Chapter 6

Question 1

Open-Source Intelligence

Answer 1

A method of gathering data using public sources, such as social media sites and news outlets

Question 2

Script Kiddie

Answer 2

An attacker with little expertise or sophistication

Script kiddies use existing scripts to launch attacks

Question 3

Hacktivist

Answer 3

An attacker who launches attacks as part of an activist movement or to further a cause

Question 4

Insider

Answer 4

An attacker who launches attacks from within an organization, typically as an employee

Question 5

APT

Answer 5

Advanced persistent threat is a group that has both the capability and intent to launch sophisticated and targeted attacks

Question 6

DoS

Answer 6

Denial-of-service is an attack from a single source that attempts to disrupt the services provided by the attacked system

Compare with DDoS

Question 7

DDoS

Answer 7

Distributed denial -of-service is an attack on a system launched from multiple source intended to make a computer’s resources or services unavailable to users

DDoS attacks typically include sustained, abnormally high network traffic

Compare with DoS

Question 8

Resource Exhaustion

Answer 8

The malicious result of many DoS and DDoS attacks

The attack overloads a computer’s resources (such as the processor and memory), resulting in service interruption

Question 9

Virus

Answer 9

Malicious code that attaches itself to a host application

The host application must be executed to run, and the malicious code executes when the host application is executed

Question 10

Worm

Answer 10

Self-replacing malware that travels through a network

Worms do not need user interaction to execute

Question 11

Logic Bomb

Answer 11

A type of malware that executes in response to an event

The event might be a specific date or time, or a user action such as when a user launches a specific program

Question 12

Malware

Answer 12

Malicious software

It includes a wide range of software that has malicious intent, such as viruses, worms, ransomware, rootkits, logic bombs, and more

Question 13

Backdoor

Answer 13

An alternate method of accessing a system

Malware often adds a backdoor into a system after it infects it

Question 14

Trojan

Answer 14

Malware also known as a Trojan horse

A Trojan often looks useful, but is malicious

Question 15

RAT

Answer 15

Remote access Trojan

Malware that allows an attacker to take control of a system form a remote location

Question 16

Ransomware

Answer 16

A type of malware used to extort money from individuals and organization

Ransomware typically encrypts the user’s data and demands a ransom before decryption the data

Question 17

Crypto-Malware

Answer 17

A type of ransomware that encrypt the user’s data

Question 18

Keylogger

Answer 18

Software or hardware used to capture a user’s keystrokes

Keystrokes are stored in a file and can be manually retrieved or automatically sent to an attacker

Question 19

Spyware

Answer 19

Software installed on users’ systems without their awareness or consent

Its purpose is often to monitor the user’s computer and the user’s activity

Question 20

Bots

Answer 20

Software robots that function automatically

A botnet is a group of computers that are joined together

Attackers often use malware to join computers to a botnet, and then use the botnet to launch attacks

Question 21

Rootkit

Answer 21

A type of malware that has system-level access to a computer

Rootkits are often able to hide themselves from users and antivirus software

Question 22

Social Engineering

Answer 22

The practice of using social tactics to gain information

Social engineers attempt to gain information from people, or get people to do things they wouldn’t normally do

Question 23

Shoulder Surfing

Answer 23

The practice of looking over someone’s shoulder to obtain information, such as on a computer screen

A screen filter placed over a monitor helps reduce the success of shoulder surfing

Question 24

Screen Filter

Answer 24

A physical security device used to reduce visibility of a computer screen

Screen filters help prevent shoulder surfing

Question 25

Hoax

Answer 25

A message, often circulated through email, that tells of impending doom from a virus or other security threat that simply doesn’t exist

Question 26

Tailgating

Answer 26

A social engineering attack where one person follows behind another person without using credentials

Mantraps help prevent tailgating

Question 27

Mantrap

Answer 27

A physical security mechanism designed to control access to a secure area

A mantrap prevents tailgating

Question 28

Dumpster Diving

Answer 28

The practice of searching through trash looking to gain information from discarded documents

Shredding or burning papers helps prevent the success of dumpster diving

Question 29

Watering Hole Attack

Answer 29

An attack method that infects web sites that a group is likely to trust and visit

Question 30

Spam

Answer 30

Unwanted or unsolicited email

Attackers often launch attacks using spam

Question 31

Phishing

Answer 31

The practice of sending email to users with the purpose of tricking them into revealing personal information or clicking on a link

Question 32

Domain Abuse Notice

Answer 32

Filler

Question 33

Spear phishing

Answer 33

A targeted form of phishing

Attackers often launch attacks using spam

Question 34

Whaling

Answer 34

A form of spear phishing that attempts to target high-level executives

When successful, attackers gain confidential company information that they might not be able to get anywhere else

Question 35

Privilege Escalation

Answer 35

The process of gaining elevated rights and permissions

Malware typically uses a variety of techniques to gain elevated privileges

Question 36

Spam Filter on Mail Gateways

Answer 36

Filler

Question 37

Anti-Malware Software on Mail Gateways

Answer 37

Filler

Question 38

All Systems

Answer 38

Filler

Question 39

Boundaries or Firewalls

Answer 39

Filler

Question 40

Antivirus

Answer 40

Software that protects systems from malware

Although it is called antivirus software, it protects against most malware, including viruses, Trojans, worms, and more

Question 41

DEP

Answer 41

Filler

Question 42

Spam Filter

Answer 42

Spam filter is a method of blocking unwanted email

By blocking email, it often blocks malware

Question 43

Zero-Day Vulnerability

Answer 43

A vulnerability or bug that is unknown to trusted sources but can be exploited by attackers

Zero-day attacks take advantage of zero-day vulnerabilities

Question 44

Impersonation

Answer 44

Filler

Question 45

Vishing

Answer 45

Filler