Threats, Attacks, and Vulnerabilities

Question 1

Address Resolution Protocol (ARP)

Answer 1

Protocol used to map known IP addresses to unknown physical addresses

Question 2

ARP

Answer 2

Address Resolution Protocol

Question 3

Address Resolution Protocol (ARP) poisoning

Answer 3

An attack that convinces the network the attacker’s MAC address is the one associated with an allowed address, so the traffic is wrongly sent to the attacker’s address

Question 4

MAC (address)

Answer 4

Media Access Control

Question 5

adware

Answer 5

Software that gathers information to pass on to marketers or that intercepts personal data and makes it available to third parties

Question 6

antivirus software

Answer 6

Software that identifies the presence of a virus and is capable of removing or quarantining the virus

Question 7

armored virus

Answer 7

A virus that is protected in a way that makes disassembling it difficult

Question 8

ARP spoofing

Answer 8

similar to ARP poisoning

Question 9

attack

Answer 9

Any unauthorized intrusion into the normal operations of a computer or network

Question 10

attack surface

Answer 10

The area of an application that is available to users – those who are authenticated and those who are not

Question 11

attack surface reduction (ASR)

Answer 11

Minimizing the possibility of exploitation by reducing the amount of code and limiting potential damage

Question 12

ASR

Answer 12

attack surface reduction

Question 13

backdoor

Answer 13

An opening left in a program application that allows additional access to data

Question 14

bot

Answer 14

An automated software program that collects information on the web

Question 15

buffer overflow

Answer 15

A type of denial of service (DoS) attack that occurs when more data is put into a bugger than it can hold

Question 16

clickjacking

Answer 16

Using multiple transparent or opaque layers to trick a user into clicking a button on another page, when they had intended to click on the top page

Question 17

companion virus

Answer 17

A virus that creates a new program that runs in place of an expected program of the same name

Question 18

cross-site request forgery (XSRF)

Answer 18

A form of web-based attack in which unauthorized commands are sent from a user that a website trusts

Question 19

XSRF

Answer 19

cross-site request forgery

Question 20

cross-site scripting (XSS)

Answer 20

Running a script routine on a user’s machine from a website without their permission

Question 21

XSS

Answer 21

cross-site scripting

Question 22

denial-of-service (DoS)

Answer 22

A type of attack that prevents any users from using a system

Question 23

DoS

Answer 23

denial-of-service (attack)

Question 24

dictionary attack

Answer 24

The act of attempting to crack passwords by testing them against a list of dictionary words

Question 25

distributed denial-of-service (DDoS)

Answer 25

A derivative of a DoS attack in which multiple hosts in multiple locations all focus on one target to reduce its availability to the public

Question 26

DDoS

Answer 26

distributed denial-of-service

Question 27

DNS poisoning

Answer 27

An attack method in which a daemon caches DNS reply packets, which sometimes contain other information

Question 28

DNS spoofing

Answer 28

The DNS server is given information about a name server that it thinks is legitimate when it isn’t

Question 29

Domain Name System (DNS)

Answer 29

The network service used in TCP/IP networks that translates hostnames to IP addresses

Question 30

DNS

Answer 30

Domain Name System

Question 31

integer overflow

Answer 31

Putting too much information into too small of a space that has been set aside for numbers

Question 32

IP spoofing

Answer 32

Making the data look as if it came from a trusted host when it didn’t

Question 33

Principle of least privilege

Answer 33

A permission method in which users are granted only the privileges necessary to perform their job function

Question 34

logic bomb

Answer 34

Any code that is hidden and causes something unexpected to happen based on some criteria being met

Question 35

macro virus

Answer 35

A software exploitation virus that works by using the macro feature included in many applications

Question 36

malicious code

Answer 36

Any code that is meant to do harm

Question 37

Malicious insider threat

Answer 37

A threat from someone inside the organization intent on doing harm

Question 38

man-in-the-middle

Answer 38

An attack that occurs when someone/something that is trusted intercepts packets and retransmits them to another party

Question 39

multipartite virus

Answer 39

A virus that attacks a system in more than one way

Question 40

password attacks

Answer 40

Attempting to ascertain a password that you should not know

Question 41

phage virus

Answer 41

A virus that modifies and alters other programs and databases

Question 42

ping of death

Answer 42

A large Internet Control Message Protocol (ICMP) packet sent to overflow the remote host’s buffer

Question 43

polymorphic

Answer 43

An attribute of some viruses that allows them to mutate and appear differently each time they crop up

Question 44

privilege escalation

Answer 44

The result when a user obtains access to a resource that they wouldn’t normally be able to access

Question 45

ransomware

Answer 45

Software that demands payment before restoring the data or system infected

Question 46

replay attack

Answer 46

An attack that captures portions of a session to play back later to convince a host that it is still talking to the original connection

Question 47

retrovirus

Answer 47

A virus that attacks or bypasses the antivirus software installed on a computer

Question 48

rogueware

Answer 48

A form of malware that tries to convince the user to pay for a fake threat

Question 49

rootkit

Answer 49

Software program that has the ability to obtain root-level access and hide certain things from the operating system

Question 50

scareware

Answer 50

Software that tries to convince unsuspecting users that a threat exists

Question 51

shim

Answer 51

A small library that is created to intercept API calls transparently

Question 52

spoofing

Answer 52

An attempt by someone or something to masquerade as someone/something else

Question 53

spyware

Answer 53

Malware working on behalf of a third party to exfiltrate data

Question 54

stealth virus

Answer 54

A virus that attempts to avoid detection by masking itself from applications

Question 55

Trojan horse

Answer 55

Any application that masquerades as one thing in order to get past scrutiny and then does something malicious

Question 56

typo squatting

Answer 56

Creating domains that are based on the misspelling of another

Question 57

URL hijacking

Answer 57

Registering domains that are similar to those for a known entity but based on misspelling or typo error

i.e. whitehouse.com

Question 58

virus

Answer 58

A program intended to damage a computer system

Question 59

watering hole attack

Answer 59

Identifying a site that is visited by those whom they are targeting, poisoning that site, then waiting for the results

Question 60

Xmas attack

Answer 60

An advanced attack that tries to get around detection and send a packet with every single option enabled

Question 61

zero-day exploit

Answer 61

An attack that begins the very day an exploit is discovered

Question 62

zombie

Answer 62

Any system taking directions from a master control computer; a bot in a botnet