Cybersecurity Threats

Questions and Answers

What is the primary objective of cybersecurity?

• To create false data streams
• To protect digital information and services from malicious attacks (correct)
• To analyze the characteristics of packet frequency and length
• To monitor network traffic

What type of attack involves modifying or fabricating data streams?

• Eavesdropping attack
• Traffic analysis attack
• Active attack (correct)
• Passive attack

What is the outcome of a successful passive attack?

• Disruption of network operations
• Modification of data streams
• Creation of false data streams
• Access to confidential and important information (correct)

What type of attack involves an attacker that is located outside the network?

External Attack (B)

What is an example of a passive attack?

Eavesdropping on network traffic (D)

What is the primary difference between a Denial-of-Service (DoS) attack and a Distributed Denial-of-Service (DDoS) attack?

The number of host machines infected by malicious software (A)

What is the primary goal of a Denial-of-Service (DoS) attack?

To overpower a system's resources (D)

What is the primary difference between passive and active attacks?

The attacker's ability to modify data streams (A)

Why are internal attacks more difficult to detect than external attacks?

Because internal attackers are hidden among legitimate nodes (B)

What can be the result of an active attack on a network?

Unavailability of network services (C)

What type of attack is characterized by an attacker that is a legitimate node within the network?

Internal Attack (D)

What is the primary purpose of a firewall in preventing cyber attacks?

To prevent malicious nodes from accessing the network (D)

What is the primary goal of social engineering techniques?

to exploit human error to gain private information access (B)

What is the primary purpose of a dictionary attack?

to use a list of common passwords to gain access to a user's computer and network (D)

What is the typical objective of a password attack?

to obtain unauthorized access to an information system (D)

What is a common method used to obtain user passwords?

sniffing the connection to the network to get unencrypted passwords (A)

What is the primary characteristic of a SQL injection attack?

injecting malicious code into database queries (B)

What is a common outcome of a successful social engineering attack?

installation of malware (C)

What happens when a client connects to a server in a Man-in-the-middle attack?

The attacker's computer gains control of the client. (B)

What is the purpose of an ARP packet?

To convert an IP address into a physical address. (A)

What is the goal of a phishing attack?

To steal user data, including login credentials and credit card numbers. (C)

What happens in ARP spoofing?

The attacker's MAC address is linked with the IP address of a user on a local area network. (D)

What is the result of ARP spoofing?

Data sent by the user is transmitted to the attacker. (A)

How does a phishing attack occur?

When a user opens an email, instant message, or text message from a trusted entity. (D)

What happens when a program virus is active?

It infects other programs on the computer (B)

What is the main purpose of spyware?

To steal private information from a computer system (B)

What is the primary function of a backdoor?

To grant the cyber criminals future access to the system (D)

What happens when a computer system is affected by ransomware?

It encrypts data in the computer with a key unknown to the user (C)

What is the purpose of a keylogger?

To record everything the user types on their computer system (D)

What is the main difference between a virus and a worm?

A virus needs a host program to run (B)