An Introduction to Ethical Hacking Practice Questions and Solutions
1 view 0 purchase
Course
Ethical Hacking
Institution
Ethical Hacking
The Security Triad (Goals of Security), known as CIA consist of 1. Confidentiality 2. Integrity 3. Availability
Confidentiality - addresses how secret the information is
- if someone obtains the information, the _______ has been compromised
Physical examples of Confidentiality locked doors, fenc...
An Introduction to Ethical Hacking
Practice Questions and Solutions
The Security Triad (Goals of Security), known as CIA consist of ✅1. Confidentiality
2. Integrity
3. Availability
Confidentiality ✅- addresses how secret the information is
- if someone obtains the information, the _______ has been compromised
Physical examples of Confidentiality ✅locked doors, fences, and guards
- passwords, encryption, and firewalls can be used to secure computer systems and
networks
Integrity ✅- addresses the correctness of the data
- data must be protected both while in storage and in transmit
- if data has been modified while in storage or transmission, the _________ has been
compromised
- security controls include hashing and cryptography
Availability ✅data should be ___________when the user needs it
employing a backup strategy and disaster recovery plan ensures data is always
___________.
Three basic Elements of Risk ✅1. Assets
2. Threats
3. Vulnerabilities
Risk ✅the probability or likelihood of the occurrence or realization of a threat
Assets ✅any item of economic value owned by an individual or corporation
if an _____ is lost, damaged, or compromised, there can be an economic cost to the
organization.
Examples: routers, databases, computers, information, trade secrets, and people
, Threats ✅- any agent, condition, or circumstance that could cause harm, loss, or
damage to an asset
can result in destruction, modification, corruption of data, or denial of service
Examples of threats ✅natural disasters, hacking attacks (DOS, Hack), and viruses
Human Threats ✅- Phreakers
- Script kiddies
- Disgruntled employees
- Software crackers/hackers
- Cyber terrorists/cyber criminals
- System crackers/hackers
Phreaking (Phreakers) ✅the action of hacking into telecommunications systems,
especially to obtain free calls.
- activities include physical theft, stolen calling cards, access to telecommunication
services, and compromising user IDs and passwords to gain unauthorized use of
facilities, such as phone systems and voicemail.
Script Kiddie ✅a person who uses existing computer scripts or code to hack into
computers, lacking the expertise to write their own
Disgruntled Employees ✅Employees who have lost respect and integrity for the
employer.
- potentially high risk because they have insider status
Software crackers/hackers ✅the modification of software to remove or disable features
which are considered undesirable by the person cracking the software
Cyberterrorists/cybercriminals ✅Individuals or groups of individuals who are usually
funded to conduct clandestine or espionage activities on governments, corporations,
and individuals in an unlawful manner
System crackers/hackers ✅Elite hackers who have specific expertise in attacking
vulnerabilities of systems and networks by targeting operating systems
Denial of Service (DOS) / distributed DoS (DDoS) attacks ✅an attack against
availability that is designed to bring the network or access to a particular TCP/IP
host/server to its knees by flooding it with useless traffic
Hackers ✅an insider or outsider who is unauthorized and purposely attacks an
organization's components, systems, or data
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller twishfrancis. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $8.99. You're not tied to anything after your purchase.
