Which example is accidental data disclosure rather than malicious behaviour?

Emailing a client list to a wrong address

Installing a keylogger on a manager’s PC

Disabling the endpoint antivirus system

Brute-forcing a coworker’s password

Why does staff training help prevent accidental data loss?

It teaches secure device use and acceptable practices

It removes the need for network monitoring

It guarantees zero malware on all systems

It replaces the need for access control lists

Which monitoring method can identify poor practices and trace incidents?

Collecting access logs and using keyloggers

Blocking all web traffic to the internet

Standardising desktop wallpaper images

Encrypting external drives with AES-256

Which statement best distinguishes malware from a virus?

Malware is a broader category; a virus is one type

Both terms are identical in all contexts

Neither term relates to software programs

Virus is broader; malware is a specific worm

Which list contains only examples of common malware mentioned?

Worms, trojans, spyware, ransomware

Backups, snapshots, archives, mirroring

Phishing, shoulder surfing, dumpster diving

Keyboards, routers, switches, firewalls

Which statement best distinguishes a worm from a traditional virus?

Worms self-replicate over networks without attaching

Worms attach to files and spread via email only

Worms require user action to copy between disks

Worms always masquerade as useful applications

What defines a Trojan in cybersecurity?

Legitimate-looking software hiding harmful payloads

Kernel-level toolkit granting root administrator

Background tool that records keystrokes for theft

Software that encrypts files for a ransom demand

Spyware primarily aims to do which of the following?

Monitor user actions and exfiltrate gathered data

Encrypt local files and demand cryptocurrency

Exploit kernel modules to hide other malware

Overwrite boot records to prevent system boot

Ransomware usually performs which first action after infection?

Secretly encrypts files before making a demand

Copies itself to removable media for propagation

Uninstalls antivirus then deletes key system files

Displays a warning banner to scare the victim

What is the primary purpose of a rootkit on a compromised system?

Maintain hidden unauthorized administrative access

Flood a server with traffic to disrupt services

Spread to other devices using email contact lists

Harvest credentials through fake login prompts

In security terminology, an attack vector is best described as the

Path used to exploit a vulnerability and gain entry

Indicator left on systems for forensic analysis

Malware payload that executes after installation

Tool a hacker uses to hide their malicious actions

Which example is most likely an attack vector for gaining access?

Exploiting Wi‑Fi weaknesses at a public hotspot

Installing official updates from a vendor site

Backing up data to an encrypted external drive

Using multifactor authentication for logins

Which statement accurately contrasts white hat and black hat hacking?

White hats test vulnerabilities to prevent abuse; black hats exploit them for gain

White hats operate illegally by definition; black hats operate with contracts

White hats focus on sabotage; black hats focus on public awareness

White hats write malware for research use; black hats publish antivirus tools

Which motivation aligns LEAST with hacktivist groups’ stated goals?

Testing competitor defenses to increase quarterly profits

Protesting policies by defacing high‑profile websites

Drawing attention to perceived injustices using breaches

Promoting political or social agendas through campaigns

Which scenario best illustrates corporate espionage via hacking?

Accessing a rival’s product plans to gain market advantage

Physically destroying servers in a data center raid

Encrypting random consumers’ files to demand cryptocurrency

Defacing a government portal to protest new regulations

Which activity best fits the definition of deliberate sabotage?

Launching a distributed denial of service to halt operations

Collecting public OSINT to analyze market sentiments

Running a sanctioned penetration test with permission

Posting proof‑of‑concept code in an academic forum

How does sabotage primarily differ from some forms of hacking?

Sabotage specifically aims to cause damage and disruption

Sabotage requires physical access to target hardware

Sabotage always relies on social engineering techniques

Sabotage is not carried out by organizations or states

Which risk is a likely consequence when recovery procedures are absent after sabotage?

Catastrophic impact due to prolonged functional outage

Guaranteed legal immunity for all parties

Minor inconvenience with quick manual workarounds

Automatic resilience due to redundant malware

Which statement best describes social engineering in cybersecurity?

Manipulating people to divulge private information

Deploying worms through unpatched file servers

Exploiting a zero‑day in Bluetooth firmware

Brute forcing passwords using GPU clusters

Which method could be used for social engineering without any technology?

Persuading someone face‑to‑face to share credentials

Setting up a rogue Wi‑Fi access point near offices

Embedding scripts in a compromised website

Sending a macro‑enabled spreadsheet through email

Which statement best describes phishing in a cybersecurity context?

Impersonating a trusted entity via message to solicit data

Modifying software code to create exploits for operating systems

Guessing passwords through repeated login attempts on systems

Physically following employees to access restricted building areas

What is the primary goal of a phishing attack against individuals?

Obtain credentials or infect devices for later data theft

Destroy backups to prevent business disaster recovery

Publicly leak source code to harm product reputation

Disable company servers to disrupt online storefronts

Shoulder surfing is best defined as which activity?

Observing someone nearby to capture sensitive information

Sending fake invoices that mimic legitimate organizations

Calling customers pretending to be technical support staff

Embedding malware in software updates for distribution

Which scenario illustrates operational loss from a cyberattack?

Production stops because control systems are taken offline

Share price drops after negative media and customer backlash

Regulators fine the firm for mishandling personal information

Patent portfolio is leaked to a rival during negotiations

A denial-of-service attack causing an online shop outage primarily results in which impact?

Loss of service availability preventing sales processing

Physical damage to factory machinery and assembly lines

Permanent destruction of all archived financial records

Unauthorized replication of a product’s secret formula

Financial loss in cybersecurity incidents most directly refers to what?

Increased costs or reduced income due to the threat

Vendors requesting earlier payment for contract services

Customers complaining about slow application response times

Employees feeling stressed after repeated phishing emails

Which item is an example of a direct financial cost after a breach?

Compensation payments and legal fees for affected parties

Reconfiguring office seating to improve team communication

Hiring a marketing intern to manage social media posts

Launching a new product line ahead of holiday season

Which outcome best captures reputational loss for a business?

Customers lose trust and question continued service use

Insurers increase the firm’s annual cybersecurity premiums

Servers require patching to close critical security holes

Auditors request evidence of updated access controls

Why might stolen customer data cause ongoing reputational damage?

People hesitate to share data again, reducing business

Hackers permanently delete all company operational data

Regulators automatically revoke existing business licenses

Competitors refuse to collaborate on joint ventures

Intellectual property loss most accurately involves which situation?

Theft of designs or trade secrets harming competitiveness

Short-term website outage from scheduled maintenance tasks

Employee turnover after a change in leadership strategy

Delayed shipment because of supplier transportation issues

Corporate espionage leading to a rival launching a similar product stems from what type of loss?

Intellectual property loss impacting market position

Operational loss reducing manufacturing throughput

Financial loss due to increased insurance deductibles

Reputational loss from negative third-party reviews

Which statement about the threat landscape over time is most accurate?

Threats evolve continuously, making tracking changes difficult

Threats remain stable annually, easing long-term planning

Legacy defenses stay effective indefinitely without updates

New malware is rare once patch cycles are well established

Why do cybersecurity organizations publish regular threat reports and blogs?

To keep practitioners updated on emerging risks and vulnerabilities

To eliminate the need for internal monitoring capabilities

To promote entertainment content for a general audience

To replace law enforcement agencies in prosecuting cybercrime

Which source is listed as providing regular updates on cybersecurity topics?

Wired – Threat Level among other technology publications

World Health Organization nutrition and fitness blog

Financial Times Weekend magazine lifestyle section

National Weather Service and regional climate newsletters

Which pair correctly matches impact type with an example?

Reputational loss – subscribers question reliability after outages

Operational loss – brand trust declines after negative headlines

Financial loss – customers share positive reviews on social media

Intellectual loss – overtime payments for weekend incident work

A business pays compensation to customers and receives a regulator fine after a breach. Which combined impacts are most evident?

Financial loss and legal culpability increasing total costs

Reputational loss and financial gain improving profitability

Intellectual property loss and operational loss increasing sales

Operational loss and reputational loss reducing staff morale

Which action best mitigates shoulder surfing risk at point-of-sale terminals?

Use privacy screens and shield PIN entry from observers

Display larger on-screen keys to reduce entry mistakes

Disable multi-factor authentication for faster checkouts

Increase internet bandwidth for faster payment processing

A security team that only reviews last month’s threat reports risks what?

Being unprepared for this month’s evolving attack techniques

Breaching copyright by citing external blogs in presentations

Overpatching systems causing unnecessary downtime windows

Violating employment contracts due to outdated training plans

Internal Threats and Accidental Data Loss

Authored by Ann Watterson

Computers

University

Used 1+ times

Internal Threats and Accidental Data Loss

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

45 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which scenario best illustrates employee sabotage rather than accidental loss?

Leaving a laptop on a train ride

Spilling coffee onto a office keyboard

Deleting project files after a dispute

Forgetting to log out of a workstation

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is a direct risk of an employee copying data to a USB drive and taking it home?

Unauthorised disclosure and duplication online

Faster disaster recovery procedures

Improved data backup reliability

Stronger physical access control

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which situation most clearly represents unauthorised access by an employee?

Requesting extra disk space from support staff

Using a colleague’s unlocked session to reach a server

Saving files to a shared network folder

Printing confidential reports for a meeting

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Administrative privileges obtained by staff can enable which harmful action?

Changing other users’ access rights

Scheduling regular system backups

Optimising printer queue settings

Updating a public holiday calendar

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which weak security practice most increases the chance of opportunistic theft?

Applying least-privilege policies

Requiring two-factor authentication

Using long unique passphrases

Leaving a server room unlocked

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A user visits an untrustworthy website at work and a virus spreads. This is best described as:

Targeted ransomware with extortion

Planned exfiltration using insider intent

Exploitation of unsafe practices by accident

Physical sabotage causing hardware failure

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which is the best immediate control to reduce risks from unattended logged-in sessions?

Enforce automatic screen locking on idle

Disable printing across the network

Increase cloud storage quota for users

Remove all external USB ports companywide

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

44 questions

ACO.C1.HTTT

Quiz

•

University

46 questions

CompTIA ITFundamentals CRAM

Quiz

•

6th Grade - University

49 questions

IT alapismeretek

Quiz

•

10th Grade - Professi...

40 questions

Latihan ganjil

Quiz

•

9th Grade - University

50 questions

MES3093: QUIZ

Quiz

•

University

45 questions

Computer memory

Quiz

•

University

50 questions

ACTIVE DIRECTORY

Quiz

•

University - Professi...

42 questions

TIN HỌC KHỐI 5 HK1

Quiz

•

1st Grade - University

Popular Resources on Wayground

20 questions

Math Review

Quiz

•

3rd Grade

15 questions

Fast food

Quiz

•

7th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

10 questions

Identify Fractions, Mixed Numbers & Improper Fractions

Quiz

•

3rd - 4th Grade

Discover more resources for Computers

20 questions

Guess The App

Quiz

•

KG - Professional Dev...

11 questions

NFL Football logos

Quiz

•

KG - Professional Dev...

19 questions

Minecraft

Quiz

•

6th Grade - Professio...

40 questions

8th Grade Math Review

Quiz

•

8th Grade - University

20 questions

Block Buster Movies

Quiz

•

10th Grade - Professi...

10 questions

Would you rather...

Quiz

•

KG - University

40 questions

Flags of the World

Quiz

•

KG - Professional Dev...

14 questions

Superhero

Quiz

•

1st Grade - University