Exam9

Question 1

The practice of sending email to users with the purpose of tricking them into revealing personal information or clicking on a link a malicious version of spam.

Answer 1

Phishing

Question 2

Uses the phone system to trick users into giving up personal and financial information. Often uses VoIP to make it look like the call is coming from a real company

Answer 2

Vishing

Question 3

A form of phishing that uses SMS instead of email. some attacks include malicious attachments and some try to convince a user to give up personal information.

Answer 3

Smishing

Question 4

Unwanted or unsolicited email. some is harmless advertisements while some is malicious including malicious links, code, or attachments.

Answer 4

Spam

Question 5

Unwanted messages sent over instant messaging (IM) channels. bypasses typical antivirus and spam filters.

Answer 5

Spam over internet messaging (SPIM)

Question 6

A targeted form of phishing targeting a specific group of users or even one specific user. May attack employees within a company or customers of a company.

Answer 6

Spear Phishing

Question 7

The practice of searching through trash or recycling containers to gain information from discarded documents.

Answer 7

Dumpster Diving

Question 8

looking over the shoulder of someone to gain unauthorized information by casual observation

Answer 8

Shoulder Surfing

Question 9

an attack that manipulates the DNS name resolution process. either tries to corrupt the DNS server or the DNS client.

Answer 9

Pharming

Question 10

The practice of one person following closely behind another without showing credentials

Answer 10

Tailgating

Question 11

The act of getting information without asking for it directly. techniques include active listening, reflective questioning, false statements, and bracketing.

Answer 11

Eliciting Information

Question 12

A form of spear phishing that targets high level executives. Can target high level executives or impersonate high level executives to send messages to high level employees.

Answer 12

Whaling

Question 13

Used offensively by attackers to attempt to get a user to open a malicious email. Examples of prepending emails can be starting the subject with [SAFE] or [URGENT]

Answer 13

Prepending

Question 14

When someone steals personal information and uses it for fraudulent activity like opening bank accounts, falsifying tax returns, or applying for loans

Answer 14

Identity Fraud

Question 15

Attempting to trick people or organizations into paying for services that they did not order and probably did not receive

Answer 15

Invoice Scams

Question 16

Any attempt to recover usernames and passwords from a user. This can be done via shoulder surfing, phishing or other means.

Answer 16

Credential Harvesting

Question 17

Gathering as much information as possible on a target, usually thought open source sources

Answer 17

Reconnaissance

Question 18

A message, often circulated via email, which tells of impending doom from a virus or other security threat that simply doesn’t exist.

Answer 18

Hoax

Question 19

Pretending to be someone with a certain level of authority in order to obtain access or information

Answer 19

Impersonation

Question 20

Attempts to discover which websites a group of people are likely to visit and then infects those websites with malware that can infect the visitors

Answer 20

Watering Hole Attack

Question 21

Also called URL hijacking, relies on mistakes, such as typos made by users inputting a website address into a web browser. When a user enters an incorrect website address, the squatter may lead them to any URL

Answer 21

Typo Squatting

Question 22

A fictitious scenario added to a conversation to make a request more believeable

Answer 22

Pretexting

Question 23

User a variety of sources to influence public perception such as hybrid warfare and social media

Answer 23

Influence Campaigns

Question 24

A military strategy that blends conventional warfare with unconventional methods to influence people. Today a popular method uses social media

Answer 24

Hybrid Warfare

Question 25

The right to use power which is often adhered to in impersonation, whaling, and vishing attacks

Answer 25

Authority

Question 26

Most effective with impersonation and vishing attacks. Can involve bullying

Answer 26

Intimidation

Question 26

Attackers take advantage of this psychological state by creating websites with fake testimonials that promote a product. Sometimes called social proof. Often used with trojans and hoaxes.

Answer 26

Consensus

Question 26

Convincing someone that there is a limited quantity of an item. Used in phishing.

Answer 26

Scarcity

Question 27

Building rapport with the victim before launching the attack

Answer 27

Familiarity

Question 27

Convincing targets that they need to act now. Can be done using a timer. most effective with ransomware, phishing, vishing, and whaling.

Answer 27

Urgency

Question 27

Includes a wide range of software that has malicious intent. Installed on a system through devious means.

Answer 27

Malware

Question 27

Similar to familiarity. Used to build a relationship with a target before launching an attack. Often used with vishing.

Answer 27

Trust

Question 28

A self-replicating program is able to propagate itself across a network, typically having a detrimental effect.

Answer 28

Worms

Question 28

Software that cannot definitively be classed as malicious, but may not have been chosen by or wanted by the user.

Answer 28

Potentially unwanted programs (PUPs)

Question 28

Typically looks like something beneficial, but it’s actually something malicious. Can come as pirated software, a useful utility, or a game.

Answer 28

Trojans

Question 29

A type of malicious software designed to block access to a computer system until a sum of money is paid.

Answer 29

Ransomware

Question 30

A type of malicious software that runs in memory. Some techniques used are memory code injection, script-based techniques, and Windows registry manipulation.

Answer 30

Fileless virus

Question 31

A computer controlled by an attacker or cybercriminal, which is used to send commands to systems compromised by malware and receive stolen data from a target network.

Answer 31

Command and Control

Question 32

Software robots that function automatically. A botnet is a group of computers that are joined together. Attackers often use malware to join computers to a botnet, and then use the botnet to launch attacks.

Answer 32

Bots

Question 33

A string of code embedded into an application or script that will execute in response to an event.

Answer 33

Logic Bombs

Question 34

A special class of adware that collects data about the user and transmits it over the Internet without the user’s knowledge or permission

Answer 34

Spyware

Question 35

Software that tracks or logs the keys struck on your keyboard, typically in a covert manner so that you don’t know that your actions are being monitored.

Answer 35

Keyloggers

Question 36

A type of malware that allows attackers to control systems from remote locations. Often delivered by drive-by-downloads or malicious attachments in emails.

Answer 36

Remote Access Trojan (RATs)

Question 36

A set of programs that enables its user to gain administrator level access to a computer without the end user’s consent or knowledge.

Answer 36

Rootkit

Question 37

Provides another way of accessing a system; bypass normal authentication methods; allow attackers to access systems from remote locations

Answer 37

Backdoor

Question 38

A Special type of brute force or dictionary attack designed to avoid being locked out.

Answer 38

Spraying

Question 39

A type of password attack that automates
password guessing by comparing encrypted passwords against a predetermined list of possible password values.

Answer 39

Dictionary attack

Question 40

An attack on passwords or encryption that tries every possible password or encryption key.

Answer 40

Brute Force attack

Question 41

Attempts to discover a password from a captured database or a captured packet scan.

Answer 41

offline attack

Question 42

Attempts to discover a password from an online system.

Answer 42

Online attack

Question 43

A table of hash values and their corresponding plaintext values that can be used to look up password values if an attacker is able to steal a system’s encrypted password file.

Answer 43

Rainbow table

Question 44

A USB cable embedded with a Wi-Fi controller that can receive commands from a nearby device to send malicious commands to the connected mobile device.

Answer 44

Malicious USB cable

Question 45

a physical device that contains malicous PDFs, files, etc that could be harmful to your computer, older systems would automatically upload from this physical device without user consent

Answer 45

Malicious flash drive

Question 46

acquired information from a skimmer that can be made into a duplicate card, most commonly found when duplicating gift cards, can’t duplicate chips, only magnetic strips

Answer 46

Card cloning

Question 47

capturing credit card data at the point of sale

Answer 47

Skimming

Question 48

Attempts to fool AI models by supplying it with deceptive input. When successful it can cause an error or malfunction in the AI model.

Answer 48

Adversarial AI

Question 49

Providing bad data to a machine learning algorithm in order to force the algorithm to give inconsistent results

Answer 49

Tainted training data for machine learning

Question 50

An attempt to exploit a weakness/vulnerability in the process that produces a service.

Answer 50

supply chain attacks

Question 51

Cloud: Offsite, usually managed by third party, lower cost, no data centers, limited downtime
On-premises attack: On-site, full control of data, system check can occur at anytime, high cost and time consumption

Answer 51

cloud-based vs on-premises attacks

Question 52

A type of password attack that exploits weaknesses in the mathematical algorithms used to encrypt passwords, in order to take advantage of the probability of different password inputs producing the same encrypted output.

Answer 52

Birthday attack

Question 53

When the encrypted hashes of two different strings are the same

Answer 53

Collision

Question 54

An attack in which the system is forced to abandon the current higher security mode of operation and fall back to implementing an older and less secure mode.

Answer 54

downgrade attack