Cisco !#&? be a network ninja

To the top Chapter 2.5.1 Chapter 2.5.2

Introduction to Cybersecurity

One course of Cisco's "Skills for all"

On completing this course, you will be able to:

Module 2 - Attacks, Concepts and Techniques

Welcome to this module, which will explore the different methods that cybercriminals use to launch an attack

Understanding what these are and how they work is the best way to protect ourselves. So, let’s make sure you know what you’re up against.

Chapter 2.5 - Quiz

2.5.1 Module 2 quiz

Question

Which of the following characteristics describe a worm?


Select two correct answers

Question

Which of the following examples illustrates how malware might be concealed?

Question

What type of attack allows an attacker to use a brute-force approach?

Question

What is the most common goal of search engine optimization (SEO) poisoning?

Question

What do you call a program written to take advantage of a known security vulnerability?

Question

A set of changes done to any program or application with the aim of updating, fixing or improving it is often referred to as what?

Question

Securing physical access to target equipment is an organization’s best defense against a cyber attack.' Is this true or false?

Question

Where is cryptocurrency stored?

2.5.2 Module 2 Quiz explanations

Question

Which type of attack allows an attacker to use a brute force approach?

  1. password cracking
  2. packet sniffing
  3. social engineering
  4. denial of service
Explanations

Common ways used to crack Wi-Fi passwords include social engineering, brute-force attacks, and network sniffing.

Answer: password cracking

Question

Which example illustrates how malware might be concealed?

  1. An email is sent to the employees of an organization with an attachment that looks like an antivirus update, but the attachment actually consists of spyware.
  2. A botnet of zombies carry personal information back to the hacker.
  3. A hacker uses techniques to improve the ranking of a website so that users are redirected to a malicious site.
  4. An attack is launched against the public website of an online retailer with the objective of blocking its response to visitors.
Explanations

An email attachment that appears as valid software but actually contains spyware shows how malware might be concealed. An attack to block access to a website is a DoS attack. A hacker uses search engine optimization (SEO) poisoning to improve the ranking of a website so that users are directed to a malicious site that hosts malware or uses social engineering methods to obtain information. A botnet of zombie computers is used to launch a DDoS attack.

Answer: An email is sent to the employees of an organization with an attachment that looks like an antivirus update, but the attachment actually consists of spyware.

Question

What is the purpose of a rootkit?

  1. to gain privileged access to a device while concealing itself
  2. to replicate itself independently of any other programs
  3. to masquerade as a legitimate program
  4. to deliver advertisements without user consent
Explanations

Malware can be classified as follows:
– Virus (self replicates by attaching to another program or file)
– Worm (replicates independently of another program)
– Trojan Horse (masquerades as a legitimate file or program)
– Rootkit (gains privileged access to a machine while concealing itself)
– Spyware (collects information from a target system)
– Adware (delivers advertisements with or without consent)
– Bot (waits for commands from the hacker)
– Ransomware (holds a computer system or data captive until payment is received)

Answer: to gain privileged access to a device while concealing itself

Question

Which tool is used to provide a list of open ports on network devices?

  1. Ping
  2. Nmap
  3. Tracert
  4. Whois
Explanations

The Nmap tool is a port scanner that is used to determine which ports are open on a particular network device. A port scanner is used before launching an attack.

Answer: Nmap

Question

In what way are zombies used in security attacks?

  1. They are maliciously formed code segments used to replace legitimate applications.
  2. They target specific individuals to gain corporate or personal information.
  3. They probe a group of machines for open ports to learn which services are running.
  4. They are infected machines that carry out a DDoS attack.
Explanations

Zombies are infected computers that make up a botnet. The zombies are used to deploy a distributed denial of service (DDoS) attack.

Answer: They are infected machines that carry out a DDoS attack.

Question

What is the most common goal of search engine optimization (SEO) poisoning?

  1. to overwhelm a network device with maliciously formed packets
  2. tto overwhelm a network device with maliciously formed packets
  3. to trick someone into installing malware or divulging personal information
  4. to build a botnet of zombies
Explanations

A malicious user could create a SEO so that a malicious website appears higher in search results. The malicious website commonly contains malware or is used to obtain information via social engineering techniques.

Answer: to increase web traffic to malicious sites

Question

Which two characteristics describe a worm? (Choose two.)

  1. is self-replicating
  2. executes when software is run on a computer
  3. hides in a dormant state until needed by an attacker
  4. travels to new computers without any intervention or knowledge of the user
  5. infects computers by attaching to software code
Explanations

Worms are self-replicating pieces of software that consume bandwidth on a network as they propagate from system to system. They do not require a host application, unlike a virus. Viruses, on the other hand, carry executable malicious code which harms the target machine on which they reside.

Answer: is self-replicating, travels to new computers without any intervention or knowledge of the user

Question

What is the primary goal of a DoS attack?

  1. to scan the data on the target server
  2. to obtain all addresses in the address book within the server
  3. to facilitate access to external networks
  4. to prevent the target server from being able to handle additional requests
Explanations

A denial of service (DoS) attack attempts to overwhelm a system or process by sending large amounts of data or requests to the target. The goal is to keep the system so overwhelmed handling false requests that it is unable to respond to legitimate ones.

Answer: to prevent the target server from being able to handle additional requests

Solved quizzes

Skills for all