Threat Vectors

Question 1

_____ refers to how an intruder connects to a network, often enabled by poor basic security practices by employees.

Answer 1

Access

Question 2

_______ is used to described when an intruder creates a “foothold” in the network to allow a sustained presence.

Answer 2

Persistence

Question 3

In ________, this is when an intruder achieves the final objective, whether it is to interfere, monitor, steal, or alter data, deceive, disable, or destroy.

Answer 3

Control

Question 4

Utilizing any number of tricks to hide nefarious means.

Answer 4

Malicious Software

Question 5

The price of being lazy or being restricted by a program office that does not release updates fast enough.

Answer 5

Unpatched Software/Improper Server Configuration

Question 6

One of the most difficult threat vectors to defend against and even harder to detect when an adversary is using this vector.

Answer 6

Stolen, Legitimate Credentials

Question 7

Manipulation of Layer 8 of the OSI Model (The User).

Answer 7

Social Engineering

Question 8

One of the most serious threats to network security in the world today because of the dependency on email.

Answer 8

Phishing

Question 9

This threat vector is a targeted attack accomplished by exploiting a website known to be visited by the actual target.

Answer 9

Watering Hole

Question 10

When there are _______ _________ between domains, the authentication mechanism for each domain trusts the authentication mechanism for all other trusted domains.

Answer 10

Trust Relationships

Question 11

_____ is a code injection attack used to target data-driven applications with nefarious code.

Answer 11

SQL

Question 12

Scripts executed within user’s browser under the security context of the site they are visiting.

Answer 12

Cross-Site Scripting (XSS)

Question 13

Any piece of information that objectively describes an intrusion.

Answer 13

Indicator of Compromise (IOC)