Course 1 and 2

Question 1

What are the primary responsibilities of an entry-level security analyst?

Answer 1

Monitor Systems
Protect Information
Search for Weaknesses

Question 2

Performing ___ enables security professionals to review an organization’s security records, activities, and related documents.

Answer 2

security audits.

Question 3

________ identify, analyze, and preserve criminal evidence within networks, computers, and electronic devices.

Answer 3

Digital Forensic Investigators.

Question 4

The purpose of ______ is to protect networks, devices, people, and data from unauthorized access or criminal exploitation.

Answer 4

cybersecurity

Question 5

What occurs during a security audit?

Answer 5

Review of an organization’s security records, activities, and other related documents.

Question 6

An employee receives an email that they believe to be legitimate. They click on ac compromised link within the email. What type of internal threat does this scenario describe?

Answer 6

Accidental

Question 7

What is identity theft?

Answer 7

Stealing personal information to commit fraud while impersonating a victim.

Question 8

Security _____ and event management (SIEM) tools enable security professionals to identify and analyze threats, risks, and vulnerabilities.

Answer 8

Information

Question 9

What is SIEM? Describe.

Answer 9

Security Information and Event Management.

SIEM enables security professionals to identify and analyze threats, risks, and vulnerabilities.

Question 10

A security professional investigates an alert about an unknown user accessing a system within their organization. What is the purpose of computer forensics in this situation?

Answer 10

Identify, analyze, and preserve criminal evidence.

Question 11

What was the Brain Virus?

Answer 11

A virus invented by the Alvi brothers. The intention was to track illegal copies of medical software and prevent pirated licenses.

Unintentionally, the virus would copy itself onto any disk inserted into the infected PC and this spread globally in a few months significantly affecting the global business industry.

Question 12

What was the Morris worm?

Answer 12

1988, developed by Robert Morris. Intent was a program to assess the size of the internet. The program crawled the web and installed itself onto other computers to tally the number of computers that were connected to the internet.

The program failed to keep track of the computers and had already compromised and continued to re-install itself until the computers ran out of memory and crashed. About 6,000 computers were affected, representing 10% of the internet at the time.

Question 13

What are CERTs?

Answer 13

Computer Emergency Response Teams established to respond to computer security incidents.

Question 14

What is LoveLetter?

Answer 14

Created by One De Guzman in 2000.

Malware to steal internet login credentials. Users received an email with the subject line, “I Love You.” Each email contained an attachment labeled, “Love Letter For You.” When the attachment was opened, the malware scanned a user’s address book. Then, it automatically sent itself to each person on the list and installed a program to collect user information and passwords.

This was the first example of social engineering.

Question 15

What are CSIRTs?

Answer 15

Computer Security Incident Response Team.

Question 16

Business Email Compromise (BEC)?

Answer 16

A threat actor sends an email message that seems to be from a known source to make a seemingly legitimate request for information, in order to obtain a financial advantage.

Question 17

Spear Phishing?

Answer 17

A malicious email attack that targets a specific user or group of users. The email seems to originate from a trusted source.

Question 18

Whaling?

Answer 18

A form of spear phishing. Threat actors target company executives to gain access to sensitive data.

Question 19

Fishing?

Answer 19

The exploitation of electronic voice communication to obtain sensitive information or to impersonate a known source.

Question 20

Smishing?

Answer 20

The use of text messages to trick users, in order to obtain sensitive information or to impersonate a known source.

Question 21

Viruses?

Answer 21

Malicious code written to interfere with computer operations and cause damage to data, software, and hardware. A virus attaches itself to programs or documents, on a computer. It then spreads and infects one or more computers in a network.

Question 22

worms?

Answer 22

Malware that can duplicate and spread itself across systems on its own.

Question 23

Ransomware?

Answer 23

A malicious attack where threat actors encrypt an organization’s data and demand payment to restore access.

Question 24

Spyware

Answer 24

Malware that’s used to gather and sell information without consent. Spyware can be used to access devices. This allows threat actors to collect personal data, such as private emails, texts, voice and image recordings, and locations.

Question 25

Social Media Phishing?

Answer 25

A threat actor collects detailed information about their target from social media sites. Then, they initiate an attack.

Question 26

Watering Hole Attack?

Answer 26

A threat actor attacks a website frequently visited by a specific group of users.

Question 27

USB Baiting?

Answer 27

A threat actor strategically leaves a malware USB stick for an employee to find and install, to unknowingly infect a network

Question 28

Physical Social Engineering?

Answer 28

A threat actor impersonates an employee, customer, or vendor to obtain unauthorized access to a physical location.

Question 29

Authority attack?

Answer 29

Threat actors impersonate individuals with power. This is because people, in general, have been conditioned to respect and follow authority figures.

Question 30

Intimidation attack?

Answer 30

Threat actors use bullying tactics. This includes persuading and intimidating victims into doing what they’re told.

Question 31

Consensus/Social Proof attack?

Answer 31

Because people sometimes do things that they believe many others are doing, threat actors use others’ trust to pretend they are legitimate. For example, a threat actor might try to gain access to private data by telling an employee that other people at the company have given them access to that data in the past.

Question 32

Scarcity attack?

Answer 32

A tactic used to imply that goods or services are in limited supply.

Question 33

Familiarity attack?

Answer 33

Threat actors establish a fake emotional connection with users that can be exploited.

Question 34

Trust attack?

Answer 34

Threat actors establish an emotional relationship with users that can be exploited over time. They use this relationship to develop trust and gain personal information.

Question 35

Urgency attack?

Answer 35

A threat actor persuades others to respond quickly and without questioning.

Question 36

What is your number one priority during a breach?

Answer 36

Contain the breach and stop the hemorrhaging of data.

Question 37

What led to the development of CSIRTs?

Answer 37

The Morris worm.

Question 38

Absolute File Path?

Answer 38

The full file path, which starts from the root