What is the main function of a honeypot in cybersecurity?

To attract and analyze potential attackers

To provide backup for critical systems

To store sensitive data securely

What is the primary purpose of implementing a DMZ (Demilitarized Zone) in network architecture?

To isolate internal networks from external threats

To encrypt sensitive information

What is the main purpose of two-factor authentication (2FA) in cybersecurity?

To enhance security by requiring two forms of verification

To provide a backup for passwords

What is the primary function of an intrusion detection system (IDS) in cybersecurity?

To detect and alert on suspicious activities

What is the main purpose of encryption in data security?

To hide data from unauthorized users

What is the primary goal of implementing a VPN in a corporate network?

To provide secure remote access

To monitor employee productivity

What is the main function of a security information and event management (SIEM) system?

To provide real-time analysis of security alerts

Domains 1-2 Sec+

Quiz

•

Computers

•

12th Grade

•

Practice Problem

•

Easy

Krissy Wong

Used 1+ times

FREE Resource

25 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A hacker at CyberThreat Inc. sends an email with a malicious link that, when clicked, downloads malware onto the victim's system. What type of attack is this?

SQL Injection

Phishing

Man-in-the-middle

Cross-site scripting

Answer explanation

The attack described is phishing, where a hacker sends a malicious link via email to trick the victim into downloading malware. This method exploits social engineering to gain unauthorized access.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is an administrative control?

Antivirus software

Security awareness training

Biometric authentication

Intrusion prevention system

Answer explanation

Security awareness training is an administrative control that focuses on educating employees about security policies and practices, helping to mitigate risks through informed behavior. The other options are technical controls.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which type of threat intelligence provides real-time alerts about current attack trends?

Tactical

Strategic

Operational

Technical

Answer explanation

Tactical threat intelligence focuses on immediate threats and provides real-time alerts about current attack trends, helping organizations respond quickly to emerging threats.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What makes a zero-day vulnerability especially dangerous?

It can only be exploited in specific conditions

It is patched within 24 hours

It has no available fix at the time of discovery

It only affects open-source software

Answer explanation

A zero-day vulnerability is especially dangerous because it has no available fix at the time of discovery, leaving systems exposed to potential attacks until a patch is developed and deployed.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which security framework is commonly used for managing risk in U.S. government organizations?

ISO 27001

NIST Cybersecurity Framework

PCI DSS

ITIL

Answer explanation

The NIST Cybersecurity Framework is specifically designed for U.S. government organizations to manage and reduce cybersecurity risk, making it the correct choice over ISO 27001, PCI DSS, and ITIL.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

SecureBank Ltd. detects multiple failed login attempts from different IP addresses on an employee account. Which attack is likely occurring?

Phishing

Brute force attack

SQL Injection

DNS Spoofing

Answer explanation

Multiple failed login attempts from different IP addresses suggest a brute force attack, where an attacker tries various passwords to gain unauthorized access. This aligns with the observed behavior.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An attacker at DataSafe Inc. exploits a software bug to gain administrator rights on a system. What type of attack is this?

SQL Injection

Privilege Escalation

Cross-site scripting

Session Hijacking

Answer explanation

The attacker exploits a software bug to gain higher privileges, which is known as privilege escalation. This type of attack allows unauthorized users to gain access to restricted areas of a system.

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

PSTS Administrasi Infrastruktur Jaringan Kelas XII TKJ

Quiz

•

12th Grade

20 questions

Ethics and Morals

Quiz

•

12th Grade

20 questions

Quiz Gelombang Radio

Quiz

•

9th - 12th Grade

20 questions

Latihan Informatika Kelas 9

Quiz

•

9th Grade - University

20 questions

Design your website

Quiz

•

7th - 12th Grade

20 questions

STS Informatika

Quiz

•

10th Grade - University

20 questions

2.3.1 Graph Traversal & Path Finding Algorithms

Quiz

•

12th Grade - University

20 questions

Ulangan Harian I Teknologi Layanan Jaringan (softswitch & VoIP)

Quiz

•

12th Grade

Popular Resources on Wayground

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

15 questions

Solving Equations with Variables on Both Sides Review

Quiz

•

8th Grade

Discover more resources for Computers

40 questions

Introduction to Microsoft Word

Quiz

•

8th - 12th Grade

11 questions

Internet Terms Vocabulary- Notebook Check #1- CTEA

Quiz

•

12th Grade

31 questions

Python Conditionals Review

Quiz

•

9th - 12th Grade

Domains 1-2 Sec+

25 questions

A hacker at CyberThreat Inc. sends an email with a malicious link that, when clicked, downloads malware onto the victim's system. What type of attack is this?

The attack described is phishing, where a hacker sends a malicious link via email to trick the victim into downloading malware. This method exploits social engineering to gain unauthorized access.

Which of the following is an administrative control?

Security awareness training is an administrative control that focuses on educating employees about security policies and practices, helping to mitigate risks through informed behavior. The other options are technical controls.

Which type of threat intelligence provides real-time alerts about current attack trends?

Tactical threat intelligence focuses on immediate threats and provides real-time alerts about current attack trends, helping organizations respond quickly to emerging threats.

What makes a zero-day vulnerability especially dangerous?

A zero-day vulnerability is especially dangerous because it has no available fix at the time of discovery, leaving systems exposed to potential attacks until a patch is developed and deployed.

Which security framework is commonly used for managing risk in U.S. government organizations?

The NIST Cybersecurity Framework is specifically designed for U.S. government organizations to manage and reduce cybersecurity risk, making it the correct choice over ISO 27001, PCI DSS, and ITIL.

SecureBank Ltd. detects multiple failed login attempts from different IP addresses on an employee account. Which attack is likely occurring?

Multiple failed login attempts from different IP addresses suggest a brute force attack, where an attacker tries various passwords to gain unauthorized access. This aligns with the observed behavior.

An attacker at DataSafe Inc. exploits a software bug to gain administrator rights on a system. What type of attack is this?

The attacker exploits a software bug to gain higher privileges, which is known as privilege escalation. This type of attack allows unauthorized users to gain access to restricted areas of a system.

A hidden program at TechSecure Corp. records keystrokes and sends them to an attacker. What type of malware is this?

The malware described records keystrokes, which is a characteristic function of a keylogger. Unlike rootkits, ransomware, or worms, keyloggers specifically capture user input to send to an attacker.

Which attack involves inserting malicious SQL statements into a web form to access a database?

SQL Injection is an attack where malicious SQL statements are inserted into a web form, allowing attackers to manipulate or access the database. This distinguishes it from other attacks like XSS, DNS Poisoning, and Session Hijacking.

What security method should XYZ Wireless Corp. use to prevent evil twin attacks?

A VPN encrypts data and secures connections, making it difficult for attackers to intercept communications, thus effectively preventing evil twin attacks. Other methods like WPA2-PSK and MAC filtering do not provide the same level of protection.

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers