CISA Certified Information Systems Auditor – Question1494

Which of the following is an example of a passive attack initiated through the Internet?

A.
Traffic analysis
B. Masquerading
C. Denial of service
D. E-mail spoofing

Correct Answer: A

Explanation:

Explanation:
Internet security threats/vulnerabilities are divided into passive and active attacks. Examples of passive attacks include network analysis, eavesdropping and traffic analysis. Active attacks include brute force attacks, masquerading, packet replay, message modification, unauthorized access through the Internet or web-based services, denial-of-service attacks, dial-in penetration attacks, e-mail bombing and spamming, and e-mail spoofing.