2.1

Question 1

What is the difference between the intent of a threat actor and their motivation?

Answer 1

The intent is the specific objective or goal the threat actor aims to achieve, while the motivation is the underlying reason or driving force behind the attack.

Question 2

What is a threat actor’s intent?

Answer 2

A threat actor’s intent is the specific objective or goal they aim to achieve through their attack.

Question 3

What is a threat actor’s motivation?

Answer 3

A threat actor’s motivation refers to the underlying reasons or driving forces that push them to carry out the attack.

Question 4

What is data exfiltration?

Answer 4

Data exfiltration is the unauthorized transfer of data from a computer.

Question 5

What is the motivation of financial gain for threat actors?

Answer 5

Financial gain can be achieved through various means, such as ransomware attacks or banking trojans that allow stealing financial information to gain unauthorized access to bank accounts.

Question 6

What is blackmail in the context of threat actors?

Answer 6

Blackmail occurs when an attacker obtains sensitive or compromising information and threatens to release it unless certain demands are met.

Question 7

What is the motivation behind service disruption by threat actors?

Answer 7

Some threat actors aim to disrupt services to cause chaos, make a political statement, or demand a ransom.

Question 8

What is hacktivism?

Answer 8

Hacktivism is when attacks are conducted due to the philosophical or political beliefs of the attackers.

Question 9

What motivates a hacktivist?

Answer 9

Hacktivists are motivated by their philosophical or political beliefs, often seeking to make a statement or influence change.

Question 10

What is the motivation behind ethical hackers?

Answer 10

Ethical hackers, also known as authorized hackers, are motivated by a desire to improve security.

Question 11

What motivates a threat actor seeking revenge?

Answer 11

A threat actor motivated by revenge seeks to target an entity they believe has wronged them in some way.

Question 12

What is the motivation behind disruption or chaos?

Answer 12

Threat actors motivated by disruption or chaos create and spread malware or launch cyberattacks to cause disorder, such as targeting critical infrastructure in a populated city.

Question 13

What is espionage as a motivation for threat actors?

Answer 13

Espionage involves spying on individuals, organizations, or nations to gather sensitive or classified information.

Question 14

How can war motivate threat actors?

Answer 14

Cyber warfare can be used to disrupt a country’s infrastructure, compromise national security, and cause economic damage.

Question 15

What are the two most basic attributes of a threat actor?

Answer 15

The two most basic attributes of a threat actor are internal threat actors and external threat actors.

Question 16

Who are internal threat actors?

Answer 16

Internal threat actors are individuals or entities within an organization who pose a threat to its security.

Question 17

Who are external threat actors?

Answer 17

External threat actors are individuals or groups outside an organization who attempt to breach its cybersecurity defenses.

Question 18

What resources and funding are available to a specific threat actor?

Answer 18

A threat actor’s resources include the tools, skills, and personnel at their disposal.

Question 19

What does the level of sophistication and capability refer to in a threat actor?

Answer 19

It refers to their technical skill, the complexity of the tools and techniques they use, and their ability to evade detection and countermeasures.

Question 20

Who are “script kiddies” in cybersecurity?

Answer 20

Script kiddies are individuals with limited technical knowledge who use pre-made software or scripts to exploit computer systems and networks.

Question 21

What distinguishes advanced threat actors like nation-state actors and Advanced Persistent Threats (APTs)?

Answer 21

These advanced threat actors have high levels of sophistication and capabilities, with advanced technical skills, sophisticated tools, and techniques.

Question 22

Who is considered an unskilled attacker or “script kiddie”?

Answer 22

A script kiddie is an individual who lacks the technical knowledge to develop their own hacking tools or exploits and relies on pre-made scripts and programs.

Question 23

How do unskilled attackers typically cause damage?

Answer 23

Unskilled attackers can cause damage by launching attacks such as DDoS attacks, where they simply enter the target’s IP address and click a button to initiate the attack.

Question 24

Who are hacktivists?

Answer 24

Hacktivists are individuals or groups that use their technical skills to promote a cause or drive social change rather than for personal gain.

Question 25

What is hacktivism?

Answer 25

Hacktivism refers to activities where hacking and other cyber techniques are used to promote or advance a political or social cause.

Question 26

What techniques do hacktivists use to accomplish their objectives?

Answer 26

Hacktivists use a wide range of techniques, including website defacement, DDoS attacks, doxing, and leaking sensitive data.

Question 27

What is website defacement in the context of hacktivism?

Answer 27

Website defacement is a form of electronic graffiti, often treated as an act of vandalism, where a website is altered to promote a cause or message.

Question 28

What is a Distributed Denial of Service (DDoS) attack?

Answer 28

A DDoS attack attempts to overwhelm the victim’s systems or networks, making them inaccessible to legitimate users.

Question 29

What is doxing in the context of hacktivism?

Answer 29

Doxing involves the public release of private information about an individual or organization, often to harm or embarrass them.

Question 30

What is the leaking of sensitive data in hacktivism?

Answer 30

Leaking sensitive data refers to releasing confidential or private data to the public via the internet.

Question 31

What motivates hacktivists?

Answer 31

Hacktivists are primarily motivated by ideological beliefs rather than financial gain.

Question 32

What is the most well-known hacktivist group?

Answer 32

The most well-known hacktivist group is “Anonymous,” a loosely affiliated collective that targets organizations they perceive as unethical or against the public interest.