Module Two

Question 1

Computer Virus

Answer 1

malicious code written to interfere with computer ops and cause damage to data and software

Question 2

Malware

Answer 2

software designed to harm devices or networks

Question 3

Social engineering

Answer 3

manipulation technique that exploits human error to gain private info, access, or valuables

Question 4

Phishing

Answer 4

use of digital comms to trick people into revealing sensitive data or deploying malicious software

Question 5

BEC

Answer 5

• business email compromise
  threat actor sends an email message that seems to be from a known source to make request for info, in order to obtain financial advantage

Question 6

Spear Phishing

Answer 6

malicious email attack that targets specific user or group, email seems to be from trusted source

Question 7

Whaling

Answer 7

threat actor targets company executives to access sensitive data

Question 8

Vishing

Answer 8

exploitation of electronic voice comm to obtain sensitive info or to impersonate a known source

Question 9

Worms

Answer 9

malware that can duplicate and spread itself across systems on its own
- does not need to be downloaded by user
- self replicates and spreads from infected computer to other devices on the same network

Question 10

Ransomware

Answer 10

malicious attack where threat actors encrypt organization’s data and demand payment to restore access

Question 11

Spyware

Answer 11

malware used to gather and sell info without consent
- can be used to access devices, allowing threat actors to collect personal data

Question 12

Social Media Phishing

Answer 12

threat actor collects info about target from social media sites, then initiates attack

Question 13

Watering hole attack

Answer 13

threat actor attacks website frequently visited by a specific group of users

Question 14

USB baiting

Answer 14

threat actor strategically leaves a malware USB stick for an employee to find and install, to unknowingly infect a network

Question 15

Physical social engineering

Answer 15

threat actor impersonates an employee, customer, or vendor to obtain unauthorized access to a physical location

Question 16

Social Engineering Principles

Answer 16

• authority
• intimidation
• consensus/social proof
• scarcity
• familiarity
• trust
• urgency

Question 17

CISSP Security Domains

Answer 17

• Certified Info Systems Security Professional
• 8 domains to organize the work of security professionals

Question 18

Security and risk management

Answer 18

defines security goals and objectives, risk mitigation, compliance, business continuity, and the law
- ex: updating company policies for private health info due to changes to HIPAA

Question 19

Asset Security

Answer 19

secures digital/physical assets, also related to the storage, maintenance, retention, and destruction of data
- ex: proper disposal of old equipment that once housed private data

Question 20

Security architecture and engineering

Answer 20

optimizes data security by ensuring effective tools, systems, and processes are in place
- ex: configuring a firewall

Question 21

Communication and Network Security

Answer 21

manage and secure physical networks and wireless comms
- ex: analyze user activity within org

Question 22

Identity and access management

Answer 22

keeps data secure by ensuring users follow est policies to control and manage physical assets, like office spaces, and logical assets, such as networks and applications
- ex: setting up employee keycard access

Question 23

Security assessment and testing

Answer 23

conducting security control testing, collecting and analyzing data, and conducting security audits to monitor for risks, threats, and vulnerabilities
- ex: conducting audit of user permissions to ensure correct level of access

Question 24

Security operations

Answer 24

conducting investigations and implementing preventative measures
- ex: you receive an alert that an unknown device has connected to your internal network, and have to follow est procedure to stop potential threat

Question 25

Software Development Security

Answer 25

uses secure coding practices, which are a set of recommended guidelines to create secure apps and services
- ex: advise on password policies for a new app in development

Question 26

Password attack

Answer 26

attempt to access password-secured devices, systems, networks, or data
fall under communication and network security domain

Question 27

Physical attack

Answer 27

incident that affects not only digital but also physical environments where the incident is deployed
- malicious USB cable, flash drive, card cloning and skimming

Question 28

Adversarial artificial intelligence

Answer 28

technique that manipulates ai and machine learning tech to conduct attacks more efficiently
- falls under comm/network security and the identity and access management domains

Question 29

supply-chain attack

Answer 29

targets systems, applications, hardware, and/or software to locate a vulnerability where malware can be deployed
- falls under: security and risk management, security architecture and engineering, and security ops domains

Question 30

Cryptographic attack

Answer 30

affects secure forms of comm between sender and intended recipient
- forms: birthday, collision, downgrade
- falls under comm and network security domain

Question 31

advanced persistent threats

Answer 31

have significant expertise accessing orgs network without authorization
- tend to research targets in advance
- motives: damaging critical infrastructure, gaining access to IP

Question 32

Insider Threats

Answer 32

abuse their authorized access to obtain data that nay harm an org
- motives: sabotage, corruption, espionage, unauthorized data access or leaks

Question 33

Hacktivists

Answer 33

driven by political agenda
-motives: demonstrations, propaganda, social change campaigns, fame

Question 34

hacker

Answer 34

person who uses computers to gain access to computer systems, networks, or data
- ethical hackers, semi-authorized (research for vulnerabilities), unethical/unauthorized