An administrator needs to protect user passwords and has been advised to hash the passwords. Which of the following BEST describes what the administrator is being advised to do?

Perform a mathematical operation on the passwords that will convert them into unique strings.

Add extra data to the passwords so their length is increased, making them harder to brute force.

Store all passwords in the system in a rainbow table that has a centralized location.

Enforce the use of one-time passwords that are changed for every login session.

Which of the following is a reason to publish files' hashes?

To validate the integrity of the files

To verify if the software was digitally signed

To use the hash as a software activation key

To use the hash as a decryption passphrase

Which of the following statements BEST describes zero-day exploits?

A zero-day exploit is initially undetectable, and no patch for it exists.

When a zero-day exploit is discovered, the system cannot be protected by any means.

Zero-day exploits have their own scoring category in CVSS.

Discovering zero-day exploits is always performed via bug bounty programs.

Which of the following is the MOST effective control against zero-day vulnerabilities?

Multiple vulnerability scanners

A security analyst has identified malware spreading through the corporate network and has activated the CSIRT. Which of the following should the analyst do NEXT?

Attempt to quarantine all infected hosts to limit further spread.

Review how the malware was introduced to the network.

Create help desk tickets to get infected systems reimaged.

Update all endpoint antivirus solutions with the latest updates.

Security+

Authored by Kerwin Vialva

Professional Development

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

21 questions

Show all answers

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

Which of the following describes a social engineering technique that seeks to exploit a person's sense of urgency?

A phishing email stating a cash settlement has been awarded but will expire soon

A smishing message stating a package is scheduled for pickup

A vishing call that requests a donation be made to a local charity

A SPIM notification claiming to be undercover law enforcement investigating a cybercrime

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

A company is implementing a DLP solution on the file server. The file server has PII, financial information, and health information stored on it. Depending on what type of data that is hosted on the file server, the company wants different DLP rules assigned to the data. Which of the following should the company do to help accomplish this goal?

Classify the data

Mask the data

Assign the application owner

Perform a risk analysis.

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

A company wants to simplify the certificate management process. The company has a single domain with several dozen subdomains, all of which are publicly accessible on the internet. Which of the following BEST describes the type of certificate the company should implement?

Subject alternative name

Wildcard

Self-signed

Domain validation

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

Which of the following is an effective tool to stop or prevent the exfiltration of data from a network?

DLP

NIDS

TPM

FDE

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

Several attempts have been made to pick the door lock of a secure facility. As a result, the security engineer has been assigned to implement a stronger preventative access control. Which of the following would BEST complete the engineer's assignment?

Installing and monitoring a camera facing the door

Replacing the traditional key with an RFID key

Setting motion-sensing lights to illuminate the door on activity

Surrounding the property with fencing and gates

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

Which of the following can be used by a monitoring tool to compare values and detect password leaks without providing the actual credentials?

Hashing

Tokenization

Masking

Encryption

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

A security engineer is building a file transfer solution to send files to a business partner. The users would like to drop off the files in a specific directory and have the server send the file to the business partner. The connection to the business partner is over the internet and needs to be secure. Which of the following can be used?

S/MIME

SSH

LDAPS

SRTP

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

Quiz-Occupational Safety & Health Branchs

Quiz

•

Professional Development

20 questions

Day #4 : Komponen Pengurang Gaji Karyawan

Quiz

•

Professional Development

20 questions

Module 6: Social Groups and Organization

Quiz

•

11th Grade - Professi...

20 questions

Business Writing 2

Quiz

•

Professional Development

20 questions

e-CAT Edisi-89-BSKM 4 (Bab22 : BERBAHAGIALAH ORANG YANG MURNI HATINYA)

Quiz

•

Professional Development

20 questions

MF1423 TEMA3 EXAMEN

Quiz

•

Professional Development

19 questions

Orders Unit 8 Level 2

Quiz

•

University - Professi...

20 questions

[CBTC28] - QUẢN LÝ TÀI CHÍNH & ĐIỀU HÀNH CUỘC HỌP

Quiz

•

KG - Professional Dev...

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

Discover more resources for Professional Development

10 questions

How to Email your Teacher

Quiz

•

Professional Development

Security+

Which of the following describes a social engineering technique that seeks to exploit a person's sense of urgency?

A company wants to simplify the certificate management process. The company has a single domain with several dozen subdomains, all of which are publicly accessible on the internet. Which of the following BEST describes the type of certificate the company should implement?

Which of the following is an effective tool to stop or prevent the exfiltration of data from a network?

Several attempts have been made to pick the door lock of a secure facility. As a result, the security engineer has been assigned to implement a stronger preventative access control. Which of the following would BEST complete the engineer's assignment?

Which of the following can be used by a monitoring tool to compare values and detect password leaks without providing the actual credentials?

An administrator needs to protect user passwords and has been advised to hash the passwords. Which of the following BEST describes what the administrator is being advised to do?

A user enters a username and a password at the login screen for a web portal. A few seconds later the following message appears on the screen:Please use a combination of numbers, special characters, and letters in the password field.Which of the following concepts does this message describe?

Which of the following is a reason to publish files' hashes?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development

A user enters a username and a password at the login screen for a web portal. A few seconds later the following message appears on the screen:
Please use a combination of numbers, special characters, and letters in the password field.
Which of the following concepts does this message describe?