Common Security Threats

Question 1

Which of the following is not a motivation of malicious actors?

Answer 1

Bug bounty awards

Question 2

What is considered a type of DDoS attack?

Answer 2

Directed, Reflected, Geopolitical

Question 3

Why is UDP the “protocol of choice” for reflected DDoS attacks?

Answer 3

UDP is much more easily spoofed

Question 4

What is the main leverage in social engineering?

Answer 4

Human nature

Question 5

What are some forms of social engineering?

Answer 5

Phone scams, Phishing, Malvertising

Question 6

Name some forms that are valid defenses against social engineering?

Answer 6

Two-factor authentication, Information classification, Physical security

Question 7

Which tool provides the most granular information to help in the identification of malware?

Answer 7

Packet capture

Question 8

NetFlow provides which of the following?

Answer 8

Information on the type of traffic traversing the network

Question 9

What can be used for identification of malware on the network?

Answer 9

NetFlow, IPS events, Packet captures

Question 10

Which type of data is often attractive to malicious actors?

Answer 10

Personally identifiable information (PII), Credit card data, Intellectual property (IP)