1_4_10 Section 1 – Attacks, Threats, and Vulnerabilities - 1.4 – Network Attacks - Denial of Service

Questions and Answers

What is a common motivation for launching a Denial of Service attack?

• To increase the target's website traffic
• To divert attention while stealing data (correct)
• To help the target improve their service
• To enhance the target's security

How can an attacker cause a Denial of Service through physical means?

• By pulling the power switch of a building (correct)
• By spamming thousands of emails
• By exploiting software vulnerabilities
• By launching a botnet attack

Why is it important to keep operating systems and applications up to date?

• To prevent Denial of Service attacks (correct)
• For increasing website traffic
• To make the web server faster
• To attract competition attention

What is a possible consequence of a Denial of Service attack on a DNS server?

Loss of critical data from the database (B)

How does a Denial of Service attack sometimes impact the victim's focus?

It diverts their efforts to getting essential systems back online (D)

What is highlighted as a misconception about Denial-of-Service attacks in the text?

They are always carried out by organized hacking groups (B)

What type of attack involves overwhelming a web server with excessive traffic?

Denial-of-Service attack (D)

What might an attacker exploit in an application to cause a Denial-of-Service?

Vulnerability in the application (C)

What is the purpose of a zip bomb in the context of a Denial-of-Service attack?

To cause a system to run out of storage space (B)

How can an attacker exploit rapid elasticity in cloud-based services for a Denial-of-Service?

By increasing resource consumption (B)

What distinguishes the security posture for operational technology (OT) environments from traditional network security?

Segmentation and protection approaches (C)

What could be a consequence of a successful Denial-of-Service attack on operational technology?

Traffic lights malfunctioning (A)

Which action could an attacker potentially carry out in an OT environment to create a Denial-of-Service situation?

Triggering automatic resource addition (B)

What might an attacker attempt to achieve by slowing down an application's response times?

Increase application instances (A)

What role does a zip bomb play in causing a Denial-of-Service?

It overloads available storage space (A)

How does an attacker target the available drive space in a Denial-of-Service attack involving a zip bomb?

By tricking users to decompress malicious files (A)

What protocol should you turn on to prevent layer 2 loops in a network?

Spanning Tree Protocol (B)

In a Distributed Denial of Service (DDoS) attack, attackers often use what to create bandwidth spikes?

Botnets (A)

What type of attack involves using many, many systems simultaneously to attack a single service?

Botnet attack (A)

What can an attacker use to amplify a DDoS attack by reflecting a particular type of protocol?

ICMP (D)

How did the Zeus botnet impact computers when it reached its peak?

Infected over 3.6 million computers (B)

Which type of attack creates a loop in a network and can make the entire network unavailable?

Spanning Tree Protocol attack (A)

What happens if one person downloads a very large file and you don't manage the bandwidth over your internet connections?

Creates a network outage for everybody (D)

What could happen if a water line break occurs above your data center?

Creates problems for the data center (C)

What is the purpose of using DNS to amplify a DDoS attack?

To increase the volume of attack traffic (A)

What can be a simple yet effective method for causing a Denial-of-Service, as described in the text?

Walking up to a building and pulling the power switch (C)

Why is it emphasized in the text to keep operating systems and applications up to date?

To address vulnerabilities that could lead to a Denial-of-Service (C)

What is a possible secondary motive an attacker might have for launching a Denial-of-Service while focusing on other activities in the network, according to the text?

Making the victim focus on service restoration while stealing data (C)

Which scenario best exemplifies a Denial-of-Service attack mentioned in the text?

An individual causing service unavailability by pulling a power switch (C)

What is highlighted as an often misperceived aspect of Denial-of-Service attacks in the text?

The belief that they always involve sophisticated cyber tools (D)

In the context of Denial-of-Service, what could be a potential reason why an attacker might target a DNS server specifically?

To amplify the impact of a Distributed Denial of Service attack (A)

What can accidentally happen if you plug in the wrong cables to the wrong switch?

Create a loop in your network (D)

How might one person downloading a large file impact others on a limited internet connection?

Create an outage for everybody (B)

In a Distributed Denial of Service (DDoS) attack, attackers may typically use what to overwhelm a service?

Multiple devices simultaneously (B)

What technique do attackers use to amplify a DDoS attack by sending a small attack as a much larger one?

DDoS Amplification (C)

What is the impact of using DNS to amplify a DDoS attack?

Create bandwidth spikes (B)

What distinguishes a Distributed Denial of Service (DDoS) attack from traditional attacks on a single service?

Use of many systems simultaneously (B)

How can an attacker make a small attack seem like a much larger one in a DDoS attack?

Employ DDoS amplification techniques (A)

What is the main purpose of turning on Spanning Tree Protocol in a network?

Prevent layer 2 loops (C)

Why might an attacker use many, many systems simultaneously in a Distributed Denial of Service (DDoS) attack instead of a single system?

To overwhelm the victim's resources more easily (B)

What is the purpose of a zip bomb in the context of a Denial-of-Service attack?

To quickly overwhelm the available storage space (A)

How can an attacker exploit rapid elasticity in cloud-based services for a Denial-of-Service?

By increasing the number of application instances to consume more resources (A)

What distinguishes the security posture for operational technology (OT) environments from traditional network security?

Segmentation and protection of critical infrastructure components (B)

Which type of attack involves overwhelming a web server with excessive traffic?

Denial-of-Service (DoS) attack (A)

How does an attacker target the available drive space in a Denial-of-Service attack involving a zip bomb?

By tricking the victim into uncompressing a large file (A)

What could be a consequence of a successful Denial-of-Service attack on operational technology?

Halting operations of critical infrastructure (A)

Why is it important to keep operating systems and applications up to date?

To maintain system performance and security (B)

What might an attacker exploit in an application to cause a Denial-of-Service?

Memory leaks that lead to resource exhaustion (D)

What role does a zip bomb play in causing a Denial-of-Service?

It overwhelms the system by expanding to a massive size (D)

What happens if one person downloads a very large file and you don't manage the bandwidth over your internet connections?

Other users may experience slow internet speeds due to bandwidth consumption (B)