2.4 – Threats Flashcards
- DOS = Denial of Service
o Sends a large number of packets in hopes of overwhelming a system so it can no longer provide its service
o One-on-one attack
Ping of Death
when large fragmented ICMP is used to overwhelm a host
- DDOS = Distributed Denial of Service
o Like DOS except there are many attackers & 1 victim
Traffic Spike
sign that network undergoing DDOS
Botnet
network of victim computers under control of attacker
—Usually made of malware victims that are unaware of attack
Coordinated Attack
a command & control server is used to command a Botnet to coordinate the DDOS attack
Friendly / Unintentional DOS
–Can bring down service by sharing link
–Link goes viral & server can’t handle the load
- Zero-Day Attack [worst fear]
o Vulnerability being exploited out in the wild but no known fix
- Spoofing
o Techniques an attacker uses to hide identity
- ARP Spoofing
Attacker spoofs the IP to MAC mapping usually to perform a man-in-the-middle attack [on-path attacks]
- IP Spoofing
Attackers impersonate a device by IP address
- Email Spoofing
Attackers send emails using address targets trust
- DNS Poisoning
o False DNS info [change domain info]
- Brute Force Attacks
o Attempt to defeat password with automated random guessing
o Long & complex passwords better
o Prevented by limiting number of guesses
o Can always succeed given enough time
- Dictionary Attacks
o Use a list of known passwords to attack
o NOT using common words / phrases better
o Avoid reusing passwords to limit effectiveness
