Threat Vectors and Attack Surfaces Flashcards
Mock Exam Revision
The 2 most common threat vector types that apply to MSPs, vendors, and suppliers in the supply chain?
MSPs (Managed Service Providers)
Are prime targets for brand impersonation attacks due to their access to multiple clients’ IT systems, sensitive data, and administrative privileges. Cybercriminals exploit MSPs’ trusted reputations to launch supply chain attacks, phishing campaigns, and ransomware infections.
- Propagation of malware
- Social engineering techniques
Which of the wireless technologies listed below are considered potential threat vectors and should be avoided due to their known vulnerabilities? (Select all that apply)
WPS, WAP, WPA, WAF, WPA2 and WEP
WPS, WPA, WPA2 and WEP
Agent-less software threat vectors
- Network protocol vulnerability
- Packet sniffing
Client-based software threat vector(s)
- Drive-by download via web browser.
- Malicious macro.
- USB-based attack.
- Infected executable file.
- Malicious attachment in email application.