Lesson 14: Network Security

Question 1

Organizations must make sure that their staff does not send sensitive information outside the network.

Answer 1

Data Loss Prevention

Question 2

It is a set of rules and
configurations designed to protect the integrity, confidentiality and
accessibility of computer networks and data using both software and hardware technologies.

Answer 2

Network Security

Question 3

It is launched from a large number of other host
machines that are infected by malicious software controlled by the attacker.

Answer 3

Distributed denial-of-service (DDoS)

Question 4

A type of malware that blocks access to the victim’s data and threatens to publish or delete it unless a ransom is paid.

Answer 4

Ransomware

Question 5

A program that hides in a useful
program and usually has a malicious function.

Answer 5

Trojans

Question 6

ACRONYM: DLP

Answer 6

Data Loss Prevention

Question 7

In this attack, an attacker exploits the use of the buffer space during a Transmission Control Protocol (TCP) session initialization handshake.

Answer 7

TCP SYN flood attack

Question 8

This attack causes the length and fragmentation offset fields in sequential Internet Protocol (IP) packets to overlap one another on the attacked host; the attacked system attempts to reconstruct packets during the process but fails.

Answer 8

Teardrop attack

Question 9

It is a broad term that covers a multitude of technologies,
devices and processes.

Answer 9

Network Security

Question 10

A very targeted type of phishing activity. Attackers take the
time to conduct research into targets and create messages that are personal
and relevant.

Answer 10

Spear phishing

Question 11

A dictionary of common passwords is used to
attempt to gain access to a user’s computer and network.

Answer 11

Dictionary attack

Question 12

Act as a barrier between the untrusted external networks and your trusted internal network.

Answer 12

Firewall Protection

Question 13

A hacker detects the information by listening
to the message transmission in the network.

Answer 13

Passive eavesdropping

Question 14

These viruses conceal themselves through
varying cycles of encryption and decryption.

Answer 14

Polymorphic viruses

Question 15

Botnets can be mitigated by:

Answer 15

• RFC3704 filtering
• Black hole filtering

Question 16

ACRONYM: VPN

Answer 16

Virtual Private Network

Question 17

Used by an attacker to convince a system that it is
communicating with a known, trusted entity and provide the attacker with
access to the system.

Answer 17

IP Spoofing

Question 18

Means using a random approach by trying different passwords and hoping that one work

Answer 18

Brute-force password guessing

Question 19

Scans network traffic to actively block attacks.

Answer 19

Intrusion Prevention Systems

Question 20

This attack involves using IP spoofing and the ICMP to saturate a target network with traffic.

Answer 20

Smurf attack

Question 21

ACRONYM: PHP

Answer 21

Hypertext Preprocessor

Question 22

A hacker actively grabs the information by
disguising himself as friendly unit and by sending queries to
transmitters.

Answer 22

Active eavesdropping

Question 23

Occur through the interception of network traffic. An attacker can obtain passwords, credit card numbers and other confidential information that a user might be sending over the network.

Answer 23

Eavesdropping attack

Question 24

Usually attach themselves to
executable code, such as .exe files.

Answer 24

File infectors

Question 25

Types of password attacks:

Answer 25

Brute-force password guessing, Dictionary attack

Question 26

It occurs when a malefactor executes a SQL query to the database via the input data from the client to server.

Answer 26

SQL injection attack

Question 27

occurs when a hacker inserts itself between the communications of a client and a server.

Answer 27

Man-in-the-middle (MitM) attack

Question 28

Types of Dos and DDos Attacks:

Answer 28

* TCP SYN flood attack * Teardrop attack * Smurf attack * Ping of death attack * Botnets

Question 29

These viruses infect applications such as Microsoft Word or Excel.

Answer 29

Macro viruses

Question 30

Types of Attacks:

Answer 30

1. Denial-of-service (DoS) and distributed denial-of-service (DDoS) attack 2. Man-in-the-middle (MitM) attack 3. Phishing and spear phishing attack 4. Drive-by attack 5. Password attack 6. SQL injection attack 7. Cross-site scripting (XSS) attack 8. Eavesdropping attack 9. Birthday attack 10. Malware attack

Question 31

ACRONYM: DoS

Answer 31

Denial-of-service

Question 32

This type of attack uses IP packets to ‘ping a target system with an IP size over the maximum of 65,535 bytes.

Answer 32

Ping of death attack

Question 33

ACRONYM: XSS

Answer 33

Cross-Site Scripting

Question 34

Are made against hash algorithms that are used to verify the integrity of a message, software or digital signature.

Answer 34

Birthday attack

Question 35

Wireless networks are not as secure as wired ones. Without stringent security measures, installing a wireless LAN can be like putting Ethernet ports everywhere, including the parking lot.

Answer 35

Wireless Security

Question 36

A type of malicious software that is appended to an application and is triggered by a specific occurrence, such as a logical condition or a specific date and time.

Answer 36

Logic bombs

Question 37

Occurs when an attacker intercepts and saves old messages and then tries to send them later, impersonating one of the participants.

Answer 37

Replay

Question 38

Because passwords are the most commonly used mechanism to authenticate users to an information system, obtaining passwords is a common and effective attack approach.

Answer 38

Password attack

Question 39

A broad set of technologies, policies, and applications applied to defend online IP, services, applications, and other imperative data.

Answer 39

Cloud Security

Question 40

ACRONYM: BGP

Answer 40

Border Gateway Protocol

Question 41

ACRONYM: SQL

Answer 41

Structured Query Language

Question 42

ACRONYM: IPS

Answer 42

Intrusion Prevention System

Question 43

Protect an organization from a range of malicious software, including viruses, ransomware, worms and trojans.

Answer 43

Antivirus and Antimalware Software

Question 44

Malicious software can be described as unwanted software that is installed in your system without your consent.

Answer 44

Malware attack

Question 45

Three different controls of network security:

Answer 45

* Physical * Technical * Administrative

Question 46

Types of eavesdropping attacks:

Answer 46

* Passive eavesdropping * Active eavesdropping

Question 47

They are the millions of systems infected with malware under hacker control in order to carry out DDoS attacks.

Answer 47

Botnets

Question 48

They differ from viruses in that they do not attach to a host file, but are self-contained programs that propagate across networks and computers.

Answer 48

Worms

Question 49

They copy legitimate websites to fool you into entering personally identifiable information (PII) or login credentials.

Answer 49

Website cloning

Question 50

The practice of sending emails that appear to be from trusted sources with the goal of gaining personal information or influencing users to do something.

Answer 50

Phishing

Question 51

A type of program that is installed to collect information about users, their computers or their browsing habits.

Answer 51

Spyware

Question 52

Most common types of malware:

Answer 52

* Macro viruses * File infectors * System or boot-record infectors * Polymorphic viruses * Stealth viruses * Trojans * Logic bombs * Worms * Droppers * Ransomware * Adware * Spyware

Question 53

Use third-party web resources to run scripts in the victim’s web browser or scriptable application.

Answer 53

Cross-site scripting (XSS) attack

Question 54

Drops undesirable traffic before it enters a protected network.

Answer 54

Black hole filtering

Question 55

ACRONYM: NAC

Answer 55

Network Access Control

Question 56

A program used to install viruses on computers.

Answer 56

Droppers

Question 57

They take over system functions to conceal themselves.

Answer 57

Stealth viruses

Question 58

ACRONYM: DDoS

Answer 58

Distributed denial-of-service

Question 59

To ensure that potential attackers cannot infiltrate your network, comprehensive access control policies need to be in place for both users and devices.

Answer 59

Network Access Control

Question 60

To reduce the risk of being phished, you can use these techniques:

Answer 60

Critical thinking, Hovering over the links, Analyzing email headers, Sandboxing

Question 61

In this type of MitM attack, an attacker hijacks a session between a trusted client and network server.

Answer 61

Session hijacking

Question 62

Create a connection to the network from another endpoint or site.

Answer 62

Virtual Private Networks

Question 63

Designed to prevent unauthorized personnel from gaining physical access to network components such as routers, cabling cupboards and so on.

Answer 63

Physical Network Security

Question 64

Cybercriminals are increasingly targeting mobile devices and apps. Within the next 3 years, 90 percent of IT organizations may support corporate applications on personal mobile devices.

Answer 64

Mobile Device Security

Question 65

a common method of spreading malware where hackers look for insecure websites and plant a malicious script into HTTP or PHP code on one of the pages.

Answer 65

Drive-by attack

Question 66

When a DDoS attack is detected, the ________________________ host should send routing updates to ISP routers so that they route all traffic heading to victim servers to a null0 interface at the next hop.

Answer 66

BGP (Border Gateway Protocol)

Question 67

Types of network security

Answer 67

Network Access Control, Antivirus and Antimalware Software, Firewall Protection, Cloud Security, Data Loss Prevention, Virtual Private Networks, Intrusion Prevention Systems, Email Security, Mobile Device Security, Web Security, Wireless Security

Question 68

ACRONYM: MitM

Answer 68

Man-In-The-Middle

Question 69

Overwhelms a system’s resources so that it cannot respond to service requests.

Answer 69

Denial-of-service (DoS)

Question 70

Consist of security policies and processes that control user behavior, including how users are authenticated, their level of access and also how IT staff members implement changes to the infrastructure.

Answer 70

Administrative Network Security

Question 71

This will deny traffic from spoofed addresses and help ensure that traffic is traceable to its correct source network.

Answer 71

RFC3704 filtering

Question 72

Refers to the steps you take to protect your own website. Will control your staff’s web use, block web-based threats, and deny access to malicious websites.

Answer 72

Web Security

Question 73

ACRONYM: TCP SYN

Answer 73

Transmission Control Protocol Synchronize

Question 74

Protect data that is stored on the network or which is in transit across, into or out of the network.

Answer 74

Technical Network Security

Question 75

Blocks incoming attacks and controls outbound messages to prevent the loss of sensitive data.

Answer 75

Email Security

Question 76

To reduce the risk of being phished, you can use these techniques:

Answer 76

Critical thinking, Hovering over the links, Analyzing email headers, Sandboxing

Question 77

Common types of man-in-the-middle attacks:

Answer 77

Session hijacking, IP Spoofing, Replay

Question 78

Attaches to the master boot record on hard disks.

Answer 78

System or boot-record infectors

Question 79

ACRONYM: HTTP

Answer 79

Hypertext Transfer Protocol

Question 80

A software application used by companies for marketing purposes; advertising banners are displayed while any program is running.

Answer 80

Adware