1.2 Attack Types

Question 1

what is malware?

Answer 1

malicious software

Question 2

what is a virus

Answer 2

A virus is malware that can reproduce itself, but i needs the user to launch

Question 3

what is crypto-malware

Answer 3

malicious software (malware) that is designed to mine cryptocurrencies without the consent of the computer’s owner

Question 4

what is a rootkit

Answer 4

malicious software program designed to provide unauthorized access and control over a computer or computer network

Question 5

what is malware

Answer 5

can reproduce its self
needs you to execute a program
reproduce through a file system or the network

Question 6

Boot sector virus

Answer 6

This is a virus that exists in the boot sector of your storage device, and when you start your computer, the virus itself is launched

Question 7

Macro virus

Answer 7

usually running inside of another application. commonly associated with Microsoft Office apps.

Question 8

fileless virus

Answer 8

virus that never installs itself or saves itself as a file on your file system
never saving itself to the storage drive, then it may be able to evade the antivirus software.
operates solely in the memory of the computer
click a link - run as a Flash file, a Java file or a windows vulnerability in powershell

Question 9

worm

Answer 9

does not need user input and can move from system to system itself

Question 10

RAT

Answer 10

remote access Trojan, or remote administration tool.

Question 11

PUP

Answer 11

Potential unwanted program

Question 12

Password hash

Answer 12

hashing of a password takes the password and represents the password as a string of text information. We call this a message digest. You’ll sometimes hear this referred to as a fingerprint. It’s a cryptographic algorithm that cannot be reversed

Question 13

SHA-256

Answer 13

Password hashing algorithim

Question 14

spraying attack

Answer 14

use some very common passwords and only try a few of them before moving on, inorder not to get locked out.

Question 15

brute force attack

Answer 15

try every combination of letters, numbers, special characters, or anything that could make up a password

Question 16

brute force off line

Answer 16

with a list of username and passwords an off line brute force is used inorder to prevent a lockout

Question 17

dictionary attack,

Answer 17

used to gain unauthorized access, trying a large number of possible passwords or passphrases from a precompiled list of words

Question 18

rainbow table

Answer 18

database that contains a massive number of optimized hashes
challenge: each type of application or operating system may use a different method to create that hash: have different rainbow tables that are specific to that particular application or that particular operating system

Question 19

salt

Answer 19

random data added to the password before it is hashed

there’s is randomness that has been added to every single password

Question 20

machine learning

Answer 20

important during the learning process that all of the data going into the machine learning is legitimate. retrain with new data occasionally and make sure that the machine learning is always up to date. use some of the same techniques that the attackers are using just to make sure that your machine learning process does not become vulnerable.

Question 21

cryptographic attacks

Answer 21

an attempt to compromise the security of a cryptographic system or algorithm by exploiting its vulnerabilities, weaknesses, or limitations

Question 22

Known-Plaintext Attack

Answer 22

the attacker has access to both the plaintext and its corresponding ciphertext. This knowledge is used to deduce the encryption key or algorithm.

Question 23

Chosen-Plaintext Attack

Answer 23

attacker can choose specific plaintexts to be encrypted and observe the corresponding ciphertexts. This attack helps the attacker gather information about the encryption process and potentially recover the key.

Question 24

Chosen-Ciphertext Attack

Answer 24

the attacker can select ciphertexts and obtain their decrypted versions, which can reveal information about the encryption process and potentially lead to key recovery.

Question 25

Side-Channel Attack

Answer 25

does not target the encryption algorithm directly but focuses on information leaked by the physical implementation of the system, such as power consumption, electromagnetic emissions, or timing data.

Question 26

Collision Attack

Answer 26

A collision attack attempts to find two different inputs (e.g., messages) that produce the same hash value in a cryptographic hash function

Question 27

MD5

Answer 27

Message Digest Algorithm version 5

Question 28

downgrade attack

Answer 28

sit-in the middle and influence that conversation, you could have the two sides downgrade to a type of encryption that might be very easy to break