Chapter 1.2 - Attack Types

Question 1

Malware

Answer 1

Malicious software used to intend harm and gather information

Question 2

Ransomware

Answer 2

Taking away data and requiring victim to pay to get it back

Question 3

Trojans

Answer 3

Software that pretends to be something else to conquer your computer

Question 4

Worms

Answer 4

Malware that self-replicates itself
Does NOT need to be executed by the user

Question 5

Potentially Unwanted Programs (PUPs)

Answer 5

Usually downloaded by trojans
Software that a user may perceive as unwanted or unnecessary

Question 6

File less Virus

Answer 6

A stealth attack operated in memory
Avoids anti-virus detection and is never installed in a file or application

Question 7

Command and Control

Answer 7

Responsible for sending out commands to bots

Question 8

Bots (Robots)

Answer 8

A type of software application or script that performs automated tasks on command

Question 9

Cryptomalware

Answer 9

Newer generation of ransomware
Uses cryptography to encrypt victim information and sends the victim the key to decrypt if the victim sends them cryptocurrency

Question 10

Logic Bombs

Answer 10

Waits for a predefined moment before attack is executed
Example: time, date, event

Question 11

Keyloggers

Answer 11

A form of malware or hardware that keeps track of and records your keystrokes as you type

Question 12

Remote Access Trojan (RATs)

Answer 12

Installed as a backdoor
Malware use to gain complete control of operating system

Question 13

Rootkit

Answer 13

Modifies files in the foundational building blocks of the operating system (the core)

Question 14

Backdoor

Answer 14

A new way to get into system with out going through front door and as much security
Placed on system through malware

Question 15

Virus

Answer 15

Malware that can reproduce itself
Executed by user when a program is run
Examples: program, boot sector, script, macro viruses

Question 16

Adware

Answer 16

Pop-ups that can cause performance issues on your device

Question 17

Spyware

Answer 17

Malware that spies on you and everything you do

Question 18

Botnets

Answer 18

A group of bots working together
DDoS

Question 19

Spraying Attack

Answer 19

Attacking an account with the top three (or more) passwords
Move on if they do not work so there are no lockouts, alarms, or alerts

Question 20

Dictionary Attack

Answer 20

Using a dictionary to find common words or wordlists

Question 21

Brute Force Attack

Answer 21

Trying every possible password combination until the hash is met

Question 22

Brute Force Attack - Online

Answer 22

Keep trying the login process
Very slow
Might lockout after a certain amount of attempts

Question 23

Brute Force Attack - Offline

Answer 23

Brute forcing the hash
Get a list of users and hashes
Calculate a password hash, compare it to the stored hash

Question 24

Rainbow Table

Answer 24

Pre-built/ calculated set of hashes
Increases speed

Question 25

Plaintext/ Unencrypted

Answer 25

Storing passwords in the “clear”
There is no encryption and you can read the stored password

Question 26

Malicious Universal Serial Bus (USB) Cable

Answer 26

Looks like a normal USB cable but has additional electronics inside
Human Interface Device (HID)
Downloads and installs malicious software

Question 27

Malicious Flash Drive

Answer 27

Looks like a normal flash drive but can cause damage
Load malware documents, boot device, ethernet adapter

Question 28

Card Cloning

Answer 28

Get card details from a skimmer
Create a duplicate of a card

Question 29

Skimming

Answer 29

Stealing credit card information during a normal transaction

Question 30

Tainted Training Data for Machine Learning (ML)

Answer 30

Attackers sending modified training data that causes AI to behave incorrectly

Question 31

Security of Machine Learning Algorithms

Answer 31

Check the training data
Retrain with new data
Train the AI with possible poisoning

Question 32

Evasion Attacks

Answer 32

Used to trick the AI into giving off confidential information

Question 33

Supply Chain Attacks

Answer 33

Attackers can affect the supply chain by infecting different parts without suspicion
One exploit can infect the entire chain

Question 34

Birthday Attack

Answer 34

Finding a hash collision through the effect of chance

Question 35

Collision Attack

Answer 35

Finding two inputs producing the same hash value

Question 36

Downgrade Attack

Answer 36

Having a system downgrade their encryption making it easy to exploit
Could use an on-path attack