all

Question 1

The cybersecurity countermeasure technologies include cloud based technologies . Name the three types of cloud based services which could be implemented for technological safeguard

Answer 1

software as a serivce (SaaS)
infrastructure as a service (IaaS)
virtual security appliance

Question 2

describe one malware that requires users intervention

Answer 2

virus

Question 3

what are the three principles of security

Answer 3

confidentiality , availability , integrity

Question 4

describe one malware that does not require user participation

Answer 4

worms

Question 5

a malware silently carries out malicious operation while peter plays an online game . what malware is that?

Answer 5

Trojan

Question 6

describe four types of spoofing attacks

Answer 6

mac spoofing
ip spoofing
arp spoofing
dns spoofing

Question 7

which malware modifies the operating system to create a backdoor to allow attackers to use the backdoor to access the computer remotely

Answer 7

rootkit

Question 8

the security protocol used in wifi to replace WEP is

Answer 8

WPA

Question 9

explain one software that enables a criminal to obtain information about a user computer activities

Answer 9

spyware

Question 10

what are the three objectives for implementation within the cybersecurity policies and procedures

Answer 10

standards
guidelines
the procedures

Question 11

what are three states of data

Answer 11

data in transit
data at rest
data in process

Question 12

peter comes across a suspicious email from a popular retail store asking him to click a link to claim a prize . what is the possible malware that is accociated with this scenario

Answer 12

phishing

Question 13

four triggers that could awaken a malicious program like logic bomb are

Answer 13

date
time
programs
delete user account

Question 14

what are the three security services for controlling access

Answer 14

authentication
authorization
accounting

Question 15

what workforce framework categorizes cybersecurity work into seven categories.

Answer 15

operate and Maintain
protect and Defend
investigate
collect and operate
analyze
oversight and development
securely provision

Question 16

what are the three classification of hackers?

Answer 16

white hat , black hat, grey hat

Question 17

explain two characteristics of malware in computer systems

Answer 17

disrupt
gain access

Question 18

what tools criminals use to capture data streams over a network?

Answer 18

packet-sniffing

Question 19

name one computer hardware component that logic bomb can destroy.
logic bomb can destroy computer hardware component such as cooling fans , CPU,power supplies , hard drives and _______________

Answer 19

Memory

Question 20

state two type of access control

Answer 20

physical
logical

Question 21

a computer attack that tries to exploit software vulnerabilities that are unknown or undisclosed by the software vendor is known as _____________

Answer 21

Zero-Day attack

Question 22

peter provided his bank account information to a stranger who pretended as a government official to confirm his identity . what is the deception technique that the stranger is using.

Answer 22

pretexting

Question 23

what is another term for piggybacking

Answer 23

tailgating

Question 24

when data goes beyond the limits of a buffer , it is known as _______

Answer 24

buffer overflow

Question 25

describe one malware that attacks a computer system or the data it contains , captive until the target makes a payment

Answer 25

ransomware

Question 26

provide one method of creating ciphertext

Answer 26

any1
transposition
substitution
one-time pad

Question 27

list two types of encryption algorithm and provide one encryption standard for each class

Answer 27

symmetric
AES
asymmetric
ECC

Question 28

list two types of encryption algorithm

Answer 28

symmetric
asymmetric

Question 29

list two protocols that uses asymmetric key algorithms

Answer 29

IKE
SSL
SSH
PGP

Question 30

describe virtual private network

Answer 30

private network
uses a public network/internet
create secure channel

Question 31

name three types of authentication methods

Answer 31

what you know
what you have
who you are

Question 32

define three authorization in access control

Answer 32

controls what a user can
cannot do
after successful authentication

Question 33

provide three types of security controls

Answer 33

deterrent
detective
corrective

Question 34

state three different between symmetric and asymmetric

Answer 34

s. more problematic
harder to manage
a. more secure

Question 35

peter met a lady in the bar who tired to gather information on his company participation in a new government project. describe the non technical deception technique used in this scenario

Answer 35

social engineering

Question 36

describe data masking

Answer 36

1.technology that secures data
2.replacing sensitive information with a non-sensitive looks like the original
3.non sensitive looks like the original

Question 37

provide two data masking techniques

Answer 37

substitution
shuffling

Question 38

what is steganography

Answer 38

conceals data/message
in another file

Question 39

describe three components involved in steganography

Answer 39

embedded data
cover text
stego-key

Question 40

what is data obfuscation

Answer 40

harder to understand
use and practice of data masking
and steganography