Week 2 Flashcards
What is computer virus?
malicious code written to interfere with computer operations and cause damage to data and software
What is malware?
software designed to harm devices or networks
What is social engineering?
a manipulation technique that exploits human error to gain private information, access, o valuables
What is phishing?
the use of digital communications to trick people into revealing sensitive data or deploying malicious software
What are some common types of phishing?
There are 5 types
- Business Email Compromise (BEC)
- Spear Phishing
- Whaling
- Vishing
- Smishing
What are the different types of malware?
There are 4 types
- Viruses
- Worms
- Ransomware
- Spyware
What are some common types of social engineering?
There are 4 types
- Social Media Phishing
- Watering Hole Attack
- USB Baiting
- Physical Social Engineering
What is Business Email Compromise?
A threat actor sends an email message that seems to be from a known source to make a seemingly legitimate request for information, in order to obtain a financial advantage
What is spear phishing?
A malicious email attack that targets a specific user or group of users. The email seems to originate from a trusted source
What is whaling?
A form of spear phishing. Threat actors target company executives to gain access to sensitive data
What is vishing?
The exploitation of electronic voice communication to obtain sensitive information or to impersonate a known source
What is smishing?
The use of text messages to trick users, in order to obtain sensitive information or to impersonate a known source
What are viruses?
Malicious code written to interfere with computer operations and cause damage to data and software
What are worms?
Malware that can duplicate and spread itself across systems on its own
- a worm does not need to be downloaded by a user
- self-replicates and spreads from an already infected computer to other devices on the same network
What is ransomware?
A malicious attack where threat actors encrypt an organization’s data and demand payment to restore access
What is spyware?
Malware that’s used to gather and sell information without consent. Spyware can be used to access devices. This allows threat actors to collect personal data, such as private emails, texts, voice and image recordings, and locations
What is social media phishing?
A threat actor collects detailed information about their target from social media sites. Then, they initiate an attack
What is a watering hole attack?
A threat actor attacks a website frequently visited by a specific group of users
What is USB baiting?
A threat actor strategically leaves a malware USB stick for an employee to find and install, to unknowingly infect a network
What is physical social engineering?
A threat actor impersonates an employee, customer, or vendor to obtain unauthorized access to a physical location
What are password attacks?
an attempt to access password secured devices, systems, network, or data
what are physical attack?
a security incident that affects not only digital but also physical environments where the incident is deployed
What is Adversarial Artificical Intelligence?
a technique that uses AI Technology to conduct attacks more efficiently
What are supply-chain attack?
targets systems, applications, hardware, software to locate a vulnerability where malware is deployed
What is cryptographic attack?
Affects secure forms of communication between a sender and intended recipient
