Unit 3 - Practice Quiz

Correct Answer: To protect systems, networks, and programs from digital attacks

Explanation: Cybersecurity involves the practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.

Correct Answer: Confidentiality, Integrity, Availability

Explanation: The CIA Triad stands for Confidentiality, Integrity, and Availability, which are the three pillars of information security.

Correct Answer: Integrity

Explanation: Integrity ensures the accuracy and completeness of data, meaning it hasn't been modified in an unauthorized manner.

Correct Answer: Availability

Explanation: Availability ensures that information and resources are available to authorized users when needed. A site takedown violates this.

Correct Answer: A current or former employee misusing their access privileges

Explanation: Insider threats originate from individuals within the organization, such as employees, former employees, contractors, or business associates, who have inside information concerning the organization's security practices, data, and computer systems.

Correct Answer: Software designed to disrupt, damage, or gain unauthorized access

Explanation: Malware, short for malicious software, is intrusive software that is designed to damage and destroy computers and computer systems.

Correct Answer: Trojan Horse

Explanation: A Trojan Horse is a type of malware that masquerades as legitimate code or software to deceive a user into loading and executing it.

Correct Answer: A worm can replicate itself without human interaction

Explanation: Unlike viruses, which require the spreading of an infected host file, Worms are standalone software that can replicate and spread across networks without human intervention.

Correct Answer: Phishing

Explanation: Phishing is a social engineering attack often used to steal user data, including login credentials and credit card numbers, by masquerading as a trusted entity.

Correct Answer: A targeted phishing attempt aimed at a specific individual or organization

Explanation: Spear phishing is a potent variation of phishing that targets specific individuals or groups, often using personalized information to increase credibility.

Correct Answer: Creating a fabricated scenario to obtain information

Explanation: Pretexting involves an attacker creating a fake identity or scenario (a pretext) to manipulate a victim into providing private information.

Correct Answer: Brute-force attack

Explanation: A Brute-force attack consists of an attacker submitting many passwords or passphrases with the hope of eventually guessing correctly. It tries all combinations, theoretically where is the character set size and is the length.

Correct Answer: Using a list of common words and phrases to guess passwords

Explanation: A Dictionary Attack is a form of brute-force attack technique for defeating a cipher or authentication mechanism by trying to determine its decryption key or passphrase by searching a likely list of words.

Correct Answer: Denial of Service

Explanation: Denial of Service (DoS) attacks differ from other hacking activities; their goal is to shut down a machine or network, making it inaccessible to its intended users.

Correct Answer: It uses a network of multiple infected devices (botnet) to attack

Explanation: A DDoS attack uses multiple compromised computer systems (a botnet) as sources of attack traffic, making it harder to block than a simple DoS from a single source.

Correct Answer: An attack that exploits a vulnerability unknown to the software vendor

Explanation: A Zero-day vulnerability is a software flaw that is unknown to the vendor. A Zero-day attack occurs when hackers exploit this flaw before the developers have a chance to create a patch.

Correct Answer: Ransomware

Explanation: Ransomware is a type of malware that threatens to publish the victim's data or perpetually block access to it (usually by encryption) unless a ransom is paid.

Correct Answer: Ransomware attack

Explanation: WannaCry was a worldwide Ransomware crypto-worm attack that targeted computers running the Microsoft Windows operating system by encrypting data and demanding Bitcoin payment.

Correct Answer: The trail of data you create while using the Internet

Explanation: A Digital Footprint is the trail of data you leave behind while using the internet. It includes websites you visit, emails you send, and information you submit to online services.

Correct Answer: Websites collecting your IP address without your direct action

Explanation: A Passive digital footprint is created when data is collected about the user without them actively creating it (e.g., IP logging, cookies), whereas posting on social media is an active footprint.

Correct Answer: Secure

Explanation: HTTPS stands for Hypertext Transfer Protocol Secure. It uses encryption (TLS/SSL) to secure communications between the browser and the server.

Correct Answer: A padlock icon

Explanation: A padlock icon next to the URL indicates that the connection is encrypted using HTTPS/SSL.

Correct Answer: Using two distinct forms of identification to access an account

Explanation: 2FA adds a layer of security by requiring two types of credentials, usually something you know (password) and something you have (mobile phone code) or are (biometrics).

Correct Answer: Using a complex mix of characters, numbers, and symbols

Explanation: Strong passwords should be long and complex (entropy), making them resistant to brute-force attacks.

Correct Answer: Network discovery and security auditing

Explanation: Nmap (Network Mapper) is a free and open-source utility for network discovery and security auditing, often used to scan open ports and detect devices.

Correct Answer: Wireshark

Explanation: Wireshark is the world's foremost network protocol analyzer. It lets you see what's happening on your network at a microscopic level by capturing packets.

Correct Answer: By analyzing patterns and anomalies to predict/detect unknown threats

Explanation: AI and Machine Learning can analyze vast amounts of data to identify behavioral patterns and detect anomalies that indicate potential threats, even if the specific signature is unknown.

Correct Answer: Protecting personal information and account integrity on social platforms

Explanation: Social media security involves setting privacy controls, recognizing scams, and protecting personal data from being harvested or misused on social platforms.

Correct Answer: A phone call scam pretending to be the bank

Explanation: Vishing (Voice Phishing) involves the use of telephony (voice calls) to conduct phishing attacks.

Correct Answer: Phishing via SMS/Text messages

Explanation: Smishing stands for SMS Phishing. It uses text messages to trick users into clicking malicious links or sharing info.

Correct Answer: General Data Protection Regulation

Explanation: The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy.

Correct Answer: CISO (Chief Information Security Officer)

Explanation: The CISO is the senior-level executive within an organization responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets are adequately protected.

Correct Answer: A professional hired to legally hack systems to find vulnerabilities

Explanation: Penetration testers, or ethical hackers, simulate cyberattacks on a company's system to identify weaknesses before malicious hackers can exploit them.

Correct Answer: Spyware that records keystrokes to steal passwords and data

Explanation: A Keylogger is a type of surveillance technology (often spyware) used to monitor and record each keystroke typed on a specific computer.

Correct Answer: Man-in-the-Middle (MitM) attacks

Explanation: Public Wi-Fi networks are often unsecure, allowing attackers to intercept data transmitted between the user and the router (MitM attack).

Correct Answer: Exploit development and penetration testing

Explanation: Metasploit is a penetration testing framework that makes hacking simple. It is an essential tool for many security professionals to test vulnerabilities.

Correct Answer: To monitor and control incoming and outgoing network traffic

Explanation: A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies.

Correct Answer: PCI DSS

Explanation: PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards designed to ensure that all companies that accept, process, store, or transmit credit card information maintain a secure environment.

Correct Answer: Leaving a physical infected device (like a USB) for a victim to find

Explanation: Baiting relies on the greed or curiosity of the victim. It often involves leaving a physical device, such as a USB flash drive infected with malware, in a conspicuous place.

Correct Answer: Advanced 3D Animation

Explanation: While specialized, 3D animation is generally not a core skill for cybersecurity. Networking, OS knowledge, and analytical skills are essential.

Correct Answer: Malicious code that activates when specific criteria are met

Explanation: A Logic Bomb is a piece of code intentionally inserted into a software system that will set off a malicious function when specified conditions are met (e.g., a specific date or time).

Correct Answer: Malicious SQL queries/code into inputs

Explanation: SQL Injection involves placing malicious SQL statements in web entry fields for execution (e.g., to dump the database contents).

Correct Answer: Ensuring a party cannot deny the authenticity of their signature/message

Explanation: Non-repudiation assures that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender's identity, so neither can deny having processed the information.

Correct Answer: Increasing significantly increases complexity ()

Explanation: The entropy or strength of a password grows exponentially with length. The complexity is determined by . Increasing length () has a greater impact than increasing the character set ().

Correct Answer: To monitor, detect, and respond to cyber threats 24/7

Explanation: A SOC is a facility where an information security team monitors and analyzes an organization's security posture on an ongoing basis.

Correct Answer: SolarWinds Hack

Explanation: The SolarWinds hack (2020) was a major supply chain attack where hackers inserted malicious code into the Orion software updates, compromising thousands of organizations.

Correct Answer: Software intended to spy on the user and collect data without consent

Explanation: Spyware is unwanted software that infiltrates your computing device, stealing your internet usage data and sensitive information.

Correct Answer: Clicking on unsolicited links or attachments

Explanation: Clicking on unsolicited links or attachments is a primary vector for phishing and malware infections.

Correct Answer: A network of private computers infected with malicious software and controlled as a group

Explanation: A Botnet is a collection of internet-connected devices, which may include PCs, servers, and mobile devices, that are infected and controlled by a common type of malware.

Correct Answer: Digital Forensics Analyst

Explanation: A Digital Forensics Analyst recovers and investigates material found in digital devices, often in relation to computer crime or cyber incidents.