Chapter 2- Type of Attack Indicators

Question 1

Malware

Answer 1

harmful software

Question 2

Virus

Answer 2

Malware that can reproduce itself

Question 3

Fileless virus

Answer 3

a piece of malware that operates only in the memory of the computer

Question 4

Worms

Answer 4

malware that self replicates and spreads quickly

Question 5

Ransomware

Answer 5

a form of malware that locks the user out of their files or device until a payment is made

Question 6

Crypto-malware

Answer 6

uses cryptography to encrypt personal information until the victim sends the attacker crypto to decrypt your data.

Question 7

Trojan

Answer 7

software that pretends to be something else

Question 8

PUP (Potentially Unwanted Program)

Answer 8

undesirable software; unwanted software that can cause performance problems

Question 9

Backdoors

Answer 9

malware that is used to create a new way to get into the system

Question 10

Remote Access Trojans (RATs)

Answer 10

a remote access tool that gives a third party access to your computer remotely and has complete control over your OS

Question 11

Rootkit

Answer 11

A set of software tools (malware)that enable an unauthorized user to gain control of a computer system without being detected.

Question 12

What are the five types of rootkits?

Answer 12

firmware, virtual, kernel, library and application level

Question 13

Spyware

Answer 13

Malware that spies on you

Question 14

Keyloggers

Answer 14

a piece of software that logs all of the keystrokes that a user enters

Question 15

Bot

Answer 15

is an automated software application that performs repetitive tasks over a network

Question 16

Botnet

Answer 16

a series of bots that are controlled across the network in a group; a group of bots working together

Question 17

Logic Bomb

Answer 17

is a malicious piece of code that’s secretly inserted into a computer network, OS, or software application to cause harm.

Question 18

Password Spraying

Answer 18

is an attack that uses a limited number of commonly used passwords and applies to a large number of accounts

Question 19

Brute Force attack

Answer 19

when an attacker tries every possible password combination until a hash is matched.

Question 20

dictionary attack

Answer 20

an attack that use a list of dictionary words to try to guess the password

Question 21

offline brute force attack

Answer 21

an attack that can be employed to perform has comparisons against a stolen password file

Question 22

online brute force attack

Answer 22

an attack that tend to be very noisy and easy to see by network security monitoring and are also limited by system response time and bandwich

Question 23

Rainbow Tables

Answer 23

are precomputed tables or has values associated with passwords.

Question 24

Salt

Answer 24

Random data that is added to a password when hashing

Question 25

Malicious USB cable

Answer 25

Looks like a normal USB cable, but has additional electronics inside. Once connected, the table takes over.

Question 26

Malicious flash drive

Answer 26

Looks like a normal flash drive, but may have additional electronics inside that can cause harm to your system.

Question 27

Skimming

Answer 27

Stealing credit card information usually during a normal transaction.
Example: copy data from the magnetic strip: card number, expiration date, card holder’s name.

Question 28

ATM Skimming

Answer 28

Includes a small camera to also watch you insert your PIN

Question 29

Card Cloning

Answer 29

when the attacker makes a digital copy of the credit card information using a concealed or disguised electronic scanner.

Question 30

Artificial Intelligence (AI)

Answer 30

is the simulation of human intelligence processes by machines, especially computer systems.

Question 31

Machine Learning (ML)

Answer 31

Is a type of AI focused on building computer systems that learn from data, enabling software to improve its performance over time.

Question 32

Birthday attack

Answer 32

the attacker tries to find two different input messages that produce the same hash value, called a collision

Question 33

Cryptographic attack

Answer 33

You encrypted data and sent it to another person. The attacker doesn’t have the combination so they break the safe( the cryptography) and find other ways to undo the security

Question 34

Collision attack

Answer 34

Is where two different inputs field the same output of a hash function

Question 35

Downgrade attack

Answer 35

Instead of using perfectly good encryption, use something that’s not so great
-force the systems to downgrade their security

Question 36

Command and control

Answer 36

refers to methods and tools used to communicate with and control an infected machine or network.