INFO. ASS. & SEC. 2

51問 • 11ヶ月前

Jamaica Rose Gilo

通報

問題一覧

These are actions on how to I terrupt/stop attacks, threats and vulnerabilities.

IOC

It is an evidence that someone may have breached an org's network or endpoint.

IOC

This forensic data doesn't just indicate a potential threat, it signals that an attack, such as malware, compromised credentials, or data exhilaration, has already occurred.

IOC

4 EXAMPLES OF IOCs

Unusual network traffic, Unknown files/process, Changes to file's integrity, Suspicious login patterns

Abnormal pattern of data flows

Unusual network traffic

Happens when downloading files where files you chose to download doesn't matched the files being downloaded.

Unknown files/process

Illegal modifying or stealing of files/data.

Chnahes to file's integrity

Unusual pattern of entry

Suspicious login patterns

Detectors of cyberattacks

IOC

Importance of IOC in cyber security. There are 4, what are they?

Detect malicious activity, Respond to threats quickly, Prevent future attacks, Strengthen overall security posture

3 types of IOC

Network-Based, Host-Based, Email-Based

Forced entry on ports

Network-Based IOC

traffic anomalies

Network-Based IOC

Port scanning

Network-Based IOC

File modifications

Host-Based IOC

Registry chnages

Host-Based IOC

Phishing attempts

Email-Based IOC

Malicious attachments

Email-Based IOC

The best way to interrupt unusual actions/attacks is.....

Rebooting

TYPES OF MALWARES

Virus, Worm, Trojan, Ransomware

Attached to files and spread

Virus

Self-replicating programs

Worms

Disguised as legitimate software

Trojan

Encryptsdata for ransom

Ransomware

4 MALWARE DELIVERY METHODS

Phishing emails, Drive-by downloads, Flash drives, Exploit kits

Signs of Malware Infection

Slow performance, Frequent crashes, Unexpected pop-ups, Unauthorized changes to files

Impacts of Malware Systems

Data theft, System crashes, Financial losses, Reputational damage

Refers to abnormal patterns of data flow, such as unexpected spikes or unfamiliar sources, which could indicate a security breach, attack, or system malfunction.

Unusual network traffic

Unfamiliar programs or files running on a system that may be malicious, indicating potential malware or unauthorized access.

Unknown files/process

Occur when files are altered, deleted, or corrupted unexpectedly, which could indicate unauthorized access, malware activity, or data breaches

Changes to file's integrity

Involve unusual login activities, such as multiple failed attempts, logins from unfamiliar locations, or access at odd times, which may indicate unauthorized access or an attempted security breach.

Suspicious login patterns

Involves monitoring systems for signs of harmful actions, like unauthorized access, malware infections, or abnormal behavior, to prevent damage and secure data.

Detect malicious activity

Involves taking immediate action to contain, mitigate, and resolve security incidents, minimizing damage and preventing further compromise of systems or data.

Respond to threats quickly

Involves strengthening security measures, such as updating software, using firewalls, training users, and implementing proactive monitoring to reduce vulnerabilities and protect against new threats.

Prevent future attacks

Enhancing an organization's defenses through a combination of updated policies, regular risk assessments, robust security tools, and employee training to better protect against potential threats.

Strengthen overall security posture

Refers to programs or code designed to harm systems, networks, or users

Malware

Occurs when a system or application runs slower than usual, often due to resource issues, malware, or network problems.

Slow performance

Happen when a system or application unexpectedly stops working, often due to software bugs, hardware issues, or malware

Frequent crashes

Intrusive windows or ads that appear without warning, often caused by malware or malicious websites.

Unexpected pop-ups

Occur when files are modified, deleted, or accessed without permission, often indicating a security breach or malware infection.

Unauthorized changes to files

Occurs when sensitive or personal information is accessed, stolen, or transferred without authorization, often for malicious purposes like identity theft or fraud.

Data theft

Occur when a computer or application unexpectedly stops functioning, often due to software bugs, hardware failure, or malware.

System crashes

Refer to the loss of money due to events like cyberattacks, fraud, system downtime, or legal fines, impacting an organization's profitability

Financial losses

Refers to the harm caused to an organization's public image or trust, often resulting from security breaches, unethical behavior, or poor service.

Reputational damage

can damage or disrupt systems and steal sensitive information.

Malware attacks

involve tricking individuals into divulging confidential information by impersonating trustworthy entities.

Phishing attacks

occur when a hacker intercepts communication between two parties to steal data or alter the messages

MITM attacks

floods a system with excessive traffic, rendering it unavailable to legitimate users

DOS attacks

amplify the impact of DoS attacks by using multiple systems to target a single victim

DDOS attacks

exploit vulnerabilities in web applications to execute malicious SQL commands

SQL injection attacks

involve injecting malicious scripts into web pages to exploit users' browsers

XSS attacks

Networking 2 quiz1

Jamaica Rose Gilo · 83問 · 1年前

Networking 2 quiz1

83問 • 1年前

Jamaica Rose Gilo

MIDTERM-IT 313

Jamaica Rose Gilo · 100問 · 1年前

MIDTERM-IT 313

100問 • 1年前

Jamaica Rose Gilo

MIDTERM-IT 313

Jamaica Rose Gilo · 94問 · 1年前

MIDTERM-IT 313

94問 • 1年前

Jamaica Rose Gilo

MIDTERM-IT 313

Jamaica Rose Gilo · 58問 · 1年前

MIDTERM-IT 313

58問 • 1年前

Jamaica Rose Gilo

MIDTERM-APPDEV 3 CHAPTER 5

Jamaica Rose Gilo · 42問 · 1年前

MIDTERM-APPDEV 3 CHAPTER 5

42問 • 1年前

Jamaica Rose Gilo

MIDTERM-APPDEV 3 CHAPTER 4

Jamaica Rose Gilo · 48問 · 1年前

MIDTERM-APPDEV 3 CHAPTER 4

48問 • 1年前

Jamaica Rose Gilo

MIDTERM-ADVANCED DBM C3 L2

Jamaica Rose Gilo · 97問 · 1年前

MIDTERM-ADVANCED DBM C3 L2

97問 • 1年前

Jamaica Rose Gilo

Mga MALI mo!

Jamaica Rose Gilo · 29問 · 1年前

Mga MALI mo!

29問 • 1年前

Jamaica Rose Gilo

INFO. ASSURANCE &SECURITY

Jamaica Rose Gilo · 100問 · 1年前

INFO. ASSURANCE &SECURITY

100問 • 1年前

Jamaica Rose Gilo

INFO. ASSURANCE & SECURITY

Jamaica Rose Gilo · 33問 · 1年前

INFO. ASSURANCE & SECURITY

33問 • 1年前

Jamaica Rose Gilo

3 BRANCHES OF THE PHIL. GOVERNMENT

Jamaica Rose Gilo · 20問 · 11ヶ月前

3 BRANCHES OF THE PHIL. GOVERNMENT

20問 • 11ヶ月前

Jamaica Rose Gilo

ENVIRONMENTAL MANAGEMENT AND PROTECTION

Jamaica Rose Gilo · 16問 · 11ヶ月前

ENVIRONMENTAL MANAGEMENT AND PROTECTION

16問 • 11ヶ月前

Jamaica Rose Gilo

ARTICLE VI-1987 CONST.

Jamaica Rose Gilo · 16問 · 11ヶ月前

ARTICLE VI-1987 CONST.

16問 • 11ヶ月前

Jamaica Rose Gilo

ARTICLE 1-NATIONAL TERRITORY

Jamaica Rose Gilo · 10問 · 11ヶ月前

ARTICLE 1-NATIONAL TERRITORY

10問 • 11ヶ月前

Jamaica Rose Gilo

ARTICLE II-DECLARATION FOR PRINCIPLES AND STATE POLICIES

Jamaica Rose Gilo · 11問 · 11ヶ月前

ARTICLE II-DECLARATION FOR PRINCIPLES AND STATE POLICIES

11問 • 11ヶ月前

Jamaica Rose Gilo

ARTICLE III

Jamaica Rose Gilo · 6問 · 11ヶ月前

ARTICLE III

6問 • 11ヶ月前

Jamaica Rose Gilo

BILL OF RIGHTS

Jamaica Rose Gilo · 20問 · 11ヶ月前

BILL OF RIGHTS

20問 • 11ヶ月前

Jamaica Rose Gilo

PEACE & HUMAN RIGHTS ISSUES AND CONCEPTS

Jamaica Rose Gilo · 8問 · 11ヶ月前

PEACE & HUMAN RIGHTS ISSUES AND CONCEPTS

8問 • 11ヶ月前

Jamaica Rose Gilo

RA 6713

Jamaica Rose Gilo · 9問 · 11ヶ月前

RA 6713

9問 • 11ヶ月前

Jamaica Rose Gilo

MATH PROBLEMS AND BASIC OPERATIONS

Jamaica Rose Gilo · 62問 · 11ヶ月前

MATH PROBLEMS AND BASIC OPERATIONS

62問 • 11ヶ月前

Jamaica Rose Gilo

問題一覧

These are actions on how to I terrupt/stop attacks, threats and vulnerabilities.

IOC

It is an evidence that someone may have breached an org's network or endpoint.

IOC

This forensic data doesn't just indicate a potential threat, it signals that an attack, such as malware, compromised credentials, or data exhilaration, has already occurred.

IOC

4 EXAMPLES OF IOCs

Unusual network traffic, Unknown files/process, Changes to file's integrity, Suspicious login patterns

Abnormal pattern of data flows

Unusual network traffic

Happens when downloading files where files you chose to download doesn't matched the files being downloaded.

Unknown files/process

Illegal modifying or stealing of files/data.

Chnahes to file's integrity

Unusual pattern of entry

Suspicious login patterns

Detectors of cyberattacks

IOC

Importance of IOC in cyber security. There are 4, what are they?

Detect malicious activity, Respond to threats quickly, Prevent future attacks, Strengthen overall security posture

3 types of IOC

Network-Based, Host-Based, Email-Based

Forced entry on ports

Network-Based IOC

traffic anomalies

Network-Based IOC

Port scanning

Network-Based IOC

File modifications

Host-Based IOC

Registry chnages

Host-Based IOC

Phishing attempts

Email-Based IOC

Malicious attachments

Email-Based IOC

The best way to interrupt unusual actions/attacks is.....

Rebooting

TYPES OF MALWARES

Virus, Worm, Trojan, Ransomware

Attached to files and spread

Virus

Self-replicating programs

Worms

Disguised as legitimate software

Trojan

Encryptsdata for ransom

Ransomware

4 MALWARE DELIVERY METHODS

Phishing emails, Drive-by downloads, Flash drives, Exploit kits

Signs of Malware Infection

Slow performance, Frequent crashes, Unexpected pop-ups, Unauthorized changes to files

Impacts of Malware Systems

Data theft, System crashes, Financial losses, Reputational damage

Refers to abnormal patterns of data flow, such as unexpected spikes or unfamiliar sources, which could indicate a security breach, attack, or system malfunction.

Unusual network traffic

Unfamiliar programs or files running on a system that may be malicious, indicating potential malware or unauthorized access.

Unknown files/process

Occur when files are altered, deleted, or corrupted unexpectedly, which could indicate unauthorized access, malware activity, or data breaches

Changes to file's integrity

Involve unusual login activities, such as multiple failed attempts, logins from unfamiliar locations, or access at odd times, which may indicate unauthorized access or an attempted security breach.

Suspicious login patterns

Involves monitoring systems for signs of harmful actions, like unauthorized access, malware infections, or abnormal behavior, to prevent damage and secure data.

Detect malicious activity

Involves taking immediate action to contain, mitigate, and resolve security incidents, minimizing damage and preventing further compromise of systems or data.

Respond to threats quickly

Involves strengthening security measures, such as updating software, using firewalls, training users, and implementing proactive monitoring to reduce vulnerabilities and protect against new threats.

Prevent future attacks

Enhancing an organization's defenses through a combination of updated policies, regular risk assessments, robust security tools, and employee training to better protect against potential threats.

Strengthen overall security posture

Refers to programs or code designed to harm systems, networks, or users

Malware

Occurs when a system or application runs slower than usual, often due to resource issues, malware, or network problems.

Slow performance

Happen when a system or application unexpectedly stops working, often due to software bugs, hardware issues, or malware

Frequent crashes

Intrusive windows or ads that appear without warning, often caused by malware or malicious websites.

Unexpected pop-ups

Occur when files are modified, deleted, or accessed without permission, often indicating a security breach or malware infection.

Unauthorized changes to files

Occurs when sensitive or personal information is accessed, stolen, or transferred without authorization, often for malicious purposes like identity theft or fraud.

Data theft

Occur when a computer or application unexpectedly stops functioning, often due to software bugs, hardware failure, or malware.

System crashes

Refer to the loss of money due to events like cyberattacks, fraud, system downtime, or legal fines, impacting an organization's profitability

Financial losses

Refers to the harm caused to an organization's public image or trust, often resulting from security breaches, unethical behavior, or poor service.

Reputational damage

can damage or disrupt systems and steal sensitive information.

Malware attacks

involve tricking individuals into divulging confidential information by impersonating trustworthy entities.

Phishing attacks

occur when a hacker intercepts communication between two parties to steal data or alter the messages

MITM attacks

floods a system with excessive traffic, rendering it unavailable to legitimate users

DOS attacks

amplify the impact of DoS attacks by using multiple systems to target a single victim

DDOS attacks

exploit vulnerabilities in web applications to execute malicious SQL commands

SQL injection attacks

involve injecting malicious scripts into web pages to exploit users' browsers

XSS attacks