Leonardo Aniello

Question 1

What are the three objectives for information and information systems?

Answer 1

• Confidentiality
• Integrity
• Availability

Question 2

What is contained in the model of Computer Security?

Answer 2

• Asset
• Hardware
• Software
• Data
• Communication facilities and networks

Question 3

What are types of asset vulenerabilities?

Answer 3

• Corrupted systems
• Leaky systems
• Unavailable or very slow

Question 4

What is an Active Attack?

Answer 4

An attempt to alter assets or affect their operation

Question 5

What is a passive attack?

Answer 5

An attempt to learn or make use of information from the system that does not affect assets

Question 6

What is an inside attack?

Answer 6

Initiated by an entity inside the security perimeter. The insider is authorised to access system resources but uses them in a malicious way

Question 7

What is an outside attack?

Answer 7

Initiated from outside the perimeter. by an unauthorised or illegitimate user of the system

Question 8

What is a Risk?

Answer 8

A measure of the extent to which an asset is threatened by a potential circumstance

Question 9

What are the types of countermeasures to deal with a security threat/attack?

Answer 9

• Detection
• Prevention
• Mitigation
• Recovery

Question 10

What are cybercriminals interested in/

Answer 10

Illegal profits

Question 11

What are the typical attacks of cybercriminals?

Answer 11

• Money theft
• Personal document ransom
• Data breaches
• Distributed Denial of Service (DDos)
• Cryptojacking

Question 12

What are cybercriminals attack vectors? (How they attack)

Answer 12

• Malware
• Social Engineering/Email
• Social media
• Botnet

Question 13

What are Nation States interested in?

Answer 13

• High quality Intelligence
• Sabotage activities/crucial infrastructures
• Subversion e.g. political election
• Generally, engage in cyberwarfare activities

Question 14

What are the typical attacks of Nation States?

Answer 14

• Influence campaigns
• Data breaches
• DDoS
• Advanced Persistence Threats (APT)

Question 15

What are the attack vectors of Nation States?

Answer 15

Same as Cybercriminals but more advanced

Question 16

What is Cyberwarfare?

Answer 16

It refers to the activity of fighting a cyberwar, often including the weapons and methods that are used in the cyber space

Question 17

Why is cyberwarfare attractive?

Answer 17

• Cost effectiveness, speed of light (almost)
• No causalities but can disrupt adversary
• Hard to detect and neutralize for the victim
• Exploitable vulnerabilities increase with technological evolution
• Anonymity
• Plausible deniability
• Cyber Deterrence

Question 18

What is Advanced Persistent Threat (APT)?

Answer 18

A long-term pattern of targeted, sophisticated attacks

Question 19

What are Hacktivists motivated by?

Answer 19

Political, religious, social ideologies

Question 20

What are the typical attacks of Hacktivists?

Answer 20

• Web defacements
• Data breaches
• DDoS

Question 21

What are the attack vectors of Hacktivists?

Answer 21

Same as Cybercriminals, but generally less advanced

Question 22

What principles of hackers’ ethics do Hacktivists share?

Answer 22

• Libertarian and anarchist in nature
• Conceptualised as opponents of the power elite, that use technology to promote their own agendas
• Act of civil disobedience

Question 23

What is the culture of Hacktivists?

Answer 23

• Conspiracy theorising
• Obsession with privacy and secrecy
• Membership fluidity
• Culture of humour and creativity

Question 24

What are Insider Threats?

Answer 24

They are people with legitimate access to valuable resources that commit intentional attacks e.g. disgruntled employees

Question 25

What are the different types of insider threats?

Answer 25

- Publish information on the web - Install a malware - Steal and sell information

Question 26

What is Cyber-attack Life Cycle Models?

Answer 26

Empirical models representing the sequence of steps that cyber attacks go through

Question 27

What is Lockheed Martin's Kill Chain Model?

Answer 27

Reconnaissance Weaponization Delivery Exploitation Installation Command & Control Actions on Objectives

Question 28

What is the Reconnaissance stage of the Kill Chain Model?

Answer 28

- Target research and selection - What information did attackers gather? How?

Question 29

What is the Weaponization stage of the Kill Chain Model?

Answer 29

- Development of required cyber weapons - What cyber weapons have been used? How did the attacks obtain them?

Question 30

What is the Delivery stage of the Kill Chain Model?

Answer 30

- Delivery of the payload to the target - How did the attackers deliver the cyber weapon(s) to the intended target - What was delivered, from where, to where and how?

Question 31

What is the Exploitation stage of the Kill Chain Model?

Answer 31

- Execution of the payload e.g. through the exploit - How were cyber weapons activated?

Question 32

What is the Installation stage of the Kill Chain Model?

Answer 32

- Ensure payload persistence within the target - How did the attackers gain persistence inside the target

Question 33

What is the Command & Control stage of the Kill Chain Model?

Answer 33

- Establish a communication channel with an external command and control (C2) server - How did the attacks establish a communication channel to control the cyber weapons installed inside the target

Question 34

What is the Actions on Objectives stage of the Kill Chain Model?

Answer 34

- Execution of desired actions within the target, based on commands from C2 - What did the attackers do to achieve their goals?