Survey of Malicious Activities

Question 1

Which is a type of brute force attack where the attacker slowly performs brute force logins based on a list of usernames with default passwords on the application?
A. Downgrade
B. Spraying
C. Spoofing
D. Brute force

Answer 1

B. Spraying

Question 2

Which popular form of malware encrypts key files and captures them until the victim pays the attackers in Bitcoin?
A. Firmware
B. Bloatware
C. Spyware
D. Ransomware

Answer 2

D. Ransomware

Question 3

Which type of attack leverages a scenario when two different inputs can produce the same fingerprint or digest?
A. Side channel
B. Brute force
C. Collision
D. Downgrade

Answer 3

C. Collision

Question 4

Which common form of DDoS attack involves a network of zombie systems and a master command and control (C&C) server to remotely control the victims?
A. Amplification attack
B. Cache Poisoning attack
C. Botnet attack
D. Extranet attack

Answer 4

C. Botnet attack

Question 5

Which of these would be considered an indicator of compromise? Choose more than one option.
A. Logging to a SIEM system
B. Impossible to travel
C. Blocked content
D. High resource consumption
E. Concurrent session usage
F. Successful logins

Answer 5

B. Impossible to travel
C. Blocked content
D. High resource consumption
E. Concurrent session usage

Question 6

Which physical attack uses devices that overlay an ATM machine or point-of-sale scanner to steal the information from the victim>
A. Spoofing
B. Skimming
C. Brute force
D. RFID cloning

Answer 6

B. Skimming

Question 7

Which form of application attack changes a program’s execution path and overwrites elements of its memory, which amends the program’s execution path to damage existing files or expose data?
A. Buffer overflow
B. Credential replay
C. Directory traversal attack
D. Replay attacks

Answer 7

A. Buffer overflow