5. Security

Question 1

What is the difference between a virus and a worm?

Answer 1

A virus requires user interaction to spread, while a worm spreads automatically across networks.

Question 2

What is the purpose of two-factor authentication (2FA)?

Answer 2

Enhances security by requiring two forms of verification, such as a password and a mobile code.

Question 3

What is the role of a firewall?

Answer 3

Monitors and controls incoming and outgoing network traffic based on security rules.

Question 4

What does encryption do?

Answer 4

Converts data into a coded format to protect it from unauthorized access.

Question 5

What is the principle of least privilege (PoLP)?

Answer 5

A security concept where users are granted the minimum permissions needed to perform their tasks.

Question 6

What is the purpose of a firewall?

Answer 6

Monitors and controls incoming and outgoing network traffic based on security rules.

Question 7

What is two-factor authentication (2FA)?

Answer 7

A security method that requires two forms of verification, such as a password and a phone verification code.

Question 8

What is the difference between symmetric and asymmetric encryption?

Answer 8

Symmetric encryption uses one key for encryption and decryption, while asymmetric encryption uses a public and private key pair.

Question 9

What is the purpose of a VPN (Virtual Private Network)?

Answer 9

Encrypts internet traffic to provide secure communication and anonymity online.

Question 10

What is a phishing attack?

Answer 10

A type of cyberattack where attackers trick users into providing sensitive information via fraudulent emails or websites.

Question 11

What is a brute force attack?

Answer 11

A hacking method that tries all possible password combinations to gain unauthorized access.

Question 12

What is the purpose of antivirus software?

Answer 12

Detects, prevents, and removes malware from a computer or network.

Question 13

What is social engineering?

Answer 13

A tactic where attackers manipulate individuals into revealing confidential information.

Question 14

What is the role of encryption in data security?

Answer 14

Protects data by converting it into unreadable formats accessible only with a decryption key.

Question 15

What is a zero-day vulnerability?

Answer 15

A software flaw unknown to the vendor, often exploited before a fix is available.

Question 16

What is the difference between a worm and a virus?

Answer 16

A worm spreads independently, while a virus requires a host file to spread.

Question 17

What is multi-factor authentication (MFA)?

Answer 17

A security system requiring multiple verification methods, such as something you know, have, or are.

Question 18

What is ransomware?

Answer 18

Malware that locks users out of their data until a ransom is paid.

Question 19

What is the difference between a public and private key in encryption?

Answer 19

A public key encrypts data, while a private key decrypts it.

Question 20

What is a man-in-the-middle (MITM) attack?

Answer 20

A cyberattack where an attacker intercepts and alters communication between two parties.

Question 21

What is a digital certificate?

Answer 21

A certificate issued by a trusted authority to verify the identity of a website or user.

Question 22

What is the purpose of penetration testing?

Answer 22

Identifies vulnerabilities in a system or network by simulating cyberattacks.

Question 23

What is a DDoS attack?

Answer 23

A Distributed Denial of Service attack overwhelms a target with traffic, rendering it inaccessible.

Question 24

What is the purpose of a security policy in an organization?

Answer 24

Defines rules and procedures for maintaining security and protecting assets.

Question 25

What is the purpose of a hash function in cybersecurity?

Answer 25

Converts data into a fixed-length string, ensuring data integrity by detecting changes.

Question 26

What is the purpose of a firewall?

Answer 26

Filters network traffic to protect systems from unauthorized access.

Question 27

What is the difference between symmetric and asymmetric encryption?

Answer 27

Symmetric encryption uses the same key for encryption and decryption, while asymmetric encryption uses a public and a private key.

Question 28

What is two-factor authentication (2FA)?

Answer 28

A security process that requires two forms of identification before granting access to a system or service.

Question 29

What is a VPN (Virtual Private Network)?

Answer 29

A secure, encrypted connection between a device and a network, often used to protect internet traffic.

Question 30

What is a DDoS (Distributed Denial of Service) attack?

Answer 30

An attack that overwhelms a system with traffic from multiple sources, causing it to become unavailable.

Question 31

What is a man-in-the-middle (MITM) attack?

Answer 31

An attack where the attacker intercepts communication between two parties without their knowledge.

Question 32

What is the purpose of an antivirus program?

Answer 32

Detects, prevents, and removes malicious software (malware) from a computer or network.

Question 33

What is the difference between a virus and a worm?

Answer 33

A virus attaches itself to a program or file, while a worm is a standalone malicious program that spreads across networks.

Question 34

What is a Trojan horse?

Answer 34

Malicious software disguised as legitimate software that performs harmful actions when executed.

Question 35

What is the principle of least privilege (PoLP)?

Answer 35

A security principle where users and applications are given the minimum level of access required to perform their tasks.

Question 36

What is a zero-day vulnerability?

Answer 36

A security flaw that is unknown to the software vendor and can be exploited by attackers.

Question 37

What is phishing?

Answer 37

A type of social engineering attack where an attacker attempts to trick individuals into revealing sensitive information.

Question 38

What is multi-factor authentication (MFA)?

Answer 38

A security system that requires multiple forms of authentication (e.g., password, fingerprint, or SMS code).

Question 39

What is a brute force attack?

Answer 39

An attack that tries every possible password combination until the correct one is found.

Question 40

What is a dictionary attack?

Answer 40

A type of brute force attack that uses a predefined list of possible passwords.

Question 41

What is the purpose of a Security Information and Event Management (SIEM) system?

Answer 41

Monitors and analyzes security events in real-time to detect and respond to threats.

Question 42

What is the role of encryption in securing data?

Answer 42

Protects data by converting it into a format that cannot be read without the proper decryption key.

Question 43

What is an SSL/TLS certificate?

Answer 43

A digital certificate that provides secure, encrypted communication over the internet.

Question 44

What is the difference between a public and private key in asymmetric encryption?

Answer 44

A public key is used to encrypt data, while a private key is used to decrypt it.

Question 45

What is a hash function?

Answer 45

A one-way function that converts data into a fixed-length hash value, used for data integrity checks.

Question 46

What is a rootkit?

Answer 46

A type of malware designed to hide its presence on a system and maintain privileged access.

Question 47

What is a sandbox in cybersecurity?

Answer 47

A controlled, isolated environment used to test or analyze suspicious programs without affecting the rest of the system.

Question 48

What is the purpose of an Intrusion Detection System (IDS)?

Answer 48

Monitors network traffic for signs of unauthorized access or malicious activity.

Question 49

What is an intrusion prevention system (IPS)?

Answer 49

An active security system that detects and prevents potential security threats in real-time.

Question 50

What is a digital signature?

Answer 50

A cryptographic technique used to verify the authenticity and integrity of a digital message or document.

Question 51

What is a vulnerability assessment?

Answer 51

The process of identifying, evaluating, and prioritizing security vulnerabilities in a system or network.

Question 52

What is a penetration test (pen test)?

Answer 52

A simulated attack on a system to identify vulnerabilities and weaknesses in the security controls.

Question 53

What is a security patch?

Answer 53

A software update designed to fix security vulnerabilities or bugs in a program.

Question 54

What is the role of an endpoint protection system?

Answer 54

Protects devices such as computers, smartphones, and tablets from malware and unauthorized access.

Question 55

What is the principle of defense in depth?

Answer 55

A layered security approach where multiple defense mechanisms are employed to protect systems from threats.

Question 56

What is a public key infrastructure (PKI)?

Answer 56

A framework for managing digital keys and certificates to enable secure communication and authentication.

Question 57

What is a honeypot?

Answer 57

A decoy system or service designed to attract and trap cyber attackers in order to study their behavior.

Question 58

What is a security audit?

Answer 58

A comprehensive review of an organization’s security policies, practices, and systems to identify potential risks.

Question 59

What is the purpose of a firewall rule?

Answer 59

Specifies the conditions under which network traffic is allowed or blocked by a firewall.

Question 60

What is data encryption at rest?

Answer 60

Encrypting data stored on a device or server to protect it from unauthorized access when it is not being transmitted.

Question 61

What is data encryption in transit?

Answer 61

Encrypting data while it is being transmitted over a network to prevent unauthorized access or interception.

Question 62

What is the role of the security operations center (SOC)?

Answer 62

A team that monitors and responds to security threats in real-time.

Question 63

What is a whitelist?

Answer 63

A list of approved entities (e.g., IP addresses, email addresses) that are trusted and allowed to access a system or network.

Question 64

What is a blacklist?

Answer 64

A list of known malicious entities (e.g., IP addresses, websites) that are blocked from accessing a system or network.

Question 65

What is the difference between a public and private network?

Answer 65

A public network is accessible to everyone, while a private network is restricted to authorized users.

Question 66

What is the purpose of an access control list (ACL)?

Answer 66

Defines the permissions and access rights for users or devices to resources in a system or network.

Question 67

What is a cross-site scripting (XSS) attack?

Answer 67

An attack where malicious code is injected into a web page, which is then executed by the victim�s browser.

Question 68

What is a cross-site request forgery (CSRF) attack?

Answer 68

An attack that tricks the victim into performing an action on a website where they are authenticated, without their consent.

Question 69

What is a session hijacking attack?

Answer 69

An attack where the attacker steals a valid session token to impersonate the victim and gain unauthorized access.

Question 70

What is the purpose of a password manager?

Answer 70

A tool that securely stores and manages passwords for websites and applications.

Question 71

What is a Zero Trust security model?

Answer 71

A security approach that assumes no trust for any user or device, requiring authentication and authorization for all access requests.

Question 72

What is a certificate authority (CA)?

Answer 72

An entity that issues and manages digital certificates, ensuring the authenticity and integrity of public keys.

Question 73

What is an incident response plan?

Answer 73

A documented approach for responding to security incidents, ensuring that the organization can quickly and effectively mitigate damage.

Question 74

What is a remote wipe?

Answer 74

A feature that allows an administrator to erase data from a mobile device remotely in case it is lost or stolen.

Question 75

What is the role of security awareness training?

Answer 75

Educates employees and users on best practices for protecting sensitive information and avoiding security threats.

Question 76

What is an advanced persistent threat (APT)?

Answer 76

A prolonged and targeted cyberattack aimed at stealing sensitive information or compromising an organization�s network.

Question 77

What is a brute force attack?

Answer 77

An attack where an attacker attempts to gain access by trying every possible password or encryption key.

Question 78

What is a denial of service (DoS) attack?

Answer 78

An attack that aims to make a service or network resource unavailable by overwhelming it with traffic or requests.

Question 79

What is the difference between black hat, white hat, and gray hat hackers?

Answer 79

Black hat hackers engage in illegal activities, white hat hackers work ethically to protect systems, and gray hat hackers may operate in between the two.

Question 80

What is an SSL/TLS handshake?

Answer 80

The process of establishing a secure connection between a client and server using SSL/TLS protocols.

Question 81

What is the purpose of an audit trail?

Answer 81

A record of actions and events that helps track access to sensitive data and can be used for forensic analysis in case of a security breach.

Question 82

What is the difference between encryption and hashing?

Answer 82

Encryption converts data into a readable format with a decryption key, while hashing generates a fixed-length representation of data that cannot be reversed.

Question 83

What is the purpose of an access token?

Answer 83

An object that represents the authorization granted to a user or application to access a specific resource.

Question 84

What is a security patch management process?

Answer 84

The process of identifying, testing, and applying security patches to software and systems to fix vulnerabilities.

Question 85

What is a security token?

Answer 85

A physical or digital device that generates a one-time passcode for authentication purposes.

Question 86

What is endpoint detection and response (EDR)?

Answer 86

A security solution that monitors and responds to threats across endpoint devices such as laptops, desktops, and servers.

Question 87

What is social engineering?

Answer 87

The manipulation of individuals into revealing confidential information or performing actions that compromise security.

Question 88

What is the difference between authentication and authorization?

Answer 88

Authentication verifies a user’s identity, while authorization determines what actions the user is allowed to perform.

Question 89

What is the purpose of a patch management system?

Answer 89

To ensure that software updates, including security patches, are applied in a timely and effective manner.

Question 90

What is an SSL/TLS certificate expiration date?

Answer 90

The date after which an SSL/TLS certificate is no longer valid and must be renewed to ensure secure communication.

Question 91

What is a VPN kill switch?

Answer 91

A security feature that disconnects a device from the internet if the VPN connection is lost, preventing data from being exposed.

Question 92

What is a brute-force password attack?

Answer 92

An attack where all possible combinations of passwords are tried until the correct one is found.

Question 93

What is a botnet?

Answer 93

A network of infected devices controlled by cybercriminals to launch coordinated attacks, often for DDoS or spam purposes.

Question 94

What is phishing with spoofing?

Answer 94

A phishing attack where the attacker masquerades as a trusted entity, often by modifying the sender’s address to appear legitimate.

Question 95

What is the purpose of a VPN concentrator?

Answer 95

A device that manages multiple VPN connections and ensures secure communication between remote users and a network.

Question 96

What is a honeynet?

Answer 96

A network of intentionally vulnerable systems designed to lure cyber attackers and gather intelligence about their tactics.

Question 97

What is the purpose of a security patch release cycle?

Answer 97

To regularly provide and update security patches to fix vulnerabilities and ensure systems are protected.

Question 98

What is a Digital Rights Management (DRM) system?

Answer 98

Technology used to control and restrict the use, copying, and distribution of digital content.

Question 99

What is a ransomware attack?

Answer 99

A type of malware that encrypts a victim’s files and demands payment for the decryption key.

Question 100

What is a Trojan-backdoor?

Answer 100

A type of Trojan horse malware that opens a backdoor into a system, allowing unauthorized access.