Approved for 1 CompTIA CEU: A+, Network+, Security+, Cloud+, CSA+, and CASP; 1 GIAC CPE
This session will cover the common types of threats that are likely to be encountered by most organizations with regards to malware and application vulnerabilities. The following will be discussed in detail:
- Malware: Compare and contrast various types of malware, such as viruses, worms, Trojan horses, browser redirection, and keyloggers. Review how computers are infected with malware.
- Application vulnerabilities: Review common classes of vulnerabilities, such as buffer overflow, unsanitized data inputs, cross-site scripting, and cached credentials. Stress the importance of including security in the system development life cycle and keeping abreast of vendor-issued security patches and updates
- System port and vulnerability scanning: Review the basics of system port and vulnerability scanning and relate the importance of conducting regular vulnerability scans.