Cybersecurity Threats Overview

Questions and Answers

What characterizes Advanced Persistent Threats (APTs)?

• They are random attacks targeting any user.
• They are only executed at specific times of the day.
• They involve the use of malware exclusively.
• They are highly sophisticated and persistent cyberattacks. (correct)

Which of the following is NOT a common cyberattack vector?

• Mobile Devices
• Physical theft of hardware (correct)
• Emails
• Websites

What is the primary function of ransomware once it infiltrates a system?

• To encrypt files and demand payment. (correct)
• To steal user credentials.
• To create backdoors for hackers.
• To overload the server with traffic.

How does phishing primarily deceive users?

By tricking them into revealing sensitive information. (D)

What is a major concern related to IoT devices?

They typically have weak or default credentials. (B)

In social engineering, what does the tactic of 'baiting' refer to?

Offering something enticing to lure victims. (C)

What is a common impact of ransomware attacks on organizations?

Disruption to operations and potential financial losses. (A)

What is the primary goal of a Denial-of-Service (DoS) attack?

To render services inaccessible to legitimate users. (C)

Flashcards are hidden until you start studying

Study Notes

Cybersecurity Threats

• Cybersecurity threats are constantly evolving and present a challenge to individuals and organizations.

Understanding the Threat Landscape

• Advanced Persistent Threats (APTs) are sophisticated and persistent cyberattacks targeting specific organizations.
• Malware is malicious software designed to damage, steal or gain unauthorized access to computer systems.
• Phishing is a deceptive attempt to trick users into revealing sensitive information or granting access to their devices.
• Denial-of-Service (DoS) Attacks overwhelm a target system with traffic, preventing legitimate users from accessing services.

Common Cyberattack Vectors

• Email: Phishing emails are a common method for delivering malware or stealing credentials.
• Websites: Compromised websites can host malware or redirect users to malicious sites.
• Mobile Devices: Malicious apps, SMS phishing, and insecure Wi-Fi networks pose risks to mobile devices.

Social Engineering Tactics

• Pretexting: Creating a believable scenario to gain access to information.
• Baiting: Offering something enticing to lure victims into a trap.
• Scare Tactics: Using fear to manipulate users into making hasty decisions.
• Authority: Posing as someone with authority to gain trust and access.

Ransomware and its Impact

• Infection: Ransomware infiltrates a system through various methods.
• Encryption: Ransomware encrypts files, making them inaccessible.
• Demand: Attackers demand payment in exchange for decryption keys.
• Impact: Disruptions to operations, data loss, and financial losses.

IoT Security Challenges

• Default Credentials: Many IoT devices ship with weak or default passwords, making them easy to exploit.
• Lack of Updates: Security vulnerabilities may not be patched, leaving devices open to attacks.
• Data Privacy: IoT devices collect personal data, raising concerns about privacy and security.