622

Question 1

A _____________is a collection of programs that grants a hacker admin access to a computer or network. The hacker first gains access to a single system, and then uploads the _________to the hacked system. An example of a _________ is a ___________module that modifies file system operations. —

Answer 1

rootkit / rootkit / rootkit / system-level kernel

Question 2

____________is a software application that displays advertisements while the application is executing. —

Answer 2

Adware

Question 3

Some adware is also __________if it monitors your Internet usage and personal information. Some adware will even allow credit card information theft. —

Answer 3

spyware

Question 4

__________ often uses tracking cookies to collect and report a user’s activities. Not all _________ is adware, and not all adware is ________. To define a program as _________requires that your activities are monitored and tracked; to define a program as adware requires that advertisements are displayed. —

Answer 4

Spyware

Question 5

A worm is a program that spreads itself through —

Answer 5

network connections.

Question 6

Malware is the term used to describe a group of malicious software applications that include: —

Answer 6

Viruses     
Worms     
Spyware     
Trojans     
Rootkits     
Backdoors     
Logic bombs     
Botnets

Question 7

Biometric locks offer the most protection from loss or theft of the access device. They are based on the security concept of —

Answer 7

something you are

Question 8

Biometrics match a users uniquely identifiable physical attribute to a previously stored value. They are among the most

Answer 8

secure physical security measures

Question 9

Server locks restrict access to the devices in the server cabinet. They can be locked through a key in the same manner that door —

Answer 9

locks can be secured

Question 10

USB locks are USB flash drives that contain an ______________that unlocks the computer. When the USB drive is inserted into the port, the computer is unlocked. When the USB drive is removed, the computer is locked. —

Answer 10

electronic key

Question 11

Key fobs contain a hardware token and are often used for______________ authentication. They are easily lost or stolen. —

Answer 11

Near-Field Communications (NFC

Question 12

You should deploy biometrics, smart cards, and strong passwords. This covers three different factors of authentication: –

Answer 12

something you are
something you have
something you know

Question 13

Biometrics devices help verify users’ identities against unique physical characteristics. Biometric devices include —

Answer 13

retinal scanners
hand scanners
fingerprint.

Question 14

Smart cards, which are a type of identification badge, are used to give people access to buildings, doors and computers and parking lots. Smart cards are inserted into a computer or a smart card reader. Although you cannot duplicate them, they can be easily stolen, so modern smart cards have users enter —

Answer 14

passwords or PINs to activate them.

Question 15

Usernames, strong passwords, and a PIN are all things you know, so this solution would not be considered —

Answer 15

multifactor authentication.

Question 16

Smart cards, usernames, and strong passwords only include two factor types: —

Answer 16

something you have

something you know.

Question 17

Smart cards, usernames, and PINs only include two factor types: —

Answer 17

something you have and something you know.

Question 18

___________________is the greatest threat to the security of mobile devices. —

Answer 18

Theft

Question 19

_____________________would protect a users data in the event of a hard drive crash. Instead of storing the users data , such as the Documents folder on the local hard drive, ______________________points to a network storage location, such as a server or a cloud location.

Answer 19

Folder redirection

Question 20

Login scripts would allow you to assign security policies to users at the time of login, but they would not

Answer 20

inherently protect against a hard drive crash

Question 21

Domain membership, in terms of logical security, would validate that the user, group, or device should be granted —

Answer 21

access to the domain.

Question 22

Organizational units, in terms of logical security, would validate that the user, group, or device should be granted access to the —

Answer 22

appropriate portion of the domain.

Question 23

Other logical security controls including maintenance of Group Policy/updates, and the location of a users —

Answer 23

Home Folder.

Question 24

___________________ is a set of business rules that protect data in use data in motion, and data at rest. _________ is the general term for the technology used to protect a companys information from accidental or intentional leaks

Answer 24

Data Loss Prevention DLP

Question 25

_______________________would only protect data in motion. _________________ prevents unknown devices from forwarding packets. ___________ scan data as it is entering or leaving the network and may be configured to block IP address ranges, domains, or packet content. —

Answer 25

Port security and firewalls

Question 26

Certificates would only protect data in use. A good way to use a certificate for DLP would be to prevent a man-in-the-middle attack by —

Answer 26

requiring the sender or recipient certificate prior to transmitting the data.