COMPIA+ Flashcards
1102 - Security
What is Scareware?
Malicious software that dupes the user into beleiving that there is a virus on the computer, and they need to download the “Removal Tool” (Whic0h is the actual virus”
What is a phishing attack
A social engineering attack thst pretends to come from a legit source and manipulate the user into giving away their personal information
What are Worms
Malware that can spread to other devices connected to a network and replicate itself, relies on security failures
What is a Virus
Malicious piece of software that can cause damage to software and data can also change system settings or delete files needs a host program to propagate itself.
What is a Trojan
A piece of software that appears legit but can take control of your device, often has process running in the basckground
What is a RAT (Remote Access Trojan)
A form of trojan that allows an attacker to work remotely
What is a DNS Spoofing
A type of social engineering attack that send you the a fake version of a website
Why is a Missing Patch dangerous
When security patches are released it essetially explains the vulnerability that was patched, bad actors can use this to their advantage and revere engineer attacks for devices that havent been updated
What is Cross-Site Scripting attack
Attackers add extra scripts to web applications, once executed and be used for bad purposes.
What is a Cross Site Request Forgery
An attack that forces the user to execute actions unintentionally without their knowledge by using cookies and web application vulnerabilites to their advantage
What is a Rootkit
A rootkit attack is a collection of tools that gives itself acess to admin tool and network
What is a SQL Injection Attack
Malicious SQL Statements are used to manipulate a database which can lead to data leaks, unauthorized acess or even getting full con trol of the database
