Securing Individual Systems Part 2

Question 1

This is also known as media sanitation…

Answer 1

Data Destruction

Question 2

How are monitors vulnerable?

Answer 2

They have USB slots that could be used to get into system

Question 3

ACL

Answer 3

Access Control List

Question 4

RATs

-Trojan that doesn’t do anything bad until someone tells it to remotely

Answer 4

Remote Access Trojans

Question 5

Virus that’s designed to make itself hard to find

Answer 5

Armored Virus

Question 6

Type of secure operating system?

• Windows Server
• built in funtionality
• more connections

Answer 6

Server OS

Question 7

WPS

Answer 7

Press a button on your printer and then on your computer and you’re connected via WPA-2 encryption

Question 8

Type of secure operating system?

-Desktop versions

Answer 8

Workstation

Question 9

SED

-TPM built into drive

Answer 9

Self Encrypting Drive

Question 10

EMI

Answer 10

Electromagnetic Interference

Question 11

True or False

-Host-based firewalls are set up as implicit deny by default

Answer 11

True

Question 12

What is a Rubber Ducky?

Answer 12

USB stick that you’re computer sees as a keyboard, but is actually a hacking tool that can run scripts and such

Question 13

Developer could write this into software for good or bad reasons

Answer 13

Backdoor

Question 14

Clearing

Answer 14

Can be done with commands such as erase, format, and delete - these methods are not final

Question 15

Type of secure operating system?

• Apple
• Android

Answer 15

Mobile OS

Question 16

IDS

-Can help detect threats to the host

Answer 16

Intrusion Detection System

Question 17

Type of secure operating system?

• limited functions
• usually linux based

Answer 17

Kiosk

Question 18

Programs that try to put ads up

Answer 18

Adware

Question 19

Clustering

Answer 19

More than one computer doing the same job

Question 20

Bluetooth has how many classes?

Answer 20

Class 1 - 328’
Class 2 - 33’ distance (most popular for phone/headphones)
Class 3 - 3’

Question 21

Used in smart phones and cars to ensure security on these embedded systems…

Answer 21

Secure Boot

Question 22

Where can you disable ports?

Answer 22

In the bios

Question 23

FDE

Answer 23

Full Disk Encryption

Question 24

What does an ISCSI Initiator do?

Answer 24

Finds the SAN drives

Question 25

HSM | -Handles all digital signatures - web servers are an example of who would use this

Answer 25

Hardware Security Module

Question 26

Blue-Snarfing

Answer 26

Connecting to someones bluetooth without permission to steal data

Question 27

IDS - Inside the network - Watches within the network traffic - Sends alerts on suspicious activity

Answer 27

Intrusion Detection Software

Question 28

Purging

Answer 28

Will process the device to remove data from the drive - the device will no longer be usable Ex: magnet machine

Question 29

DEP | -Keeps people from running code through system memory reserved locations

Answer 29

Data Execution Prevention

Question 30

Piece of software that attaches to other files, propagates, and spreads to other devices, and then eventually activates

Answer 30

Virus

Question 31

Software you don't want on your computer - it may or may not be bad

Answer 31

Malware

Question 32

Malware that changes itself enough to confuse virus detection

Answer 32

Polymorphic Malware

Question 33

Similar to RATs - are triggered by an event and not someone remotely

Answer 33

Logic Bomb

Question 34

Some form of malware that sends your info back to the creator of it

Answer 34

Spyware

Question 35

Blue-Jacking

Answer 35

Linking up to someones bluetooth without permission just to use resource

Question 36

This is a built-in Windows tool to write and custom build scripts to automate tasks

Answer 36

PowerShell

Question 37

Type of secure operating system? | -certified machines that are locked down as much as possible while keeping functionality

Answer 37

Trusted OS

Question 38

What are removable media controls?

Answer 38

Not allowing people to use optical drives - can shut it off or put a policy on it

Question 39

ACL that allows programs

Answer 39

White List

Question 40

Software that's running on your system - could be software you're using but is also doing something bad in the background

Answer 40

Trojan

Question 41

Scan results identify a file that may not actually harm a system or is actually allowed on the system

Answer 41

False Positive

Question 42

Records keystrokes

Answer 42

Keylogger

Question 43

Destroying

Answer 43

Will ruin the data and physical media - this includes paper, tape, electronic data, etc. Ex: Burning, shredding, pulping

Question 44

ACL that denies programs

Answer 44

Black List

Question 45

Type of secure operating system? | -appliance

Answer 45

Embedded System

Question 46

Software that escalates privileges to execute other things on computer - could be good or bad

Answer 46

Rootkit

Question 47

Application management / Desktop Management tools

Answer 47

Used to make sure everyone is running the correct version of things and all licenses are accounted for

Question 48

IPS - Active IDS - Usually close to the edge of the network - Action to prevent will occur at the IPS device

Answer 48

Intrusion Prevention System

Question 49

Hidden Wifi

Answer 49

Ex: they make sd cards wifi cards - you cna plug them into someones printer/security camera and now you've created a wifi hotspot on their network

Question 50

SAN - Creates new local drives - not network drives - ISCSI is another name for this

Answer 50

Storage Area Networking

Question 51

TPM | -Chip that holds encryption keys for that drive - usually activated at bios to be able to encrypt drive

Answer 51

Trusted Platform Module

Question 52

NAS - File based sharing protocol - Runs over standard network ex: SMB share

Answer 52

Network Attached Storage

Question 53

SFC - Is a file integrity tool - Checks windows core files

Answer 53

System File Checker

Question 54

RFI

Answer 54

Radio Frequency Interference

Question 55

What does a file integrity check do?

Answer 55

Verifies the file isn't corrupted and that the version and date match expectation

Question 56

ESD

Answer 56

Electrostatic Discharge

Question 57

Type of malware that locks up your system until you pay someone money

Answer 57

Ransomware/crypto-malware