Threats Flashcards
What is a threat actor?
An individual or group that poses a threat to an organization or system.
What are the attributes of a nation state threat actor?
Extensive resources and very high sophistication.
What are the motivations of a nation state threat actor?
Data exfiltration, philosophical beliefs, revenge, disruption, and war.
What are the attributes of an unskilled external threat actor?
Limited resources and very low sophistication.
What are the motivations of an unskilled external threat actor?
Disruption and data exfiltration.
What are the attributes of a hacktivist?
Some funding and can be high sophistication.
What are the motivations of a hacktivist?
Philosophical beliefs, revenge, and disruption/chaos.
What are the attributes of an insider threat?
Many resources and medium sophistication.
What are the motivations of an insider threat?
Revenge and financial gain.
What are the attributes of organized crime as a threat actor?
Often extensive resources and very high sophistication.
What is the motivation of organized crime?
Financial gain.
What are the attributes of shadow IT?
Many resources and limited sophistication.
What are the motivations of shadow IT?
Philosophical beliefs and revenge.
What are threat vectors?
Methods used by attackers to exploit vulnerabilities.
What are message-based vectors?
Methods such as phishing attacks and social engineering.
What is a common method of phishing?
People clicking links in emails or texts.
What is an image-based vector?
Threats hidden within image files, such as SVG format.
What are significant security concerns with image-based vectors?
HTML injection and Javascript attack code.
What are file-based vectors?
Malicious code hidden in various file formats like PDFs and ZIP files.
What is vishing?
Phishing attacks conducted over the phone.
What are removable device vectors?
Malicious software on USB drives that can infect networks.
What is a potential risk of USB devices?
They can act as keyboards, allowing for data exfiltration.
