Introduction To Cybersecurity Tools And Cyber Attacks Week Two

Question 1

What are the four main types of actors identified in the video ‘A brief overview of types of actors and their motives?’

Answer 1

Hackers, Hactivists, Governments, and Internal

Question 2

Which of these common motivations is often attributed to a hacktivists?`

Answer 2

Political action and movements

Question 3

In the video ‘Hacking organizations’, which three governments were called out as being active hackers?

Answer 3

China, United States, and Israel

Question 4

Which four of the following are known hacking organizations?

Answer 4

Anonymous, Guardians of Peace, Syrian Electronic Army, and Fancy Bears

Question 5

Which of these hacks resulted in over 100 million credit card numbers being stolen?

Answer 5

2015 Target Stores Hack

Question 6

Which of the following statements is true?

Answer 6

Passive attacks are hard to detect because the original message is delivered unchanged and can pass an integrity check

Question 7

The purpose of security services includes which three of the following?

Answer 7

Enhance security of data processing systems and information transfer

Often replicate functions found in physical documents

Are intended to counter security attacks

Question 8

Which statement best describes access control?

Answer 8

Prevention of unauthorized use of a resource

Question 9

The International Telecommunication Union (ITU) X.800 standard addresses which three of the following topics?

Answer 9

Access Control, Authentication, and Data Confidentiality

Question 10

Protocol suppression, ID and authentication are examples of which?

Answer 10

Security Mechanism

Question 11

The motivation for more security in open systems is driven by which three of the following factors?

Answer 11

Society’s increasing dependance on computers

The appearance of data protection legislation in several countries

The desire by a number of organizations to use OSI reccommendations

Question 12

True or False: The accidental disclosure of confidential data by an employee is considered a legitimate organizational threat.

Answer 12

True

Question 13

True or False: The accidental disclosure of confidential information by an employee is considered an attack.

Answer 13

False

Question 14

A replay attack and a denial of service attack are examples of what?

Answer 14

Security Architecture Attack

Question 15

True or False: An application that runs on your computer without your authorization but does no damage to the systems is not considered malware.

Answer 15

False

Question 16

How would you classify a piece of malicious code designed to cause damage and spreads from one computer to another by attaching itself to files but requires human actions in order to replicate?

Answer 16

Virus

Question 17

How would you classify a piece of malicious code designed collect data about a computer and its users and then report that back to a malicious actor?

Answer 17

Spyware

Question 18

A large scale Denial of Service attack usually relies upon which of the following?

Answer 18

A botnet

Question 19

Antivirus software can be classified as which form of threat control?

Answer 19

Technical Controls

Question 20

Which of the following measures can be used to counter a mapping attack?

Answer 20

Record traffic entering the network

Look for suspicious activity like IP addresses or ports being scanned sequentially

Use a host scanner and keep an inventory of hosts on your network

Question 21

In order for a network card (NIC) to engage in packet sniffing, it must be running in which mode?

Answer 21

Promiscuous

Question 22

Which countermeasure can be helpful in combating an IP Spoofing attack?

Answer 22

Ingress filtering

Question 23

Which two measures can be used to counter a Denial of Service (DOS) attack?

Answer 23

Use traceback to identify the source of the flooded packets

Implement a filter to remove flooded packets before they reach the host

Question 24

Which countermeasure should be used again as a host insertion attack?

Answer 24

Maintain an accurate inventory of computer hosts by MAC address

Use a host scanning tool to match a list of discovered hosts against known hosts

Investigate newly discovered hosts.

Question 25

Which is not one of the phases of the intrusion kill chain?

Answer 25

Activation

Question 26

Which social engineering attack involves a person instead of a system such as an email server?

Answer 26

Vishing

Question 27

Which of the following is an example of a social enginnering attack?

Answer 27

Calling an employee and telling him you are from IT support and must observe logging into his corporate account.

Question 28

True or False: While many countries are preparing their military for a future cyberwar, there have been no ‘cyber battles’ to date.

Answer 28

False

Question 29

Which tool did Javier say was crucial to his work as a SOC analyst?

Answer 29

SIEM (Security Information and Event Management)

Question 30

Which hacker organization hacked into the Democratic National Convention and released Hillary Clinton’s emails?

Answer 30

Fancy Bears

Question 31

What challenges are expected in the future?

Answer 31

Enhanced espionage from more countries

Far more advanced malware

New consumer technology to exploit

Question 32

Why are cyber attacks using SWIFT so dangerous?

Answer 32

SWIFT is the protocol used by all banks to transfer money

Question 33

Which statement best describes Authentication?

Answer 33

Assurance that the communicating entity is the one claimed

Question 34

Trusted functionality, security labels, event detection, security audit trails and security recovery are all examples of which type of security mechanism?

Answer 34

Passive security mechanism

Question 35

If an organization responds to an intentional threat, that threat is now classified as what?

Answer 35

An attack

Question 36

An attack that is developed particularly for a specific customer and occurs over a long period of time is a form of what type of attack?

Answer 36

Advanced Persistent Threat

Question 37

Which of these three approaches could be used by hackers as part of a Business Email Compromise attack?

Answer 37

Attorney impersonation

CEO Fraud, where CEO sends email to an employee

Account compromise

Question 38

Which type of actor was not one of the four types of actors mentioned in the video A brief overview of types of actors and their motives?

Answer 38

Black Hats

Question 39

A political motivation is often attributed to which type of actor?

Answer 39

Hactivist

Question 40

The video Hacking organizations called out several countries with active government sponsored hacking operations in effect. Which one of these was among those named?

Answer 40

Israel

Question 41

Which of these is not a known hacking organization?

Answer 41

The Ponemon Institute

Question 42

Which type of actor hacked the 2016 US Presidential Elections?

Answer 42

Government

Question 43

True or False: Passive attacks are easy to detect because the original messages are usually altered or undelivered.

Answer 43

False

Question 44

True or False: Authentication, Access Control and Data Confidentiality are all addressed by the ITU X.800 standard.

Answer 44

True

Question 45

Trusted functionality, security labels, event detection and security audit trails are all considered which?

Answer 45

Pervasive Security Mechanisms

Question 46

Cryptography, digital signatures, access controls and routing controls considered which?

Answer 46

Specific Security Mechanisms

Question 47

True or False: Only acts performed with intention to do harm can be classified as Organizational Threats

Answer 47

False

Question 48

Traffic flow analysis is classified as which?

Answer 48

A Passive Attack

Question 49

How would you classify a piece of malicious code designed to cause damage, can self-replicate and spreads from one computer to another by attaching itself to files?

Answer 49

Trojan Horse

Question 50

Botnets can be used to orchestrate which form of attack?

Answer 50

Distribution of Spam

DDoS attacks

Phishing attacks

Distribution of Spyware

As a Malware launchpad

Question 51

Policies and training can be classified as which form of threat control?

Answer 51

Administrative Controls

Question 52

Which type of attack can be addressed using a switched Ethernet gateway and software on every host on your network that makes sure their NICs is not running in promiscuous mode.

Answer 52

Packet Sniffing

Question 53

A flood of maliciously generated packets swamp a receiver’s network interface preventing it from responding to legitimate traffic. This is characteristic of which form of attack?

Answer 53

A Denial of Service (DOS) Attack

Question 54

A person calls you at work and tells you he is a lawyer for your company and that you need to send him specific confidential company documents right away, or else! Assuming the caller is not really a lawyer for your company but a bad actor, what kind of attack is this?

Answer 54

A Social Engineering Attack

Question 55

True or False: An individual hacks into a military computer and uses it to launch an attack on a target he personally dislikes. This is considered an act of cyberwarfare.

Answer 55

False