What is a botnet and how do attackers typically control infected machines?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Study for the Cybercrime Test. Use flashcards and multiple choice questions, each with hints and explanations, to prepare for your exam! Master cybercrime prevention and stay ahead of threats.

Multiple Choice

What is a botnet and how do attackers typically control infected machines?

Explanation:
A botnet is a network of compromised devices under centralized control, often via a command-and-control server or a peer-to-peer protocol. Attackers gain control by installing malware on many devices—computers, IoT, and other internet-connected gear—that then connect back to the control infrastructure. The attacker (the botmaster) can issue commands to these infected machines, which carry out coordinated actions like launching distributed denial-of-service attacks, stealing data, or sending spam. In a centralized setup, the command-and-control server acts as the hub that sends instructions and collects results; in a peer-to-peer setup, each infected device relays commands to others, making takedowns harder because there isn’t a single point of failure. Infections typically happen through phishing emails, drive-by downloads, or exploiting software vulnerabilities, after which the malware runs covertly in the background. The key idea is that many compromised devices are pooled together to act as a single, controllable network that attackers can deploy for harmful purposes. The other options don’t fit because a botnet isn’t a private network used to isolate infected hosts, it doesn’t imply immunity from malware, and it isn’t limited to servers.

A botnet is a network of compromised devices under centralized control, often via a command-and-control server or a peer-to-peer protocol. Attackers gain control by installing malware on many devices—computers, IoT, and other internet-connected gear—that then connect back to the control infrastructure. The attacker (the botmaster) can issue commands to these infected machines, which carry out coordinated actions like launching distributed denial-of-service attacks, stealing data, or sending spam. In a centralized setup, the command-and-control server acts as the hub that sends instructions and collects results; in a peer-to-peer setup, each infected device relays commands to others, making takedowns harder because there isn’t a single point of failure.

Infections typically happen through phishing emails, drive-by downloads, or exploiting software vulnerabilities, after which the malware runs covertly in the background. The key idea is that many compromised devices are pooled together to act as a single, controllable network that attackers can deploy for harmful purposes. The other options don’t fit because a botnet isn’t a private network used to isolate infected hosts, it doesn’t imply immunity from malware, and it isn’t limited to servers.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy