What is the role of security researchers?

Discover flaws and report them to vendors

Develop new software applications

Provide technical support to users

What is a zero-day attack?

An attack that exploits a flaw before a patch is available

A type of attack that occurs on the same day a vulnerability is discovered

An attack that targets systems with outdated software

A security breach that is reported after a patch is released

Why are zero-day attacks dangerous?

Defenders are unaware of the flaw being exploited

They only affect outdated software

They can be easily mitigated by firewalls

Why must vendors respond quickly to zero-day vulnerabilities?

These vulnerabilities are often actively exploited

They only affect a small number of users

Why is it difficult to defend against zero-day threats?

The vulnerability is unknown at the time of the attack

The attack is always carried out by advanced persistent threats

There are too many security patches to apply

Most organizations lack a security policy

What should organizations do immediately after learning of a vulnerability?

Begin patching or implementing mitigations

Ignore the vulnerability until it becomes a bigger issue

Notify the public about the vulnerability

What should users do when a patch is released?

Apply the patch as soon as possible

Ignore the patch until next month

Only apply the patch if there are issues

Review the patch notes before applying

What type of issue did Apple face in May 2023?

Sandbox escape, information disclosure, arbitrary code execution

Server outage, memory leak, CPU spike

Cloud misconfiguration, SSL failure, DNS error

Keyboard mapping, RAM failure, battery drain

What makes attackers motivated to find zero-day vulnerabilities first?

They want to exploit the flaws before detection.

They aim to report them to the software vendors.

They seek to improve their hacking skills.

They want to sell the information to the highest bidder.

What happens once a vulnerability becomes known to the security community?

Developers start working on a patch

Security measures are increased

What is a sandbox escape?

Running code outside of a restricted environment

Executing scripts within a secure environment

Accessing files in a protected directory

Bypassing user authentication protocols

039_Zero-day Vulnerabilities – CompTIA Security+ SY0-701 – 2.3

Authored by Wayground Content

Computers

9th - 12th Grade

Used 1+ times

039_Zero-day Vulnerabilities – CompTIA Security+ SY0-701 – 2.3

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What are zero-day vulnerabilities?

Previously unknown software flaws not yet patched by vendors.

Software flaws that have been patched by vendors.

Common software bugs that are easily fixable.

Vulnerabilities that are known but not exploited.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is a secure boot process?

A sequence that verifies code during system startup

A method to increase system performance

A technique for data encryption

A process for regular software updates

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Who typically discovers unknown vulnerabilities in software?

Software developers

Researchers and attackers

End users

System administrators

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What does CVE stand for?

Common Vulnerabilities and Exposures

Common Variable Environment

Computer Vulnerability Evaluation

Common Value Encryption

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is arbitrary code execution?

Running unauthorized code on a system

Executing code with user permissions

Running code in a virtual environment

Executing code only in a sandbox

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

How can attackers use zero-day flaws?

To run code or steal data before detection

To improve system performance

To enhance user experience

To create backup copies of data

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

When do zero-day attacks typically occur?

After a patch is released

Before a patch is released

During a software update

When the software is first launched

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

Format File Gambar

Quiz

•

12th Grade

17 questions

PSTS1 Informatika

Quiz

•

10th Grade

20 questions

Kiểm tra 15 phút (Kết thúc chuyên đề A)

Quiz

•

10th Grade

20 questions

Computer Science - X

Quiz

•

8th - 10th Grade

20 questions

UH1_INFO_XII

Quiz

•

11th Grade

20 questions

Google

Quiz

•

7th - 12th Grade

15 questions

Excel

Quiz

•

12th Grade

20 questions

BÀI 24-25 TIN 10

Quiz

•

10th Grade

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

15 questions

Hargrett House Quiz: Community & Service

Quiz

•

5th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

12 questions

Digital Ethics Challenge

Quiz

•

10th Grade

20 questions

[AP CSP] Create Task Prep Lesson: 🎞️Video and 💻Code ('25-26)

Lesson

•

9th - 12th Grade