Suppose you are working in Techmart Inc. which sells various products through its website. Due to
some recent losses, you are trying to identify the most important risks to the Website. Based on
feedback from several experts, you have come up with a list. You now want to prioritize these
risks. Now in which category you would put the risk concerning the modification of the Website by
unauthorized parties.
A.
Ping Flooding Attack
B.
Web defacing
C.
Denial of service attack
D.
FTP Bounce Attack
Explanation:
Website defacing is an attack on a website by unauthorized party that changes the visual
appearance of the site or a webpage. These are typically the work of system crackers, who break
into a web server and replace the hosted website with one of their own.
Answer D is incorrect. The FTP bounce attack is attack which slips past application-based
firewalls. In this hacker uploads a file to the FTP server and then requests this file be sent to an
internal server. This file may contain malicious software or a simple script that occupies the
internal server and uses up all the memory and CPU resources.
Answer A is incorrect. Ping Flooding is the extreme of sending thousands or millions of pings per
second. Ping Flooding attack can make system slow or even shut down an entire site.
Answer C is incorrect. A denial-of-service attack (DoS attack) is an attempt to make a computer
or network resource unavailable to its intended users. One common method of attack involves
saturating the target machine with external communications requests, such that it cannot respond
to legitimate traffic, or responds so slowly as to be rendered effectively unavailable.