1.0 Threats, Attacks, and Vulnerabilities

Question 1

Social engineering technique that is tricking users using Email or websites into revealing personal or confidential Information.

Answer 1

Phishing

Question 2

Social Engineering technique that is sending fraudulent text messages to users to reveal personal or confidential information

Answer 2

Smishing

Question 3

Social Engineering technique that is calling the user to reveal personal or confidential information

Answer 3

Vishing

Question 4

This is a unwanted solicited bulk messages that is being through the email, IM, SMS.

Answer 4

Spam

Question 5

a spam message that is being delivered through instant messaging instead of email is called?

Answer 5

SPIM Spam over instant messaging

Question 6

social engineering technique that only targets a specific person or group and often will include information known to be of interest to the target, such as current events or financial documents.

Answer 6

Spear Phishing

Question 7

the process of investigating an individual or organization’s trash to retrieve information that could be used to compromise network resources or plan a cyberattack.

Answer 7

Dumpster Diving

Question 8

using direct observation techniques, such as looking over someone’s shoulder, to get information.

Answer 8

Shoulder Surfing

Question 9

a malicious attack on a server or user’s computer in which an unauthorized party substitutes the site of a legitimate web server with its own

Answer 9

Pharming

Question 10

a type of physical security breach in which an unauthorized person follows an authorized individual to enter secured premises

Answer 10

Tailgating

Question 11

strategic use of casual conversation to extract information from people (targets) without giving them the feeling that they are being interrogated or pressed for the information

Answer 11

eliciting information

Question 12

Social Engineering that is a highly targeted phishing attack - aimed at senior executives - masquerading as a legitimate email.

Answer 12

Whaling

Question 13

Adding certain keywords to the email subject line such as URGENT or RESPONSE REQUIRED which will make the user read the email and to initiate some type action in the email thread.

Answer 13

Prepending

Question 14

Method of gathering usernames and passwords in masses suchas, via email phishing, and other exploits

Answer 14

Credential Harvesting

Question 15

The practice of covertly discovering and collecting information about a system.

Answer 15

Reconnaissance

Question 16

These can take the form of false virus alerts chain letters, or attempts to spread false information about some issue (such as warnings that the Federal Government is about to tax e-mail).

Answer 16

Hoax

Question 17

a type of phishing attack where the attacker impersonates a legitimate sender in order to trick the recipient into clicking on a malicious link or attachment.

Answer 17

Impersonation

Question 18

attack is a security exploit in which the attacker seeks to compromise a specific group of end users by infecting websites that members of the group are known to visit. The goal is to infect a targeted user’s computer and gain access to the network at the target’s workplace.

Answer 18

Watering Hole Attack

Question 19

a form of cybersquatting targeting people that accidentally mistype a website address directly into their web browser URL field.

Answer 19

TypoSquatting

Question 20

a made-up scenario developed by threat actors for the purpose of stealing a victim’s personal data

Answer 20

Pretexting

Question 21

Hybrid vishing takes these scams a step further. Cybercriminals first reach out to victims through email. However, unlike traditional email-based phishing, they won’t present a malicious link within the message. Instead, they’ll list a number for targets to call, leading them into a vishing scam

What type of war is this called?

Answer 21

Hybrid Warfare

Question 22

A social engineering technique is the person who’s trying to gain access so they’re going to pretend that they have some type of authority that allows them access to this information

Answer 22

Authority

Question 23

Social engineering technique that might say that bad things will happen if you don’t help. Or it could be something as simple as saying, the payroll checks aren’t going to go out unless I get this information from you.

Answer 23

Intimidation

Question 24

Social engineering technique that is using other people and what they’ve done to try to justify what they’re doing. They might tell you that your coworker was able to provide this information last week. They’re not in the office now so it’s something that maybe you could provide for them

Answer 24

Consensus

Question 25

Social engineering technique that uses a particular situation is only going to be this way for a certain amount of time, we have to be able to resolve this issue before this timer expires.

Answer 25

Scarcity

Question 26

Social engineering technique where they become your friend. They talk about things that you like, and by doing that, they make you familiar with them on the phone and make you want to do things for them.

Answer 26

Familiarity

Question 27

Social engineering technique where they are going to try to create trust between you and him. He’s going to try to tell you that he’s going to be able to solve all of your problems. He’s going to be able to fix all of these issues. You just need to trust him and provide the information he’s asking for

Answer 27

Trust

Question 28

social engineering can inject some type of urgency, then they can make things move even faster. This needs to happen quickly. Don’t even think about it. Just provide this information right now so that we can solve this problem

Answer 28

Urgency

Question 29

software that is specifically designed to disrupt, damage, or gain unauthorized access to a computer system.

Answer 29

Malware

Question 30

a type of malware that disguises itself as legitimate code or software.

Answer 30

Trojan

Question 31

a type of malware whose primary function is to self-replicate and infect other computers while remaining active on infected systems.

Answer 31

Worm

Question 32

software that’s bundled into download packages and offers no benefits for users. usually viewed as unwanted programs, because they offer few or no benefits and can serve as adware or spyware.

Answer 32

PUP - Potentially unwanted programs

Question 33

malicious code that works directly within a computer’s memory instead of the hard drive. It uses legitimate, otherwise benevolent programs to compromise your computer instead of malicious files.

Answer 33

Fileless malware

Question 34

Server is a computer controlled by an attacker or cybercriminal which is used to send commands to systems compromised by malware and receive stolen data from a target network

establishment of outbound communication from a victim system for secure communication between victim and adversary systems.

Answer 34

Command and control

Question 35

can be programmed/hacked to break into user accounts, scan the internet for contact information, to send spam, or perform other harmful acts

Answer 35

Bots

Question 36

a form of malware that enables a threat actor to carry out cryptojacking activity

Answer 36

Crypto Malware

Question 37

a set of instructions secretly incorporated into a program so that if a particular condition is satisfied they will be carried out, usually with harmful effects

Answer 37

Logic Bomb

Question 38

any software that installs itself on your computer and starts covertly monitoring your online behavior without your knowledge or permission.

Answer 38

Spyware

Question 39

Malware designed to allow an attacker to remotely control an infected computer. Once the tool is running on a compromised system, the attacker can send commands to it and receive data back in response

NC at the start of the command is used

Answer 39

RAT Remote Access Trojan

Question 40

set of software tools that enable an unauthorized user to gain control of a computer system without being detected.

Answer 40

Rootkit

Question 41

A type of brute force attack. In this attack, an attacker will brute force logins based on list of usernames with default passwords on the application

Answer 41

Spraying Attack

Question 42

type of brute force attack that only uses the words with most possibilities of success are checked and are less time consuming than brute force

Answer 42

Dictionary Attack

Question 43

the attacker has access to the encrypted material or a password hash and tries different key without the risk of discovery or interference
What type of brute force attack is this?

Answer 43

Brute Force Offline

Question 44

The attacker needs to interact with a targeted system to access encrypted material or a password hash and tries different key with the risk of discovery or interference.
What type of brute force attack is this?

Answer 44

Brute Force Online

Question 45

a password cracking method that uses a special table to crack the password hashes in a database

Answer 45

Rainbow table

Question 46

a scenario in which the attacker has access to pairs of known plaintexts and their corresponding ciphertexts.

Answer 46

Plaintext/unencrypted

Question 47

anyone who plugs in the USB drives into their devices runs the risk of becoming victim of a “BadUSB” attack

Answer 47

Malicious USB

Question 48

cable is any cable (electrical or optical) which performs an unexpected, and unwanted function

Answer 48

Malicious USB Cable

Question 49

type of credit card theft in which the thief makes a digital copy of the credit card information using a concealed or disguised electronic scanner

Answer 49

Card Cloning

Question 50

AI is used to manipulate or deceive another AI system maliciously

Answer 50

Adversarial artificial intelligence

Question 51

technique involves an attacker inserting corrupt data in the training dataset to compromise a target machine learning model during training

Answer 51

Tainted Machine Learning or Data Poisoning

Question 52

attacks are an emerging kind of threat that target software developers and suppliers. The goal is to access source codes, build processes, or update mechanisms by infecting legitimate apps to distribute malware.

Answer 52

Supply-Chain attacks

Question 53

attack is a type of cryptographic attack, which exploits the mathematics behind the birthday problem in probability theory.

Answer 53

Birthday Attack

Question 54

cryptographic hash function that is able to find a hash collision (a pair of different inputs that have the same hash) faster than by brute force

Answer 54

Collision Attack

Question 55

a scenario in which a malicious actor attempts to force a server or client to use a lower version of a cryptographic protocol (such as TLS or SSL), a cipher suite (such as an export-grade cipher, instead of a standard one), or a connection type (HTTP, instead of HTTPS)

Answer 55

Downgrade Attack

Question 56

using a vulnerability to gain privileges other than what was originally intended for the user

Answer 56

Privilege Escalation

Question 57

an attack in which an attacker injects malicious executable scripts into the code of a trusted application or website

Answer 57

Cross-site Scripting

Question 58

a common attack vector that uses malicious SQL code for backend database manipulation to access information that was not intended to be displayed

Answer 58

SQL Injection

Ex
1=1

Question 59

a method of executing arbitrary code in the address space of a separate live process

Answer 59

DDL dynamic Link Library

Question 60

injection is a vulnerability in which queries are constructed from untrusted input without prior validation or sanitization. It uses queries constructed from predicates that involve the use of special characters (e.g., brackets, asterisks, ampersands, or quotes)

Answer 60

LDAP Injection

Question 61

a category of vulnerabilities where an application doesn’t correctly validate/sanitize user input before using it in an XML document or query

Answer 61

XML Extensible Markup Language injection

Question 62

occurs when a program attempts to read or write to memory with a NULL pointer, which results in a segmentation fault as the code triggers a memory access violation

Answer 62

Pointer/Object dereference

Question 63

HTTP attack that allows attackers to access restricted directories and execute commands outside of the web server’s root directory

Answer 63

Directory Traversal Attacks

Question 64

occurs when the volume of data exceeds the storage capacity of the memory buffer

Answer 64

Buffer overflow

Question 65

an undesirable situation that occurs when a device or system attempts to perform two or more operations at the same time,

Answer 65

Race condition or Time of check/time of use

Question 66

attack occurs when a cybercriminal eavesdrops on a secure network communication, intercepts it, and then fraudulently delays or resends it to misdirect the receiver into doing what the hacker wants.

Answer 66

Replay attack

Question 67

attack consists of the exploitation of the web session control mechanism, which is normally managed for a session token.

Answer 67

Session Attack

Question 68

a program performs a calculation and the true answer is larger than the available space

Answer 68

Integer overflow

Question 69

attack involves an attacker abusing server functionality to access or modify resources

Answer 69

SSRF Server Side Request Forgery

Question 70

an attack that forces an end user to execute unwanted actions on a web application in which they’re currently authenticated.

Answer 70

CSRF Cross Site Request Forgery

Question 71

malicious usage or attempted usage of an API from automated threats such as access violations, bot attacks or abuse

Answer 71

API Attacks

Question 72

attacks are computer security exploits that crash, hang, or otherwise interfere with the targeted program or system. Forcing the client to use all its resources to try to maintain the enviroment

Answer 72

Resource Exhaustion

Question 73

an unintentional form of memory consumption whereby the developer fails to free an allocated block of memory when no longer needed

Answer 73

Memory Leak

Question 74

an action performed by a malicious user that leads to a downgrade from an HTTPS secure connection to a less secure encrypted HTTP connection

Answer 74

Secure Socket Layer Stripping or SSL Stripping

Question 75

additional code that can be run instead of the original driver. When an application attempts to call an older driver, the operating system intercepts the call and redirects

Answer 75

Shimming Driver Manipulation

Question 76

a set of techniques used to identify the flow and then modify the internal structure of code without changing the code’s visible behavior

Answer 76

Refactoring Driver Manipulation

Question 77

a type of cybersecurity attack in which an adversary steals a “hashed” user credential and uses it to create a new user session on the same network

Answer 77

Pass the hash

Question 78

a rogue Wi-Fi access point (AP) that masquerades as a legitimate one, enabling an attacker to gain access to sensitive information without the end user’s knowledge

Answer 78

Evil Twin

Question 79

provides a wireless backdoor channel into the private network for outsiders. It can bypass network firewalls and other security devices and opens a network to attacks

Answer 79

Rouge AP

Question 80

is the theft of information from a wireless device through a Bluetooth connection

Answer 80

Blue Snarfing

Question 81

is a hacking method that allows an individual to send anonymous messages to Bluetooth-enabled devices within a certain radius

Answer 81

Bluejacking

Question 82

A type of DoS attack in which the attacker breaks the wireless connection between the victim device and the access point

Answer 82

disassociation attack

Question 83

data can be shared between devices using NFC, it can also be stolen, modified, erased or corrupted

Answer 83

NFC attack

Question 84

is an attack on wireless networks. It modifies the IV of an encrypted wireless packet during transmission. Once an attacker learns the plaintext of one packet, the attacker can compute the RC4 key stream generated by the IV used

Answer 84

IV Attack

Question 85

a general term for when a perpetrator positions himself in a conversation between a user and an application—either to eavesdrop or to impersonate one of the parties, making it appear as if a normal exchange of information is underway

Answer 85

man in the middle

Question 86

attack simulates a login window with a spoofed domain within a parent browser window to steal credentials

Answer 86

man in the browser attack

Question 87

is a type of cyber attack carried out over a Local Area Network (LAN) that involves sending malicious ARP packets to a default gateway on a LAN in order to change the pairings in its IP to MAC address table

Answer 87

ARP Poisoning

Question 88

attack aimed at compromising data transmitted to a device that is connected to a network switch. The method is based on overflowing the MAC address table for devices and their corresponding network segments

Answer 88

MAC Flooding

Question 89

an attacker will modify the MAC address of their device to match the MAC address of a legitimate device that is either on the network or has recently left the network

Answer 89

MAC Cloning

Question 90

an attack where an organization’s web address is stolen by another party

Answer 90

Domain Hijacking

Question 91

a hacker technique that manipulates known vulnerabilities within the domain name system (DNS). When it’s completed, a hacker can reroute traffic from one site to a fake version. And the contagion can spread due to the way the DNS works.

Answer 91

dns poisoning

Question 92

is a vulnerability which allows an attacker to force users of your application to an untrusted external site. The attack is most often performed by delivering a link to the victim, who then clicks the link and is unknowingly redirected to the malicious website.

Answer 92

url redirection attack

Question 93

attack occurs when an attacker hijacks a website or server and affects its IP reputation. This can happen in a variety of cyberattacks. Some ways an attacker can impact a company’s IP reputation include: Hacking the company website. Hijacking servers to send malicious emails.

Answer 93

Domain Reputation attack

Question 94

a sophisticated, sustained cyberattack in which an intruder establishes an undetected presence in a network in order to steal sensitive data over a prolonged period of time.

Answer 94

Advanced Persistent Threat APT

Question 95

threat actor motivated by nationalism, and tasked with gaining secrets from or disrupting other nations via cyber means.

Answer 95

State Actors

Question 96

threat actors have been known to target businesses that allegedly engaged in activities fundamentally opposed to their ideology

Answer 96

Hackivist

Question 97

threat actor who uses existing computer scripts or code to hack into computers, lacking the expertise to write their own.

Answer 97

Script Kiddies

Question 98

This is a set of professional criminals. This is what they do for a living, and they are almost always motivated by a financial gain. Because there’s usually significant financial benefit to these types of hacks, there’s usually enough money to purchase the best hackers

Answer 98

Criminal Syndicates

Question 99

who may be looking for vulnerabilities, but don’t necessarily act on those vulnerabilities. This is a hacker who is more of a researcher and trying to find access to someone’s network without necessarily taking advantage of that access.

Answer 99

Semi-authorized hackers

Question 100

types of hackers who’re professionals with expertise in cybersecurity. They are authorized or certified to hack the systems. These hackers work for governments or organizations by getting into the system. They hack the system from the loopholes in the cybersecurity of the organization. This hacking is done to test the level of cybersecurity in their organization. By doing so, they identify the weak points and fix them to avoid attacks from external sources

Answer 100

Authorized Hackers

Question 101

the use of information technology systems, devices, software, applications, and services without explicit IT department approval.

Answer 101

Shadow IT

Question 102

Threat Actor might be interested in causing a denial of service to your company. They might be performing espionage against you, or just making your reputation one that is tarnished or harmed in the industry. Since this type of threat actor can be a for-profit company

Answer 102

Competitor

Question 103

an attack where a hacker is able to gain access to a computer and be able to directly download data from it

Answer 103

Direct Attack

Question 104

is the act of gathering and analyzing publicly available data for intelligence purposes

Answer 104

Open source intelligence (OSINT)

Question 105

enables the real-time exchange of machine-readable cyber threat indicators and defensive measures to help protect participants of the AIS community and ultimately reduce the prevalence of cyberattacks

Answer 105

Automated Indicator Sharing

Question 106

is a standardized XML programming language for conveying data about cybersecurity threats in a common language that can be easily understood by humans and security technologies

Answer 106

STIX (Structured Threat Information eXpression)

Question 107

server client that exchanges standardized and anonymized cyber threat intelligence among users. Work as a venue sharing and collecting indidactors of compromise.

Answer 107

Trusted Automated eXchange of Intelligence Information TAXII

Question 108

a visual representation of a real-time map of the computer security attacks that are going on at any given time.

Answer 108

Threat Maps

Question 109

collaborative effort of two or more agencies that provide resources, expertise and information to the center with the goal of maximizing their ability to detect, prevent, investigate, and respond to criminal and terrorist activity

Answer 109

Intelligence Fusion Center

Question 110

An instance in which a security tool intended to detect a particular threat but fails to detect it

Answer 110

False Negative

Question 111

An alert that incorrectly indicates that a vulnerability is present. An alert that incorrectly indicates that malicious activity is occurring

Answer 111

False Positive

Question 112

Using admin account, do a more thorough check by scanning for problems that cannot be seen from the network.

Answer 112

Credential-based vulnerability assessment

Question 113

Doesn’t use creds and scans provide a quick view of vulnerabilities by only looking at network services exposed by the host

Answer 113

UnCredential-based vulnerability assessment

Question 114

scans simply identify a vulnerability and report on it so you can fix it. It doesn’t also execute anything.

Answer 114

Non-intrusive

Question 115

scans attempt to exploit a vulnerability when it is found

Answer 115

Instrusive

Question 116

a list of publicly disclosed information security vulnerabilities and exposures

Answer 116

Common Vulnerabilities and Exposures (CVE)

Question 117

standard for assessing the severity of computer system security vulnerabilities. attempts to assign severity scores to vulnerabilities, allowing responders to prioritize responses and resources according to threat.

Answer 117

Common Vulnerability Scoring System (CVSS)

Question 118

technology supports threat detection, compliance and security incident management through the collection and analysis (both near real time and historical) of security events, as well as a wide variety of other event and contextual data sources

Answer 118

Security information and event management (SIEM)

Question 119

the process of gathering insight into the network events that users generate every day

Answer 119

SIEM User behavior analysis

Question 120

SIEM feature that studies human emotions present within data, such as negative, neutral, or positive opinions or attitudes.

Answer 120

Sentiment Analysis SIEM

Question 121

historical log data and real-time alerts from security solutions and IT systems like email servers, web servers, and authentication systems. They analyze the data and establish relationships that help identify anomalies, vulnerabilities, and incidents.

Answer 121

Log Aggregation SIEM

Question 122

SIEM feature that collects logs from multiple sources and forwards them to a central logging system

Answer 122

Log Collector SIEM

Question 123

refers to a collection of software solutions and tools that allow organizations to streamline security operations in three key areas: threat and vulnerability management, incident response, and security operations automation

Answer 123

SOAR (Security Orchestration, Automation, and Response)

Question 124

defined the purpose of the test, and what the scope will be for the people who are performing this test on the network. This means that everybody will be aware of what systems will be considered, and perhaps the time of day that will be used to perform these tests.

Answer 124

Rules of Engagement

Question 125

penetration tester nothing about the systems enviroment

Answer 125

Unknown environment

Question 126

you are may be contracting with a third party and you may provide them with information about some key systems, that they can then perform the penetration tests based on the information they have at hand

Answer 126

Partially known environment

Question 127

start moving to other devices on the inside of the network.

as we move from device to device on the inside of a network. It’s very common to have very strong security on the perimeter of the network, and security that is less involved on the inside.

Answer 127

Lateral Movement

Question 128

A penetration strategy that uses a backdoor which allow you to gain access to the system through the accounts at a later time.

Answer 128

Persistence

Question 129

a reward that is provided by the owner of these systems, to people that identify vulnerabilities, or exploits that can be taken advantage of. These are usually exploits that are identified by researchers. The more exploits they identify, the more bounties they can submit, and ultimately, the more money they can make

Answer 129

Bug Bounty

Question 130

gain access to one system, and that will be the jumping-off point to get to any other system that’s on the inside of the network

Answer 130

Pivoting

Question 131

form of cyberattack that involves malicious actors using hardware and software to search for insecure wireless networks

Answer 131

War driving

Question 132

when someone on a plane, drone, or helicopter uses a WiFi-enabled device to look for open APs

Answer 132

War flying

Question 133

ethical hacking technique used to gather as much data as possible about a specific targeted computer system, an infrastructure and networks to identify opportunities to penetrate them

Answer 133

Foot Printing

Question 134

recon is when you gather information about a target without directly interacting with the target

Answer 134

Passive Reconnaissance

Question 135

recon is when you interact directly with a computer system in order to gather system specific information about the target.

Answer 135

Active Reconnaissance

Question 136

A team or group of people authorized and organized to emulate a potential adversary’s attack or exploitation capabilities against an enterprise’s security posture

Answer 136

Red Team

Question 137

a team that identifies security threats and risks in the operating environment, and in cooperation with the customer, analyzes the network environment and its current state of security readiness.

Answer 137

Blue Team

Question 138

A team that is responsibity to establish the rules of engagement, the metrics for assessing results and the procedures for providing operational security for the engagement.

Answer 138

White Team

Question 139

is a cybersecurity testing exercise in which a team of experts take on the role of both red team and blue team, with the intention of providing a stronger, deeper assurance activity that delivers more tailored, realistic assurance to the organization being tested.

Answer 139

Purple Team