Phishing Flashcards

1
Q

Social Engineering (Context of Information Security)

A

Social engineering is the psychological manipulation of people into performing actions or divulging confidential information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Spoofing (Context of Information Security)

A

A spoofing attack is a situation in which a person or program successfully identifies as another by falsifying data, to gain an illegitimate advantage. e.g. A fake identical website

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Typosquatting

A

A spoofing attack that takes the URL of a website but with misspelling/typo.

https: //Leo.com (Real)
https: //Loe.com (Typosquatting)
https: //Lleo.com (Prepending)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Pretexting

A
  • Lying to get information.

- Attacker calls and acts as if they are a representative of a company. e.g. utility service or phone carrier

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Pharming

A

Redirecting a legit website to a bogus website by using a poisoned DNS server or client vulnerability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Phishing

A

Collecting access credentials

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Vishing

A

Voice phishing - spoofing a phone number. Fake security checks or bank updates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Smishing (SMS phishing)

A

Spoofing via text message or links asking for personal information

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Attacker Reconnaissance

A

They gather information about you on Facebook, Twitter, Instagram etc. and build a believable pretext about you before they attempt their phishing attack. Where you work, where you bank, family and friends.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Spear phishing

A

Very specific targeted phishing attack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Whaling

A

Spear fishing a VIP such as a CEO, CFO, etc. Generally people with critical access or knowledge

How well did you know this?
1
Not at all
2
3
4
5
Perfectly