PBQ 5: Threat Indicator Matching
Match the threat indicator with the correct threat type.
1. Executable file downloaded via email link
-- Choose a threat type --
DoS Attack
Cross-Site Scripting (XSS)
Data Exfiltration
DNS Tunneling
Brute Force Attack
Phishing
Command and Control (C2)
Privilege Escalation
2. Encrypted traffic on non-standard ports
-- Choose a threat type --
Privilege Escalation
Command and Control (C2)
Data Exfiltration
Cross-Site Scripting (XSS)
DNS Tunneling
Brute Force Attack
Phishing
DoS Attack
3. JavaScript injected in comment sections
-- Choose a threat type --
Cross-Site Scripting (XSS)
Privilege Escalation
Data Exfiltration
Phishing
Command and Control (C2)
DNS Tunneling
Brute Force Attack
DoS Attack
4. Unexpected DNS queries to random domains
-- Choose a threat type --
Data Exfiltration
Privilege Escalation
DNS Tunneling
Cross-Site Scripting (XSS)
Brute Force Attack
DoS Attack
Phishing
Command and Control (C2)
5. Abnormal large amounts of traffic from one internal host
-- Choose a threat type --
DNS Tunneling
Data Exfiltration
Cross-Site Scripting (XSS)
Command and Control (C2)
DoS Attack
Privilege Escalation
Phishing
Brute Force Attack
Submit
Retry