Social engineering attack Study guides, Class notes & Summaries

Signature Detection Signature detection mechanisms use known descriptions of viruses to identify malicious code resident on a system. Domain 3: Security Architecture and Engineering 3.5 Assess and mitigate the vulnerabilities of security architectures, designs, and solution elements Malicious Code - What is the most commonly used technique to protect against virus attacks? A Signature detection B Automated reconstruction C Data integrity assurance D Heuristic detection Backdoor Back d...

SANS GISCP and GIACAck Piggybacking - correct answer The Practice of sending an ACK inside another packet going to the same destination Address resolution protocol - correct answer Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table, usually called the ARP cache, is used to maintain a correlation between each MAC and its corresponding IP address What are the five threat vectors? - correct answer Outside attack from network Ou...

SANS GISCP and GIAC Test Questions & AAck Piggybacking -ANSWER The Practice of sending an ACK inside another packet going to the same destination Address resolution protocol -ANSWER Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table, usually called the ARP cache, is used to maintain a correlation between each MAC and its corresponding IP address What are the five threat vectors? -ANSWER Outside attack from network Outsider a...

WGU C843 Managing Information Security, Final Exam Questions and Answers Latest Updated 2024/2025 (GRADED A+) A(n) polymorphic threat is one that over time changes the way it appears to antivirus software programs, making it undetectable by techniques that look for pre-configured signatures. A False B True - ANSWER B Question 4 :Which type of attack involves sending a large number of connection or information requests to a target? A denial-of-service (DoS) B brute force C spear fis...

What prevents man-in-the-middle attack? correct answer: SMB What is the best technical solution for reducing the threat of man-in-the-middle attack? correct answer: PKI prevents eavesdropping and replay attack correct answer: Kerberos Which of these can protect against replay attack? correct answer: AH What protects against playback attack? correct answer: CHAP Which of the following may help prevent replay attack? correct answer: SSL What do you use to encrypt sensitive ...

GIAC EXAM WITH COMPLETE QUESTIONS AND ANSWERS LATEST 2024/2025 || GRADED A+. Ack Piggybacking - ANSWER The Practice of sending an ACK inside another packet going to the same destination Address resolution protocol - ANSWER Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table, usually called the ARP cache, is used to maintain a correlation between each MAC and its corresponding IP address What are the five threat vectors? - ANSWE...

What can be done to reduce the success of phishing attacks? (Choose 2) - Email Security, User Training Match the type of social engineering with its description or attribute: Targeting a significant target is called ________________. - Whaling Match the type of social engineering with its description or attribute: A phone based attack is called _________________. - Vishing Match the type of social engineering with its description or attribute: An incorrect website attack is called __...

12.4.6 Practice Questions Test Out with Complete Solutions An organization's receptionist received a phone call from an individual claiming to be a partner in a high-level project and requesting sensitive information. Which type of social engineering is this individual engaging in? Authority What is the primary countermeasure to social engineering? Awareness Match each social engineering description on the left with the appropriate attack type on the right. 1. Phishing 2. W...

Palo Alto PCCET Questions and Answers Already Passed When is it impossible to secure SaaS data? When a user uses an unmanaged device to access an unsanctioned SaaS instance. When a user uses a managed device to access an unsanctioned SaaS instance. When a user uses an unmanaged device to access a sanctioned SaaS instance. When a user uses a managed device to access a sanctioned SaaS instance. When a user uses an unmanaged device to access an unsanctioned SaaS instance. Which group is primar...

CRISC FULL Exam Questions & Answers 2023/2024 Which of the following is the MOST important reason for conducting security awareness programs throughout an enterprise? A. Reducing the risk of a social engineering attack B. Training personnel in security incident response C. Informing business units about the security strategy D. Maintaining evidence of training records to ensure compliance - ANSWER-A Which of the following is MOST important to determine when defining risk management ...