How do cybercriminals make use of a malicious iFrame?

The iFrame allows the browser to load a web page from another source.

The attacker embeds malicious content in business appropriate files.

The attacker redirects traffic to an incorrect DNS server.

The iFrame allows multiple DNS subdomains to be used.

Which security measure is best used to limit the success of a reconnaissance attack from within a campus area network?

Implement encryption for sensitive traffic.

Implement restrictions on the use of ICMP echo-reply messages.

Implement access lists on the border router.

Implement a firewall at the edge of the network.

A network administrator of a small advertising company is configuring WLAN security by using the WPA2 PSK method. Which credential do office users need in order to connect their laptops to the WLAN?

a key that matches the key on the AP

the company username and password through Active Directory service

a username and password configured on the AP

What three best practices can help defend against social engineering attacks? (Choose three.)

Educate employees regarding policies.

Resist the urge to click on enticing web links.

Do not provide password resets in a chat window.

Deploy well-designed firewall appliances.

What are the two methods that a wireless NIC can use to discover an AP? (Choose two.)

receiving a broadcast beacon frame

initiating a three-way handshake

sending an ARP request broadcast

Which statement describes one of the rules that govern interface behavior in the context of implementing a zone-based policy firewall configuration?

By default, traffic is allowed to flow among interfaces that are members of the same zone.

An administrator can assign interfaces to zones, regardless of whether the zone has been configured.

An administrator can assign an interface to multiple security zones.

By default, traffic is allowed to flow between a zone member interface and any interface that is not a zone member.

What is an IPS signature?

It is a set of rules used to detect typical intrusive activity.

It is a security script that is used to detect unknown threats.

It is the timestamp that is applied to logged security events and alarms.

It is the authorization that is required to implement a security policy.

Which statement describes a VPN?

VPNs use virtual connections to create a private network through a public network.

VPNs use open source virtualization software to create the tunnel through the Internet.

VPNs use dedicated physical connections to transfer data between remote users.

VPNs use logical connections to create public networks through the Internet.

What is a function of SNMP?

provides a message format for communication between network device managers and agents

provides statistical analysis on packets flowing through a Cisco router or multilayer switch

synchronizes the time across all devices on the network

captures packets entering and exiting the network interface card

What does the term vulnerability mean?

a weakness that makes a target susceptible to an attack

a potential threat that a hacker creates

a known target or victim machine

a computer that contains sensitive information

a method of attack to exploit a target

What is a characteristic of the WLAN passive discover mode?

The AP periodically sends beacon frames containing the SSID.

The beaconing feature on the AP is disabled.

The client must know the name of the SSID to begin the discover process.

The client begins the discover process by sending a probe request.

What are two drawbacks to using HIPS? (Choose two.)

With HIPS, the network administrator must verify support for all the different operating systems used in the network.

HIPS has difficulty constructing an accurate network picture or coordinating events that occur across the entire network.

If the network traffic stream is encrypted, HIPS is unable to access unencrypted forms of the traffic.

HIPS installations are vulnerable to fragmentation attacks or variable TTL attacks.

With HIPS, the success or failure of an attack cannot be readily determined.

Cybersecurity Quiz

Authored by Фируза Фируза

English

12th Grade

Used 3+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

27 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The employees in a company receive an email stating that the account password will expire immediately and requires a password reset within 5 minutes. Which statement would classify this email?

It is a DDoS attack.

It is an impersonation attack.

It is a hoax.

It is a piggy-back attack.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What type of attack targets an SQL database using the input field of a user?

XML injection

buffer overflow

Cross-site scripting

SQL injection

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A cyber criminal sends a series of maliciously formatted packets to the database server. The server cannot parse the packets and the event causes the server to crash. What is the type of attack the cyber criminal launches?

SQL injection

packet Injection

man-in-the-middle

DoS

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the first line of defense to protect a device from improper access control?

end user license agreement (EULA)

encryption

passwords

shredding

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A security service company is conducting an audit in several risk areas within a major corporate client. What attack or data loss vector term would be used to describe providing access to corporate data by gaining access to stolen or weak passwords?

an internal threat

hard copy

improper access control

unencrypted devices

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A social media site is describing a security breach in a sensitive branch of a national bank. In the post, it refers to a vulnerability. What statement describes that term?

The likelihood that a particular threat will exploit a vulnerability of an asset and result in an undesirable consequence.

A weakness in a system or its design that could be exploited by a threat.

The actions that are taken to protect assets by mitigating a threat or reducing risk.

The potential damage to the organization that is caused by the threat.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which three IPv4 header fields have no equivalent in an IPv6 header? (Choose three.)

TTL

fragment offset

identification

protocol

flag

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

24 questions

1st English Exam 6th semester

Quiz

•

12th Grade

25 questions

ASSESSMENT AKHIR SEKOLAH 2025

Quiz

•

12th Grade

22 questions

The Titanic

Quiz

•

10th - 12th Grade

22 questions

E1P2

Quiz

•

6th Grade - University

23 questions

Food

Quiz

•

1st - 12th Grade

26 questions

Dzień Świętego Patryka

Quiz

•

4th - 12th Grade

23 questions

2. Respond to Verbal Enquiries and Requests

Quiz

•

12th Grade - University

24 questions

NI 4 unit 6.3

Quiz

•

12th Grade

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

14 questions

Boundaries & Healthy Relationships

Lesson

•

6th - 8th Grade

13 questions

SMS Cafeteria Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

12 questions

SMS Restroom Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

10 questions

Pi Day Trivia!

Quiz

•

6th - 9th Grade

Discover more resources for English

20 questions

Grammar

Quiz

•

9th - 12th Grade

20 questions

Text Structures

Quiz

•

9th - 12th Grade

4 questions

4F Use Evidence to Support Understanding

Quiz

•

9th - 12th Grade

40 questions

ACT Reading Post Test as a Common Assessment

Quiz

•

9th - 12th Grade

25 questions

Argument Unit Assessment

Quiz

•

9th - 12th Grade

20 questions

Active Vs Passive Voice

Quiz

•

7th - 12th Grade

20 questions

Verb Tense Consistency 2

Quiz

•

7th - 12th Grade

20 questions

Sentence Opener Identification Review

Quiz

•

9th - 12th Grade

Cybersecurity Quiz

The employees in a company receive an email stating that the account password will expire immediately and requires a password reset within 5 minutes. Which statement would classify this email?

What type of attack targets an SQL database using the input field of a user?

A cyber criminal sends a series of maliciously formatted packets to the database server. The server cannot parse the packets and the event causes the server to crash. What is the type of attack the cyber criminal launches?

What is the first line of defense to protect a device from improper access control?

A security service company is conducting an audit in several risk areas within a major corporate client. What attack or data loss vector term would be used to describe providing access to corporate data by gaining access to stolen or weak passwords?

A social media site is describing a security breach in a sensitive branch of a national bank. In the post, it refers to a vulnerability. What statement describes that term?

Which three IPv4 header fields have no equivalent in an IPv6 header? (Choose three.)

What kind of ICMP message can be used by threat actors to create a man-in-the-middle attack?

Which term describes a field in the IPv4 packet header used to detect corruption in the IPv4 header?

Which type of network attack involves randomly opening many Telnet requests to a router and results in a valid network administrator not being able to access the device?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for English