Tools Of The Bad Guys Flashcards
What is a data breach?
The intentional or unintentional release of secure information to an untrusted environment. Other terms for this are unintentional information disclosure, data leak, and data spill
What is a DoS attack?
Stands for “denial of service” attack. The attackers seek to make a computer or network unavailable to its intended user by temporarily or indefinitely disrupting the service.
What is a security vulnerability?
A weakness on a network computer or software which allows a bad guy to gain access. It has three elements: a flaw, access to the flaw, and capability to exploit the flaw
What is an exploit?
Software or code, usually malicious, that takes advantage of a flaw or vulnerability. The purpose is to cause unintended or unanticipated behavior to occur with the software or Hardware. Such Behavior would be unauthorized access, control of a computer, or denial of service.
What is a zero-day?
The name of a vulnerability unknown to those who would be interested in securing it, which includes the software vendor or user. The bad guys use these vulnerability to launch an attack.
What is a zero- day exploit?
Also known as “zero-day attack” it is an exploit that takes advantage of a zero-day vulnerability on its first day of release before the vendor knows about it.
What is an advanced persistent threat?
Also known as APT, it is a network attack in which an unauthorized person gains access to a network and stays there undetected for a long period of time. The bad guy’s goal is to go undetected and steal data rather than cause damage to the network or organization.
What is tailgating?
Also known as piggybacking, tailgating is a method used by bad guys to gain access to a building or other protected areas. A tailgater waits for an authorized user to open and pass through a secure entry and then follows right behind.
What is a keylogger?
Malware or Hardware that observes what someone Types on their keyboard, which is then sent back to the bad guys.
What is Bitcoin?
A digital currency in which encryption (the process of converting information or data into a code) techniques are used to regulate the generation of units of currency and verify the transfer funds operating independently of a central bank.
What is a money mule?
A person recruited by a criminal or criminal organization to quickly receive and turn around funds involved in scams. This person is often unaware of the role in the criminal act.
