evolution of cybersecurity module 2

Question 1

What is a computer virus?

Answer 1

malicious code written to interfere with computer operations and cause damage to data and software

Question 2

What is malware?

Answer 2

Software designed to harm devices or networks

Question 3

What is social engineering?

Answer 3

A manipulation technique that exploits human error to gain private information, access, or valueables.

Question 4

What is phishing?

Answer 4

The use of digital communications to trick people into revealing sensitive data or deploying malicious software

Question 5

What is Business Email Compromise (BEC)?

Answer 5

A threat actor sends an email message that seems to be from a known source to make a seemingly legitimate request for information, in order to obtain a financial advantage.

Question 6

What is Spear phishing?

Answer 6

A malicious email attack that targets a specific user or group of users. The email seems to originate from a trusted source.

Question 7

What is whaling?

Answer 7

A form of spear phishing. Threat actors target company executives to gain access to sensitive data.

Question 8

What is vishing?

Answer 8

The exploitation of electronic voice communication to obtain sensitive information or to impersonate a known source.

Question 9

What is smishing?

Answer 9

The use of text messages to trick users, in order to obtain sensitive information or to impersonate a known source.

Question 10

What is malware?

Answer 10

software designed to harm devices or networks.

Question 11

What is a worm?

Answer 11

Malware that can duplicate and spread itself across systems on its own. In contrast to a virus, a worm does not need to be downloaded by a user. Instead, it self-replicates and spreads from an already infected computer to other devices on the same network

Question 12

What is a spyware?

Answer 12

Malware that’s used to gather and sell information without consent. Spyware can be used to access devices. This allows threat actors to collect personal data, such as private emails, texts, voice and image recordings, and locations.

Question 13

What is ransomeware?

Answer 13

A malicious attack where threat actors encrypt an organization’s data and demand payment to restore access.

Question 14

What is social media phishing?

Answer 14

A threat actor collects detailed information about their target from social media sites. Then, they initiate an attack.

Question 15

What is watering hole attack?

Answer 15

A threat actor attacks a website frequently visited by a specific group of users.

Question 16

What is USB baiting?

Answer 16

A threat actor strategically leaves a malware USB stick for an employee to find and install, to unknowingly infect a network.

Question 17

What is physical social egineering?

Answer 17

A threat actor impersonates an employee, customer, or vendor to obtain unauthorized access to a physical location.

Question 18

What is an advanced persistent threats (APTs)?

Answer 18

Those who have significant expertise accessing an organization’s network without authorization. APTs tend to research their targets (e.g., large corporations or government entities) in advance and can remain undetected for an extended period of time.

Question 19

What do insider threats do?

Answer 19

Insider threats abuse their authorized access to obtain data that may harm an organization

Question 20

What are intentions of the APT?

Answer 20

Damaging critical infraestructure, gaining access to intellectual property

Question 21

What are intentions/motivations of insider threats?

Answer 21

Sabotage, Corruption, espionage, unauthorized data access or leaks

Question 22

What are hacktivists?

Answer 22

are threat actors that are driven by a political agenda.

Question 23

What are some goals of hacktivists?

Answer 23

Demostrations, propaganda, social change campaings, fame

Question 24

What is a hacker?

Answer 24

A person who uses computers to gain access to computer systems, networks or data.