Cyberattacks And Cybersecurity - Key Terms

Question 1

A network attack in which an intruder gains access to a network and stays there—undetected—with the intention of stealing data over a long period of time (weeks or even months).

Answer 1

Advanced persistent threat (APT)

Question 2

Software that scans for a specific sequence of bytes, known as a virus signature, that indicates the presence of a specific virus.

Answer 2

Antivirus software

Question 3

A sophisticated threat that combines the features of a virus, worm, Trojan horse, and other malicious code into a single payload.

Answer 3

Blended threat

Question 4

A large group of computers, which are controlled from one or more remote locations by hackers, without the knowledge or consent of their owners.

Answer 4

Botnet

Question 5

A business policy that permits, and in some cases, encourages employees to use their own mobile devices (smartphones, tablets, or laptops) to access company computing resources and applications, including email, corporate databases, the corporate intranet, and the Internet.

Answer 5

Bring Your Own Device (BYOD)

Question 6

A risk-based strategy that includes an occupant emergency evacuation plan, a continuity of operations plan, and an incident management plan with an active governance process to minimize the potential impact of any security incident and to ensure business continuity in the event of a cyberattack or some form of disaster.

Answer 6

Business continuity plan

Question 7

Software that generates and grades tests that humans can pass and all but the most sophisticated computer programs cannot.

Answer 7

CAPTCHA (Completely Automated Public Turing Test to Tell Computers and Humans Apart)

Question 8

Refers to confidentiality, integrity, and availability.

Answer 8

CIA security triad

Question 9

A discipline that combines elements of law and computer science to identify, collect, examine, and preserve data from computer systems, networks, and storage devices in a manner that preserves the integrity of the data gathered so that it is admissible as evidence in a court of law.

Answer 9

Computer forensics

Question 10

A law that specifies that it is legal to spam, provided the messages meet a few basic requirements—spammers cannot disguise their identity by using a false return address, the email must include a label specifying that it is an ad or a solicitation, and the email must include a way for recipients to indicate that they do not want future mass mailings.

Answer 10

Controlling the Assault of Non-Solicited Pornography and Marketing (CAN-SPAM) Act

Question 11

The deployment of malware that secretly steals data in the computer systems of organizations, such as government agencies, military contractors, political organizations, and manufacturing firms.

Answer 11

Cyberespionage

Question 12

The intimidation of government or civilian population by using information technology to disable critical national infrastructure (e.g., energy, transportation, financial, law enforcement, and emergency response) to achieve political, religious, or ideological goals.

Answer 12

Cyberterrorism

Question 13

A large federal agency with more than 240,000 employees and a budget of almost $65 billion whose goal is to provide for a “safer, more secure America, which is resilient against terrorism and other potential threats.”

Answer 13

Department of Homeland Security (DHS)

Question 14

A documented process for recovering an organization’s business information system assets—including hardware, software, data, networks, and facilities—in the event of a disaster.

Answer 14

Disaster recovery plan

Question 15

An attack in which a malicious hacker takes over computers via the Internet and causes them to flood a target site with demands for data and other small tasks.

Answer 15

Distributed denial-of-service (DDoS) attack

Question 16

The process of scrambling messages or data in such a way that only authorized parties can read it.

Answer 16

Encryption

Question 17

A value that is applied (using an algorithm) to a set of unencrypted text (plaintext) to produce encrypted text that appears as a series of seemingly random characters (ciphertext) that is unreadable by those without the encryption key needed to decipher it.

Answer 17

Encryption key

Question 18

An attack on an information system that takes advantage of a particular system vulnerability.

Answer 18

Exploit

Question 19

Software and/or hardware that monitors system and network resources and activities and notifies network security personnel when it detects network traffic that attempts to circumvent the security measures of a networked computer environment.

Answer 19

Intrusion detection system (IDS)

Question 20

A type of Trojan horse malware that executes when it is triggered by a specific event or at a predetermined time.

Answer 20

Logic bomb

Question 21

A company that monitors, manages, and maintains computer and network security for other organizations.

Answer 21

Managed security service provider (MSSP)

Question 22

Business processes that are more pivotal to continued operations and goal attainment than others.

Answer 22

Mission-critical process

Question 23

A hardware- or software-based network security system that is able to detect and block sophisticated attacks by filtering network traffic dependent on the packet contents.

Answer 23

Next-generation firewall (NGFW)

Question 24

The act of fraudulently using email to try to get the recipient to reveal personal data.

Answer 24

Phishing

Question 25

Malware that stops you from using your computer or accessing your data until you meet certain demands, such as paying a ransom or sending photos to the attacker.

Answer 25

Ransomware

Question 26

A concept in computer security that recognizes that managers must use their judgment to ensure that the cost of control does not exceed the system’s benefits or the risks involved.

Answer 26

Reasonable assurance

Question 27

The process of assessing security-related risks to an organization’s computers and networks from both internal and external threats.

Answer 27

Risk assessment

Question 28

A set of programs that enables its user to gain administrator-level access to a computer without the end user’s consent or knowledge.

Answer 28

Rootkit

Question 29

An evaluation of whether an organization has a well-considered security policy in place and if it is being followed.

Answer 29

Security audit

Question 30

An organization’s security requirements, as well as the controls and sanctions needed to meet those requirements.

Answer 30

Security policy

Question 31

Another variation of phishing that involves the use of texting.

Answer 31

Smishing

Question 32

The use of email systems to send unsolicited email to large numbers of people.

Answer 32

Spam

Question 33

A variation of phishing in which the phisher sends fraudulent emails to a certain organization’s employees.

Answer 33

Spear phishing

Question 34

A communications protocol or system of rules that ensures privacy between communicating applications and their users on the Internet.

Answer 34

Transport Layer Security (TLS)

Question 35

A seemingly harmless program in which malicious code is hidden.

Answer 35

Trojan horse

Question 36

Established in 2003 to protect the nation’s Internet infrastructure against cyberattacks, it serves as a clearinghouse for information on new viruses, worms, and other computer security topics.

Answer 36

U.S. Computer Emergency Readiness Team (US-CERT)

Question 37

A piece of programming code, usually disguised as something else, that causes a computer to behave in an unexpected and usually undesirable manner.

Answer 37

Virus

Question 38

A specific sequence of bytes that indicates to antivirus software that a specific virus is present.

Answer 38

Virus signature

Question 39

Similar to smishing except that the victims receive a voice-mail message telling them to call a phone number or access a website.

Answer 39

Vishing

Question 40

A harmful program that resides in the active memory of the computer and duplicates itself.

Answer 40

Worm

Question 41

A cyberattack that takes place before the security community and/or software developers become aware of and fix a security vulnerability.

Answer 41

Zero-day exploit

Question 42

A computer that is part of a botnet and that is controlled by a hacker without the knowledge or consent of the owner.

Answer 42

Zombie

Question 43

A network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules. It typically establishes a barrier between a trusted network and an untrusted network, such as the Internet.

Answer 43

Firewall