Ch 9 Threat & Attack

Question 1

Adware

Answer 1

Software that gathers information to pass on to marketers order that intercepts personal data such as credit card numbers and makes it available to third parties

Question 2

Antivirus software

Answer 2

Stop for that identifies the presence of the virus and is capable of removing or quarantining the virus

Question 3

Armored virus

Answer 3

Virus that is protected in a way that makes disassembling it difficult. The difficult he makes it (Armour) against in a virus programs that have trouble getting to, and understanding, it’s code.

Question 4

ARP spoofing

Answer 4

More commonly known as ARP poisoning, this involves the MAC (media access control) address of the data being fake.

Question 5

Attack

Answer 5

Any on authorized intrusion into the normal operations of the computer or computer network. The attack can be carried out to gain access to the system or any of its resources.

Question 6

Attack surface

Answer 6

The area of an application that is available to users – those who are on the authenticated and, more importantly, those who are not

Question 7

Attack Service reduction (ASR)

Answer 7

Minimizing the possibility of exploitation by reducing the amount of code and letting potential damage.

Question 8

Back door

Answer 8

And opening left in any program application (usually by the developer) that allows additional access to data. Typically, a Docktor he created for debugging purposes and is not documented. Before the product ships, the back doors are closed; when they aren’t closed, security loopholes exist.

Question 9

Bot

Answer 9

And I made it software program (Network robot) that collects information on the web. And it’s malicious form, I bought is compromised computer being controlled remotely.

Question 10

Buffer overflow

Answer 10

What type of denial dash of service – (DOS) attack that occurs when one data is put into a buffer than it can hold, There by overflowing it (as the name implies).

Question 11

Click jacking

Answer 11

Using multiple transparent or opaque layers to Trick user into clicking a button or link on another page when they had intended to click on the top page.

Question 12

Companion virus

Answer 12

A virus that creates a program that runs in the place of an expected program of the same name.

Question 13

Cross – site request forgery (XSRF)

Answer 13

A form of web – beast attack in which on authorized commands are sent from a user that a website trusts .

Question 14

Cross site scripting (XSS)

Answer 14

Running a script routine on a users machine from a website without their permission.

Question 15

Denial of service (dos)

Answer 15

Hey type of attack that prevents any users – even legitimate ones Dash from using a system

Question 16

Dictionary attack

Answer 16

The attack of attempting to crack passwords by testing them against the list to dictionary words with today’s Powell peters, an attacker can come bind kind of money available automated password – cracking utilities with several large dictionaries for Wordlist and crack huge numbers of passwords in a matter of minutes. Any password based on any dictionary word is vulnerable to such an attack

Question 17

Phage virus

Answer 17

A virus that modified and alters other programs and databases.

Question 18

Polymorphic

Answer 18

And attribute of some viruses that allows them to mutate and appear differently each time they crop up. The mutations make it harder for virus scanners to detect (and react) to the viruses.

Question 19

Privilege escalation

Answer 19

The result when a user obtained access to a resource that they wouldn’t normally be able to access. Privilege escalation can be done inadvertently by running a program w set user I’d (suid) or set group id (sgid) permissions or by temporarily becoming another user (via su or sudo in Unix/Linux or runas in windows). It can also be done purposefully by and attacker seeking FULL access.

Question 20

Watering hole attack

Answer 20

Identifying a site that is visited by those whom they are targeting, poisoning that site, and then waiting for the results.

Question 21

Xmas tree attack

Answer 21

And advanced attack that tries to get around detection and send a packet w every single option enabled

Question 22

Macro

Answer 22

May be found in Microsoft products using macro feature

Question 23

Retrovirus

Answer 23

Attacks antivirus software

Question 24

Shim

Answer 24

A small library that is created to intercept api calls transparently.
3 things can occur:
1. Handle the operation itself
2. Change the arguments passed
3. Redirect the request elsewhere

Question 25

5 things to find threats

Answer 25

• Passively testing
• imap
• vulnerability scanner