CHAPTER 1 -4

Question 1

Timeliness

Answer 1

New Information

Question 2

Confidence Levels

Answer 2

Evaluation method determined by timeliness, relavancy, and accuracy

Question 3

What are the 3 confidence levels

Answer 3

high
medium
low

Question 4

Indicator

Answer 4

Result of an observable event in a network
Any event used to gain understanding

Question 5

STIX

Answer 5

Structured Threat Information eXpression

Question 6

Who developed STIX?

Answer 6

MITRE and OASIS CTI

Question 7

STIX is structured so that users can describe 4 types of threats

Answer 7

motivation
abilities
capabilitiese
response

Question 8

TAXII

Answer 8

Trusted Automated eXchange of Intelligence Information

Question 9

What is TAXII

Answer 9

Defines how cyber threat information can be shared via services and message exchanges

Question 10

List of Threat Actors

Answer 10

Nation-State
Hacktivist
Organized Crime
Insider Threat

Question 11

Nation State

Answer 11

Well Funded
On behalf of government or government agencies

Question 12

Hacktivist

Answer 12

Social goal through hacking
decentralized

Question 13

Organized Crime

Answer 13

For the money
Often uses ransomware

Question 14

Insider Threat

Answer 14

Intentional
Unintentional

Question 15

Threat Classifications

Answer 15

Known vs unknown threats

Question 16

Zero Day

Answer 16

Exploits an undiscovered vulnerability

Question 17

APT

Answer 17

Advanced persistent threat

Question 18

Advanced

Answer 18

Well funded
often from nation state
coordinated

Question 19

Persistent

Answer 19

24/7

Question 20

Threat

Answer 20

Geopolitical
Focused on what they want

Question 21

Intelligence Cycle

Answer 21

Requirements