Chapter 2

Question 1

What are the attributes of threat actors?

Answer 1

1. internal/external
2. sophistication/capability
3. resources/funding.

Question 2

What is the difference between internal and external threat actors?

Answer 2

Internal actors have legitimate access; external actors must break into a system without permission.

Question 3

What does sophistication/capability refer to?

Answer 3

It describes the threat actor’s ability to use advanced tools and techniques

Question 4

What does resources/funding mean in relation to threat actors?

Answer 4

It refers to the financial/logistical support needed for tools

Question 5

What are common motivations of threat actors?

Answer 5

• service disruption
• data exfiltration
• disinformation
• revenge
• financial gain
• political agendas.

Question 6

What are the three primary strategies used by threat actors?

Answer 6

The three strategies are service disruption

Question 7

How do threat actor strategies impact the CIA triad?

Answer 7

Data exfiltration compromises confidentiality

Question 8

What is the goal of service disruption?

Answer 8

To prevent an organization from working normally

Question 9

What is data exfiltration?

Answer 9

It is the unauthorized copying or transfer of valuable information from a system or network.

Question 10

What is disinformation?

Answer 10

Disinformation involves falsifying trusted resources like websites or spreading false information via social media.

Question 11

What are chaotic motivations?

Answer 11

Early attacks aimed to cause chaos for fun or credit; modern chaos-driven attacks often further political or revenge motives.

Question 12

What are financial motivations?

Answer 12

Threat actors commit blackmail

Question 13

What is blackmail in cybersecurity?

Answer 13

Blackmail involves demanding payment to prevent the release of stolen or falsified information.

Question 14

What is extortion?

Answer 14

Extortion involves demanding payment to stop or prevent an attack

Question 15

What is fraud in cybersecurity?

Answer 15

Fraud involves falsifying records

Question 16

What are political motivations for threat actors?

Answer 16

These include whistleblowing

Question 17

What is cyber espionage?

Answer 17

Cyber espionage involves stealing secrets for political

Question 18

What is a whistleblower?

Answer 18

A whistleblower releases confidential information due to ethical concerns

Question 19

What are the main types of threat actors?

Answer 19

Hackers

Question 20

What is a hacker?

Answer 20

A hacker is an individual skilled in gaining unauthorized access to systems; they can be unauthorized (malicious) or authorized (ethical).

Question 21

What is an unskilled attacker?

Answer 21

An unskilled attacker uses hacking tools without fully understanding them

Question 22

Who are hacker teams and hacktivists?

Answer 22

Groups like Anonymous or WikiLeaks use cyberattacks to promote political or social agendas.

Question 23

Who are nation-state actors?

Answer 23

Government-sponsored groups that use cyberattacks for military

Question 24

What is an advanced persistent threat (APT)?

Answer 24

An APT is a long-term

Question 25

How do nation-state actors use false flags?

Answer 25

They pose as independent groups or hacktivists to disguise their involvement in cyberattacks.

Question 26

What role does organized crime play in cyber threats?

Answer 26

Organized crime commits financial fraud

Question 27

How can competitors pose a cyber threat?

Answer 27

Rogue businesses may perform espionage

Question 28

What is an internal threat actor?

Answer 28

An internal threat actor is someone within an organization (e.g.

Question 29

What motivates internal threat actors?

Answer 29

Revenge

Question 30

What is shadow IT?

Answer 30

Shadow IT refers to unauthorized hardware or software introduced into an organization

Question 31

What is an unintentional insider threat?

Answer 31

It involves mistakes

Question 32

What is the CIA triad?

Answer 32

The CIA triad refers to the principles of Confidentiality