Exam A

Question 1

Someone or something forges the sender’s information and pretends to be a legitimate source, for the purpose of gaining access to personal information, acquiring money, spreading malware, or stealing data. If a DNS server has been modified to hand out the IP address of a different server, then it’s ** the IP address of the attacker.

Answer 1

Spoofing

Question 2

Attackers place themselves between two devices (often a web browser and a web server) and intercept or modify communications between the two. The attackers can then collect information as well as impersonate either of the two agents.

Answer 2

On-Path

Question 3

When multiple third-parties work together to create a service outage.

Answer 3

DDoS (Distributed Denial of Service Attack)

Question 4

When a service is unavailable due to the effects of a third-party.

Answer 4

DoS Denial of Service

Question 4

Threat that seems real but doesn’t actually exist.

Answer 4

Hoax

Question 5

Method that gathers information without direct interaction with the target system using search engines and social networking sites.

Answer 5

Passive Footprinting

Question 6

Primary protocol used to send data between a web browser and a website. Encrypted in order to increase security data transfer and used for transmitting sensitive data such as login into a bank account, email service or health insurance provider.

Answer 6

HTTPS

Question 7

When a pen- testing team is given only SOME information.

Answer 7

Partially Known environment (Gray Box)

Question 8

Threat actor motivated by nationalism and tasked with gaining secrets from or disrupting other nations via cyber means.

Answer 8

Nation State Threat Actor

Question 9

Involves splitting and distributing data across different partitions to enhance security and optimize performance.

Answer 9

Data partition

Question 10

A system that provides a short term use for data storage.

Answer 10

Temporary File System

Question 11

Single piece of hardware that combines several functionalities such as printing, scanning, copying, and sometimes faxing into one unit.

Answer 11

MFD (Multi-Function Device)

Question 12

Refers to the network of physical objects or things embedded with sensors, software, and other technologies that enable them to connect and exchange data with other devices and systems over the internet.

Answer 12

IoT

Question 13

OS designed to handle and respond to events or data within a strict time constraint.

Answer 13

RTOS (Real Time Operating Systems)

Question 14

Integrated circuit that combines many high level functions of an electronic device onto a single chip instead of using separate components mounted to a motherboard.

Answer 14

SoC (System on a Chip)

Question 15

international standard for privacy information management. It provides guidelines to establish, implement, maintain, and continually improve a Privacy Information Management System (PIMS).

Answer 15

ISO 27701 (International Organization for Standardization)

Question 16

Set of technologies and practices that enable organizations to collect security threat data and alerts from various sources, automate incident response actions, and orchestrate workflows across different security tools and teams.

Answer 16

SOAR (Security Orchestration, Automation, and Response)

Question 17

System that manages digital keys and digital certificates that verify authenticity of the entities on a network.

Answer 17

PKI (Public Key Infrastructure)

Question 18

Way of linking different identity management systems together. Allows users from one organization to access resources of another organization without needing separate credentials.I.E. Using your gmail account to log into a different website.

Answer 18

Federation

Question 19

Average time between component failures during operation. Used to predict the time between one failure and the next. Example: best to describe how often the firewall hardware is expected to fail between repairs.

Answer 19

MTBF - Mean Time Between Failures

Question 20

Maximum acceptable amount of time to restore a system after failure. Time it takes to recover from an outage.

Answer 20

RTO - Recovery Time Objective

Question 21

Average time until a component fails and is not repairable. Used primarily for non-repairable systems.

Answer 21

MTTF - Mean Time to Failure

Question 22

Attackers target a specific group of individuals by compromising websites that the group is known to frequent.

Answer 22

Watering Hole Attack

Question 23

Security solution that helps organizations manage and secure their use of cloud services. Two common functions are visibility into application use and data security policy use.

Answer 23

CASB - Cloud Access Security Broker

Question 24

Occurs when two processes occur at similar times, usually with unexpected results

Answer 24

Race Condition

Question 25

Method used by attackers to insert malicious code into a running application. Manipulates the library as the attack vector.

Answer 25

DLL Injection - Dynamic Link Library

Question 26

Type of controls intended to discourage individuals from performing an unwanted activity by making them aware of the consequences.

Answer 26

Deterrent Controls

Question 27

Control alternative measures put in place to meet security requirements when the primary control is not feasible.

Answer 27

Compensating Controls

Question 28

Discussion-based session where the security team members meet to discuss their roles and responses during an emergency simulated disaster.

Answer 28

Tabletop Exercise

Question 29

Describes the ongoing relationship between between the IT team and business customer.

Answer 29

Stakeholder management

Question 30

Security measure for encrypting all data stored in a device.

Answer 30

FDE - Full Disk Encryption

Question 31

Provides data protection of a storage device using full-disk encryption in the drive hardware.

Answer 31

SED - Self Encrypting Drive

Question 32

Access control system that assigns labels to objects in an operating system.

Answer 32

MAC

Question 33

Provides a centralized management system for all mobile devices. From this central control security administrators can set policies for many different types of mobile devices.

Answer 33

MDM - Mobile Device Manager

Question 34

A device commonly purchased by the corporation and allows the use of the mobile device for both business and personal use.

Answer 34

COPE - Corporately Owned and Personally Enabled

Question 35

Allows an organization to securely separate user data from company data.

Answer 35

Containerization

Question 36

Separates the applications from the mobile device.

Answer 36

VDI (Virtual Desktop Infrastructure)

Question 37

Test result that fails to detect an issue when one actually exists.

Answer 37

False Negative

Question 38

Temporary, time-based code generated by an app on a user’s device. It changes every 30-60 seconds and is used as a second factor in two-factor authentication. This is an additional authentication control.

Answer 38

TOPT - Time-Based One-Time Password

Question 39

Physical card with embedded integrated circuits used for secure authentication. Users insert the card into a reader and often enter a PIN to log in.

Answer 39

Smart Card

Question 40

Network access control protocol that requires individual user authentication using a username and password (or other credentials). This is like each person having their own unique key to enter a building. Each user must prove their identity with a unique username and password.

Answer 40

802.1X

Question 41

Uses a shared password for all users to access the network. Think of this like a shared secret handshake that everyone uses to join a club. Everyone knows the same handshake (password).

Answer 41

WPA2-PSK (Wi-Fi Protected Access 2 - Pre-Shared Key)

Question 42

Simplified method for connecting devices to a Wi-fi network using a PIN or a physical button press. This is like pressing a button to get instant access, no unique keys required.

Answer 42

WPS (Wi-fi Protected Setup)

Question 43

Refers to the encryption method used by WPA2 (Advanced encryption standard) and ensures that the data transmitted over the network is encrypted and secure but does not specify the authentication method. This is like using a strong lock on the door to keep the building secure, but it doesn’t determine how you prove you should be allowed in.

Answer 43

WPA2-AES

Question 44

Command that will display information at the end of a file.

Answer 44

tail

Question 45

Command that will retrieve a web page and display it as HTML at the command line.

Answer 45

curl

Question 46

Command that can be use to search for a specific string through a file display in html on command line.

Answer 46

grep

Question 47

Type of access control model that allows the owner of the resource to control who has access.

Answer 47

DAC - Discretionary Access Control

Question 48

Type of access control model that combines many different parameters to determine if a user has access to a resource.

Answer 48

ABAC - Attribute-Access Control

Question 49

Type of access control that assigns rights and permissions based on the role of a user. These roles are usually assigned by a group.

Answer 49

RBAC - Role-based access control

Question 50

Social engineering attack that asks for personal information through SMS or text.

Answer 50

Smishing