Assets and Threats: Quiz 7

One method of applying an attacker mindset is using attack simulations. These activities are normally performed in one of two ways: proactively and reactively. Both approaches share a common goal, which is to make systems safer.

• ? simulations assume the role of an attacker by exploiting vulnerabilities and breaking through defenses. This is sometimes called a red team exercise.

• ? simulations assume the role of a defender responding to an attack. This is sometimes called a blue team exercise.

st____________ actors are government intelligence agencies.

criminal syn___________ refer to organized groups of people who make money from criminal activity.

ins__________ threats can be any individual who has or had authorized access to an organization’s resources. This includes employees who accidentally compromise assets or individuals who purposefully put them at risk for their own benefit.

sha__________ IT refers to individuals who use technologies that lack IT governance. A common example is when an employee uses their personal email to send work-related communications.

Because the formal definition of a hacker is broad, the term can be a bit ambiguous. In security, it applies to three types of individuals based on their intent:

unau___________ hackers

Authorized, or eth___________, hackers

Sem_________-authorized hackers

An adv________ pers_________ thre__________ (APT) refers to instances when a threat actor maintains unauthorized access to a system for an extended period of time. The term is mostly associated with nation states and state-sponsored actors. Typically, an APT is concerned with surveilling a target to gather information. They then use the intel to manipulate government, defense, financial, and telecom services.

For the most part, threat actors gain access through one of these attack vector categories:

dire_______ access, referring to instances when they have physical access to a system

Remo_______ media, which includes portable hardware, like USB flash drives

Social media pla_______ that are used for communication and content sharing

Em_______, including both personal and business accounts

Wire_______ networks on premises

Clo_______ services usually provided by third-party organizations

Sup_______ chains like third-party vendors that can present a backdoor into systems

Attack vec__________ refer to the pathways attackers use to penetrate security defenses. Like the doors and windows of a home, these pathways are the exploitable features of an attack surface. One example of an attack vec__________ would be social media. Another would be removable media, like a USB drive.