Common Acronyms

Question 1

What does the following stand for?

TTPs

Answer 1

Tactics, Techniques, Procedures

Describes the behavior of a threat actor and structured framework of executing a cyberattack.

Question 2

What does the following stand for?

CIA

CIA triad

Answer 2

Confidentiality, Integrity, and Availability

Fundamental Module to describe network security

Confidentiality - Only authorized individuals/systems can view sensitive/classified information. (Possible solution - Encryption)

Integrity - Ensures that the data has not been modified. (Possible solution - File hashes)

Availability - Ensures the network is readily available to connect users/systems to systems/data. (Possible solution - Fail-overpan(s))

Question 3

What does the following stand for?

IoC

Answer 3

Indicators of Compromise

An Indicator of Compromise (IoC) is a piece of digital forensics that suggests that an endpoint or network may have been breached. Just as with physical evidence, these digital clues help information security professionals identify malicious activity or security threats, such as data breaches, insider threats or malware attacks.

Question 4

What does the following stand for?

CSIRT

Answer 4

Computer Security Incident Response Team

A computer security incident response team, or CSIRT, is a group of IT professionals that provides an organization with services and support surrounding the assessment, management and prevention of cybersecurity -related emergencies, as well as coordination of incident response efforts.

Question 5

What does the following stand for?

SOC

Answer 5

Security Operations Center

A SOC is a centralized function or team responsible for improving an organization’s cybersecurity posture and preventing, detecting, and responding to threats.

Question 6

What does the following stand for?

RAT

Answer 6

Remote Access Trojan

Type of malware that allows hackers to monitor and control computers/networks