Chapter 5 Threat Actors, Vectors, and Intelligence Sources Flashcards
What is an Advanced Persistent Threat (APT)?
An APT attack is characterized by using toolkits to achieve a presence on a target network and then, instead of just moving to steal information, focusing on maintain a presence on the target network
What is an Insider threat?
Employees who have access to internal networks that choose to wreak havoc on their employers systems
What are State Actors?
Employed by governments to compromise or gain access to the intelligence data of targeted governments
What are Hacktivists?
When hackers work together for a collective effort, typically on behalf of some cause
What is a Script kiddie?
Individuals who do not have the technical expertise to develop scripts or discover new vulnerabilities in software, but have enough know how to download and run scripts
What is a criminal syndicate?
Criminal groups that work together in order to steal large sums of money via the internet
What is Shadow IT?
Parts of an organization that perform their own IT functions
What are Vectors?
The various methods that an attacker can use to get in
What are seven common attack vectors?
Direct access, Wireless, E-mail, Supply chain, Social Media, Removeable media, and cloud
What is Threat Intelligence?
The gathering of information from a variety of sources
What is Open Source Intelligence (OSINT)?
Intel data collected from public sources
What is automated indicator sharing?
A collection of information such as malicious email addresses, IP addresses, and other bad material reported by private companies to the DHS via its Automated Indicator Sharing (AIS)
What is InfraGard?
A vetted access collection of security info reported to the FBI
What is Internet Storm Center (ISC)?
A distributed sensor network that processes over 20 million intrusion detection log entries per day and generated alerts concerning security threats
What is a VirusTotal?
Uses feeds from a myriad of antivirus scanners to maintain a signature database of malware and related information