Threats, Attacks, and Vulnerabilities 2

Question 1

A __________ _________ attack is where an attacker gains the same level of authorization as the administrator.

Answer 1

Privilege escalation

Question 2

___________ ___________ is where an attacker will ring up a help desk and ask them to reset the password for a user account.

Answer 2

Active reconnaissance

Question 3

XSS targets _________, while remote exploits target ______ ______ .

Answer 3

Servers, end users

Question 4

_____________ is wireless authentication that starts off by inserting a password, meaning that you only need to press a button to gain access to the wireless network.

Answer 4

WPS

Question 5

A ________ attack is an interception attack where the data is forwarded at a later time and can be prevented by using Kerberos authentication that uses updated sequence numbers and timestamps.

Answer 5

Replay

Question 6

A ___________ is where an attacker will ask you to look into the Windows\System32 folder to find an icon, such as a bear. If you find this icon, they will then ask you to delete the bear, as it is a virus. But when you do this, you will, in fact, delete a system file.

Answer 6

HOAX

Question 7

My airplane was delayed and my free time on the wireless captive portal expired. I can use ________ _______ to bypass the captive portal for another session of free wireless access.

Answer 7

MAC spoofing

Question 8

Digital signatures are susceptible to a ___________ _______, a hash-collision attack.

Answer 8

Birthday attack

Question 9

__________ and _________ are both used for driver manipulation.

Answer 9

Shimming and refactoring

Question 10

An auditor discovers that 50 new desktops have not been hardened properly, and puts it down to the fact that __________ ___________ had not been implemented early in the deployment.

Answer 10

Security baseline

Question 11

______ ______ of failure is where one person, device, or service could cause damage to the company’s systems if it failed.

Answer 11

Single point

Question 12

__________ _____ could inadvertently violate security policies and become vulnerable to a cybercrime or phishing attack.

Answer 12

Untrained users

Question 12

__________ _______ is where proprietary code is tested by a consultant for security flaws.

Answer 12

Regression testing

Question 13

________ prevents duplicate passwords from being stored and slows down brute-force attacks.

Answer 13

Salting

Question 14

_________ __________ is where an arithmetic calculation exceeds the maximum size an application can accept. It can be mitigated by using input validation.

Answer 14

Integer overflow

Question 15

____________ _______ on your network will not be patched and could be used for pivoting as they become vulnerable.

Answer 15

Undocumented assets

Question 16

A __________ attack uses a legitimate website with links—for example, a Like button, a Share button, a free trial, or an Isn’t This Funny? link.

Answer 16

Clickjacking

Question 17

A ____ ___________ is where two threads access the same data at the same time and either cause the computer to crash or give an illegal operation error.

Answer 17

Race condition

Question 18

_____‐____ ________ ________attack is where a user is logged into a legitimate website and clicks on a link where an embedded program is located. This is also known as a one‐click attack, XRSF, or CSRF.

Answer 18

Cross-site reverse forgery

Question 19

_______ ________ password attacks can detect every available combination of characters and can be stopped by using an account lockout or by salting the password using bcrypt or PBKDF2.

Answer 19

Brute Force

Question 20

Both smurf attacks and DDoS attacks are known as _________ attacks.

Answer 20

Amplification

Question 21

Using SSL instead of TLS for data in transit could lead to a POODLE attack that is known as a ___________ attack.

Answer 21

Downgrade

Question 22

To protect data in transit, you should use encryption where plaintext is changed to ___________.

Answer 22

Ciphertext

Question 23

An attacker will try and log into your control panel to launch a ________
__________ attack.

Answer 23

Domain hijacking

Question 24

A store had small devices stolen over the last three months. They rolled out _______ to prevent the small devices from leaving the store undetected.

Answer 24

RFID

Question 25

A ___‐__‐____‐_______ attack is where a previously installed trojan intercepts your online banking transactions without changing the bank’s URL.

Answer 25

Man‐in‐the‐browser

Question 26

_______ ___________ is what a pen tester will carry out first, based on the information they have.

Answer 26

Initial exploitation

Question 27

_____‐______ is the strongest form of wireless security.

Answer 27

WPA2‐CCMP

Question 28

The Stuxnet virus is an example of a ___________ threat as it infected a computer system for about two years before it was discovered.

Answer 28

Persistent

Question 29

_____ _______ suites are where the key size is less than 1024 bits, and should be avoided.

Answer 29

Weak cipher

Question 30

A ___‐_____________ vulnerability scan can find only missing patches.

Answer 30

Non‐credentialed

Question 31

A ____________ vulnerability scan has the ability to audit files and find account vulnerabilities.

Answer 31

Credentialed

Question 32

A CEO instructs the finance team to urgently send payment to ABC Limited just before he boards an aircraft on a transatlantic flight. This is an example of a social engineering ___________ and a __________ attack.

Answer 32

Authority, urgency

Question 33

An ______‐__________ vulnerability scan will not cause damage to the computer system.

Answer 33

Non‐intrusive

Question 34

______ _______ ___________ is a wireless payment system that only works from close range.

Answer 34

Near field communication

Question 35

An HVAC system that is no longer supported by the manufacturer is known as _____ of __.

Answer 35

End, life

Question 36

A ______ ___________ is where a monitoring system tells me that an exploit has been found on the system, but when a manual inspection is done, nothing is found.

Answer 36

False positive

Question 37

A __________virus accesses a computer system by using a password that has been there since the installation of the application.

Answer 37

Backdoor

Question 38

___________ _______________is where an attacker will visit a company’s website and social media websites to collect information about the company.

Answer 38

Passive reconnaissance

Question 39

A _________ _____ can be used to stop data-processing emissions being intercepted by a third party.

Answer 39

Faraday cage

Question 40

Changing the _________ _____________ and preventing IoT devices from directly accessing the _________ will help protect home networks from attacks.

Answer 40

Default configuration, internet

Question 41

________ ________ threat actors have a level of sophistication and provide advanced persistent threats.

Answer 41

Nation State

Question 42

When a system has come to the end of its life, the vendor will have a lack of _________ ____________.

Answer 42

Vendor support

Question 43

_____ is the most insecure method of wireless security and should never be used, as it can be easily attacked.

Answer 43

WEP

Question 44

__________ ________ threat actors are motivated by profits and may use blackmail.

Answer 44

Organized crime

Question 45

______ ________ ___________ can be sourced from publicly available intelligence sources.

Answer 45

Open source intelligence

Question 46

______ ____________ prevents SQL injection, buffer overflow, and integer overflow attacks.

Answer 46

Input validation

Question 47

A company keeps the keys to all of the offices in the reception area and the workers sign the keys in and out each day. This is known as ____ ______________, and it prevents people from taking the keys home with them.

Answer 47

Key management

Question 48

The policy of a company is to change the ________ ______________ of any new device that they purchase to ensure that it is more secure.

Answer 48

Default configurations

Question 49

____________ __________ can cause your internet bandwidth to be reduced and your server disk space to decrease.

Answer 49

Unauthorized software