FMA

Question 1

Which traits do all malware—viruses, worms, and Trojan—share in common? (Choose all that apply.)

a) They originate from outside the network.
b) They use or damage computer resources.
c) They enter computer systems, usually without the user’s knowledge or intent.
d) They release hidden payloads designed to damage hard drives and corrupt data files.

Answer 1

c)They enter computer systems, usually without the user’s knowledge or intent.

Question 2

What is the defining characteristic of Trojan horse programs?

a) They appear to be harmless but hide malicious intent.
b) They are not intended to cause harm and only make fun of the user.
c) They replicate and attach themselves to host files.
d) They do not require user intervention to spread or function

Answer 2

a)They appear to be harmless but hide malicious intent.

Question 3

Why are worms described as “self contained?”

a) Worms do not replicate.
b) Worms do not spread to other computer systems.
c) Worms do not require a host file to spread.
d) Worms do not carry payloads.

Answer 3

c)Worms do not require a host file to spread.

Question 4

How does a mass mailing worm spread? (Choose all that apply.)

a) Create a copy of itself in a directory
b) Create a registry entry
c) Get email addresses
d) Executes a program

Answer 4

c)Get email addresses

Question 5

How are damages arising from computer threats categorized?

a) Lost productivity, recovery and cleanup costs, lost data and damaged reputations
b) Lost productivity, increased vulnerability to future virus attacks, loss of confidential data, loss of other data
c) Network downtime, decreased availability of computer resources, disk damage, and problems in virus isolation
d) Network disconnection, increased errors in the network, and damaged reputation due to loss of customer data

Answer 5

a)Lost productivity, recovery and cleanup costs, lost data and damaged reputations

Question 6

Which form of grayware has infected your computer if your keystroke data is logged?

a) Adware
b) Browser Helper Object
c) Keylogger
d) Trackware

Answer 6

c)Keylogger

Question 7

Which form of grayware is used to crack software copyright protection keys?

a) Browser Helper Object
b) Keylogger
c) Keygen
d) Spyware

Answer 7

c)Keygen

Question 8

Which form of grayware tries to tempt users to use create a connection to the Internet using a telephone line and connection fee?

a) Spyware
b) Dialer
c) Hacking Tool
d) Joke Program

Answer 8

b)Dialer

Question 9

Which computer behavior would make you suspect that you might be installing grayware?(Choose all that apply.)

a) Additional programs are also being installed at the time of installation
b) ActiveX is being used as an installer
c) A Browser Helper Object (BHO) plug-in gets installed on the browser
d) The browser security settings remain the same

Answer 9

a) Additional programs are also being installed at the time of installation
b) ActiveX is being used as an installer
c) A Browser Helper Object (BHO) plug-in gets installed on the browser

Question 10

Which computer behavior would make you suspect that you are running grayware on a machine without your consent? (Choose all that apply)

a) Advertising banners are displayed
b) The computer performs an auto-restart
c) The system becomes unstable
d) The computer disconnects from the Internet

Answer 10

a) Advertising banners are displayed
b) The computer performs an auto-restart
c) The system becomes unstable

Question 11

How can a mail delivery error be a threat to a user?

a) The message could contain malware attachments that cause problems if the user clicks on it.
b) The message may be delayed.
c) The error may actually be a Man-in-the-Middle attack.
d) The email message automatically poses a threat

Answer 11

a)The message could contain malware attachments that cause problems if the user clicks on it.

Question 12

What is the defining characteristic of an Account Information social engineering ploy?

a) The user is asked to click on an attachment to view false account information.
b) The user will not be able to identify the threat.
c) The user is asked to click on a link that takes them to a site intended to get account information.
d) The user downloads account software and infects the computer with malware

Answer 12

c)The user is asked to click on a link that takes them to a site intended to get account information.

Question 13

What type of social engineering and malware design take advantage of a user’s guilt?

a) Accusatory
b) Free Stuff
c) Generic Conversations
d) Virus Alert

Answer 13

a)Accusatory

Question 14

What graphical technique is used to prevent spammers from attacking a Website and allow legitimate users access to information?

a) Graphical User Interface (GUI)
b) A captcha
c) A browser plug-in
d) Adware pop-up

Answer 14

b)A captcha

Question 15

What message characteristics indicate that you are the recipient of a Phishing attack? Choose all that apply)

a) Email address
b) Greeting does not have a first and last name
c) Typing errors in the messages from businesses
d) Alarmist tone in the message

Answer 15

b) Greeting does not have a first and last name
c) Typing errors in the messages from businesses
d) Alarmist tone in the message

Question 16

Which of the following is not classified as a stage of Advanced Persistent Threats?

a) Data Exfiltration
b) Reconnaissance
c) Infection
d) Command and Control Communication

Answer 16

c)Infection

Question 17

Which stage can benefit from the use of Backdoors?

a) Lateral Movement
b) Data Exfiltration
c) Command and Control Communication
d) All of the above

Answer 17

d)All of the above

Question 18

What is the type of social engineering attack that uses customized and contextually relevant messages that are sent to a specific target?

a) Phishing Spam
b) Clickjacking
c) Spear Phishing
d) Watering Hole Attacks

Answer 18

c)Spear Phishing

Question 19

In what stage can an attacker ensure persistence in the network for possible future infiltrations?

a) Lateral Movement
b) Command and Control Communication
c) Point of Entry
d) Data/Asset Discovery

Answer 19

a)Lateral Movement

Question 20

Which of the following can be used to transfer data during Data Exfiltration?

a) Shared Folders
b) BitTorrent
c) Windows Management Instrumentation
d) None of the Above

Answer 20

c)Windows Management Instrumentation

Question 21

Why does the Trend Micro Smart Protection Network (SPN) use in-the-cloud technologies for monitoring threats?

e) That is where the threats are located
f) Threats can be scanned more quickly there
g) The technologies are developed for in-the-cloud locations
h) It is faster to use Trend Micro’s updated solutions in the cloud, than to perform the daily updates on a machine to protect against the new Web threats of the day

Answer 21

h)It is faster to use Trend Micro’s updated solutions in the cloud, than to perform the daily updates on a machine to protect against the new Web threats of the day

Question 22

Which Trend Micro Smart Protection Network (SPN) technology performs a data crawl of each file hosted on a Web page to confirm the reputation of that page?

e) File reputation technology
f) Web reputation technology
g) Email reputation technology
h) Correlation technology

Answer 22

e)File reputation technology

Question 23

Which Trend Micro solution provides security with the following: anti-spyware, anti-Spam, antivirus, and anti-Phishing?

e) HouseCall Server Edition
f) Mobile Security
g) OfficeScan
h) Network VirusWall Enforcer

Answer 23

f) Mobile Security

g) OfficeScan

Question 24

What characteristic of a web site is being checked when your security software checks the “In the Cloud” layer?

e) Firewall settings
f) Internet connection
g) Website reputation
h) URL validity

Answer 24

g)Website reputation

Question 25

What does Trend Protect help you avoid? (Choose all that apply)

e) Web pages with unwanted content*
f) Web pages that require too much bandwidth
g) Web pages with downloads
h) Web pages with hidden threats

Answer 25

e) Web pages with unwanted content*

h) Web pages with hidden threats