Security Plus Chapter 5

Front 1

Name three types of Physical Threats?

Back 1

1. Snooping
2. Theft and Loss of Assets
3. Human Error (Electrostatic discharge)
4. Sabotage

Front 2

Name three methods of mitigating Snooping?

Back 2

1. Clean Desk Policy
2. Shredding Documents
3. Secure filing cabinets
   

Front 3

Name four methods of mitigating the possibly Thefts?

Back 3

1. Use Lock-down Cable
2. Remotely wipe device
3. Password Protect (Safeguards on the Device)
4. Data Encryption

Front 4

Name a way to mitigate Sabotage?

Back 4

Create a Recovery Plan.

Front 5

Define Malicious Software?

Back 5

Any software that harms or misuses the system, which includes deleting files from the system, monitoring activity on the system, or something is simple is slowing down the system.

Front 6

Fourtypes of Malicious software exploitation are?

Back 6

1. Privilege Escalation: Vertical, deescalation and Horizontal
2. Viruses
3. Trojans
4. Malware
   

Front 7

Define what a Virus is?

Back 7

Malicious software that infects the device and destroy data, prevent booting, or Hy-jack the system?

Front 8

Define six type of Viruses?

Back 8

1. Executable
2. Boot Sector Virus
3. Macro Viruses: uses the macro automation
4. Logic Bomb: are event driven
5. Worm: are self replicating delivery system
   
6. Trojan: typically opens the TCP/IP (NetBus)
   

Front 9

Name three ways worms are replicated.

Back 9

1. Network Protocols: blaster worm replicated over the RPC port (135), SQL Slammer us replicated using buffer overflow attack.
2. E-mail: Replicates by sending emails to contacts in your contact list. ILOVEYOU
3. Flash Drive: Conficker
   

Front 10

Name a command that can be used to track down a Trojan virus?

Back 10

1. netstat -na to listen to the ports
   
2. Run netstat -o to find the PID
3. Then track down the EXE associated with the process
4. Run tasklist to see the processes (EXE files)
   
5. run taskkill i.e. TASKKILL /IM notepad.exe

Front 11

Name some types of Malware?

Back 11

1. Spyware: can monitor and change system
   
2. Adware: auto loading adds
3. Spam: Commercial e-mails
4. Rootkits: Gives hacker access
5. Botnets: collection of comprised systems used to perform attacks
6. Keylogger
   

Front 12

Name five method of blocking SPAM?

Back 12

1. Recipient Filter
2. Sender Filter
3. Connection Filter: IPs prohibited from connecting to SMTP server.
   
4. Real-Time Blacklist (RBL): list of spam host
5. Sender ID filter: SMTP Sender Policy Frame work (accetable senders) SPF in DNS
   

Front 13

Name some types of Rootkits?

Back 13

1. Application-Level
2. Library-Level
3. Kernel-Level
4. Virtualized: Stored on Operating system hard to detect.
   
5. Firmware
   

Front 14

What Back Doors and Ransom-ware created using Rootkits?

Back 14

1. A Back Door is malware that creates an is an alternative way to access the system. They use Trojans to open ports or create user accounts.
   
2. Ransom-ware kidnaps the system
   

Front 15

What are Polymorphic and Armored Viruses?

Back 15

1. Polymorphic malware alters itself to avoid detection.
2. Armored malware protects itself from being analyzed.
   

Front 16

Name ways a system be protected from Malicious Software?

Back 16

1. Use antivirus software
2. Keep virus definitions up to date
3. Monitor Listening Ports
4. Monitor Running Processes
5. Develop good surfing habits
   

Front 17

What are Botnets?

Back 17

Rootkits that use a group of systems controlled by the hacker to perform attacks on systems across the Internet. They are also know as Zombies.

Front 18

What is a PBX?

Back 18

Private Branch Exchange (PBX) used to share data, calls, VoIP calls etceterra.

Front 19

What is Network Attached Storage (NAS)?

Back 19

A device that connects to the network that has a group of drives installed. Typically a RAID that provides a central location to share files.

Front 20

Name two of the types of clients NAS supports.

Back 20

1. Server Message Blocks (SMB) for Windows.
2. Network File System (NFS) Linux
   

Front 21

Which type of malware consumes memory and resources by running all the time in addition to sucking up bandwidth.

Back 21

Spyware

Front 22

Which type of Malware can appear to be useful, but can create a Backdoor?

Back 22

Trojans