Threats, Modules & Injection Attacks

Question 1

Threat actors

Answer 1

individuals or groups that carry out cyberattacks. They can be motivated by various factors such as financial gain, political agendas, espionage, or simply the challenge.

Question 2

Cyber criminals

Answer 2

(motivated by financial gain), hacktivists (political or social causes, nation state actors (sponsored by governments for espionage or disrupt nation activities), insiders (employees or contractors who misuse access to harm), terrorists (cause fear, harm, or disruption like ISIS)

Question 3

TPM - Trusted Platform Module

Answer 3

A hardware-based security feature found in many modern computers. It provides a secure environment for storing cryptographic keys, passwords, and other sensitive data

Question 4

HSM - (Hardware Security Module)

Answer 4

A dedicated hardware device designed to generate, manage, and store cryptographic keys. HSMs offer robust security by providing a physically isolated environment

Question 5

SQL injection

Answer 5

Attacker inserts malicious SQL code into a query, manipulating a database.

Question 6

Command injection

Answer 6

Attacker executes arbitrary commands on the host operating system.

Question 7

Code injection

Answer 7

Attacker injects code that is then executed by the application.

Question 8

LDAP injection

Answer 8

Attacker manipulates LDAP queries to access or modify data.