RevisionDojo

Distributed Denial of Service (DDoS)

A DDoS attack aims to overwhelm a network or service by flooding it with traffic from multiple sources.
Mechanism:
1. Botnets: Attackers use networks of infected devices (botnets) to generate traffic.
2. Target Saturation: The target becomes unresponsive to legitimate users.
Example:
1. An e-commerce site is flooded with requests during a sale, causing it to crash.

Note

DDoS attacks can target any online service, from websites to gaming servers, making them a widespread threat.

Insecure Network Protocols

Protocols that lack encryption or authentication, making them vulnerable to interception.
Examples:
1. Telnet and FTP: Transmit data in plaintext, allowing eavesdropping.
2. HTTP: Lacks encryption, exposing sensitive information.
Risks:
1. Data Interception: Attackers can capture credentials and sensitive data.
2. Session Hijacking: Unauthorized access to active sessions.

Tip

Always use secure protocols like HTTPS or SSH to protect data in transit.

Malware

Malicious software designed to damage, disrupt, or gain unauthorized access to systems.
Types:
1. Ransomware: Encrypts files, demanding payment for decryption.
2. Spyware: Collects sensitive information without user consent.
Example:
1. A ransomware attack encrypts a company's files, halting operations until a ransom is paid.

Note

Malware can spread through email attachments, infected websites, or compromised software updates.

Note

There are many different types of Malware, it would be good to look at: Virus, Worm, Trojan Horse, Spyware, Adware, Ransomware, Rootkit, Keylogger, Botnet, Fileless Malware, Logic Bomb, Backdoor

Man-in-the-Middle (MitM) Attacks

An attacker intercepts and alters communication between two parties without their knowledge.
Mechanism:
1. Eavesdropping: Capturing data as it travels between devices.
2. Data Manipulation: Altering messages or injecting malicious content.
Example:
1. An attacker intercepts a Wi-Fi connection at a café, capturing credit card information during an online purchase.

Note

MitM attacks are especially dangerous on public Wi-Fi networks, where encryption may be weak or absent.

Phishing Attacks

Fraudulent attempts to obtain sensitive information by disguising as a trustworthy entity.
Mechanism:
1. Emails or messages that appear legitimate, directing users to fake websites.
2. Social Engineering: Exploiting human trust to extract information.
Example:
1. An email pretending to be from a bank, asking users to verify their account details on a fake website.

Tip

Always verify the sender's email address and check for suspicious links before providing any information.

SQL Injection

An attack that involves inserting malicious SQL statements into an input field to manipulate or exploit databases.
Mechanism:
1. Attackers inject SQL code into user inputs, such as login forms or search boxes.
2. This code executes on the server, allowing data extraction or modification.
Example:
1. Entering ', DROP TABLE users, -- in a login form could delete a database table if input is not properly sanitized.

Note

SQL injection is one of the most common and dangerous web application vulnerabilities, often due to poor input validation.

Cross-Site Scripting (XSS)

A vulnerability that allows attackers to inject malicious scripts into web content viewed by other users.
Mechanism:
1. Attackers embed scripts in user-generated content, such as comments or forums.
2. When other users view the content, the script executes in their browsers.
Example:
1. A blog comment contains a script that steals cookies from other users, allowing session hijacking.

Note

XSS attacks can lead to data theft, session hijacking, and defacement of websites.

Unpatched Software

Software that has not been updated with the latest security patches, making it vulnerable to exploitation.
Risks:
1. Known Vulnerabilities: Attackers can exploit documented weaknesses.
2. Increased Attack Surface: Outdated software provides entry points for malware and attacks.
Example:
1. An operating system that has not been updated, allowing attackers to exploit a known vulnerability.

Tip

Regularly update all software, including operating systems, applications, and firmware, to minimize vulnerabilities.

Weak Authentication

Security measures that are easy to bypass or crack, often due to simple passwords or lack of multifactor authentication.
Risks:
1. Brute Force Attacks: Attackers can guess passwords using automated tools.
2. Credential Theft: Weak passwords are easily compromised.
Example:
1. A website that only requires a username and a simple password, without any additional verification.

Note

Always use strong, unique passwords and enable multifactor authentication to enhance security.

Zero-Day Exploits

Attacks that exploit previously unknown vulnerabilities in software or hardware before a patch is available.
Mechanism:
1. Attackers discover a vulnerability and develop an exploit before the vendor is aware.
2. These attacks are highly effective because there are no defenses in place.
Example:
1. An attacker discovers a flaw in a popular browser and spreads malware before the issue is publicly known and patched.

Note

Zero-day exploits are highly sought after by cyber criminals and nation-state actors due to their effectiveness.

Self review

Can you explain how a DDoS attack differs from a MitM attack?
Why is it important to regularly update software and apply security patches?
How do phishing attacks exploit human psychology to gain access to sensitive information?

Distributed Denial of Service (DDoS)

A DDoS attack aims to overwhelm a network or service by flooding it with traffic from multiple sources.
Mechanism:
1. Botnets: Attackers use networks of infected devices (botnets) to generate traffic.
2. Target Saturation: The target becomes unresponsive to legitimate users.
Example:
1. An e-commerce site is flooded with requests during a sale, causing it to crash.

Note

DDoS attacks can target any online service, from websites to gaming servers, making them a widespread threat.

Insecure Network Protocols

Protocols that lack encryption or authentication, making them vulnerable to interception.
Examples:
1. Telnet and FTP: Transmit data in plaintext, allowing eavesdropping.
2. HTTP: Lacks encryption, exposing sensitive information.
Risks:
1. Data Interception: Attackers can capture credentials and sensitive data.
2. Session Hijacking: Unauthorized access to active sessions.

Tip

Always use secure protocols like HTTPS or SSH to protect data in transit.

Malware

Malicious software designed to damage, disrupt, or gain unauthorized access to systems.
Types:
1. Ransomware: Encrypts files, demanding payment for decryption.
2. Spyware: Collects sensitive information without user consent.
Example:
1. A ransomware attack encrypts a company's files, halting operations until a ransom is paid.

Note

Malware can spread through email attachments, infected websites, or compromised software updates.

Note

There are many different types of Malware, it would be good to look at: Virus, Worm, Trojan Horse, Spyware, Adware, Ransomware, Rootkit, Keylogger, Botnet, Fileless Malware, Logic Bomb, Backdoor

Man-in-the-Middle (MitM) Attacks

An attacker intercepts and alters communication between two parties without their knowledge.
Mechanism:
1. Eavesdropping: Capturing data as it travels between devices.
2. Data Manipulation: Altering messages or injecting malicious content.
Example:
1. An attacker intercepts a Wi-Fi connection at a café, capturing credit card information during an online purchase.

Note

MitM attacks are especially dangerous on public Wi-Fi networks, where encryption may be weak or absent.

Phishing Attacks

Fraudulent attempts to obtain sensitive information by disguising as a trustworthy entity.
Mechanism:
1. Emails or messages that appear legitimate, directing users to fake websites.
2. Social Engineering: Exploiting human trust to extract information.
Example:
1. An email pretending to be from a bank, asking users to verify their account details on a fake website.

Tip

Always verify the sender's email address and check for suspicious links before providing any information.

SQL Injection

An attack that involves inserting malicious SQL statements into an input field to manipulate or exploit databases.
Mechanism:
1. Attackers inject SQL code into user inputs, such as login forms or search boxes.
2. This code executes on the server, allowing data extraction or modification.
Example:
1. Entering ', DROP TABLE users, -- in a login form could delete a database table if input is not properly sanitized.

Note

SQL injection is one of the most common and dangerous web application vulnerabilities, often due to poor input validation.

Cross-Site Scripting (XSS)

A vulnerability that allows attackers to inject malicious scripts into web content viewed by other users.
Mechanism:
1. Attackers embed scripts in user-generated content, such as comments or forums.
2. When other users view the content, the script executes in their browsers.
Example:
1. A blog comment contains a script that steals cookies from other users, allowing session hijacking.

Note

XSS attacks can lead to data theft, session hijacking, and defacement of websites.

Unpatched Software

Software that has not been updated with the latest security patches, making it vulnerable to exploitation.
Risks:
1. Known Vulnerabilities: Attackers can exploit documented weaknesses.
2. Increased Attack Surface: Outdated software provides entry points for malware and attacks.
Example:
1. An operating system that has not been updated, allowing attackers to exploit a known vulnerability.

Tip

Regularly update all software, including operating systems, applications, and firmware, to minimize vulnerabilities.

Weak Authentication

Security measures that are easy to bypass or crack, often due to simple passwords or lack of multifactor authentication.
Risks:
1. Brute Force Attacks: Attackers can guess passwords using automated tools.
2. Credential Theft: Weak passwords are easily compromised.
Example:
1. A website that only requires a username and a simple password, without any additional verification.

Note

Always use strong, unique passwords and enable multifactor authentication to enhance security.

Zero-Day Exploits

Attacks that exploit previously unknown vulnerabilities in software or hardware before a patch is available.
Mechanism:
1. Attackers discover a vulnerability and develop an exploit before the vendor is aware.
2. These attacks are highly effective because there are no defenses in place.
Example:
1. An attacker discovers a flaw in a popular browser and spreads malware before the issue is publicly known and patched.

Note

Zero-day exploits are highly sought after by cyber criminals and nation-state actors due to their effectiveness.

Self review

Can you explain how a DDoS attack differs from a MitM attack?
Why is it important to regularly update software and apply security patches?
How do phishing attacks exploit human psychology to gain access to sensitive information?

Unlock the rest of this chapter with a Free account

Nice try, unfortunately this paywall isn't as easy to bypass as you think. Want to help devleop the site? Join the team at https://revisiondojo.com/join-us. exercitation voluptate cillum ullamco excepteur sint officia do tempor Lorem irure minim Lorem elit id voluptate reprehenderit voluptate laboris in nostrud qui non Lorem nostrud laborum culpa sit occaecat reprehenderit

Definition

Paywall

(on a website) an arrangement whereby access is restricted to users who have paid to subscribe to the site.

anim nostrud sit dolore minim proident quis fugiat velit et eiusmod nulla quis nulla mollit dolor sunt culpa aliqua

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

Duis aute irure dolor in reprehenderit

Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

Note

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam quis nostrud exercitation.

Excepteur sint occaecat cupidatat non proident

Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos qui ratione voluptatem sequi nesciunt. Neque porro quisquam est, qui dolorem ipsum quia dolor sit amet, consectetur, adipisci velit.

Tip

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

Lorem ipsum dolor sit amet, consectetur adipiscing elit.
Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris.
Duis aute irure dolor in reprehenderit in voluptate velit esse cillum.

A2.4.2 Common Network Vulnerabilities (HL only) Notes

Distributed Denial of Service (DDoS)

Insecure Network Protocols

Malware

Man-in-the-Middle (MitM) Attacks

Phishing Attacks

SQL Injection

Cross-Site Scripting (XSS)

Unpatched Software

Weak Authentication

Zero-Day Exploits

Distributed Denial of Service (DDoS)

Insecure Network Protocols

Malware

Man-in-the-Middle (MitM) Attacks

Phishing Attacks

SQL Injection

Cross-Site Scripting (XSS)

Unpatched Software

Weak Authentication

Zero-Day Exploits

Unlock the rest of this chapter with a Free account

anim nostrud sit dolore minim proident quis fugiat velit et eiusmod nulla quis nulla mollit dolor sunt culpa aliqua

Duis aute irure dolor in reprehenderit

Excepteur sint occaecat cupidatat non proident

Distributed Denial of Service (DDoS) Attacks

Unlock the rest of this chapter with a Free account

anim nostrud sit dolore minim proident quis fugiat velit et eiusmod nulla quis nulla mollit dolor sunt culpa aliqua

Duis aute irure dolor in reprehenderit

Excepteur sint occaecat cupidatat non proident

A1 Computer fundamentals4 subtopics

A2 Networks4 subtopics

A3 Databases4 subtopics

A4 Machine learning4 subtopics

B1 Computational thinking1 subtopic

B2 Programming5 subtopics

B3 Object-oriented programming2 subtopics

B4 Abstract data types (HL only)1 subtopic

A2.4.2 Common Network Vulnerabilities (HL only) Notes

Distributed Denial of Service (DDoS)

Insecure Network Protocols

Malware

Man-in-the-Middle (MitM) Attacks

Phishing Attacks

SQL Injection

Cross-Site Scripting (XSS)

Unpatched Software

Weak Authentication

Zero-Day Exploits

A1 Computer fundamentals4 subtopics

A2 Networks4 subtopics

A3 Databases4 subtopics

A4 Machine learning4 subtopics

B1 Computational thinking1 subtopic

B2 Programming5 subtopics

B3 Object-oriented programming2 subtopics

B4 Abstract data types (HL only)1 subtopic

Distributed Denial of Service (DDoS)

Insecure Network Protocols

Malware

Man-in-the-Middle (MitM) Attacks

Phishing Attacks

SQL Injection

Cross-Site Scripting (XSS)

Unpatched Software

Weak Authentication

Zero-Day Exploits

Unlock the rest of this chapter with a Free account

anim nostrud sit dolore minim proident quis fugiat velit et eiusmod nulla quis nulla mollit dolor sunt culpa aliqua

Duis aute irure dolor in reprehenderit

Excepteur sint occaecat cupidatat non proident

Distributed Denial of Service (DDoS) Attacks

Unlock the rest of this chapter with a Free account

anim nostrud sit dolore minim proident quis fugiat velit et eiusmod nulla quis nulla mollit dolor sunt culpa aliqua

Duis aute irure dolor in reprehenderit

Excepteur sint occaecat cupidatat non proident