Threats, Attack, And Vulnerabilities Flashcards
What is Prepending?
Prepending is when a domain name purposely has an extra character in the beginning.
What is Identity Fraud?
Identity Fraud is when someone steals a person’s identity for financial gain or to gain information.
What is an Invoice Scam?
An invoice scam is when an attacker sends an invoice to a company so they may receive money for a product they did not order.
What is Credential Harvesting?
It is when an attacker uses an attack Vector (ex. DNS poisoning, MITM, Phishing, etc) to amass a large number of credentials (username/password)
What is Reconnaissance?
Reconnaissance is when someone is covertly gathering information on a system.
What is a Hoax?
A hoax is when an attacker tricks the user into believing something, so that they may gain information or allow an attacker to gain access to the system.
Impersonation
Impersonation is the act of pretending to be someone else for either financial gain or jokes.
Watering hole
A watering hole attack is an act of identifying a site that many employees from an organization visit and uses that and uses that site infects the employee’s devices with malware.
Diagram
The diagram is a schematic representation of the structure, the way something works, or even a plan.
Data Loss Prevention (DLP)
Data Loss Prevention is a solution that detects and prevents data breaches
What is Masking?
Masking is using characters or numbers in place of sensitive data. This is to make it unreadable by anyone who is not authorized to view it.
What is Encrypt?
Encrypt is the act of converting readable data into an encoded format. The only way to view it is through the process that decrypts the data.
What is “At rest”?
Data at rest is data that has reached its destination and is not being accessed or used.
What is “in Transit”?
Data in transit also known as data in motion is just data moving from one location to another.
What is Tokenization?
Tokenization is the process of replacing a piece of sensitive data with surrogate values known as a token.