threats attacks and vulnerabilities

Question 1

What type of attack can use a hidden password that has been in place since the
application was installed?

Answer 1

backdoor

Question 2

What type of attack cannot be detected by a NIPS, NIDS, firewall, or a SIEM system, but
can only be detected by using baselines?

Answer 2

zero day

Question 3

You have just started working at the reception desk of a multinational corporation.
During your induction period, one of the middle managers asks your coworker for some
information. You are not too sure if he is entitled to that information. The next day, when
your coworker has gone to lunch, the middle manager arrives asking you for the same
information, this time updated a little. You don’t want to be seen as different from other
employees, and so you give him the information. What type of attack has just been
launched?

Answer 3

social engineering consensus

Question 4

The CEO has received an email asking him to click on a link and carry out an action so
that his salary information can be updated, as the company is moving to a new financial
system. What type of attack has just been launched?

Answer 4

whaling

Question 5

Five seconds after connecting to the company’s wireless network, the sessions
drop. What type of wireless attack have I been the victim of?

Answer 5

wireless disassociation

Question 6

A hacker has managed to gain access to my Bluetooth phone and has been texting all of
my friends, announcing that I am going to get married next year. This information is false.
What type of attack has just been carried out?

Answer 6

bluejacking

Question 7

A hacker has managed to gain access to my Bluetooth phone and has been able to steal
my contact information. What type of attack has been carried out?

Answer 7

blue snarfing

Question 8

What type of attack is an interception attack where the data has been replayed
immediately?

Answer 8

mitm

Question 9

What type of attack is an interception attack where the data has been replayed at a later
date?

Answer 9

replay

Question 10

two ways to prevent sql injection?

Answer 10

stored procedures and input validation

Question 11

What type of attack interferes with my wireless network?

Answer 11

jamming

Question 12

My domain controller uses NTLM authentication. What type of attack makes it
vulnerable?

Answer 12

pass the hash

Question 13

how to prevent pass the hash?

Answer 13

kerberos and disable ntlm

Question 14

What is the most difficult threat actor to detect and why?

Answer 14

insider already in your network and know about it

Question 15

An attacker has managed to gain access to your corporate network through a host that
was not fully patched. Once he gained access to that host, he then launched an attack on
your SQL database server so that he could steal your customer’s credit card details. What
type of technique did the attacker adopt?

Answer 15

pivoting

Question 16

what is resource exchausition?

Answer 16

cpu being overloaded

Question 17

What type of attack launches directed IP broadcasts to the border router where the
victim is overloaded with the resulting ping replies? What can you do to mitigate this
attack?

Answer 17

smurf attack

Question 18

pharming attack

Answer 18

redirects users to malicous site

Question 19

typo squatting

Answer 19

a hacker buys domains in similar name in case you mispell website name

Question 20

session hijacking

Answer 20

attacker steals cookies from your computer system

Question 21

what is a benefit of key stretching?

Answer 21

salting is a form and it prevents duplicate passwords

Question 22

An attacker will try and log into your control panel to launch a ______ attack

Answer 22

domain hijacking

Question 23

XSS targets _________, while remote exploits target ______ ______

Answer 23

Servers, end users

Question 24

Digital signatures are susceptible to a ___________ _______, a hash-collision attack

Answer 24

birthday attack

Question 25

A ________ attack is an interception attack where the data is forwarded at a later time
and can be prevented by using Kerberos authentication that uses updated sequence
numbers and timestamps

Answer 25

replay

Question 26

A CEO instructs the finance team to urgently send payment to ABC Limited just before
he boards an aircraft on a transatlantic flight. This is an example of a social engineering
___________ and a __________ attack

Answer 26

authority and urgency

Question 27

2 ways to secure IOT devices?

Answer 27

change default config and prevent them from directly accessing internet

Question 28

input validation prevents what type of attacks?

Answer 28

SQL injection, buffer overflow, and integer overflow

attacks

Question 29

company keeps the keys to all of the offices in the reception area and the workers sign
the keys in and out each day. This is known as ____ ______________, and it prevents people
from taking the keys home with them.

Answer 29

key management

Question 30

what is a weak cipher suite?

Answer 30

where the key size is less than 1024 bits, and should be

avoided

Question 31

SSL instead of TLS for data in transit could lead to a POODLE attack that is
known as a ___________ attack

Answer 31

downgrade

Question 32

main in the browser

Answer 32

previously installed trojan intercepts your

online banking transactions without changing the bank’s URL

Question 33

Cross-site reverse forgery

Answer 33

user is logged into a legitimate website

and clicks on a link where an embedded program is located.

Question 34

Cross-site reverse forgery also known as what three items?

Answer 34

This is also known as a oneclick

attack, XRSF, or CSRF

Question 35

regression testing

Answer 35

proprietary code is tested by a consultant for security

flaws

Question 36

single point of failure

Answer 36

where one person, device, or service could cause damage to

the company’s systems if it failed