IT SECURITY AND RISK MANAGMENT

What is a Man-in-the-Middle (MITM) attack?

An attack where the attacker intercepts and alters communication between two parties.

Define ARP Poisoning.

An attack that alters ARP tables to redirect traffic.

What is a Replay Attack?

An attack that copies and reuses legitimate transmissions to gain access.

What does DNS Poisoning do?

It redirects users to fraudulent websites.

What is a Denial-of-Service (DoS) attack?

An attack that overwhelms a server with excessive requests.

Define SYN Flood.

An attack that exploits the TCP handshake, leaving connections open.

What is Cross-Site Scripting (XSS)?

An attack that injects malicious scripts into web applications.

What is SQL Injection?

An attack that inserts harmful SQL statements to manipulate databases.

What function does a firewall serve?

It filters incoming and outgoing traffic based on security rules.

What is Unified Threat Management (UTM)?

It combines multiple security features such as firewall and antivirus.

What does a Demilitarized Zone (DMZ) do in a network?

It isolates public-facing services from the internal network.

What is the purpose of a Virtual Private Network (VPN)?

To encrypt data for secure remote access.

What is Session Hijacking?

An attack where the attacker takes over a user's session.

List one common type of DoS attack.

Smurf Attack, which spoofs IP addresses to flood the victim with responses.

What does Intrusion Detection & Prevention Systems (IDS/IPS) do?

It monitors and prevents malicious activities.

What is the role of Security Information and Event Management (SIEM)?

It aggregates and analyzes security data.

What does Network Address Translation (NAT) do?

It masks internal IP addresses.

What is Data Loss Prevention (DLP)?

Technology that monitors and prevents data leaks.

What is a Man-in-the-Browser (MITB) attack?

An attack where malware inside a browser modifies transactions.