Chapter 16

Question 1

Whats cyber threats

Answer 1

threats that comes from individual hackers, criminal groups

Question 2

Whats cybersecurity

Answer 2

The measure a company takes to protect a computer or a systems against unauthorized access or attacks

Question 3

What are some of the recent cyber attacks

Answer 3

Colonial pipeline : Attack for ransomware
Florida water supply : Hacker accessed the water and increased the sodium hydroxide levels to fatals amounts
Equifax: Names ,social security and more were stolen during data breach

Question 4

Whats is Nation Institute of Standard and Technology (NIST) five functions that company should address to cybersecurity risk

Answer 4

1. recover
   2.Identify
2. Protect
3. Detect
4. Respond

Question 5

Whats the cyber kill chain

Answer 5

the life cycle of cyberattack from the early stage of gathering information through the final steps of damaging the network

Question 6

The three steps in cyber kill chain are

Answer 6

gathering info about the network
Accessing the network
Disrupting the network, causing damage

Question 7

What are the 3 types of cyber attacks

Answer 7

Reconnaissance attacks
Access attacks
Disruptive attacks

Question 8

Explain reconnaissance attacks

Answer 8

knowledge gathering attacks that help attackers identify targets and plan their operations.
They can set the stage for later access and disrupt the network

Question 9

When gathering information whats are the categories and explain them

Answer 9

Physical attack: Threaten element a network administrator has no control over. Ex: people, physical security

Logical attacks: Occur on a fully digital spectrum

Question 10

Whats physical reconnaissance attack

Answer 10

use human interaction to generate info about the network

Question 11

Phishing is

Answer 11

involves persuading people to perform acts that would give access to confidential information

Question 12

Whats email phishing

Answer 12

deceptive request designed to trick the victim into sharing private information

Question 13

Whats dumpster diving

Answer 13

is looking through someone else physical trash

Question 14

Eavesdropping is

Answer 14

unauthorized interception of communication

Question 15

To avoid the eavesdropping risk company

Answer 15

use encrypt data and secure communication line. They use file transfer protocol (FTP) that allows them to transfer between company network and outside parties

Question 16

What a logical reconnaissance attacks

Answer 16

use digital attacks and does not require human target

Question 17

Ping sweeps ( IP Probe) is

Answer 17

identify which host are active in the network by sending communication to each ip address to see if there is a response packet. If the IP does not sent a response packet the packet assumes that the IP address is not active and remove it from the list of prospective access points

Question 18

Port scnas is

Answer 18

After the ping sweeps is port scans which indicates the ports that are open and sending or receiving data on the network. They wait for the packet to sees if the ports are active

Question 19

What are logical reconnaissance control activities and explain them

Answer 19

Vulnerability scans: Its perform to detect and classify security loopholes in the infrastructure
Penetration test : Its attempting to hack their own company
Patches: company must ensure that their are running the up to date patches

Question 20

Whats a physical access attacks

Answer 20

result in acces to either hardware or people

Question 21

Example of physical acesss attacks

Answer 21

Tailgating

Accidental tailgating: authorized user is unaware
Polite tailgating; authorized user is aware of the other person but may politely hold the door for the tailgater

Question 22

Whats logical access attacks

Answer 22

seek unauthorized acess to a systems or an application by either exploiting a network vulnerability during renaissance attack or use force to get t

Question 23

Brute force attack are

Answer 23

attackers attempting many password to access the network before finding the correct one

Question 24

On path attack are

Answer 24

hacker is actively injected into the connection ( just like eavesdropping)

Question 25

IP Spoofing is

Answer 25

Creates and IP with modified addresses to disguise their identity and impersonate a legitimate computer network

Question 26

hat are the packets in IP Spoofing

Answer 26

Normal packet: IP address of the packet sender
Spoofed packets: Forged sources address

Question 27

Whats denial of service attacks

Answer 27

the goal is to send excessive traffic to a server so that it is unavailable for real users

Question 28

What are Botnets

Answer 28

they are computers that are programmed to do whatever the attackers want

Question 29

Whats a distributed denial of service attacks

Answer 29

uses multiple computers to increase pressure on the victim server unti its unavailable

Question 30

What are malware attacks

Answer 30

Malicious code that is written to cause harm and attack the target system

Question 31

What is an example of malware

Answer 31

virus

Question 32

Explain worms

Answer 32

replicate human interaction whitout assistance

Question 33

Explain logic bomb

Answer 33

malicious code that is programmed into a systems and remains dormant until certain conditions are met. They are difficult to detect or prevent until they are active

Question 34

Trojan horse is

Answer 34

disguised as software but carries malicious code that may activated via a logic bomb. They are non replicating and use to obtain back door access