Vulnerabilities

Question 1

A list of publicly disclosed computer security vulnerabilities and exposures database.

Answer 1

CVE - Common Vulnerabilities and Explosion

Question 2

A vulnerability used against you that has never been seen up to this point. Meaning is brand new.

Answer 2

Zero-day Attack

Question 3

When information has been put onto the internet but no security has been applied to that data, so an attacker just waited for you to leave the door open and walked into your system.

Answer 3

Open Permissions Problem

Question 4

Type of encryption key management solution where only one key is used to both, encrypt and decrypt electronic data.

Answer 4

Symmetric Encryption

Question 5

Type of encryption that is also known as public key encryption, and makes the HTTPS protocol possible. Two keys are used instead of one.

Answer 5

Asymmetric Encryption

Question 6

Below how many bits, are encryption ciphers considered weak and low in protection?

Answer 6

128 bits

Question 7

Group of protocols that are less protective and should not be use to transmit data.

Answer 7

FTP, SMTP, IMAP, HTTP, and Telnet

Question 8

Malware that takes advantage of default usernames and passwords, and takes control of their system to make them part of a botnet group and eventually use it for DDoS attack. It is open souce so anyone can download it and modify it for their own purposes making it very dangerous.

Answer 8

Mirai Botnet

Question 9

Network security software that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

Answer 9

Firewall

Question 10

Term that refers to outdated or older computer systems.

Answer 10

Legacy

Question 11

Scan designed to look at systems to see if potential vulnerabilities might exist in an operating system, network device or application. Tries to determine from the outside if there is a potential threat access.

Answer 11

Vulnerability Scan

Question 12

Type of scan that looks into a device and tries to determined what ports happen to be responding to that IP Address.

Answer 12

Port Scan

Question 13

When you scan as if you are someone who has no access to the network.

Answer 13

Non credentialed scan

Question 14

When you run a scan as if you where an insider and have access to the network.

Answer 14

Credential scan

Question 15

A vulnerability that is reported but doesn’t really exist.To avoid this, you should have your software scan tools updated to the latest version.

Answer 15

False Positive

Question 16

A vulnerability exists but you didn’t detect it. To avoid this, you should have your software scan tools updated to the latest version.

Answer 16

False negative

Question 17

System designed to collect information from anything on the network that can create log files, security alerts, or any type of real time information that can tell us about what’s happening on the network right now.

Answer 17

SIEM - Security Information and Event Management

Question 18

Part of a SIEM and plays a crucial role in collecting and aggregating log data from various sources for analysis and correlation.

Answer 18

Syslog

Question 19

It is a cybersecurity technology that focuses on detecting insider threats, advanced persistent threats (APTs), and other malicious activities by analyzing the behavior of users and entities within an organization’s network.

Answer 19

UEBA - User and Entity Behavior Analytics

Question 20

The process of analyzing digital text to determine if the emotional tone of the message is positive, negative, or neutral.

Answer 20

Sentiment Analysis

Question 21

Technology helps coordinate, execute and automate tasks between various people and tools all within a single platform. This allows organizations to not only quickly respond to cybersecurity attacks but also observe, understand and prevent future incidents, thus improving their overall security posture.

Answer 21

SOAR - Security orchestration, automation, and response

Question 22

Refers to the ability of an attacker to maintain unauthorized access to a compromised system or network over an extended period of time, even after initial access has been achieved.

Answer 22

Persistence

Question 23

Refers to a compromised system or network component that an attacker uses as a foothold to launch further attacks or gain access to additional systems or resources within a target environment.

Answer 23

Pivot Point