Threat Actors

Question 1

Threat Actor Motivations

Answer 1

Data Exfiltration, Blackmail, Espionage, Service Disruption, Financial gain, Philosophical/Political Beliefs, Ethical Reasons, Revenge, Disruption/Chaos, and War

Question 2

Threat Actor Attributes

Answer 2

Internal vs. External Threat Actors, Differences in resources and funding, and Level of sophistication

Question 3

Hacktivists

Answer 3

Driven by political, social, or environmental ideologies

Question 4

Unskilled Attacker

Answer 4

Limited technical expertise, use of readily available tools

Question 5

Organized Crime

Answer 5

Execute cyberattacks for financial gain (ex. ransomware & identity theft)

Question 6

Nation-state Actor

Answer 6

Highly skilled attackers sponsored by governments for cyber espionage or warfare

Question 7

Insider Threats

Answer 7

Security threats originating from within the organization

Question 8

Shadow IT

Answer 8

IT systems, devices, software, or services managed without explicit organizational approval

Question 9

Threat Vectors & Attack Surfaces

Answer 9

Message-based, Image-based, File-based, Voice calls, Removable Devices, Unsecured networks

Question 10

Honeypots

Answer 10

Decoy SYSTEMS to attract and deceive attackers

Question 11

Honeynets

Answer 11

Network of decoy systems for observing complex attacks

Question 12

Honeyflies

Answer 12

Decoy files to detect unauthorized access or data breaches

Question 13

Honeytokens

Answer 13

Fake data to alert administrators when accessed or used