CompTIA Security+: Network Security Fundamentals 7th Edition - Key Terms and Definitions, Exams of Computer Security

Download CompTIA Security+: Network Security Fundamentals 7th Edition - Key Terms and Definitions and more Exams Computer Security in PDF only on Docsity! CompTIA Security + Guide to Network Security Fundamentals 7th Edition 2024 Chapter 3 Key Terms Quick practice Adversarial artificial intelligence (AI) - Answer>>exploiting the risks associated with using AI and ML in cybersecurity application program interface (API) attack - Answer>>An attack that targets vulnerabilities in an API. backdoor - Answer>>malware that gives access to a computer, program, or service that circumvents any normal security protections bot - Answer>>an infected computer placed under the remote control of an attacker for the purpose of launching attacks buffer overflow attack - Answer>>An attack that occurs when a process attempts to store data in RAM beyond the boundaries of a fixed-length storage buffer. client-side request forgery - Answer>>An attack that takes advantage of an authentication "token" that a website sends to a user's web browser to imitate the identity and privileges of the victim. command and control (C&C) - Answer>>A structure that sends instructions to infected bot computers. cross-site request forgery (XSRF) - Answer>>An attack that takes advantage of an authentication "token" that a website sends to a user's web browser to imitate the identity and privileges of the victim. Cross-Site Scripting (XSS) - Answer>>An attack that takes advantage of a website that accepts user input without validating it. cryptomalware - Answer>>Malware that encrypts all the files on the device so that none of them can be opened until a ransom is paid. Device driver manipulation - Answer>>An attack that alters a device driver from its normal function. DLL injection - Answer>>An attack that inserts code into a running process through a DLL to cause a program to function in a different way than intended error handling - Answer>>A programming error that does not properly trap an error condition. eXtensible Markup Language (XML) - Answer>>A markup language designed to store information fileless virus - Answer>>A type of malware that takes advantage of native services and processes that are part of the OS to avoid detection and carry out its attacks. improper input handling - Answer>>A programming error that does not filter or validate user input to prevent a malicious action. injections - Answer>>attacks that introduce new input to exploit a vulnerability integer overflow attack - Answer>>An attacker changes the value of a variable to something outside the range that the programmer had intended by using an integer overflow keylogger - Answer>>Hardware or software that captures and stores each keystroke that a user types on the computer's keyboard.