Why would threat actors prefer to use a zero-day attack in the Cyber Kill Chain weaponization phase?
- to avoid detection by the target
- to launch a DoS attack toward the target
- to get a free malware package
- to gain faster delivery of the attack on the target
Explanation: When a threat actor prepares a weapon for an attack, the threat actor chooses an automated tool (weaponizer) that can be deployed through discovered vulnerabilities. Malware that will carry desired attacks is then built into the tool as the payload. The weapon (tool plus malware payload) will be delivered to the target system. By using a zero-day weaponizer, the threat actor hopes that the weapon will not be detected because it is unknown to security professionals and detection methods are not yet developed.
Exam with this question: Modules 26 - 28: Analyzing Security Data Group Exam
Exam with this question: CCNA Cyber Ops Final Exam Answers
Exam with this question: Cyber Threat Management (CyberTM) Course Final Exam Answers
Exam with this question: Cyber Threat Management: My Knowledge Check Answers