What is NOT a common type of Malware?

A.  Ransomware
B.  Trojan Horse
C.  Smurf Attack
D.  Spyware

Answer: C

Explanation: 

A. Ransomware

Ransomware is a type of malware that locks or encrypts data on a system until a ransom is paid.

• The Impact: Modern ransomware often involves double extortion, where the attacker not only encrypts the data but also threatens to leak it publicly.

• The Goal: To disrupt Availability (by locking data) and potentially Confidentiality (by exfiltrating it).

B. Trojan Horse

A Trojan is malicious code that is "wrapped" or disguised within a program that appears useful or legitimate (like a free game or a system utility).

• The Mechanism: Unlike viruses, Trojans do not self-replicate. They rely on social engineering to trick a user into executing the program. Once inside, they typically install backdoors to give an attacker remote access.

C. Smurf Attack

This is the correct answer because it is a Network Attack, not software installed on a host.

• Why it's the Answer: A Smurf Attack is a form of Distributed Denial of Service (DDoS). It works by sending a large number of Internet Control Message Protocol (ICMP) "echo request" (ping) packets to a network's broadcast address, spoofing the victim's source IP.

• The Result: Every device on that network responds to the victim's IP simultaneously, overwhelming them with traffic. This is a violation of Availability, but it does not involve "malware" in the traditional sense.

D. Spyware

Spyware is malware installed on a device without the user's knowledge to monitor their activity.

• The Goal: To violate Confidentiality. It can capture keystrokes (keyloggers), take screenshots, or steal browser cookies and credentials.

• The Method: It often hitches a ride with free software downloads or is delivered via malicious websites (drive-by downloads).