S3 - THREAT ACTORS

Question 1

There are 10 types of actor motivations. Name at the most commons ones

Answer 1

Data Exfiltration (cxc), Financial Gain, Espionage, Revenge, Ethical (pentest) ||| War, Sevice Disruption, Blackmail, Political Beliefs, Chaos

Question 2

Name the three types of Threat Attributes

Answer 2

Internal vs External, Resource and Funding, Capability

Question 3

Caracterist of unskilled attacker

Answer 3

“Script Kiddie”, can’t develop his own hacking tools, lacks technical knowledge, seeks some king of recognition. Can still cause harm and losses

Question 4

Caracteristics of Hacktivist

Answer 4

Individual who enagages in hacktivism, movitated by social or political cause. Likley skilled

Question 5

Caracteristics of Organized Cyber Crime Grupos

Answer 5

High technical skills, driven by financial gain, well-structured

Question 6

Its common that a Nation-State actor use a false flag attack. What is it?

Answer 6

A false flag attack is an attack that can be falsely tracked back into another country or institution (ex: South Korea olimpics, was tracked with some North korean common technologies but was from Russians) THEY ARE SOPHISTICATED, zero day exploits

Question 7

Insider Threat caracteristics

Answer 7

Threats that originate from within the organization

Question 8

What is Shadow IT?

Answer 8

Is the use of any Technology System (hardware or software) without your organization approval

Question 9

Define Threat Vector and name three of them

Answer 9

Threat vector is the mean that the attacker will use to attack. Like a message, image, file, voice call, Removable devices, unsecured networks.

Question 10

Name the 4 baits or honeys (explain them)

Answer 10

Honeypot (bait system), Honeynet (bait net, with router, system and switches), Honeyfiles (bait files, watermarked), Honeytokens (fake users or tokens)