Module 1

Question 1

CIA Triad

Answer 1

Confidentiality, Integrity, Availability

Question 2

Availability

Answer 2

The quality of being able to be used or obtained.

Availability concerns occur when operating systems, equipment, and data are not functioning correctly, limiting access to those who need it.

Question 3

Integrity

Answer 3

The quality of being honest, whole, or undivided.

The integrity of info refers to protecting info from being modified by unauthorized parties.

Hashing is a big word for this, if you see hashing it is almost always due to integrity.

Question 4

Confidentiality

Answer 4

The state of being kept secret or private. Ensuring that sensitive info does not reach unauthorized people.

“Need to know base”

Question 5

A hospital only allows authorized healthcare personnel within one department to access patient Personal Identifiable Information. When employees move to another department, they lose access.

Answer 5

Confidentiality

Question 6

A cybercriminal launches a DDoS attack that floods a website with unwanted traffic from multiple computers and takes the site offline.

Answer 6

Availability

Question 7

A cybercriminal cracks a hashed message and changes its contents.

Answer 7

Integrity

Question 8

A company’s network infrastructure uses load balancers, which distribute the “load” of tasks, such as file requests and data routing, to a variety of servers. This ensures that no single device is overburdened.

Answer 8

Availability

Question 9

Employees need key cards in order to enter their company offices.

Answer 9

Confidentiality

Question 10

Brute Force Attack

Answer 10

An Attacker can use brute force attack to continuously attempt username and password combos.

Question 11

How to mitigate Brute Force

Answer 11

Strong Password Policies: Require complex passwords that must be changed regularly.
Failed Login Attempts:
Implement automatic account lockout after a set number of unsuccessful login attempts to deter brute-force attacks.
Time-Based Lockout:
Consider a temporary lockout period after failed logins, allowing users to retry after a short time.

Question 12

Phishing

Answer 12

An attacker can attempt a phishing attack, where users are redirected to fake a login pages that capture user credentials.

Question 13

How to mitigate Phishing

Answer 13

Phishing Training and Awareness Programs: Educate employees about the dangers of phishing and how to recognize fraudulent emails
Security Training:
Regularly educate users about phishing scams, password hygiene, and the importance of protecting their login credentials.
Phishing Simulation Tests:
Conduct periodic phishing simulation exercises to evaluate user awareness and identify areas for improvement.

Question 14

Keylogging

Answer 14

An Attacker can deploy malware such as keyloggers to capture daily user activity.

Question 15

How to mitigate Keylogging

Answer 15

Use of Anti-Keylogging Software: Install security software that detects and prevents keyloggers.
Log Analysis:
Regularly review system logs for anomalies that could indicate unauthorized access or malicious activity.
Intrusion Detection/Prevention Systems (IDS/IPS):
Monitor network traffic for suspicious activity and actively block potential threats.

Question 16

Stolen Hardware/ Session Hijacking

Answer 16

An Attacker can simply exploit a valid computer session to gain unauthorized access to info or services.

Question 17

How to mitigate Stolen Hardware/ Session Hijacking

Answer 17

Session Management Security: Implement secure session management practices like HTTPS and secure cookies.

Question 18

Person-in-the-middle Attack

Answer 18

An Attacker can create a person in the middle attack by providing a free WiFi hotspot to capture credentials.

Question 19

How to mitigate Person-in-the Middle

Answer 19

Encryption: Use end-to-end encryption for data in transit to prevent MITM attacks.

Question 20

Credential Stuffing

Answer 20

An Attacker can find and steal users’ login and password info from other websites to gain unauthorized access to a system.

Question 21

How to mitigate Credential Stuffing

Answer 21

Multi-Factor Authentication (MFA): Require additional verification methods beyond just passwords to access accounts.

Question 22

SQL Injection

Answer 22

An attacker can use a code-injection attack to inject malicious code directly into username or password fields.

Question 23

How to mitigate SQL Injection

Answer 23

Regular Security Audits and Code Reviews: Conduct periodic audits and reviews to identify and mitigate SQL injection and XSS vulnerabilities.
A big one for this one is INPUT VALIDATION.

Question 24

Cross-site scripting (XXS)

Answer 24

An Attacker can inject malicious scripts into webpages viewed by other users and use these as a backdoor into their system.

Question 25

How to mitigate Cross-site Scripting (XXS)

Answer 25

Regular Security Audits and Code Reviews: Conduct periodic audits and reviews to identify and mitigate SQL injection and XSS vulnerabilities.
A big one for this one is INPUT VALIDATION.

Question 26

Exploiting outdated software

Answer 26

Attackers can use known vulnerabilities in outdated software to breach security.

Question 27

How to mitigate Outdated Software

Answer 27

Software and Patch Management: Regularly update all software to the latest versions to fix known vulnerabilities.

Question 28

Social Engineering

Answer 28

An Attacker can ask users for their credentials by pretending to be an administrator.

Question 29

How to mitigate Social Engineering

Answer 29

Employee Security Training: Conduct regular training sessions to improve security awareness and reduce the risk of social engineering.
Advanced Intrusion Detection Systems (IDS): Deploy IDS to monitor network and system activities for malicious activities and policy violations.