IS5403 New Week 1

 Lab 1

1. All of these

2. Nothing

3. Microsoft Edge

4. Windows Sandbox

5. Changes are lost

Lab 2

1. Start, Settings, System, and then About

2. the installation halts

3. Directly from the browser

4. Quick scan

5. 0

Lab 3

2

Question

Which type of attack does the attacker infect a website that is often visited by the target users?

Vishing

Watering hole

Smishing

Phishing

Correct

 

2 of 7

3

Question

Which type of phishing is conducted over the Voice over IP (VoIP) lines where the attacker pretends to be a legitimate caller from a bank or a financial institution?

Watering Hole

Vishing

Whaling

Smishing

Correct

 

3 of 7

4

Question

Which type of phishing targets specific individuals and companies?

Whaling

Smishing

Waterhole

Vishing

Spear Phishing

Correct

 

4 of 7

5

Question

You received a call from a person who was pretending to be from a law firm. The caller wanted to know some confidential information about your organization. Which of the following social engineering method was the person using?

Intimidation

Scarcity

Authority

Urgency

Correct

 

5 of 7

6

Question

Which of the following attack uses CDs, DVDs, or USB drives?

Baiting

Tailgaiting

Hoax

Shoulder Surfing

Correct

3

Question

Which of the following type of attacker keeps exfiltrating the data quietly, without being detected?

Hacktivists

Advanced Persistent Threat (APT)

Script kiddies

Insider threats

Criminal syndicates

Correct

 

3 of 8

4

Question

Which of the following performs hacking for either a political reason or wants to bring in a social change?

Criminal syndicates

Hacktivists

Script kiddies

Insider threats

Correct

 

4 of 8

5

Question

Which type of hackers break into systems for personal or financial gain?

White Hat

Black Hat

Blue Hat

Grey Hat

Correct

 

5 of 8

6

Question

Insider threats are generated by the individuals who are either the organization's employees or are closely associated with the organization as a vendor or a third-party. [TRUE/FALSE]

TRUE

FALSE

Correct

 

6 of 8

7

Question

Which of the following are the phases in Open Source Intelligence (OSINT)? [Choose all that apply]

Result Delivery

Data Analysis

Data Processing

Source Identification

Data Harvesting

Correct

2

Question

In which of the following tests does the tester not need to have prior knowledge of the system's internal design or features?

Red Box Testing

Black Box Testing

White Box Testing

Gray Box Testing

Correct

 

2 of 8

3

Question

Which of the following testing strategies will be performed by a gradual process of gaining access to a network component, infrastructure, or an application layer to minimize detection?

Penetration Testing

Security Testing

Lateral Movement

Security Assessment

Correct

 

3 of 8

4

Question

Which of the following is a full knowledge penetration testing?

Red Box Testing

Black Box Testing

White Box Testing

Gray Box Testing

Correct

 

4 of 8

5

Question

Footprinting and gathering information about the target is performed in which phase of penetration testing?

Discovery

Enumeration

Vulnerability Mapping

Exploitation

Correct

 

5 of 8

6

Question

Which of the following terms refers to attacking or taking control of a system through another compromised system?

Enumeration

Pivoting

Vulnerability Mapping

Exploitation

Correct

 

6 of 8

7

Question

Which of the following allows organizations to identify and remediate vulnerabilities before the public is aware of it, thus reducing the spread and intensity of abuse?

Enumeration

Discovery

Bug Bounty

Vulnerability Mapping

Correct

1

Question

Which of the following are examples of technical control? [Choose all that apply]

A non-disclosure agreement (NDA)

Firewall

Dead-bolted steel doors

Router

Alarm systems

Correct

 

1 of 6

2

Question

Which type of control identifies a security risk that might be present in a policy, process, or procedure?

Corrective

Compensating

Preventative

Detective

Deterrent

Correct

 

2 of 6

3

Question

Which of the following standard/law focuses on protecting the financial non-public information?

GRAMM-LEACH-BILLEY ACT (GLBA)

Health Insurance Portability and Accountability Act (HIPAA)

Federal Information Security Management Act (FISMMA)

US Privacy Act of 1974

Correct

 

3 of 6

4

Question

Which of the following ISO framework provides requirements for an information security management system and focuses on managing information security within an organization?

27001

27701

27002

31000

Correct

 

4 of 6

5

Question

Which of the following standards provide guidelines for hardening a Webserver?

International Organization for Standardization (ISO)

Statements on Standards for Attestation Engagements (SSAE)

Cloud Control Matrix (CCM)

Center for Internet Security (CIS)

Correct

After Bella earned her security certification, she was offered a promotion. As she reviewed the job responsibilities, she saw that in this position she will report to the CISO and will be a supervisor over a group of security technicians. Which of these generally recognized security positions has she been offered?

a. Security technician

b. Security manager

c. Security officer

d. Security administrator

Hide Feedback

Correct

Which of the following is false about the CompTIA Security+ certification?

a. Professionals who hold the Security+ certification earn about the same or slightly less than security professionals who have not achieved this certification.

b. The Security+ certification is a vendor-neutral credential.

c. Security+ is internationally recognized as validating a foundation level of security skills and knowledge.

d. Security+ is one of the most widely acclaimed security certifications.

Hide Feedback

Correct

Which of the following is true regarding the relationship between security and convenience?

a. Security and convenience are equal in importance.

b. Security and convenience are inversely proportional.

c. Security is less importance than convenience.

d. Security and convenience have no relationship.

Hide Feedback

Correct

Which of the following of the CIA Triad ensures that the information is correct, and no unauthorized person has altered it?

a. Availability

b. Integrity

c. Confidentiality

d. Assurance

Hide Feedback

Incorrect

Which of the following is not used to describe those who attack computer systems?

a. Threat actor

b. Attacker

c. Malicious agent

d. Hacker

Hide Feedback

Correct

Which of the following is not true regarding security?

a. Security is a process.

b. Security is a war that must be won at all costs.

c. Security is a goal.

d. Security includes the necessary steps to protect from harm.

Hide Feedback

Correct

Luna is reading a book about the history of cybercrime. She read that the very first cyberattacks that occurred were mainly for what purpose?

a. Fortune

b. Fame

c. Personal security

d. Financial gain

Hide Feedback

Correct

Which of the following ensures that only authorized parties can view protected information?

a. Confidentiality

b. Authorization

c. Integrity

d. Availability

Hide Feedback

Incorrect

Which type of hacker will probe a system for weaknesses and then privately provide that information back to the organization?

a. Gray hat hackers

b. Red hat hackers

c. White hat hackers

d. Black hat hackers

Hide Feedback

Correct

omplete this definition of information security: That which protects the integrity, confidentiality, and availability of information _____.

a. through a long-term process that results in ultimate security

b. on electronic digital devices and limited analog devices that can connect via the Internet or through a local area network

c. through products, people, and procedures on the devices that store, manipulate, and transmit the information

d. using both open-sourced as well as supplier-sourced hardware and software that interacts appropriately with limited resources

Hide Feedback

Correct

Which of the following groups have the lowest level of technical knowledge?

a. Script kiddies

b. State actors

c. Insiders

d. Hactivists

Hide Feedback

Correct

Which of the following groups use Advanced Persistent Threats?

a. Brokers

b. State actors

c. Shadow IT

d. Criminal syndicates

Hide Feedback

Correct

Which of the following is not a reason why a legacy platform has not been updated?

a. No compelling reason for any updates

b. An application only operates on a specific OS version

c. Limited hardware capacity

d. Neglect

Hide Feedback

Correct

How do vendors decide which should be the default settings on a system?

a. Those that are the most secure are always the default settings.

b. The default settings are always mandated by industry standards.

c. There is no reason behind why specific default settings are chosen.

d. Those settings that provide the means by which the user can immediately begin to use the product.

Hide Feedback

Correct

Which tool is most commonly associated with state actors?

a. Unlimited Harvest and Secure Attack (UHSA)

b. Advanced Persistent Threat (APT)

c. Closed-Source Resistant and Recurrent Malware (CSRRM)

d. Network Spider and Worm Threat (NSAWT)

Hide Feedback

Correct

What is the term used to describe the connectivity between an organization and a third party?

a. Resource migration

b. System integration

c. Network layering

d. Platform support

Hide Feedback

Correct

What is an objective of state-sponsored attackers?

a. To amass fortune over of fame

b. To spy on citizens

c. To right a perceived wrong

d. To sell vulnerabilities to the highest bidder

Hide Feedback

Correct

Which of the following is not an issue with patching?

a. Few patches exist for application software

b. Patches address zero-day vulnerabilities

c. Difficulty patching firmware

d. Delays in patching OSs

Hide Feedback

Correct

Which of the following is not a recognized attack vector?

a. Supply chain

b. On-prem

c. Social media

d. Email

Hide Feedback

Correct

What is the category of threat actors that sell their knowledge of vulnerabilities to other attackers or governments?

a. Brokers

b. Competitors

c. Resource managers

d. Cyberterrorists

Hide Feedback

Correct

Ebba has received a new initiative for her security team to perform an in-house penetration test. What is the first step that Ebba should undertake?

a. Planning

b. Documentation

c. Approval

d. Budgeting

Hide Feedback

Correct

Which of the following is NOT a characteristic of a penetration test?

a. Finds deep vulnerabilities

b. Performed occasionally

c. May use internal employees or external consultants

d. Automated

Hide Feedback

Correct

Linnea has requested to be placed on the penetration testing team that scans for vulnerabilities to exploit them. Which team does she want to be placed on?

a. White Team

b. Red Team

c. Blue Team

d. Purple Team

Hide Feedback

Correct

Lykke's supervisor is evaluating whether to use internal security employees to conduct a penetration test. Lykke does not consider this a good idea and has created a memo with several reasons they should not be used. Which of the following would NOT be part of that memo?

a. The employees could have inside knowledge of the network that would give them an advantage.

b. They would have to stay overnight to perform the test.

c. Employees may have a reluctance to reveal a vulnerability.

d. There may be a lack of expertise.

Hide Feedback

Correct

What penetration testing level name is given to testers who have no knowledge of the network and no special privileges?

a. Purple box

b. Black box

c. Gray box

d. White box

Hide Feedback

Correct

Which of the following is NOT an advantage of crowdsourced penetration testing?

a. Less expensive

b. Conducting multiple tests simultaneously

c. Faster testing

d. Ability to rotate teams

Hide Feedback

Correct

Tilde is working on a contract with the external penetration testing consultants. She does not want any executives to receive spear-phishing emails. Which rule of engagement would cover this limitation?

a. Targets

b. Scope

c. Exploitation

d. Limitations and exclusion

Hide Feedback

Correct

Which is the final rule of engagement that would be conducted in a pen test?

a. Exploitation

b. Reporting

c. Cleanup

d. Communication

Hide Feedback

Correct

What is another name for footprinting?

a. Active reconnaissance

b. High-level reconnaissance

c. Revealing

d. Modeling

Hide Feedback

Correct

When researching how an attack recently took place, Nova discovered that the threat actor, after penetrating the system, started looking to move through the network with their elevated position. What is the name of this technique?

a. Jumping

b. Lateral movement

c. Twirling

d. Squaring up

Hide Feedback

Correct

What are documents that are authored by technology bodies employing specialists, engineers, and scientists who are experts in those areas?

a. White notebooks

b. Blue papers

c. Requests for comments (RFCs)

d. Cybersecurity feeds

Hide Feedback

Correct

Which of the following is NOT a general information source that can provide valuable in-depth information on cybersecurity?

a. Vendor websites

b. Local industry groups

c. Twitter

d. Conferences

Hide Feedback

Correct

Which of the following is a standard for the handling of customer card information?

a. OSS XRS

b. RMR CDC

c. DRD STR

d. PCI DSS

Hide Feedback

Correct

Which of the following are developed by established professional organizations or government agencies using the expertise of seasoned security professionals?

a. Regulations

b. White papers

c. Legislation

d. Benchmarks

Hide Feedback

Correct

Which group is responsible for the Cloud Controls Matrix?

a. CIS

b. CSA

c. NIST

d. OSINT

Hide Feedback

Correct

Tuva's supervisor wants to share a recent audit outside the organization. Tuva warns him that this type of audit can only be read by those within the organization. What audit does Tuva's supervisor want to distribute?

a. SSAE SOC 3 Type IV

b. SSAE SOC 3.2 Type X

c. SSAE SOC 2 Type II

d. SSAE SOC 2 Type III

Hide Feedback

Correct

Which ISO contains controls for managing and controlling risk?

a. ISO 31000

b. ISO XRS

c. ISO 271101

d. ISO 27555

Hide Feedback

Correct

Which premise is the foundation of threat hunting?

a. Attacks are becoming more difficult.

b. Threat actors have already infiltrated our network.

c. Cybercrime will only increase.

d. Pivoting is more difficult to detect than ever before.

Hide Feedback

Correct

Which of the following can automate an incident response?

a. SOSIA

b. SOAR

c. SIEM

d. CVCC

Hide Feedback

Correct

Which of the following is not something that a SIEM can perform?

a. User behavior analysis

b. Sentiment analysis

c. Log aggregation

d. Incident response

Hide Feedback

Correct