1.1 Flashcards by Erik Carney

Phishing

Social engineering combined with spoofing

How well did you know this?

Not at all

Perfectly

Typosquating

Type of url highjacking, buys misspelled domains of trusted ones - Googel.com vs Google.com

How well did you know this?

Not at all

Perfectly

Pharming

Redirecting a legitimate website to a bogus site

How well did you know this?

Not at all

Perfectly

Vishing

It’s phishing, but over the phone

How well did you know this?

Not at all

Perfectly

Smishing

It’s phishing, but it’s over text

How well did you know this?

Not at all

Perfectly

Spear Phishing

Targeted phishing attacks, usually fueled by information gathered to recon

How well did you know this?

Not at all

Perfectly

Impersonation

Attackers pretend to be someone they aren’t

How well did you know this?

Not at all

Perfectly

Identity Fraud

Attackers using your identity to perform attacks in other places (Credit Car Fraud, Bank Fraud, Government Fraud…)

How well did you know this?

Not at all

Perfectly

Dumpster Diving

Valid way to gather important details, details that can be used for attacks

How well did you know this?

Not at all

Perfectly

Spam

Unsolicited Messages

How well did you know this?

Not at all

Perfectly

SPIM

Spam over instant messaging

How well did you know this?

Not at all

Perfectly

Tailgating

Use an authorized person to gain unauthorized access to a building.

How well did you know this?

Not at all

Perfectly

Invoice Scams

Attacker sends fake invoice, usually paired with spear phishing.

How well did you know this?

Not at all

Perfectly

Credential Harvesting

Attackers target stored credentials on your computer.

How well did you know this?

Not at all

Perfectly

Brainscape's Knowledge GenomeTM

1.1 Flashcards

Compare and contrast different types of social engineering

Brainscape's Knowledge Genome^TM