14.5.2 Threats

Learn about the different type of threats to data and computer networks.

There are three main types of threats:

• web server threats
• password threats
• network threats

Web Server Threats

Web servers contain sensitive data like credentials, payment information, and other PII. This makes web servers a prime target for an attack, and it can also serve as the entry point to the underlying network. A common attack method used against web servers is called a Denial-of-Service (DoS) attack. Other attack methods include:

• SQL-SQL Injection
• Cross-site-Cross Site Scripting
• On-Path-On Path Attack

Password Threats

Since passwords are the main defense against unauthorized attackers, passwords are often the prime target for the attackers to get. A common attack to find passwords is called the brute force attack method, where the attacker attempts to guess the password by trying every combination of character until one works.

Network Threats

The most devastating type of attack. There three main types.

• Insider-Insider Attack
• MAC-MAC Spoofing
• Zero-Day-Zero Day Attack

Common Symptoms of Infection

• No Internet Connection
• Altered Settings / Files
  • DNS Settings
  • Proxy Settings
  • hosts file (Windows only)
  • Shared Folders
  • Local Groups & Users
• Unwanted Notifications and other Browser-Related Settings
• Slow Load Time / High Resource Usage when Inactive / Standby

#XIV

#Aplus