Chapter 4 Flashcards
Social Engineering and Password Attacks (4 cards)
Smishing
Relies on text messages as part of the phishing scam.
Pretexting
The process of using a made-up scenario to justify why you are approaching an individual.
Password Spraying Attacks
A form of brute-force attack that attempts to use a single password or small set of passwords against many accounts.
Dictionary Attacks
A brute-force method used by attackers to guess passwords by systematically trying a list of commonly used words, phrases, or precompiled wordlists, such as those found in dictionaries.
Definition:
A method to crack passwords by trying a predefined list of words or phrases.
How It Works:
Attackers use software to automate the process of testing wordlist entries against the target system.
Examples of Wordlists:
Common passwords (e.g., “password123,” “qwerty”).
Phrases or variations (e.g., “Iluv3Dogs!”).