Systems and Security : Attacks, Threats, and Vulnerabilities

1.4 Wireless Attacks and It's Indicators

Domain name system (DNS) Attacks

1. Domain hijacking
2. DNS poisoning
3. Uniform Resource Locator (URL) redirection
4. Domain reputation

The Domain Name System (DNS) is a critical component of the Internet that resolves domain names into IP addresses. There are several types of attacks that can be targeted against the DNS:

1. Domain Hijacking: This is an attack in which the attacker gains unauthorized access to a domain name registry, changes the DNS settings for a domain name, and redirects traffic intended for the legitimate website to a different site under the attacker's control.

2. DNS Poisoning: This is an attack that involves injecting false information into the DNS system to redirect users to a different site. The attacker creates a fake DNS entry that maps a domain name to the IP address of a malicious site, causing the user's requests to be redirected to the attacker's site instead of the legitimate site.

3. URL Redirection: This is an attack that involves redirecting users to a different website than the one they intended to visit. The attacker creates a fake URL that looks similar to a legitimate URL, and when the user clicks on it, they are redirected to the attacker's site.

4. Domain Reputation: This refers to the overall trustworthiness of a domain. If a domain has a poor reputation, it may be blacklisted by security software and blocked from accessing the user's device. This can impact the user's ability to access the website or receive email from that domain.

Distributed denial-of-service (DDoS)

1. Network
2. Application
3. Operational technology (OT)

A Distributed Denial-of-Service (DDoS) attack is a type of network attack that aims to disrupt the normal functioning of a target system by overwhelming it with a massive amount of traffic from multiple sources. There are three main types of DDoS attacks:

1. Network DDoS: This type of attack focuses on overwhelming the target system's network by flooding it with a large volume of data.

2. Application DDoS: This type of attack targets a specific application or service by flooding it with a large number of requests, causing the service to become unavailable.

3. Operational Technology (OT) DDoS: This type of attack targets the systems that control and monitor critical infrastructure and industrial control systems, such as power plants and manufacturing facilities. The attack aims to disrupt the normal functioning of these systems, potentially leading to significant damage.

Malicious code or script execution

PowerShell, Python, Bash, Macros, and Visual Basic for Applications (VBA)

Malicious code or script execution is a type of attack that involves the injection and execution of harmful code or scripts within a system or network. This type of attack can be executed using various scripting languages such as PowerShell, Python, Bash, Macros, or Visual Basic for Applications (VBA). The attacker writes and executes code in the target system to cause harm, steal information, or manipulate the system in some other way. The code may be delivered through an email attachment, an infected website, a rogue software download, or other means. Once executed, the code can provide the attacker with a variety of capabilities, ranging from simple data theft to complex, targeted attacks on critical systems.