Overview of Security Objs

Question 1

3 A’s of security

Answer 1

Authentication Authorization
Accounting

Question 2

Authentication

Answer 2

When a persons identity is established with proof and confirmed by a system

Question 3

Authorization

Answer 3

Occurs when a user is given access to a certain piece of data or certain areas of a building

Question 4

Accounting

Answer 4

Tracking of data, computer usage, and network resources

Question 5

Malware

Answer 5

Malicious Software

Question 6

Unauthorized Access

Answer 6

Occurs when access to computer resources and data happens without the consent of the owner

Question 7

System Failure

Answer 7

When a computer crashes or a application fails

Question 8

Social Engineering

Answer 8

Act of manipulating users into revealing confidential information or preforming other detrimental actions

Question 9

Physical Controls

Answer 9

Alarm systems, Locks, Surveillance cameras, ID Cards, security guards ect.

Question 10

Technical Controls

Answer 10

Smart cards, Encryption, access control lists (ACLs), intrusion detection systems, and network authentication

Question 11

Administrative controls

Answer 11

Policies, procedures, security awareness training, contingency planning, and disaster recovery plans

Question 12

White Hat Hacker

Answer 12

Non-Malicious Hackers who attempt to break into a company’s system at their request

Question 13

Black Hat Hacker

Answer 13

Malicious Hackers who break into computer systems and networks without authorization or permission

Question 13

Gray Hat Hacker

Answer 13

Hackers with no affiliation to a company that attempts to break into a company’s network and risks breaking the law

Question 13

Script Kiddies

Answer 13

Hackers with little to no skill who only use the tools and exploits written by others (Bottom of threat actors)

Question 13

Hacktivists

Answer 13

Hackers who are driven by a cause like social change, political agendas or terrorism
(2nd to bottom of threat actors)

Question 13

Organized Crime

Answer 13

Hackers who are part of a crime group that is well-funded and highly sophisticated
(2nd to top of threat actors)

Question 13

Blue hat hacker

Answer 13

Hackers who attempt to hack into a network with permission of the company but are not employed by the company

Question 13

Elite Hackers

Answer 13

Hackers who find and exploit vulnerabilities before anyone else does

Question 14

Advanced Persistent Threats (APT)

Answer 14

Highly trained and funded groups of hackers (often by nation states) with covert and open-source intelligence at their disposal

Question 14

Timeliness

Answer 14

Property of an intelligence source that ensures it is up-to-date

Question 15

Relevancy

Answer 15

Property of an intelligence source that ensures it matches the use cases intended for it

Question 16

Accuracy

Answer 16

Property of an intelligence source that ensures it produces effective results

Question 17

Confidence Levels

Answer 17

Property of an intelligence source that ensures it produces qualified statements about reliability

Question 18

Proprietary Intelligence

Answer 18

Threat intelligence is very widely provided as a commercial service offering, where access to updates and research is subject to a subscription fee

Question 19

Closed-Source Data

Answer 19

Data that is derived from the provider’s own research and analysis efforts, such as data from honeynets that they operate, plus information mined from its customers’ systems, suitably anonymized

Question 20

Open-Source Data

Answer 20

Data that is available to use without subscription, which may include threat feeds similar to the commercial providers, and may contain reputation lists and malware signature databases

Question 21

Open-Source Intelligence (OSINT)

Answer 21

Methods of obtaining information about a person or organization through public records, websites, and social media

Question 21

Kill Chain

Answer 21

A model developed by Lockheed Martin that describes the stages by which a threat actor progresses a network intrusion

Question 22

Threat Hunting

Answer 22

A cybersecurity technique designed to detect presence of threats that have not been discovered by normal security monitoring

Question 23

MITRE ATT&CK Framework

Answer 23

A knowledge base maintained by the MITRE corporation for listing and explaining specific adversary tactics, techniques, and common knowledge or procedures (attack.mitre.org)

Question 24

Diamond Model of Intrusion analysis

Answer 24

A framework for analyzing cybersecurity incidents and intrusions by exploring the relationships between four core features: adversary, capability, infrastructure, and victim