Susan was looking at her credit report and noticed that several new credit cards had been opened lately in her name. Susan has not opened any of the credit card accounts herself. Which type of cybercrime has been perpetrated against Susan?
Correct Answer: A
Explanation:
Comprehensive and Detailed Explanation From Exact Extract: Identity theft occurs when an attacker unlawfully obtains and uses another person's personal information to open accounts, access credit, or commit fraud. The opening of credit cards without the victim's consent is a classic example. SQL injection is a web application attack method that does not directly relate to this case. Cyberstalking involves harassment via digital means and is unrelated. Malware is malicious software and may be used to facilitate identity theft but is not the crime itself. Reference: According to the U.S. Federal Trade Commission (FTC) definitions and NIST Cybersecurity Framework, identity theft is defined as the unauthorized use of someone’s personal information for fraudulent purposes, perfectly matching Susan’s situation.
Question 2
A cybercriminal hacked into an Apple iPad that belongs to a company's chief executive officer (CEO). The cybercriminal deleted some important files on the data volume that must be retrieved. Which hidden folder will contain the digital evidence.?
Correct Answer: C
Explanation:
Comprehensive and Detailed Explanation From Exact Extract: On Apple iOS devices, deleted files are often moved to a hidden Trash folder before permanent deletion. The directory /.Trashes/501 is a hidden folder where deleted files for user ID 501 (the first user created on macOS/iOS devices) are temporarily stored. This folder can contain files marked for deletion and thus is a prime location for recovery attempts. /lost+found is a directory commonly used on Unix/Linux file systems for recovered file fragments after file system corruption but is not the default trash location on iOS. /Private/etc and /etc contain system configuration files, not deleted user files. Reference: Apple forensic investigations per NIST and training manuals such as those from Cellebrite and BlackBag Technologies indicate that user-deleted files on iOS devices reside in .Trashes or similar hidden directories until permanently removed.
Question 3
Which digital evidence should the investigator collect?
Correct Answer: C
Explanation:
Comprehensive and Detailed Explanation From Exact Extract: In Internet fraud investigations, computer logs are critical because they provide a record of user activity, including browsing history, downloads, and system events. These logs can help establish a timeline, identify malicious access, and confirm fraudulent transactions. Computer logs may include browser history, system event logs, and application logs that document the victim’s interaction with the fraudulent offer. Whois records help identify domain registration details but are secondary evidence. Email headers are relevant if communication via email was part of the fraud but less critical than logs that show direct interaction. Virus signatures are used in malware investigations, not directly relevant to fraud evidence collection. Reference: According to guidelines by the International Journal of Digital Crime and Forensics and the SANS Institute, capturing logs is essential in building a case for Internet fraud as it provides objective data about the victim’s system and activities.
Demo Practice Mode
You are viewing only the questions marked as Demo.