Quiz: Security attacks

This week's quiz has a slightly different format. Your goal will be to match the correct term in the left-hand column with its description in the right-hand column.

How to take the quiz:
- After reading the question, click on the answer that you think is correct to go to the whatis.com definition. If the answer you ve chosen is correct, you will see the question text somewhere in the defintion.
OR
- After reading the question, write down the letter of your answer choice on scrap paper. Check your answers by using the answer key at the end of the quiz.

a) white hat b) smurf attack c) honey pot d) pulsing zombie e) Back Orifice f) shoulder surfing g) dumpster diving h) rootkit i) war driving j) bucket brigade k) sandbox l) Blowfish m) anonymous FTP n) brute force o) hacktivism p) chaffing and winnowing q) cracker r) crosstalk s) weenie t) walled garden u) snoop server v) Carnivore

1._____ To prevent this simple, but effective, security attack, experts recommend that you shield paperwork or your keypad from view by using your body or cupping your hand. 2. _____In this kind of attack, an intruder might intercept messages in a public key exchange and then retransmit them, substituting their own public key for the requested one. 3._____ This is a computer whose security has been compromised so that it intermittently carries out a denial-of-service attack on other targeted computers. 4._____ In order to identify security risks, you might want to use one of these to place network interfaces into promiscuous mode -- which allows the system to access all the data in each network packet. 5. _____This is a computer system on the Internet that is expressly set up to attract and "trap" people who attempt to penetrate other people's computer systems. 6. _____Created by a group of hackers called the Cult of the Dead Cow, this Windows application allows someone at one computer to control everything on another, remote computer. 7._____ This denial of service attack sends a ping message addressed to an IP broadcast address. Enough pings and resultant echoes can flood the network and make it unusable for real traffic. 8._____ Because the range of a wireless LAN sometimes extends outside a company's office building, a hacker might try to use this technique to obtain a free Internet connection or gain access to company records and other resources. 9._____ A sophisticated intruder might install this collection of tools on a computer in order to mask his or her presence. 10._____ This kind of attack can be tough to prosecute if the intruder insists that their behavior is the equivalent of a protest and should be protected as a form of free speech.

SCROLL DOWN FOR ANSWER KEY

ANSWER KEY: 1f;2j;3d;4u;5c;6e;7b;8i;9h;10o

BROWSE BY TAG Application and Platform Security,   Application Attacks (Buffer Overflows, Cross-Site Scripting),   Security Awareness Training and Internal Threats,   Information Security Management,   Malware, Viruses, Trojans and Spyware,   Information Security Threats,   Hacker Tools and Techniques: Underground Sites and Hacking Groups,   Web Security Tools and Best Practices,   Web Server Threats and Countermeasures,   Web Application and Web 2.0 Threats,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Application Attacks (Buffer Overflows, Cross-Site Scripting) Adobe ColdFusion websites being compromised PCI management: The case for Web application firewalls Month of Twitter Bugs project to document Twitter flaws Adobe issues first quarterly patch release fixing 13 flaws Balancing security and performance: Protecting layer 7 on the network Adobe issues Reader update fixing zero-day flaw The Pipe Dream of No More Free Bugs Security Squad: Federal cybersecurity defenses Oracle issues 43 updates, fixes serious database flaws Attackers target new Microsoft PowerPoint zero-day flaw Application Attacks (Buffer Overflows, Cross-Site Scripting) Research Security Awareness Training and Internal Threats Twitter risks, Facebook threats trouble security pros Social engineering training could disrupt botnet growth How to write a risk methodology that blends business, security needs Risk management must include physical-logical security convergence Tabletop exercises sharpen security and business continuity Security policies need simplifying, expert says Microsoft IE 8 security only benefits educated users Security book chapter: The Truth About Identity Theft How to integrate the security of both physical and virtual machines Laid off workers likely to steal company data, survey warns Malware, Viruses, Trojans and Spyware ISP shutdown latest cat-and-mouse game with hackers How to get rid of malware, botnets on a hospital IT network How can search results lead to malware? How to prevent mobile phone spying Should a national cybersecurity strategy include offensive botnets? How to defend against rogue DHCP server malware New Trojan stealing FTP credentials, attacking FTP websites Cybercriminals exploit Michael Jackson, Farrah Fawcett deaths When BIOS updates become malware attacks Antispyware buying guide for Indian enterprises

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary buffer overflow  (SearchSecurity.com) cache poisoning  (SearchSecurity.com) cyberterrorism  (SearchSecurity.com) dictionary attack  (SearchSecurity.com) directory harvest attack  (SearchSecurity.com) distributed denial-of-service attack  (SearchSecurity.com) JavaScript hijacking  (SearchSecurity.com) ping of death  (SearchSecurity.com) stack smashing  (SearchSecurity.com) SYN flooding  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary