Assets, Threats, and Vulnerabilities: Module 3

Question 1

Advanced Persistent Threat (APT)

Answer 1

When a hacker stays inside a system for a long time without permission

Question 2

Attack Surface

Answer 2

All the places a hacker could break into

Question 3

Attack Tree

Answer 3

A diagram showing how a hacker might attack

Question 4

Attack Vector

Answer 4

The path a hacker uses to break in

Question 5

Bug Bounty

Answer 5

A reward program for finding security problems

Question 6

Common Vulnerabilities and Exposures (CVE®) List

Answer 6

A public list of known security problems

Question 7

Common Vulnerability Scoring System (CVSS)

Answer 7

A system that scores how bad a vulnerability is

Question 8

CVE Numbering Authority (CNA)

Answer 8

Groups that help add new security problems to the CVE list

Question 9

Defense in Depth

Answer 9

Using many layers of security to stay safe

Question 10

Exploit

Answer 10

A trick that uses a security problem to cause harm

Question 11

Exposure

Answer 11

A mistake that makes a system easier to attack

Question 12

Hacker

Answer 12

Someone who tries to access systems or data

Question 13

MITRE

Answer 13

A group that helps with research on public safety and cybersecurity

Question 14

Security Hardening

Answer 14

Making a system stronger and harder to hack

Question 15

Threat Actor

Answer 15

Anyone who might cause harm to systems or data

Question 16

Vulnerability

Answer 16

A weakness that hackers can use to break in

Question 17

Vulnerability Assessment

Answer 17

A checkup to find weaknesses in security

Question 18

Vulnerability Management

Answer 18

The process of finding and fixing security problems

Question 19

Vulnerability Scanner

Answer 19

A tool that checks for known weaknesses

Question 20

Zero-Day

Answer 20

A brand-new security problem that no one knew about before