Which of the following is a benefit of a defense-in-depth security strategy? It ensures that a security breach is detected immediately., It eliminates the need for regular security updates and patches., It reduces the overall cost of the security measures for an organization., It can limit the damage if one security control is bypassed by an adversary.

It can limit the damage if one security control is bypassed by an adversary.

Which of the following explains how a deny list impacts access to a resource? A deny list ensures that all entities are able to access a resource. A deny list ensures that no entities are able to access a resource. A deny list allows access to more entities compared to an allow list, as it only restricts specific ones. A deny list restricts access to fewer entities than an allow list, as it permits all other by default.

A deny list allows access to more entities compared to an allow list, as it only restricts specific ones.

A network technician is trying to access the server using port 443 from a machine with an IP address of 192.168.45.37. However, they are unable to access the server. Which of the following changes could be made to the firewall in order for the network technician to access the server? Swap firewall rule 1 with firewall rule 10. Swap firewall rule 3 with firewall rule 4. Swap firewall rule 3 with firewall rule 7. Swap firewall rule 7 with firewall rule 10.

Swap firewall rule 3 with firewall rule 7.

If an adversary has already cracked a user’s password, which of the following security requirements could result in the adversary getting locked out? Requiring at least one symbol in a password, Requiring a password history to prevent reuse, Requiring a maximum password age, Requiring a maximum password length

Requiring a maximum password age

Which of the following describes the length of a cryptographic hash function output? The length of the hash varies depending on the size of the file, The length of the hash is the same length as the input, The length of the hash is a fixed length, The length of the hash is determined by the encryption key

The length of the hash is a fixed length

What is one effect of using a long encryption key?

It makes it harder for an adversary to guess the correct key

A person has received a message that was digitally signed. How can that person verify the integrity of the message?

They use the sender’s public key to decrypt the digital signature to reveal a hash. The receiver then hashes the message and verifies that both hashes match.

Why do key exchange algorithms make it easier for entities to communicate using symmetric encryption?

Key exchange algorithms allow two entities to establish a shared secret key over an unencrypted channel.

Which of the following is included in a digital certificate? The owner’s private key, The encryption algorithm used, The date the certificate expires, The owner’s physical address

The date the certificate expires

Which of the following is an example of shoulder surfing? An adversary uses software that tracks all the keys a target presses on their keyboard, An adversary sets up a fake Wi-Fi hotspot to collect login credentials when users connect, An adversary steals a laptop that is left unattended in a coffee shop, An adversary watches a target enter their phone’s passcode

An adversary watches a target enter their phone’s passcode

A system administrator is reviewing the following authentication log. What might the anomaly on line 9 indicate?

The user’s password has been compromised

Which of the following explains how a SQL injection attack can exploit an application?

It places SQL commands into a user-input field in an application with the intent to either return more information than it should or modify the data on the database.

Which of the following describes an ARP poisoning attack? Options: An adversary uses ARP to monitor a network by capturing and logging ARP traffic, An adversary attempts to modify the ARP table so they receive traffic intended for a target, An adversary uses an ARP request to verify that the target device is active on the local network, An adversary floods the network with ARP requests to gather IP-to-MAC mappings of the devices on the network

An adversary attempts to modify the ARP table so they receive traffic intended for a target

Which of the following is an example of a host-based indicator of compromise (IoC)? Suspicious file hashes detected on a recently downloaded file Unexpected processes or services running Multiple failed log-in attempts to a system Unauthorized attempts to access sensitive data

Unexpected processes or services running

Which of the following containment measures is used to help stop a cyber attack from spreading from an infected host to other clean hosts on a network? Options: Backing up any critical information to a secure location, Disabling Bluetooth and Wi-Fi connections, Implementing multi-factor authentication, Monitoring network traffic for unusual activity

Disabling Bluetooth and Wi-Fi connections

What is the primary purpose of the following steps completed by a network technician? 1) They backup any critical files on a system 2) They wipe the system clean 3) They reinstall a fresh operating system 4) They restore the backed-up files to the device

They are removing malware from an infected computer

What should organizations consider when implementing redundant systems?

Increased costs against potential risks

Which of the following best describes the recovery point objective (RPO)? Options: The amount of data that can be lost before it negatively impacts an organization The maximum acceptable downtime before a system must be restored The maximum number of users affected during a disaster The minimum level of security necessary for data protection

The amount of data that can be lost before it negatively impacts an organization

AP Ck CyberSecurity Pre-Test

Flashcard

•

Information Technology (IT)

•

12th Grade

•

Hard

Wayground Content

FREE Resource

Student preview

43 questions

Show all answers

FLASHCARD QUESTION

Front

Which of the following describes availability when referring to the CIA Triad? Options: Data are permanently deleted after use by authorized individuals. Data are only accessible by authorized individuals. Data are accurate and trustworthy when being viewed by authorized individuals. Data are accessible when required by authorized individuals.

Back

Data are accessible when required by authorized individuals.

FLASHCARD QUESTION

Front

Which of the following is a potential effect of a breach involving data from a government system? Members of the public could have their PII compromised. The government will be able to access additional resources. Private industries will be given access to more government contracts. The government will reduce their spending on security features.

Back

Members of the public could have their PII compromised.

FLASHCARD QUESTION

Front

Which of the following describes a state adversary?

Back

They are typically employed by a government and have access to more powerful tools than the average adversary.

FLASHCARD QUESTION

Front

A risk manager is running a risk assessment for their organization. They have gathered all the assets that are in the scope of assessment and determined the value for each asset. What should be the risk manager's next step in the risk assessment?

Back

They should determine the vulnerabilities that would impact the assets.

FLASHCARD QUESTION

Front

Which of the following is an example of a hardware vulnerability for a device? A device that uses insecure APIs. A device that allows unsanitized user inputs. A device that has imported third-party libraries. A device with out-of-date firmware.

Back

A device with out-of-date firmware.

FLASHCARD QUESTION

Front

Which of the following proactive strategies help a cybersecurity professional determine threats that could impact a system they are trying to protect? They can run system health checks. They can set up user access controls. They can implement multi-factor authentication. They can think like an adversary would.

Back

They can think like an adversary would.

FLASHCARD QUESTION

Front

Which of the following would be an example of something that might show up on a quantitative security vulnerability risk analysis? Options: The chance of a laptop being damaged is high. The probability of a laptop’s battery going bad is 4%. The impact of a laptop screen cracking is “critical”. The cost to replace a stolen laptop would be $800.

Back

The cost to replace a stolen laptop would be $800.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

45 questions

Derecho y Personalidad

Flashcard

•

12th Grade

38 questions

Math 3 EOC Formulas

Flashcard

•

11th Grade

45 questions

Animal Farm FINAL

Flashcard

•

12th Grade

45 questions

Anatomía_ Músculos_ Huesos_ Cabeza

Flashcard

•

University

41 questions

Differentiation and Integration Formulas

Flashcard

•

12th Grade

37 questions

Properties of Dental Materials

Flashcard

•

University

33 questions

Spanish Meal Vocabulary

Flashcard

•

34 questions

3B. 9 to 5

Flashcard

•

University

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

11 questions

How well do you know your Christmas Characters?

Lesson

•

3rd Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

5th Grade

Discover more resources for Information Technology (IT)

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

15 questions

Christmas Song Emoji Pictionary

Quiz

•

7th - 12th Grade

20 questions

Christmas Movies

Quiz

•

1st - 12th Grade

55 questions

CHS Holiday Trivia

Quiz

•

12th Grade

20 questions

Christmas Movie Trivia

Quiz

•

9th - 12th Grade

29 questions

christmas facts

Lesson

•

5th - 12th Grade

20 questions

Christmas Trivia

Quiz

•

5th - 12th Grade

20 questions

Stages of Meiosis

Quiz

•

9th - 12th Grade