PM - Section 1.2 Attack Types

Question 1

What is Phishing?

Answer 1

Social engineering + spoofing

Often delivered by spam, usually very well done.

Question 2

What is Vishing?

Answer 2

Voice Phishing over the phone!

Question 3

What is Spearing Phishing?

Answer 3

Focus in on specific people - CEO is whaling.

Question 4

What is tailgating?

Answer 4

Use someone else gain access into a locked area to gain access.

Or wearing a camouflage.
Sneak in smoking break.

Question 5

How to stop tailgating?

Answer 5

Must identify everyone - visitors have a badge.
Scanning in must be one person at a time - air locks.
Train staff to ask about visitors.

Question 6

How to stop impersonation?

Answer 6

Never share PII.

Call numbers back and verify callers/emails.

Question 7

What is dumpster diving?

Answer 7

Sifting through trash for information.

Question 8

How do you protect against dumpster diving?

Answer 8

Shredding, locks, fence.

Check your own company’s trash and use for training.

Question 9

What is shoulder surfing?

Answer 9

Curious, competitive advantage, industrial espionage.

People use webcams, binos etc

Use privacy filters.

Question 10

What are computer hoaxes?

Answer 10

A way to waste time and consume resources.

A hoax about a virus can take as much time as a real virus.

Question 11

How to prevent hoax attacks?

Answer 11

Check on:
hoax-slayer.net
snopes.com

Spam filters can help

Question 12

What is a watering hole attack?

Answer 12

When your network/work environment is secure the attackers go to favorite coffee/sandwich shop and attack that place. Infect the wifi there and gain access through the coffee shop.

Question 13

What is social engineering?

Answer 13

Tricking someone to get info, phone calls/emails.
Authority - police/CEO calling...
Intimidation - the payroll wont go out.
Scarcity - this must happen now
Familiarity - Trusting/friends

Question 14

What is a denial of service? DoS

Answer 14

Force a service to fail - a design failure or vulnerability.
Could even just be an overload.
Could be simple e.g. cut power.

Question 15

What is a friendly DoS?

Answer 15

Unintentional DoS - Layer 2 loop without Spanning Tree on Switches.
Not enough bandwidth.
Water main break

Question 16

What is a DDoS?

Answer 16

Distributed Denial of Service - Botnets attack all at once for a coordinated attack.
DDoS attacks can be amplified

Question 17

What is a man-in-the-middle attack?

Answer 17

Interrupting traffic and watching.

Question 18

What is ARP poisoning?

Answer 18

AKA Spoofing!

Address Resolution Protocol has no security so you can update the ARP Cache.
Must be in the same local network.

Ettercap is a software to perform ARP poisoning.

Question 19

What is man-in-the-brower?

Answer 19

A proxy is created on the system, and all info is sent through the proxy.

The malware must be installed on the machine first.

Question 20

What is a buffer overflow?

Answer 20

Overwriting a buffer of memory. up to devs to stop it from happening.
Can open up access to the system and other variables.

Question 21

What is code injection?

Answer 21

Inject any code into an application. Many types - html, sql, xml, LDAP.

Good Applications can validate the incoming data.

Question 22

What is XSS?

Answer 22

Cross Site Scripting - Uses Javascript

Can have stored ones that live in a post on social networking site that gets activated when someone shared it.

Question 23

What is Cross Site request forgery attack?

Answer 23

XSRF or CSRF or Sea Surf