Which of the following is an example of an external threat?

A software update that improves security

What is the primary goal of footprinting and fingerprinting attacks?

To gather information about a network before launching a bigger attack.

To steal login credentials directly.

To install malware on target systems.

Confidentiality means that everyone should be able to see the information.

Confidentiality allows public access to data.

Only authorized personnel should see the information.

Integrity means the information must stay the way it was meant to be, without unauthorized changes.

Integrity means sharing information freely without restrictions.

Integrity is about making information more accessible to everyone.

Risk is how likely it is that a threat will actually happen and how bad the damage would be.

Risk is solely determined by past incidents.

Risk is the total absence of any threats.

Security policies are rules that make sure risks are known and steps (called security controls) are in place to reduce those risks.

Security policies are only for IT departments.

Security policies eliminate all risks completely.

It is always a good idea to fix every possible security risk regardless of cost.

All security risks should be fixed immediately, regardless of impact.

It's unnecessary to address any security risks.

Cost should never be a factor in fixing security risks.

A Mission Essential Function (MEF) is something a business cannot stop doing-even for a short time.

A Mission Essential Function (MEF) is a non-critical business task that can be delayed.

A Mission Essential Function (MEF) is an optional business activity that can be stopped temporarily.

A Mission Essential Function (MEF) is a routine task that can be paused without consequences.

Regulatory compliance is about what the law requires, whereas internal audits are about what the company thinks is important.

Regulatory compliance is optional; internal audits are mandatory.

Regulatory compliance focuses on company culture; internal audits are about legal standards.

Data sovereignty is when a country says that certain data-like personal info-must stay within that country's borders.

Data sovereignty requires all data to be stored in the cloud.

Data sovereignty is the principle of global data access.

Encryption is a type of physical security.

Encryption is a type of software security.

Encryption is a method of physical access control.

You can turn a hash back into the original text.

No, you cannot turn a hash back into the original text.

Yes, you can easily reverse a hash.

You can decode a hash back to text.

Hashing is a reversible process.

Data in transit is data that is saved and not currently moving anywhere.

Data in transit is data that is actively moving.

Data in transit is data that has been deleted.

Data in transit is data that is only in the cloud.

Data in transit is data that is stored permanently.

An exploit is like a broken lock, and a vulnerability is the trick someone uses to open that broken lock.

An exploit is a tool used to strengthen security.

A vulnerability is a method to secure a system.

An exploit is a type of vulnerability.

Reputational threat intelligence is written information explaining how attacks happen.

Reputational threat intelligence is a method for preventing attacks.

Reputational threat intelligence is a type of software used in cybersecurity.

Social engineering involves hacking a computer rather than tricking a human.

Hacking a computer is the main goal of social engineering

Social engineering is only about physical access

A worm requires a user to open a file to spread.

The worm spreads automatically without user interaction.

The worm spreads by sending emails to users.

Trojans are programs that ask for permission before installing hidden malware.

Trojans are always safe to install.

Trojans only affect mobile devices.

In MAC spoofing, hackers fake MAC addresses to sneak past security rules.

Yes, MAC spoofing is a technique used by hackers to fake MAC addresses and bypass security rules.

Hackers use MAC spoofing to improve their internet speed.

MAC addresses are used to identify devices on a network without any manipulation.

MAC spoofing is a method to enhance network security.

ARP (Address Resolution Protocol) has strong built-in security checks.

ARP includes encryption features

If a MAC flooding attack is successful, a switch starts sending traffic out to all ports like a hub.

True, the switch behaves like a hub, broadcasting traffic to all ports.

The switch encrypts all traffic before sending it out.

The switch only forwards traffic to the intended port.

False, the switch drops all incoming traffic completely.

CompTIA N+ N10-009 Mock Test 3 Revision

Authored by Tshepo Mofokeng

Information Technology (IT)

University

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

59 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is NOT one of the three main goals of computer security as remembered by the CIA triad?

Confidentiality

Compliance

Integrity

Availability

MULTIPLE CHOICE QUESTION

30 sec • 10 pts

What term describes a weakness in a system-like an unlocked door-that could let someone cause harm, whether by accident or on purpose?

Threat

Risk

Vulnerability

Exploit

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the chance that someone or something might take advantage of that weakness to cause damage?

Vulnerability

Threat

Risk

Attack Vector

MULTIPLE CHOICE QUESTION

30 sec • 12 pts

The person or thing causing the threat is called a/an:

Attack vector

Vulnerability actor

Risk agent

Threat actor

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the process of spotting possible problems (like weaknesses or threats), figuring out how serious they are, and deciding how to deal with them?

Security Audit

Posture Assessment

Process Assessment

Risk Management

MULTIPLE CHOICE QUESTION

30 sec • 8 pts

Improving a system's security is called:

Hardening

Compliance

Assessment

Auditing

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is any data that can identify a person-like their name, ID number, phone number, or address?

Confidential Information

Personal Information

Sensitive Data

Personally Identifiable Information (PII)

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

56 questions

тест4

Quiz

•

University

60 questions

Python 1

Quiz

•

University

56 questions

DCCN VIVA QUIZ

Quiz

•

University

61 questions

Test Quiz

Quiz

•

University

60 questions

TIN giữa kỳ

Quiz

•

11th Grade - University

60 questions

Data Structure UTS

Quiz

•

University

56 questions

CUESTIONARIO DE REPASO ATPN DV5

Quiz

•

University

60 questions

Presja Czasu INF.03

Quiz

•

11th Grade - University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Information Technology (IT)

18 questions

Informative or Argumentative essay

Quiz

•

5th Grade - University

20 questions

Disney Trivia

Quiz

•

University

5 questions

Human Impacts: How Do People Disrupt Ecosystems?

Interactive video

•

4th Grade - University

7 questions

Human Body Systems Overview (Updated 2024)

Interactive video

•

11th Grade - University

20 questions

Context Clues

Quiz

•

KG - University

7 questions

Comparing Fractions

Interactive video

•

1st Grade - University

20 questions

10.4 Exponential Functions

Quiz

•

8th Grade - University

30 questions

PSYCH 250: Exam 3

Quiz

•

University

CompTIA N+ N10-009 Mock Test 3 Revision

Which of the following is NOT one of the three main goals of computer security as remembered by the CIA triad?

What term describes a weakness in a system-like an unlocked door-that could let someone cause harm, whether by accident or on purpose?

What is the chance that someone or something might take advantage of that weakness to cause damage?

The person or thing causing the threat is called a/an:

What is the process of spotting possible problems (like weaknesses or threats), figuring out how serious they are, and deciding how to deal with them?

Improving a system's security is called:

Which of the following is any data that can identify a person-like their name, ID number, phone number, or address?

The General Data Protection Regulation (GDPR) is a privacy law from which region?

What is the term for protecting data by making sure only the right people or systems can read it?

Which type of algorithm changes readable text (called plaintext) into unreadable code (called ciphertext), requiring a special key to change it back?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)