Types of Password Attacks Quiz

Security Incident and Event Management (SIEM)

• A reliable process is vital to minimize the cost, impact, and duration of security incidents.
• SIEM involves detecting, responding to, and recovering from security incidents.

Security Event vs. Security Incident

• A security event is a minor disruption to a digital landscape, thought to be unintentional.
• Examples of security events include single failed devices or single users forgetting their passwords.
• A security incident is intentional damage, theft, or unauthorized access that has a direct or indirect impact on an organization's information, system, or device.

Security Incident Lifecycle

• Detecting and reporting incidents is the first step in the security incident lifecycle.
• Security incidents can cost a lot of money, disrupt business operations, and create brand damage.
• Early and effective incident management helps reduce the severity of the impact.

Types of Malware

• Macro viruses
• Viruses
• Polymorphic Viruses
• Logic bombs
• Worms
• Ransomware
• Ransomware blocks access to a victim's data and threatens to publish or delete it unless a ransom is paid.

Symptoms of Malware

• Increased CPU usage
• Decreased computer speed
• Frequent freezing or crashing
• Decreased web browsing speed
• Unexplainable problems with network connections
• Files being deleted or modified
• Unknown processes running
• Programs turning off or reconfiguring
• Emails being sent without user consent
• Presence of unknown files, programs, or desktop icons

Password Attacks

• Brute-force password guessing
• Dictionary attack
• Methods to crack passwords include trying different passwords, using dictionary of common passwords, and copying encrypted files

Password Protection

• Use password managers to help remember passwords
• Tips for choosing a good password:
  • Avoid dictionary words or names
  • Avoid common misspellings
  • Use special characters
  • Use a password with ten or more characters
• Tips for choosing a good passphrase:
  • Choose a meaningful statement
  • Add special characters
  • The longer the better
  • Avoid common or famous statements

NIST Guidelines

• Passwords should be at least 8 characters but no more than 64 characters
• No common, easily guessed passwords
• No composition rules
• No knowledge-based authentication
• Improve typing accuracy by allowing users to see passwords while typing
• All printing characters and spaces are allowed
• No password hints
• No periodical or arbitrary password expiration

Strong Authentication (Two-Factor Authentication)

• Popular online services use two-factor authentication
• Need username/password or PIN and a second token for access
• Tokens can be physical objects, biometric scans, or other methods

SQL Injection Attacks

• SQL injection is a web security vulnerability that allows an attacker to interfere with queries made to a database
• It allows an attacker to view data they are not normally able to retrieve
• Countermeasures include keeping browsers and OS up to date and avoiding suspicious websites

Cross-Site Scripting (XSS) Attack

• XSS is a web security vulnerability that allows an attacker to inject malicious code into a web application
• Countermeasures include training and awareness, sanitizing input, and input validation

Buffer Overflow

• A buffer overflow occurs when the volume of data exceeds the storage capacity of a memory buffer
• It can cause a program to write data past the buffer boundary, leading to security vulnerabilities
• Countermeasures include using a language that does not allow for buffer overflows