CST3520 Local Privilege Escalation Quiz

Questions and Answers

What is the main focus of the threat environment as discussed in the text?

Employee and ex-employee threats

Malware and hackers

Criminal era threats (correct)

Competitor threats

Which type of attackers are noted to be the dominant ones in today's threat landscape?

Ex-employees

Employees

Criminals (correct)

Competitors

What distinguishes cyberwar from cyberterror according to the text?

Target of attacks (correct)

Nature of attacks

Country of origin

Severity of attacks

Which group is highlighted for making types of attacks and cooperating in criminal activities?

Criminals

What are the types of attacks discussed that criminals engage in today?

Denial-of-service and social engineering attacks

What does 'confidentiality' mean in the context of security goals?

Ensuring people cannot read sensitive information

What does 'integrity' aim to achieve in terms of security goals?

Detecting changes in information

What is the primary focus of 'availability' as a security goal?

Ensuring authorized users can access information when needed

What is the primary purpose of countermeasures in cybersecurity?

Thwarting attacks and protecting against security breaches

'Compromises' in cybersecurity terminology refers to:

Successful attacks or incidents that occur

In the context of security goals, what does 'prevention' as a countermeasure aim to achieve?

Preventing attacks from occurring in the first place

What is a recommended technique to mitigate reconnaissance attacks?

Using encryption that meets data security needs

Which of the following is NOT a practice to ensure a strong password policy?

Using plaintext passwords

How can access attacks be mitigated?

Practicing strong password security

What is a key principle to mitigate access attacks?

Principle of minimum trust

Which tool is used to prevent sniffer attacks?

Anti-sniffer tools

What is recommended to prevent continuous password attempts?

Disabling accounts after unsuccessful logins

What distinguishes Trojan horses from viruses and worms?

Trojan horses do not self-replicate

Which type of Trojan horse provides attackers with sensitive data like passwords?

Data sending Trojan Horse

What is the purpose of a security software disabler Trojan horse?

Stops antivirus programs or firewalls from functioning

How does a DoS Trojan horse affect a system?

Slows or halts network activity

What is the key characteristic of a mobile code attack?

Executable code on a webpage executes automatically

Which type of malware disguises itself as a useful program but provides unauthorized access to the system?

Trojan Horse

What is a key feature in mitigating DoS attacks on routers and firewalls?

Proper configuration of anti-spoof features

How can Ping Sweeps and Port Scans be mitigated according to the text?

Mitigated using IPS at both network and host levels

What is the role of cryptography in mitigating packet sniffers?

Makes communication channels cryptographically secure

What do anti-sniffer tools primarily detect?

Increased traffic processing by hosts

How do anti-DoS features on routers and firewalls limit attacks?

Through limits on the amount of half-open TCP connections allowed

What is the primary function of proper anti-spoof features configuration on routers and firewalls?

Reducing the risk of attack by filtering spoofed packets