Question 1

Malware that stops you from using your computer or accessing your data until you meet certain demands is known as which of the following?
A)trojan horse
B)worm
C)ransomware
D)phishing

Accepted Answer

Ransomware is a type of malware that encrypts your files or blocks access to your computer and asks for a ransom payment in exchange for decrypting or releasing your system. It's designed to extort money from victims by using fear and anxiety to push them to pay the ransom. Trojan horses, worms, and phishing attacks can all be used to deliver ransomware to a victim's machine, but they are not themselves ransomware.

Question 2

Which type of exploit is defined as the sending of fraudulent emails to an organization's employees designed to look like they came from high-level executives from within the organization?
A)Spamdexing
B)Vishing
C)Smishing
D)Spear phishing

Accepted Answer

This type of exploit is known as spear phishing, which is a targeted attack that uses social engineering to trick individuals into sharing sensitive information or clicking on malicious links. It is a more sophisticated form of phishing that focuses on a specific individual or group within an organization, often using personalized information to create a convincing pretext.

Question 3

Which term is defined as an exploit that takes place before the security community or software developer knows about the vulnerability or has been able to repair it?
A)logic bomb
B)DDoS attack
C)zero-day attack
D)rootkit

Accepted Answer

A zero-day attack is when an exploit takes place before anyone is aware of the vulnerability, so they have had zero days to address it. A logic bomb is a type of malware that is programmed to execute when certain conditions are met. A DDoS attack is when a system is overwhelmed with traffic in an attempt to make it unusable. A rootkit is a type of malware that allows an attacker to gain persistent control over a system. None of these options represent a zero-day attack.

Question 4

An antivirus software scans for a specific sequence of bytes that indicates the presence of specific malware. This sequence of bytes is known as which of the following?
A)script kiddie
B)virus signature
C)CAPTCHA
D)Trojan horse

Accepted Answer

The sequence of bytes that indicates the presence of specific malware is known as a virus signature. Antivirus software scans for these signatures to detect and remove malware. Script kiddie refers to an inexperienced and unskilled hacker who uses pre-existing tools and scripts to carry out attacks. CAPTCHA is a security measure used to verify that the user interacting with a website is human. Trojan horse is a type of malware disguised as legitimate software that allows attackers to gain unauthorized access to a computer system.

Question 5

The act of fraudulently using email to try to get the recipient to reveal personal data is known as which of the following?
A)Pharming
B)Phishing
C)Spamdexing
D)Flyposting

Accepted Answer

The act described is commonly known as phishing, which involves sending fraudulent emails to trick recipients into giving away personal information like login credentials or credit card numbers. Pharming involves redirecting users to a fake website, while spamdexing refers to the practice of manipulating search engine rankings through spammy tactics. Flyposting is the act of putting up posters or signs in public places without permission.

Question 6

Which of the following enables remote users to securely access an organization's collection of computing and storage devices and share data remotely?
A)firewall
B)social network
C)intrusion detection device
D)virtual private network

Accepted Answer

A virtual private network (VPN) provides a secure connection between remote users and an organization's network, allowing them to access computing and storage devices and share data remotely while maintaining the confidentiality and integrity of the data. Firewalls and intrusion detection devices can enhance network security but do not provide remote access capabilities. Social networks are not designed for secure remote access to organizational resources.

Question 7

Which organization offers a number of security-related policy templates that can help an organization quickly develop effective security policies?
A)Department of Homeland Security
B)IEEE
C)SANS Institute
D)US-CERT

Accepted Answer

The SANS Institute offers a number of security-related policy templates that can help an organization quickly develop effective security policies. These policies cover a wide range of topics, including access control, incident response, and network security. They are regularly updated to reflect the latest threats and best practices. The Department of Homeland Security and US-CERT provide guidance and alerts related to specific threats, while IEEE focuses on standards development.

Question 8

State the purpose of an IT security audit and briefly discuss the key elements of such an audit.

Accepted Answer

The answer of State the purpose of an IT security...

Question 9

Many organizations use software to provide a comprehensive display of all key performance indicators related to an organization's security defenses, including threats, exposures, policy compliance, and incident alerts. What is this type of software known as?
A)firewall
B)security dashboard
C)intrusion detection software
D)proxy server software

Accepted Answer

The type of software described in the question is known as a security dashboard, which provides a comprehensive display of all key performance indicators related to an organization's security defenses. Firewalls, intrusion detection software, and proxy server software each serve different purposes in securing an organization's systems and networks, but they do not typically provide the same type of holistic overview as a security dashboard.

Question 10

Briefly describe ransomware and how a computer typically becomes infected with this type of malware.

Accepted Answer

The answer of Briefly describe ransomware and how a computer...

Question 11

A piece of programming code, usually disguised as something else, that causes a computer to behave in an unexpected and usually undesirable manner is known as which of the following?
A)virus
B)operating system
C)zombie
D)CAPTCHA

Accepted Answer

A virus is a type of malicious code that can replicate itself and infect your computer. It is usually disguised as something else, such as a harmless program or file, and can cause unexpected and undesirable behavior in your computer. Operating system, zombie, and CAPTCHA are not typically associated with malicious code.

Question 12

A business policy that permits employees to use their own mobile devices to access company computing resources and applications is known as which of the following?
A)USA Patriot Act
B)Bring your own device (BYOD)
C)Mobile Alliance Policy (MAP)
D)CAPTCHA

Accepted Answer

The policy described in the question is commonly known as Bring Your Own Device (BYOD) policy. The USA Patriot Act is a U.S. law related to national security and does not relate directly to this issue. Mobile Alliance Policy (MAP) and CAPTCHA are not relevant to this particular topic.

Question 13

The most common computer security precaution taken by businesses is the installation of which of the following?
A)emergency response team
B)rootkit
C)virtual private network
D)firewall

Accepted Answer

The most common computer security precaution taken by businesses is the installation of firewalls. A firewall is a network security system that monitors and controls incoming and outgoing network traffic based on an organization's previously established security policies. It acts as a barrier between a trusted, secure internal network and an untrusted network such as the Internet. Firewalls can prevent unauthorized access to systems and protect against malicious activities such as viruses and hacking attempts.

Question 14

What type of attack keeps the target so busy responding to a stream of automated requests that legitimate users cannot get in?
A)spam
B)rootkit
C)logic bomb
D)distributed denial-of-service

Accepted Answer

A distributed denial-of-service (DDoS) attack floods a targeted website or network with a massive amount of traffic from multiple sources, overwhelming the servers and keeping them busy responding to automated requests, making the service unavailable to legitimate users.

Question 15

Identify and briefly discuss five reasons why the number, variety, and impact of security incidents is increasing.

Accepted Answer

The answer of Identify and briefly discuss five reasons why...

Question 16

Briefly explain why many organizations are choosing to outsource their network security operations to a managed security service provider (MSSP).

Accepted Answer

The answer of Briefly explain why many organizations are choosing...

Question 17

Define computer forensics and briefly describe how one may prepare for a role as a computer forensics investigator.

Accepted Answer

The answer of Define computer forensics and briefly describe how...

Question 18

Many organizations outsource their network security operations to a company that monitors, manages, and maintains computer and network security for them. This type of company is known as which of the following?
A)security dashboard
B)computer forensics
C)managed security service provider
D)product lifecycle management

Accepted Answer

A managed security service provider (MSSP) is a company that provides outsourced network security services to other organizations. MSSPs monitor and manage network security on behalf of their clients, providing protection against potential cyber threats and attacks. They can also offer services such as vulnerability assessments, threat detection and response, and incident management.

Question 19

Before the IT security group can begin an eradication effort, it must:
A)seek permission of the firm's legal counsel
B)collect and log all possible criminal evidence from the system
C)consider the potential for negative publicity
D)develop an estimate for the monetary damage caused

Accepted Answer

Collecting and logging all possible criminal evidence from the system is crucial in identifying the extent and scope of the intrusion. This information will assist in the eradication effort and potentially in legal proceedings. Seeking permission of the firm's legal counsel, considering the potential for negative publicity, and developing an estimate for the monetary damage caused might also be necessary but are not the priority before starting the eradication effort.

Question 20

The intimidation of government or civilian population by using information technology to disable critical national infrastructure in order to achieve political, religious, or ideological goals is known as which of the following?
A)whistleblowing
B)cyberterrorism
C)hacktivism
D)cyberespionage

Accepted Answer

The specific use of information technology to disable critical national infrastructure for political or ideological reasons is the definition of cyberterrorism. Whistleblowing involves the release of confidential information in order to expose wrongdoing, while hacktivism involves using hacking skills for political activism, and cyberespionage involves stealing sensitive information from a target.

Quiz 3: Cyberattacks and Cybersecurity

Malware that stops you from using your computer or accessing your data until you meet certain demands is known as which of the following?

Which type of exploit is defined as the sending of fraudulent emails to an organization's employees designed to look like they came from high-level executives from within the organization?

Which term is defined as an exploit that takes place before the security community or software developer knows about the vulnerability or has been able to repair it?

An antivirus software scans for a specific sequence of bytes that indicates the presence of specific malware. This sequence of bytes is known as which of the following?

The act of fraudulently using email to try to get the recipient to reveal personal data is known as which of the following?

Which of the following enables remote users to securely access an organization's collection of computing and storage devices and share data remotely?

Which organization offers a number of security-related policy templates that can help an organization quickly develop effective security policies?

State the purpose of an IT security audit and briefly discuss the key elements of such an audit.

Many organizations use software to provide a comprehensive display of all key performance indicators related to an organization's security defenses, including threats, exposures, policy compliance, and incident alerts. What is this type of software known as?

Briefly describe ransomware and how a computer typically becomes infected with this type of malware.

A piece of programming code, usually disguised as something else, that causes a computer to behave in an unexpected and usually undesirable manner is known as which of the following?

A business policy that permits employees to use their own mobile devices to access company computing resources and applications is known as which of the following?

The most common computer security precaution taken by businesses is the installation of which of the following?

What type of attack keeps the target so busy responding to a stream of automated requests that legitimate users cannot get in?

Identify and briefly discuss five reasons why the number, variety, and impact of security incidents is increasing.

Briefly explain why many organizations are choosing to outsource their network security operations to a managed security service provider (MSSP).

Define computer forensics and briefly describe how one may prepare for a role as a computer forensics investigator.

Many organizations outsource their network security operations to a company that monitors, manages, and maintains computer and network security for them. This type of company is known as which of the following?

Before the IT security group can begin an eradication effort, it must:

The intimidation of government or civilian population by using information technology to disable critical national infrastructure in order to achieve political, religious, or ideological goals is known as which of the following?