1.2

Question 1

Malware

Answer 1

wide range of software that has malicious intent

Question 2

Ransomware

Answer 2

attackers take control of computers or networks locking out it’s users

Question 3

Cryptomalware

Answer 3

attackers encrypt the data on computers within a network to prevent access

Question 4

Ransomware and cryptoware attackers both demand

Answer 4

a ransom to be paid

Question 5

Trojans

Answer 5

looks like something beneficial, but it’s actually something malicious

Question 6

Worms

Answer 6

self-replicating malware that travels throughout a network w/o the application of a host

Question 7

PUP (potentially unwanted programs)

Answer 7

programs that a user may not want, even if a user consented to download it.

Question 8

Fileless virus

Answer 8

type of malicious software that runs in memory

Question 9

Command and Control

Answer 9

used to control infected computers

Question 10

Bots

Answer 10

software robots

Question 11

Logic Bombs

Answer 11

left by an old employee or someone who has a grudge against an organization

Question 12

Spyware

Answer 12

software installed on user’s systems w/o their awareness or consent

Question 13

Keyloggers

Answer 13

attempt to capture a user’s keystrokes

Question 14

RAT (remote access trojan)

Answer 14

malware that allows attackers to control systems from remote locations

Question 15

Rootkit

Answer 15

group of programs that hides the fact that the system has been infected or compromised by malicious code

Question 16

Backdoor

Answer 16

another way of accessing a system and bypass normal authentication methods

Question 17

Password Attacks

Answer 17

attempt to discover, or bypass, passwords used for authentication on systems and files and for different types of files

Question 18

Online Password Attack

Answer 18

attempts to discover a password from an online system

Question 19

Offline Password Attack

Answer 19

attempt to discover passwords from a captured database/packet scan

Question 20

Brute Force Attacks

Answer 20

attempts to guess all possible character combos until username and passwords match

Question 21

Dictionary Attacks

Answer 21

uses dictionary words and attempts every word as the password to see if it works

Question 22

Spraying Attacks

Answer 22

an attacker will brute force logins based on list of usernames w/default passwords on the application

Question 23

Birthday Attacks

Answer 23

an attacker attempts to create a password that produces the same hash value as the user’s actual password

Question 24

Rainbow Table Attacks

Answer 24

type of attack that attempts to discover the password from a hash

Question 25

Salting

Answer 25

method of preventing rainbow table, brute force and dictionary attacks

Question 26

Plaintext/unencrypted Attacks

Answer 26

the attacker has knowledge of the plaintext and the corresponding ciphertext.

Question 27

Malicious Universal/Serial Bus (USB)

Answer 27

cable that has an embedded Wi-Fi controller capable of receiving commands from nearby wireless devices (smartphones)

Question 28

Malicious Flash Drive

Answer 28

one that includes malware configured to infect a computer when the drive is plugged in

Question 29

Card Cloning

Answer 29

making a copy of credit card using data captured from a magnetic strip

Question 30

Credit Card Skimming

Answer 30

capturing credit card data @ the time of sale

Question 31

Adversarial Artificial Intelligence

Answer 31

attempts to fool artificial intelligence (AI) models by supplying it w/deceptive input

Question 32

Tainted Data for Machine Learning (ML)

Answer 32

causes AI and ML systems to give inconsistent results.

Question 33

Supply-Chain Attacks

Answer 33

disruption in the supply-chain. 3rd party risks

Question 34

On-Premises

Answer 34

the organization retains complete control over all the cloud-based resources

Question 35

Off-Premises

Answer 35

CSP (cloud service provider) performs the maintenance, but an organization doesn’t know where the data is stored

Question 36

Collision Attack

Answer 36

when two different inputs creates the same hash value.

Question 37

Downgrade Attacks

Answer 37

forces a system to downgrade its security