Attack or threat vector - Study guides, Class notes & Summaries

Foundations of Cyber Security Exam 182 Questions with Verified Answers What is cyberspace? (4) - CORRECT ANSWER Information systems, data on them, services they provide, network device used for communication What is a cyberattack? - CORRECT ANSWER Malicious attempt to damage, disrupt, or gain unauthorised access to computer systems, network or devices What is a cyber vulnerability? (2) - CORRECT ANSWER Weakness or loophole in system What is cyber security? - CORRECT ANSWER Protection...

ALE Annual Loss Expectancy. ALE = SLE x ARO SLE Single Loss Expectancy ARO Annualized Rate of Occurrence Threat Vector The way in which an attacker poses a threat Mean Time Between Failures Anticipated lifetime of a component (can be repaired) MTBF Mean Time Between Failures Mean Time To Failure Anticipated lifetime of a component (cannot be repaired) MTTF Mean Time To Failure Mean Time To Restore How long it takes to repair a comp...

What are the zero-trust methodology guiding principles? Correct Answer - Verify explicitly - Least privileged access - Assume breach What are the six foundational pillars of the zero-trust methodology? Correct Answer Identities - may be users, services or devices Devices - create a large attack surface as data flows Applications - are the way that data is consumed Data - should be classified, labelled, and encrypted based on its attributes Infrastructure - whether on-premise or cloud ba...

Certified Ethical Hacker Part 1 Questions and Answers Already Passed What threat type is a spouse, friend, or even client of an employee who uses the employee's credentials to gain access? Insider affiliate Which port numbers are used for SNMP? 161 and 162 Which port number is used for SSH? 22 What is the darknet? Network, software or service available outside of normal internet traffic and search engines Which type of password attack attempts every combination of characters? Brute force ...

Ack Piggybacking - ANSWER The Practice of sending an ACK inside another packet going to the same destination Address resolution protocol - ANSWER Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table, usually called the ARP cache, is used to maintain a correlation between each MAC and its corresponding IP address What are the five threat vectors? - ANSWER Outside attack from network Outsider attack from telephone Insider attac...

Cyber Security Test - Week 1 to 5 Questions and Answers Rated A+ What does cyber security refer to? Cybersecurity relates to the security of any device which is connected to some form of network such as the internet. What does information security refer to? Information security is wider than computer security because it relates to the security of any information, whether that be physical or held within a digital device. What does computer security refer to? Computer security re...

Principles of Cyber Security Questions and Answers 100% Accurate CIA Confidentiality, Integrity, Availability Confidentiality The avoidance of the unauthorized disclosure of information. It involves the protection of data, providing access for those who are allowed to see it while disallowing others from learning anything about its content. This can be achieved with: - Encryption - Access Control - Authentication - Authorisation - Physical Security Integrity The property t...

Palo Alto All Questions with correct answers C Correct Answer-In which cloud computing service model does a provider's applications run on a cloud infrastructure and the consumer does not manage or control the underlying infrastructure? A. Platform as a Service (PaaS) B. Infrastructure as a Service (IaaS) C. Software as a Service (SaaS) D. Public Cloud T Correct Answer-Business intelligence (BI) software consists of tools and techniques used to surface large amounts of raw unstructured ...

Four information system types based on their sphere of influence include interorganizational, personal, enterprise, and _______ - workgroup Managers of the business functions most affected by a new information system have a key responsibility to ensure that - the people, processes, and human structure components are fully addressed _______________ is a model used to introduce new systems into the workplace in a manner that lowers stress, encourages teamwork, and increases the probability of...

Acceptable Interruption Window - correct answer The maximum period of time that a system can be unavailable before compromising the achievement of the enterprise's business objectives. Acceptable Use Policy - correct answer A policy that establishes an agreement between users and the enterprise and defines for all parties the ranges of use that are approved before gaining access to a network or the ...