Glossary Terms from Module 2-01 Flashcards

1
Q

Adversarial Artificial Intelligence (AI)

A

A technique that manipulates artificial intelligence (AI) and machine learning (ML) technology to conduct attacks more efficiently

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Business Email Compromise (BEC)

A

A type of phishing attack where a threat actor impersonates a known source to obtain financial advantage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

CISSP

A

Certified Information Systems Security Professional is a globally recognized and highly sought-after information security certification, awarded by the International Information Systems Security Certification Consortium

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Computer Virus

A

Malicious code written to interfere with computer operations and cause damage to data and software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Cryptographic Attack

A

An attack that affects secure forms of communication between a sender and intended recipient

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Hacker

A

Any person who uses computers to gain access to computer systems, networks, or data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Malware

A

Software designed to harm devices or networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Password Attack

A

An attempt to access password secured devices, systems, networks, or data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Phishing

A

The use of digital communications to trick people into revealing sensitive data or deploying malicious software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Physical Attack

A

A security incident that affects not only digital but also physical environments where the incident is deployed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Physical Social Engineering

A

An attack in which a threat actor impersonates an employee, customer, or vendor to obtain unauthorized access to a physical location

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Social Engineering

A

A manipulation technique that exploits human error to gain private information, access, or valuables

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Social Media Phishing

A

A type of attack where a threat actor collects detailed information about their target on social media sites before initiating the attack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Spear Phishing

A

A malicious email attack targeting a specific user or group of users, appearing to originate from a trusted source

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Supply-Chain Attack

A

An attack that targets systems, applications, hardware, and/or software to locate a vulnerability where malware can be deployed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

USB Baiting

A

An attack in which a threat actor strategically leaves a malware USB stick for an employee to find and install to unknowingly infect a network

17
Q

Virus

A

Refer to “Computer Virus”

Malicious code written to interfere with computer operations and cause damage to data and software

18
Q

Vishing

A

The exploitation of electronic voice communication to obtain sensitive information or to impersonate a known source

19
Q

Watering Hole Attack

A

A type of attack when a threat actor compromises a website frequently visited by a specific group of users