12.2 Cats Of Network Attacks

Question 1

Confidentiality attacks attempts to make confidential data viewable by an attacker, what are some methods?

Answer 1

Packet capture, ping sweep and port scan, dumpster diving, electromagnetic interference interception, wiretapping, man-in-the-middle, social engineering, sending info over overt channels, sending info over covert channels, malware, FTP bounce, phishing.

Question 2

Integrity attacks attempt to alter data, what are some examples of integrity attacks?

Answer 2

Salami Attack, data diddling, trust relationship exploitation, password attack.

Question 3

7 Types of Password Attacks:

Answer 3

Trojan horse, packet capture, keylogger, brute force, dictionary attack, bonnet, hijacking a session.

Question 4

Availability attack methods:

Answer 4

Logic Bomb, Wireless attacks, Denial of Service, Distributed Denial of Service, TCP SYN Flood, Buffer OverFlow, ICMP Attack’s, Electrical disturbances, Attacks on a System’s Physical Environment.

Question 5

4 examples of Wireless attacks:

Answer 5

Rogue Access Point, Evil Twin, War Driving, Deauthentication.

Question 6

Two Categories of DoS Attacks:

Answer 6

Reflective, amplified.

Question 7

What are two variants of ICMP DoS Attacks?

Answer 7

Ping of Death, Smurf attack

Question 8

6 Electrical disturbances:

Answer 8

Power Spikes, Electrical Surges, Power Fault, Blackout, Power Sag, Brownout

Question 9

3 Environment factors that could be manipulated by an attacker:

Answer 9

Temperature, humidity, gas

Question 10

A business should have a _______ and _______ plan in place so that, in the event of any type of downtime (due to an attack or natural disaster), the company can be back up and running to maintain its business

Answer 10

Disaster recovery, business continuity