Lesson 10 - Chapter 2: Network Threats

Question 1

What are attack vectors?

Answer 1

different ways to infiltrate systems

Question 2

The CompTIA A+ exam calls attack vectors what?

Answer 2

threats

Question 3

What is a Zero-Day Attack?

Answer 3

an attack on a vulnerability that wasn’t known to the software developers

(exposes an unknown vulnerability, developer has 0 days to fix it!)

Question 4

What is Spoofing?

Answer 4

Pretending to be someone/something you’re not by placing false information into your packets

Question 5

What are 4 examples of the types of data that can be spoofed?

Answer 5

1. Source MAC address and IP address (to make you think it came from somewhere else)
2. Email address
3. Web address (you’re not actually on that page)
4. User name (not really that user)

Question 6

What is an on-path attack? What is it also called? (2)

Answer 6

Also called a man-in-the-middle (MITM) attack

an attacker intercepts traffic between 2 systems, reading and changing the data then sending it forward

Question 7

What kind of attack is it when a person using special software on a wireless network makes all the clients this his laptop is a wireless access point?

Answer 7

on path attack (MITM)

Question 8

Can an attacker gain access to passwords, shared keys, and other sensitive information in an on-path attack? When?

Answer 8

yes (when using special software on a wireless network to make clients think his laptop is a wireless access point)

Question 9

What is session hijacking?

Answer 9

similar to MITM, tries to intercept a valid computer session to get authentication information

Question 10

What’s the difference between session hijacking and a MITM attack?

Answer 10

session hijacking only tries to get authentication information it doesn’t listen in like MITM

Question 11

What are Evil Twin attacks?

Answer 11

an attacker inserts a rogue access point into a wireless network so users connect to the device instead of the real AP to intercept their traffic/info

(Wi-Fi intrusion)

Question 12

What ways can an Evil Twin attack be set up?

Answer 12

smartphone or other Wi-Fi-capable device, but typically a wireless network AP

Question 13

How do you prevent/detect evil twins?

Answer 13

contract for a professional site survey to be performed periodically at random

Question 14

What is brute force?

Answer 14

a method where a threat agent guesses all possible values for some data

(doesn’t just apply to passwords)

Question 15

How do you protect against brute force attacks on a password?

Answer 15

set up a password policy that locks a system after a c ertain number of invalid password guesses

(doesn’t do much for other types of brute force attacks)

Question 16

What are some things that can be brute-forced? (3)

1. search
2. net
3. us

Answer 16

1. search for open ports
2. network IDs
3. user names

etc

Question 17

What is a DoS attack?

Answer 17

a single device attempts to bog down/crash another device by overwhelming its Internet connection with connection requests

(rapidly repeating pings, page requests, etc)

Question 18

What does DDoS stand for?

Answer 18

Distributed Denial of Service

Question 19

What is a DDoS attack?

Answer 19

uses multiple coordinated devices to perform the DoS attack (several devices attempt to bog down a device with connection requests)

Question 20

What types of devices are usually involved in a DDoS attack?

Answer 20

zombie members of a botnet (compromised by malware)

Question 21

What is a SQL injection?

Answer 21

when an attacker inserts malicious SQL statements into the coding of a web page

Question 22

What’s the purpose of a SQL injection?

Answer 22

To access data stored on the back-end database of the website the user can’t see

(customer records, company financial data)

Question 23

What does an XSS attack stand for?

Answer 23

cross-site scripting

Question 24

What is an XSS attack?

Answer 24

cross-site scripting, the attacker inserts malicious coding statements (usually JavaScript) into a web page that executes when the page is displayed in a browser

(client-side attack bc client’s browser executes it)

Question 25

What are 2 ways an XSS attack is commonly performed?

Answer 25

1. script is added as a string to the end of the URL
2. injected into the page’s HTML or JavaScript coding

Question 26

What’s the largest threat any workplace network has?

Answer 26

its internal users

Question 27

What is an “insider”?

Answer 27

any authorized (authenticated) user who is aware of an organization’s data resources, employees, security systems, etc

Question 28

The first step in securing data is through what? How does that look like?

Answer 28

Through authentication, using a username and password

Question 29

Do firewalls stop hackers from intercepting network packets?

Answer 29

No, firewalls are more for controlling traffic from the Internet coming into a network and traffic going out of the network to the Internet

(which is why we turn to encryption)

Question 30

Is network encryption limited to Internet-based activity?

Answer 30

No, there are many levels of network encryption each of which provides multiple options

Question 31

What are 3 examples of authentication protocols used to authenticate wireless networks?

Answer 31

1. RADIUS
2. TACACS+
3. Kerberos

Question 32

What does RADIUS stand for?

Answer 32

Remote Authentication Dial-In User Service protocol

Question 33

What is RADIUS used for?

Answer 33

Users log into a RADIUS network to be given access by a RADIUS server to credentials that have been verified for that requester. Provides centralized user authentication.

Question 34

What types of networks use RADIUS?

Answer 34

Large wireless networks (like those with a domain server)

(enterprise networks)

Question 35

What does TACACS+ stand for?

Answer 35

Terminal Access Controller Access-Control System Plus

Question 36

What is TACACS+?

Answer 36

A centralized authentication protocol used on larger wireless networks, primarily for device administration

(enterprise networks)

Question 37

What is Kerberos?

Answer 37

its primary purpose is to authenticate a user without the need to transmit a password over the Internet

(supports SSO single sign-on)

Question 38

Where is Kerberos most used?

Answer 38

its the primary authentication protocol for many websites

Question 39

What are the 4 parts of the Kerberos authentication process?

Answer 39

1. Client requesting content
2. Server hosting the requested content
3. Authentication server issues ticket-granting ticket (TGT)
4. KDC (key distribution center) - the server the AS operates on

Question 40

The encryption method used on data in transit (through a network) is dictated by what?

Answer 40

the method the communicating systems will connect with

(a private connection like WAN, for example)

Question 41

What is IPsec?

Answer 41

Microsoft’s encryption method for networks linked by a private connection (like WAN) and provides transparent encryption between the server and the client (data in transit)

Question 42

What is the most famous type of application encryption?

Answer 42

SSL (Secure Sockets Layer) security protocol to secure websites

Question 43

What application security does Microsoft incorporate these days?

Answer 43

Microsoft incorporates Transport Layer Security (TLS) into its HTTPS protocol (HTTP over TLS)

Question 44

There must be a way for both the web server and your browser to encrypt and decrypt each other’s data. How is this done?

Answer 44

the server sends a public key to your web browser so that the browser knows how to decrypt the incoming data

Question 45

Public keys are sent in what form?

Answer 45

a digital certificate

Question 46

Digital certificates (public keys) are signed by what? What does it guarantee?

Answer 46

a trusted certificate authority (CA) that guarantees that the public key you’re about to get is from the actual web server and not an impersonator

Question 47

Who issues the digital certificates?

Answer 47

companies such as Symantec, Comodo, etc

Question 48

What is a trusted root CA?

Answer 48

your web browser’s built-in list of trusted authorities

Question 49

What happens if a certificate comes in from a website that uses one of the trusted root CA in your browser?

Answer 49

you’ll just go to the secure page and a small lock will appear in the corner of the browser (won’t see anything happen)

Question 50

What happens if you receive a certificate that your browser thinks is fishy (expired, or browser doesn’t have a trusted root CA)?

Answer 50

the browser will warn you and ask you if you wish to accept the certificate

Question 51

What are examples of what invalid digital certificates can mean? (2)

Answer 51

1. The site owner forgot to update it on time
2. The site or your connection is compromised

(only add an exception if you know its safe, like using it to access a site on your organizations intranet)

Question 52

What are continuity plans?

Answer 52

how your organization prepares to continue operating in case its data and infrastructure is damaged by common issues (hardware failures, attacks, malware, fire, power outage, vandalism, failed air conditioner)

Question 53

2 things included in a continuity plan?

Answer 53

1. redundancy
2. resiliency