1.2

Question 1

Malware types

Answer 1

To gather keystrokes,

to control com and install into a bot and have that com to join the bad bot net,

For advertisment

For random ware

Question 2

Virus

Answer 2

Malware can reproduce but needs user to start process

Program virus launches by clicking
Boot sector virus, starts when start OS
Script virus
Macro virus in apps
Fileless virus, stealth attacks and can evade scanners, written to memory not Hd, comes from clicking links

Question 3

Worms

Answer 3

No user input needed. Takes advantage of vulnerability or network connectivity. Can spread quickly, can be stopped with firewall to stop communication

Question 4

Ransomware crypto-malware

Answer 4

Taking valuable personal or corporate data, restricting that data and require some payment for unlocks

Crypto malware encrypts info that requires a key for recovery

How to protect?
Backups on a offline location
Updates full security

Question 5

Trojans and rats

Answer 5

Fake software looking like the real software. Once installs makes back doors.

Question 6

Potentially unwanted programs (pup)

Answer 6

Undesired software installed with other software such as a back up utility, browser hijacker’s or unwanted bookmark bar

Question 7

Remote access Trojan

Answer 7

Entering through back door, to gain complete control remotely and control anything’s, collect logs, copy files, run more malware and programs

Question 8

Rootkit

Answer 8

Modifies in kernel of operation system, the building blocks the foundations for the OS. combo rootkit and malware
To both impossible delete and then take important info

Secure boot protects this

Question 9

AdwareSpyware

Answer 9

Adware Com becomes one big ad banner, slowing computer, can be installed with other
Programs.

Spyware taking capture browsing habits, key logs

Question 10

Bots and botnets

Answer 10

Infects OS through Trojan or PUp and connects to other computers via a command and control server. Then the whole system working together can create a DDos, proxies for spam

Question 11

Logic. Bomb

Answer 11

Usually someone with a grudge or ex emoloyee like a time bomb that
Triggers at a certain time or user
Event. Difficult to identify.

Question 12

Password attacks

Answer 12

An app that stores pw and gets hacked.

Best to hash

Example a spraying attack such as using common passwords for a quick check

Question 13

Brute force attack

Answer 13

Uses all combinations of password to find the match. Works with username and password hashes as well. They will create their own hash to determine if it matches the hash of the hash they hacked

Question 14

Dictionary attack

Answer 14

Uses common words and checks passwords against possible combos with password letter substitutions as well.

Question 15

Rainbow table

Answer 15

Uses a lot of hashes from previously to cross check any existing known hashes

Can add salt to hashes to make similar
Passwords with diff hashes

Question 16

Physical attacks

Answer 16

Usb cable with HID (fake keyboard) once connected cable takes over and takes over com

Malicious flash drive with a hidden HID can even act as an Ethernet adapter for networking

Question 17

Skimming

Answer 17

Stealing credit card info as we use it with skipping strip and possible pin button press

Can use card cloning and cvc but not the chips

Question 18

Supply chain attacks

Answer 18

Manufacturing of raw materials suppliers, customers etc.

Question 19

Cloud based attacks

Answer 19

Cloud is all centralized with full control. Has large scale and easy To update.

Question 20

Cryptographic attack examples

Answer 20

Using the encrypted data to decrypt as it goes From point a to point b

Ex birthday attack, working as a hash collision, where to of the same hashes to determine if a collision exists to determine the key

Ex downgrade attack where the system downgrades to an easy to break encryption