Intro to Network Security

Question 1

A user that does not want to be identified while communicating on a network uses an application to alter the computer’s identity.

Which type of exploit is being perpetrated?

Answer 1

Spoofing

Question 2

An attacker attempts to misdirect traffic on a network back to the attacker by corrupting the network computer’s cache of IP address to MAC address mappings that are cached.

Which exploit is the attacker perpetrating?

Answer 2

ARP poisoning

Question 3

Which exploit actually breaches the physical medium or uses devices to monitor signals from outside the physical medium itself?

Answer 3

Wiretapping

Question 4

Which type of attack can overwhelm a web server by inserting more data into a web form than the system was configured to hold?

Answer 4

Buffer overflow

Question 5

Which type of attack sends an email claiming to be from a reputable business in order to entice the recipient to provide sensitive information?

Answer 5

Phishing

Question 6

A user on a network is planning to launch an exploit against a coworker in a neighboring department. The user needs to identify the IP address of a coworker in the desired department.

Which tool or utility will allow the user to watch network traffic in real time to identify a target?

Answer 6

Sniffer

Question 7

Which group of attackers is typically used for penetration testing?

Answer 7

Red team

Question 8

Which type of attack exploits an unpatched software vulnerability?

Answer 8

Zero-day

Question 9

A company has the policy that all new user passwords are P@ssw0rd but does not require new users to change their password. An employee randomly tries a coworker’s account with the new user password to see if they can log in as the coworker.

Which type of vulnerability does this create?

Answer 9

Default password

Question 10

An employee that does not want to miss emails from important clients sets up her cellular smartphone to allow her to check email. Unfortunately, she does not install antivirus software on the cellular phone.

What type of vulnerability is represented?

Answer 10

BYOD/Mobile

Question 11

What is required to establish a secure connection to a remote network over an insecure link?

Answer 11

Virtual Private Network (VPN) service

Question 12

An organization is concerned about brute force attacks.

How should the organization counter this risk?

Answer 12

Institute a log-in policy that locks users out of an account after three failed password attempts.

Question 13

An organization suffers a social engineering attack that results in a cybercriminal gaining access to its networks and to its customers’ private information.

How can the organization mitigate this risk in the future?

Answer 13

Provide regular cybersecurity training for employees

Question 14

An attacker plans to exploit flaws in an operating system to gain access to a user’s computer system.

What is a prevention mechanism for this type of attack?

Answer 14

Patching

Question 15

An unauthorized third-party has gained access to a company network.

How can they be prevented from deleting data?

Answer 15

Access controls

Question 16

An attacker has gained access to the passwords of several employees of a company through a brute force attack.

Which authentication method would keep the attacker from accessing the employees’ devices?

Answer 16

MFA (multi-factor authentication)

Question 17

After downloading a CD/DVD burning program, a user notices that someone is remotely accessing the computer during nighttime hours.

Which type of malware is likely found in the CD/DVD software?

Answer 17

Trojan horse

Question 18

A user is working on a home computer when another user seems to open an application to view documents on the same computer. The user immediately suspects that a back door into the computer exists.

Which action should be taken first to deal with the problem?

Answer 18

Unplug the PC’s network connection

Question 19

A user receives an email from an unknown bank saying that the user’s account with the bank has been compromised. The user suspects that this is a phishing exploit.

How should the user safely proceed?

Answer 19

Open a new browser page, navigate to the bank’s website, and acquire legitimate contact information to report the email.

Question 20

An analyst has identified an active denial of service attack.

Which category of the CIA triad is affected?

Answer 20

Availability

Question 21

While investigating a security incident, a technician discovers an unauthorized packet-capturing tool on the network.

Which category of the CIA triad is being attacked?

Answer 21

Confidentiality

Question 22

A malicious user was able to lock a user’s account after guessing the user’s password multiple times unsuccessfully.

Which category of the CIA triad did the malicious user target in this attack?

Answer 22

Availability

Question 23

Which category of the CIA triad is affected when an unauthorized user changes the data within a read-only file?

Answer 23

Integrity