InterviewStack.io LogoInterviewStack.io

Attack Vectors and Threat Landscape Questions

Comprehensive knowledge of cyberattack types, common attack vectors, and the evolving threat landscape across human, application, network, and supply chain layers. Candidates should be able to explain how each attack class operates, typical entry points and vulnerable assets, and real world examples. Core topics include phishing and social engineering; malware families such as ransomware and rootkits; denial of service and distributed denial of service attacks; man in the middle attacks; injection attacks including structured query language injection; cross site scripting; cross site request forgery; broken authentication and session management; insecure direct object references and other entries from the Open Web Application Security Project Top Ten; privilege escalation; brute force attacks; zero day exploits; insider threats; insecure configuration; insecure deserialization; and supply chain attacks. For each class candidates should cover indicators of compromise and detection signals, logging and monitoring strategies, behavioral analysis and anomaly detection methods, and threat hunting approaches. Candidates should also discuss prevention and mitigation controls such as secure coding practices, input validation and parameterized queries, output encoding and content security policy, secure authentication and session management, access controls and network segmentation, rate limiting and traffic filtering, secure configuration and patch management, backup and recovery, and supply chain risk management. They should be able to map these controls to incident response activities including containment, eradication, recovery, and post incident remediation, and demonstrate how to use threat modeling to prioritize defenses based on asset criticality and likely attack paths. Finally, candidates should be prepared to describe trends in the threat landscape, high profile breaches and lessons learned, the difference between active and passive attacks, and how threats and defensive priorities vary by industry and organizational scale.

EasyTechnical
39 practiced
Provide an example HTTP request or JSON API call that illustrates an insecure direct object reference (IDOR) and explain how an attacker could exploit it. Then describe design and testing measures you would implement to prevent IDOR, including authorization checks, object-level access controls, and CI tests.
EasyTechnical
44 practiced
In Python using psycopg2, show a short example of an insecure SQL query vulnerable to injection and then provide a secure parameterized version. After your code example, explain how you would detect SQL injection attempts via web and database logs and list quick containment actions when SQL injection is suspected in production.
MediumTechnical
37 practiced
A production API log shows exceptions during object deserialization and you observe unusual outbound commands executed by auxiliary systems. Explain how insecure deserialization vulnerabilities operate, what specific log indicators you would search for to confirm exploitation, and describe the code changes and patching steps you would perform to remediate and prevent insecure deserialization.
MediumTechnical
35 practiced
Outline a WAF rule set and monitoring strategy to mitigate multiple OWASP Top Ten risks including SQL injection, XSS, CSRF, insecure deserialization, and malicious file uploads. Provide example rule types, a strategy for whitelisting versus blacklisting, and explain how you would test and tune rules to minimize false positives while maintaining protection.
MediumTechnical
44 practiced
Draft an incident response plan for a ransomware outbreak that has encrypted files on several file servers. Cover detection and identification indicators, containment strategies (network isolation, EDR quarantine), eradication and remediation steps, recovery and restore strategies including verification, forensic evidence collection and chain-of-custody, external communication, and post-incident hardening measures.

Unlock Full Question Bank

Get access to hundreds of Attack Vectors and Threat Landscape interview questions and detailed answers.

Sign in to Continue

Join thousands of developers preparing for their dream job.