Professional Documents
Culture Documents
Sy0 601 02
Sy0 601 02
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 2
Syllabus Objectives Covered
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 3
Vulnerability, Threat, and Risk
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 4
Attributes of Threat Actors
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 5
Hackers, Script Kiddies, and Hacktivists
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 6
State Actors and Advanced Persistent Threats
• State-backed groups
• Attached to military/secret
services
• Highly sophisticated
• Advanced Persistent Threat (APT)
• Espionage and strategic advantage
• Deniability
• False flag operations
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 7
Criminal Syndicates and Competitors
• Criminal syndicates
• Operate across legal jurisdictions
• Motivated by criminal profit
• Can be very well resourced and funded
• Competitors
• Cyber espionage
• Combine with insider threat
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 8
Insider Threat Actors
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 9
Attack Surface and Vectors
• Attack surface
• Points where an attacker can discover/exploit vulnerabilities in a
network or application
• Vectors
• Direct access
• Removable media
• Email
• Remote and wireless
• Supply chain
• Web and social media
• Cloud
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 10
Threat Actor Types and Attack Vectors
Review Activity
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 11
Topic 2B
Explain Threat Intelligence Sources
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 12
Syllabus Objectives Covered
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 13
Threat Research Sources
• Counterintelligence
• Tactics, techniques, and
procedures (TTPs)
• Threat research sources
• Academic research
• Analysis of attacks on customer
systems
• Honeypots/honeynets
• Dark nets and the dark web
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 14
Threat Intelligence Providers
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 15
Other Threat Intelligence Research Sources
• Academic journals
• Conferences
• Request for Comments (RFC)
• Social media
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 16
Tactics, Techniques, and Procedures and Indicators of
Compromise
• Tactics, Techniques, and Procedures (TTPs)
• Generalized statement of adversary behavior
• Campaign strategy and approach (tactics)
• Generalized attack vectors (techniques)
• Specific intrusion tools and methods (procedures)
• Indicator of compromise (IoC)
• Specific evidence of intrusion
• Individual data points
• Correlation of system and threat data
• AI-backed analysis
• Indicator of attack (IoA)
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 17
Threat Data Feeds
feeds
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 18
Artificial Intelligence and Predictive Analysis
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 19
Threat Intelligence Sources
Review Activity
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 20
Lesson 2
Summary
CompTIA Security+ Lesson 2 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 21