Certified Ethical Hacker -WGU C701
Already Passed
Black hat Search Engine Optimization (SEO) ✔✔uses aggressive SEO tactics such as keyword
stuffing, inserting doorway pages, page swapping, and adding unrelated keyword
...
Certified Ethical Hacker -WGU C701
Already Passed
Black hat Search Engine Optimization (SEO) ✔✔uses aggressive SEO tactics such as keyword
stuffing, inserting doorway pages, page swapping, and adding unrelated keywords to get higher
search engine rankings for malware pages.
Social Engineered Click-jacking ✔✔Attackers inject malware into websites that appear
legitimate to trick users into clicking them. When clicked, the malware embedded in the link
executes without the knowledge or consent of the user.
Spear-phishing Sites ✔✔This technique is used for mimicking legitimate institutions, such as
banks, to steal passwords, credit card and bank account data, and other sensitive information.
Malvertising ✔✔This technique involves embedding malware-laden advertisements in legitimate
online advertising channels to spread malware on systems of unsuspecting users.
Compromised Legitimate Websites ✔✔Often, attackers use compromised websites to infect
systems with malware. When an unsuspecting user visits the compromised website, he/she
unknowingly installs the malware on his/her system, after which the malware performs malicious
activities.
Drive-by Downloads ✔✔This refers to the unintentional downloading of software via the
Internet. Here, an attacker exploits flaws in browser software to install malware by merely
visiting a website.
Spam Emails ✔✔The attacker attaches a malicious file to an email and sends the email to
multiple target addresses. The victim is tricked into clicking the attachment and thus executes the
malware, thereby compromising his/her machine. This technique is the most common method
currently in use by attackers. In addition to email attachments, an attacker may also use the email
body to embed the malware.
Crypter ✔✔It is a software program that can conceal the existence of malware. Attackers use this
software to elude antivirus detection. It protects malware from reverse engineering or analysis,
thus making it difficult to detect by security mechanisms.
Downloader ✔✔It is a type of Trojan that downloads other malware (or) malicious code and
files from the Internet to a PC or device. Usually, attackers install a downloader when they first
gain access to a system.
Dropper ✔✔It is a covert carrier of malware. Attackers embed notorious malware files inside
droppers, which can perform the installation task covertly. Attackers need to first install the
malware program or code on the system to execute the dropper. The dropper can transport
malware code and execute malware on a target system w
[Show More]