Chap_1-vocab.

Question 1

attackers exploit?

Answer 1

type of attack used by the attacker

Question 2

traditional attackers motive?

Answer 2

for a sense of power, show off skills and petty crime

Question 3

what is ip address spoofing?

Answer 3

used to hide the ip address of the attacker. false source ip in exploit packets - the attacker can’t receive replies.

Question 4

chain of attack computer?

Answer 4

exploit packets contain the ip address of the last pc that the attack came from. a chain of computers helps hide the original attack computers source ip address by masking it with each computer the signal travels through (like several proxies).

Question 5

what is ip address scanning?

Answer 5

an attacker scans the ip address block that the company/ victim owns. then the victim devices responds to ICMP requests (echo and reply msgs) telling the Attacker which ip addresses are active. then the next step tkes place.

Question 6

piggybacking is what?

Answer 6

following someone through a secure door

Question 7

shoulder surfing?

Answer 7

reading pin code over someones shoulder

Question 8

pretexting is what?

Answer 8

when an attacker calls or communicates with a victim and uses social engineering, pretending to be a customer that needs their password or secure document. gets private info.

Question 9

DOS is what?

Answer 9

denial of service attack: flood of messages are sent from an attacker to a victim causing the victim server to deny access to legitimate customers or flat out crashes. each server has a limited amount of resources to supply to connecting devices.

Question 10

DDOS is what?

Answer 10

distributed denial of service attack.: this is a denial of service attack that is used by a botnet (group of pre-hacked computers under the control of the hacker) to send connection requests to a victim computer. this causes the computer/ server to crash or denies customers of a connection while providing cover for the attacker.

Question 11

hacker scrips are what/?

Answer 11

programs created by elite hackers to run their hacking techniques to make their hacking easier to do. these programs can be sold or made available to inexperienced user called script kiddies.

Question 12

script kiddie

Answer 12

a novice hacker that uses pre-made hacking software to hack with.

Question 13

trans shippers?

Answer 13

people hired to accept packages in the us and then ship them internationally. these packages are bought by criminals that can’t ship internationally and use credit card info that is stolen to get the merchandise.

Question 14

what is click fraud?

Answer 14

program clicks on an ad repeatedly, generating income for the hosting website.

Question 15

threat environment?

Answer 15

the types of attackers and attacks companies face

Question 16

CIA?

Answer 16

Confidentiality, Integrity and Accessibility

Question 17

confidentiality?

Answer 17

people are not able to read sensitive information while it is on a computer or while in transit over the network.

Question 18

integrity?

Answer 18

attackers can not change/ destroy information if they do then the receiver is able to detect it or recover deleted data.

Question 19

compromises?

Answer 19

successful attacks (incidents/ breaches in the network)

Question 20

counter measures?

Answer 20

tools used to treat attacks, safeguard protections and controls used by IT to reduce/ stop attacks. Preventative, detective and corrective.

Question 21

internet abuse?

Answer 21

company policies are violated: porn downloads or excessive usage of internet.