Network Attacks

Question 1

Unauthorized wireless access point in your network. Not necessarily malicious. Significant backdoor.

Answer 1

Rogue Access Point

Question 2

the process of restricting unauthorized users and devices from gaining access to a corporate or private network

Answer 2

Network Access Control

Question 3

Designed to look like your network’s access points and use the same settings, but is a malicious access point. Trying to overpower the existing access points.

Answer 3

Wireless Evil Twin

Question 4

Attacker sends unsolicited message to a machine through bluetooth. Low priority security concern.

Answer 4

Bluejacking

Question 5

Attacker access data on your mobile device using the bluetooth communications channel.

Answer 5

Bluesnarfing

Question 6

Attacker disrupts connections between users and Wi-fi access points, and forces users to get into a network the attacker controls.

Answer 6

Wireless Disassociation attack

Question 7

Blocking a wireless device from communicating with other devices or a wireless network

Answer 7

Radio Frequency Jamming (RF)

Question 8

Hunting a Wireless jamming source with an antenna.

Answer 8

Fox Hunt

Question 9

Technology that uses radio waves to identify people or objects. A device that reads information contained in a wireless device or “tag” from a distance without making any physical contact or requiring a line of sight. Susceptible to replay attacks, spoofing, data capture, and decryption.

Answer 9

RFID - (Radio Frequency Identification)

Question 10

Short-range wireless technology that allows your phone to act as a transit pass or credit card, quickly transfer data, or instantly pair with Bluetooth devices like headphones and speakers.

Answer 10

NFC - (Near Field Communication)

Question 11

A number used to protect private communications by preventing replay attacks. For the time being.

Answer 11

Cryptographic Nonce

Question 12

Arbitrary number that can be used with a secret key for data encryption to foil cyber attacks.

Answer 12

Initialization Vector

Question 13

Attacker sits in the middle between two stations and is able to intercept, and in some cases, change that information that’s being sent interactively across the network. Redirects traffic. Also known as Man In The Middle attack.

Answer 13

On-Path Attack

Question 14

On-path attack on the local IP subnet. It has no security.

Answer 14

ARP Poisoning (Address Resolution Protocol)

Question 15

Attacker is in the same computer, and a malware/trojan does the proxy work. Formerly known as man-in-the-browser.

Answer 15

On-Path Browser attack

Question 16

Attacker floods the switch’s MAC table and uses the switch as a hub and attacker captures all network traffic.

Answer 16

MAC Flooding

Question 17

Way that switches protect themselves from MAC flooding.

Answer 17

Flood Guard

Question 18

Attacker changes their MAC address to match the MAC address of an existing user.

Answer 18

MAC spoof / clone

Question 19

Happens when fake information is entered into the cache of a domain name server, resulting in DNS queries producing an incorrect reply, sending users to the wrong website

Answer 19

DNS Poisoning / Spoofing

Question 20

Attacker makes a service unavailable. Or they could be using a DoS as a smokescreen.

Answer 20

Denial of Service

Question 21

If you plug in the wrong cables to the wrong switch, you may inadvertently create a loop in your network, and cause the entire network to become unavailable.

Answer 21

Friendly DoS

Question 22

Here many devices might be used simultaneously to create bandwidth spikes or attack a particular service and cause it to be unavailable.

Answer 22

DDoS Distributed Denial of Service Attack

Question 23

Taking a small attack and make it arrive into the victim’s machine as a bigger attack.

Answer 23

DDoS Amplification

Question 24

Programs used to automate frequently used processes or tasks in Excel.

Answer 24

Macros