1.1 Cybersec mindset

Question 1

Cybersecurity

Answer 1

The assessment of threats and the mitigation of risk.

Question 2

Why use virtual machines?

Answer 2

Virtual machines allow us to run different operating systems.
We can access a network of those machines on the cloud.

Question 3

What does CIA stand for?

Answer 3

Confidentiality, Integrity, Availability

Question 4

Confidentiality

Answer 4

The state of keeping or being kept secret or private.
-ensuring sensitive information does not reach unauthorized people; “need to know”

Question 5

Integrity

Answer 5

The quality of being honest, whole, or undivided.
-refers to protecting information from being modified by unauthorized people.

Question 6

Availability

Answer 6

The quality of being able to be used or obtained.
-concerns occur when operating systems, equipment, and data are not functioning correctly and thus are not accessible by those who need it.

Question 7

Threat assessment

Answer 7

The structured process of identifying the threats posed to a group or system.

Question 8

Risk mitigation

Answer 8

The systematic reduction of the impact and likely occurrence of a negative event.

Question 9

Physical machines

Answer 9

bare metal machines, are physical computers that have hardware components used to run a variety of tasks.

Question 10

virtual machines (VMs)

Answer 10

an application that acts like a completely different physical computer

Question 11

Social engineering

Answer 11

The act of deceiving an individual into revealing sensitive information, obtaining unauthorized access, or committing fraud by gaining confidence and trust.

Question 12

Phishing attack:

Answer 12

A technique for attempting to acquire sensitive data, such as credit card numbers, usernames, or passwords, through fraudulent solicitation (e.g., email). The perpetrator pretends to be a reputable business or person.

Question 13

Malware

Answer 13

Hardware, software, or firmware meant to perform an unauthorized process that will compromise the confidentiality, integrity, or availability of a system (e.g., a virus, worm, Trojan horse, or other code-based entity that infects a host).

Question 14

Man-in-middle attack (MitM)

Answer 14

An attack where the adversary positions themself between the user and the system so that they can intercept and alter data traveling between them.

Question 15

Packet sniffer

Answer 15

Software that monitors network traffic on wired or wireless networks and captures packets. Packet sniffers are used by network managers to monitor and analyze traffic, but hackers also use them.

Question 16

Brute force attack

Answer 16

An attack that involves trying all possible authentication combinations to find a match.

Question 17

Code injection

Answer 17

Type of attack that injects code that is then interpreted and executed by the target application.

Question 18

Keylogger

Answer 18

A program designed to record which keys are pressed on your computer keyboard. It can obtain passwords or encryption keys and use these to bypass security measures.