 0 0 0 0

BTECH BTECH
(SEM III) THEORY EXAMINATION 2023-24 (SEM III) THEORY EXAMINATION 2024-25
CYBER SECURITY CYBER SECURITY
TIME: 3HRS [Link]: 70 TIME: 3 HRS [Link]: 70

Note: 1. Attempt all Sections. If require any missing data; then choose suitably.
Note: Attempt all Sections. In case of any missing data; choose suitably.

SECTION A SECTION A

1. Attempt all questions in brief. 1. Attempt all questions in brief. 2 x 07 = 14

Q no. Question Marks Q no. Question CO Level
a. Define Cyber Crime. 2 a. सुर ाऔर गोपनीयता म ा अ ं तरहै? CO1 K1
b. What is Bot net. 2 What is the difference between security and privacy?
c. Why mobile needs security? 2 b. "सूचना सुर ा" से ा ता य है ? CO1 K1
d. Define Authentication and Authorization. 2 What is meant by "information security"?
e. What is virus and worms. 2 c. साइबर कानून का े ाहै
? CO2 K1
f. Explain digital evidence? 2 What is the scope of cyber law?
g. Why cyber is needed? 2 d. डे टा गोपनीयता का मह! ा है ? CO2 K1
SECTION B What is the importance of data privacy?
e. "िफ़िशं ग" को प%रभािषत करऔर एक सामा) उदाहरण द। CO3 K1

34
2. Attempt any three of the following: Define "phishing" and give a common example.
90

90
32

.1
a. Explain how the term ‘cybercrime’ originated. State few Cyber Crimes. 7 f. फ ॉरिसकम "सं िद0 व2ु की कड़ी" ा होती है ? CO4 K1
_2

_2

42
.1
b. Explain wireless devices with example. What are the security challenges faced by 7 What is the "chain of custody" in forensics?

42
wireless devices? कॉपीराइटऔर पेटट म ाअ ं तर है
P2

P2

.2
g. ? CO5 K1
c. Explain 7 Tools used in Cyber Crime. 7

5
.2
What is the difference between copyright and patent?
4D

5D

.5
d. Explain Digital forensics life cycle. 7

17
e. What is the need of Information Security policy?
.5 7
P2

P2
SECTION B
17

|1
Q

Q
|1

SECTION C 2. Attempt any three of the following: 07 x 3 = 21

PM
3. Attempt any one part of the following: Q no. Question CO Level
5

साइबरअ पराधी साइबर हमलोंकी योजना कैसे बनाते ह7? इसम शािमल चरणों CO1
2

a. Who are Cyber Criminals? Classify Cybercrimes. 7 a. K2

3
7:

:1
b. What is the fuel for cybercrime. How may a criminal plan cybercrime? 7 की 8ा9ा कर।
:3

33
4. Attempt any one part of the following: Explain how criminals plan cyberattacks, including the steps involved.
13

b. एक सं गठन को िकन िविभ; <कार की सुर ा नीितयाँ लागू करनी चािहए? CO2 K2

1:
a. Explain the security measures and policies taken for mobile devices. 7
4

Explain the different types of security policies that an organization

b. State some attacks on Mobile devices. What are the security implications for 7

5
02

should implement

02
organizations.
c. DoS और DDoS हमले कैसे काय करते ह7 और उनके सं भािवत <भाव ा ह7 ? CO3 K2
2

5. Attempt any one part of the following:

-2
3-

Explain how DoS and DDoS attacks work and their potential
a. What is Identity Theft. How it is done and how ID Theft can be handled? 7

ar
0

consequences.
b. What is steganography. Explain in detail. 7
2-

M
d. िडिजटल फ ॉरिसक जां च (Digital Forensic Investigation) म "सं िद0 व2ु CO4 K2
6. Attempt any one part of the following:
|1

1-
की कड़ी का मह>स मझाएँ ।

|2
a. What is Email. Explain how Email forensics can be done. 7 Explain the importance of the chain of custody in digital forensics
b. What are privacy threats? What are the challenges faced? 7 investigations.
7. Attempt any one part of the following: e. िकसी सं गठन म सूचना सुर ा नीित की आवAकता ोंहोती है ? CO5 K2
a. What is Cyber Law. State a few Cyber law in India. 7 Explain the need for an Information Security Policy in an organization
b. Give a Overview of Intellectual Property related Legislation in India. 7

1|Page 1|Page
QP24DP2_290 | 12-03-2024 [Link] | [Link] QP25DP2_290 | 21-Mar-2025 [Link] PM | [Link]

Printed Page: 1 of 1 Printed Page: 2 of 2

Subject Code: BCC401 Subject Code: BCC301
0Roll No: 0 0 0 0 0 0 0 0 0 0 0 0 0 0Roll No: 0 0 0 0 0 0 0 0 0 0 0 0 0

BTECH BTECH
(SEM IV) THEORY EXAMINATION 2023-24 (SEM III) THEORY EXAMINATION 2024-25
CYBER SECURITY CYBER SECURITY
TIME: 3 HRS [Link]: 70 TIME: 3 HRS [Link]: 70

Note: 1. Attempt all Sections. If require any missing data; then choose suitably. SECTION C

SECTION A
3. Attempt any one part of the following: 07 x 1 = 07
1. Attempt all questions in brief. 2 x 7 = 14 Q no. Question CO Level
a. How does cybercrime differ from traditional crime? a. साइबरअ परािधयों Bाराउपयोगकीजानेवालीिविभ;सामािजकइं जीिनय%रंगतकनी CO1 K2
b. What are the common profiles of cybercriminals in terms of demographics and skills?
कों
कावणनकर।
c. How do registry settings differ between mobile operating systems such as Android
and iOS?
Describe the various social engineering techniques used by
d. How are financial institutions adapting to the increase in mobile credit card fraud? cybercriminals.
e. What is a keylogger, and how does it capture keystrokes?
b. बॉटनेटकासाइबरअ पराधऔरऑनलाइनसुर ापर<भावसमझाएँ । CO1 K2
Explain the impact of botnets on cybercrime and online security.
f. What is digital forensics, and how does it differ from traditional forensic science?
4. Attempt any one part of the following: 07 x 1 = 07
g. What is a patent, and what are the criteria for obtaining one in India?
Q no. Question CO Level
SECTION B a. वै
Dीकृतदु िनयामसाइबरकानूनों कोलागूकरनेमआनेवालीचुनौितयों परचचाकर। CO2 K2
2. Attempt any three of the following: 7 x 3 = 21 Discuss the challenges in enforcing cyber laws in a globalized world.
a. What tools and technologies are essential for protecting against cybercrime?
िडिजटलयुगमबौGHकसं पदाअ िधकारों कामह>समझाएँ ।
32

4
b. CO2 K2
b. How do multi-factor authentication (MFA) systems work on mobile devices?
13
90
90

Explain the importance of intellectual property rights in the digital age.

.1

c. What is steganography, and how is it used to conceal information?

2.

5. Attempt any one part of the following: 07 x 1 = 07

42

_2
_2

d. What are the technical challenges faced by computer forensics professionals?

24

Q no. Question CO Level

.2

e. How can trademark infringement be prevented and remedied under Indian law?
P2
P2

5.

a. बफ़रओवरJलोकाशोषणकरनेकेिलएउपयोगकीजानेवालीिविधयों कावणनकर। CO3 K2

5

D
4E

.5

.5

SECTION C Describe the methods used to exploit buffer overflows.

5
17

17

3. Attempt any one part of the following: 7x1=7 साइबरअ पराधम<ॉKीसवरऔरगुमनामकरनेवालेउपकरणों (Anonymizers) CO3 K2
P2

P2

b.
(a) What are the typical stages of a cyber-attack? केउपयोगकोसमझाएँ ।
|1

|1
Q

(b) How can botnet activities be detected and disrupted by cybersecurity professionals? Explain the use of proxy servers and anonymizers in cybercrime.
PM

PM

4. Attempt any one part of the following: 7x1=7 6. Attempt any one part of the following: 07 x 1 = 07
(a) How can users detect and respond to phishing attacks on their mobile devices?
Q no. Question CO Level
(b) What are the key components of a comprehensive mobile security policy for
5

िडिजटलफ ॉरिसकजीवनचLकेिविभ;चरणों कोसमझाएँ ।

:4

:1

organizations? a. CO4 K2
39

5. Attempt any one part of the following: 7x1=7

33

Explain the different stages of the digital forensics life cycle.

(a) What is the difference between a DoS (Denial of Service) attack and a DDoS b. नेटवकफ ॉरिसककेिलएउपयोगकीजानेवालीिविधयों कावणनकर। CO4 K2
1:

1:

(Distributed Denial of Service) attack? Describe the methods used for network forensics.
(b) What is an SQL injection attack, and how does it exploit vulnerabilities in web
24

7. Attempt any one part of the following: 07 x 1 = 07

02

applications?
20

6. Attempt any one part of the following: 7x1=7 Q no. Question CO Level
-2

(a) What are the stages of the digital forensics life cycle?
g-

a. एकसं गठनकोिकनिविभ;<कारकीसाइबरसुर ानीितयाँलागूकरनीचािहए? CO5 K2

ar

(b) How do investigators capture and analyze network traffic during a network forensics
Au

Explain the different types of cyber security policies that organizations

M

investigation? should implement.

1-
7-

7. Attempt any one part of the following: 7x1=7

b. एक8ापकसाइबरसुर ानीितकोिवकिसतकरनेऔरलागूकरनेकी<िLयाकोसम CO5 K2
|2
|0

(a) What are the common intellectual property issues faced in the digital age?
(b) What are the penalties and legal consequences for cybercrimes under Indian law? झाएँ ।
Describe the process of developing and implementing a comprehensive
cyber security policy.

1|Page 2|Page
QP24EP2_290 | 07-Aug-2024 [Link] PM | [Link] QP25DP2_290 | 21-Mar-2025 [Link] PM | [Link]