IT0201 FORMATIVE 1 REVIEWER

Question 1

What is the best method to prevent Bluetooth from being exploited?

Answer 1

Always disable Bluetooth when it is not being used

Question 2

What is the purpose of a rootkit?

Answer 2

To gain privileged access to a while concealing itself.

Question 3

What was the primary objective of the Stuxnet malware?

Answer 3

Physical damage to computer-controlled equipment

Question 4

Can you identify why each of the following organizations might be interested in your online identity?

Internet service providers

Advertisers

Social media platforms

Websites

Answer 4

Internet service providers - They may be legally required to share your online information with government surveillance agencies or authorities.

Advertisers - To monitor your onlilne activities and send targeted ads your way.

Social media platforms - To gather information based on your online activity, which is then shared with or sold to advertisers for a profit.

Websites - To track your activities using cookies in order to provide a more personalized experience.

Question 5

How can you prevent others from eavesdropping on network traffic when operating a PC on a public Wi-Fi hotspot?

Answer 5

Connect with a VPN Service

Question 6

Today, there are single security appliances that will solve all the network security needs of an organization.
True or False

Answer 6

FALSE

Question 7

What name is given to a device that controls or filters traffic going in or out of the network?

Answer 7

Firewall

Question 8

What is the only way of ensuring that deleted files on your computer are irrecoverable?

Answer 8

Physically destroying your computer’s hard drive.

Question 9

What is a security playbook?

Answer 9

A collection of repeatable queries or reports that outline a standardized process for incident detection and response.

Question 10

How can you ensure information remains confidential?

Answer 10

Using username/password authentication, Setting file access permissions and Encrypting sensitive data.

Question 11

What type of attack overwhelms a computer’s resources, crippling it through excessive memory usage or CPU strain?

Answer 11

algorithm

Question 12

What does IoE stand for?

Answer 12

Internet of Everthing

Question 13

What is the definition of vulnerability?

Answer 13

A susceptibility or flaw that exposes a target to potential exploitation or attack.

Question 14

What is an example of a Internet data domain?

Answer 14

LinkedIn

Question 15

What type of attack overwhelms a target’s resources using multiply systems, rendering it inaccessible?

Answer 15

Distributed Denial-of-Service (DDoS)

Question 16

Which three types of sensitive records are most attractive to cyber criminals?

Answer 16

Medical, Employment and Education

Question 17

What term describes a inexperienced or novice hacker?

Answer 17

Script Kiddie

Question 18

What Workforce Framework category involves analyzing and assessing cybersecurity data to determine its intelligence value?

Answer 18

Analyze

Question 19

What does BYOD stand for?

Answer 19

Bring your own device

Question 20

Which two methods help prevent cyber criminal activities?

Answer 20

Implement proactive alert systems and Exchanging cyber threat data

Question 21

Does having no social media and only browsing the Internet mean no online identity exists?

Answer 21

No

Question 22

Which of the following should be carried out to address known software vulnerabilities of a specific application?

Answer 22

Install a security patch

Question 23

Which of the following tools can be perform real-time traffic and port analysis and can also detect port scans, fingerprinting and buffer overflow attacks?

Answer 23

Snort

Question 24

Which of the following is an example of two factor authentication?

Answer 24

Your fingerprint and your password

Question 25

Identify the type of cyber attack based on the descriptions. Uses cyber attack to make political statements and raise awareness. Conducts cyber espionage or sabotage on behalf of their government. Utilizes readily available online toools for cyber attacks

Answer 25

Uses cyber attack to make political statements and raise awareness. (Hacktivists) Conducts cyber espionage or sabotage on behalf of their government. (State-sponsored attackers) Utilizes readily available online toools for cyber attacks (Script Kiddies)

Question 26

An individual's social media profile is an example of a(n) _______ indentity

Answer 26

Digital(online)

Question 27

What is the primary goal of a DoS attack?

Answer 27

To prevent the target serever from being able to handle additional requests.

Question 28

individuals who engage in unauthorized digital intrusions motivated by ideological or social conviction are colloquially termed

Answer 28

Hacktivists

Question 29

What motives a white-hat attacker?

Answer 29

Improving cybersecurity

Question 30

Why are internal security threats more damaging?

Answer 30

Internal attackers have direct infrastructure access.

Question 31

What type of attacker allows an attacker to use a brute-force approach?

Answer 31

Password cracking

Question 32

Why do IoT devices post a great security risk than other computing devices on a network?

Answer 32

Most IoT devices do not receive frequent software updates.

Question 33

How can you keep your personal browsing history hidden from other users on a shared computer?

Answer 33

Operate the web browser in private mode.

Question 34

What should you do in order to make sure that people you live with do not have access to your secure data?

Answer 34

Set up password protection.

Question 35

You are looking to print photos that you have saved on a cloud storage account using a third-party only printing service. After successfully logging into the cloud account, you are automatically given access to the third-party only printing service. What allowed this automatica authentication to occur?

Answer 35

The cloud storage Service is an approved applcation for the online printing service.

Question 36

The risk management process consists of four(4) steps. Can you put these in the right order? Assess the risk Monitor the risk Frame the risk Respond the risk

Answer 36

Frame the Risk -> Assess the risk -> Respond to the risk -> Monitor the risk

Question 37

A set of changes done to any program to application with the aim of updating, fixing or improving it is often referred to as what?

Answer 37

A patch

Question 38

How data integrity typically verified?

Answer 38

Using hashes or checksums

Question 39

Which of the following is a requirement of a strong password?

Answer 39

Use special characters such as ! @ or $.

Question 40

What is the correct definition of risk management?

Answer 40

The process of identifying and assessing risk to reduce the impact of threats and vulnerabilities.

Question 41

What do you call a program written to take advatange of a known security vulnerability?

Answer 41

An exploit.

Question 42

Where is cryptocurrency stored?

Answer 42

On the blockchain

Question 43

Which is the security vulnerability could result in the receipt of malicious information that could force a program to behave in an unintented way?

Answer 43

Non-validated input

Question 44

What is the common goal of search engine optimization (SEO) poisoning?

Answer 44

To increase web traffic to malicious sites