2.1 Flashcards
Threat Actor Motivation
underlying reasons that pushes them to attack
Threat Actor Intent
Specific goal or objective of a threat actor to achieve in their attack
Espionage
spying on individuals, orgs or nations to gather sensitive or classified information
Script Kiddie
lowest skilled threat actors, often use pre-made scripts often use DDOs attacks. Usually opportunistic
Hactivist
hacker plus activist
What are common techniques hacktivists use?
website defacement, DDoS, Doxing(releasing private information about an org or individual)
What most often motivates organized crime groups and what are they generally not motivated bt?
Financial gain
Not motivated by political or ideological beliefs
Nation State Actor
a group or individuals sponsored by a government to conduct cyber attacks against other nations, orgs or individuals
False Flag Attack
the threat actor makes it seem like the attack came from some other group to mislead investigators
APT
Advanced persistent threat
used synonymously with nation state threat actors since they have long term persistence and stealth
it is a prolonged and targeted cyber attack where the threat actor gains access to a network and remains undetected while they steal data or monitor the network
What are nation state threat actors motivated by?
strategic objectives
Insider Threat
originates from inside org.
Can be data theft, misuse of access, and sabotage
What are motivators of internal threat actors?
some innocently are unaware of security best practices
revenge
financial gain
How do you mitigate an insider threat?
zero trust architecture
Shadow IT
Use of IT systems, devices, software and apps without approval (getting your own second monitor, keybord etc)
Employees are trying to make their lives easier
