Malware

Question 1

Malware that restricts access to a computer system by encrypting files or locking the entire system until the user performs requested actions is known as:

Answer 1

Ransomware

Question 2

Stand-alone malicious computer program that typically propagates itself over a computer network to adversely affect system resources and network bandwidth is called:

Answer 2

Worm

Question 3

A type of software that performs unwanted and harmful actions in disguise of a legitimate and useful program is known as a Trojan horse. This type of malware may act like a legitimate program and have all the expected functionalities, but apart from that it will also contain a portion of malicious code that the user is unaware of.

Answer 3

True

Question 4

A collection of software tools used by a hacker to mask intrusion and obtain administrator-level access to a computer or computer network is known as:

Answer 4

Rootkit

Question 5

What is adware?

Answer 5

Software that displays advertisements

Question 6

Malicious software collecting information about users without their knowledge/consent is known as:

Answer 6

Spyware

Question 7

A malware-infected networked host under remote control of a hacker is commonly referred to as:

Answer 7

Bot

Question 8

Which of the terms listed below applies to a collection of intermediary compromised systems that are used as a platform for a DDoS attack?

Answer 8

Botnet

Question 9

Which type of Trojan enables unauthorized remote access to a compromised system?

Answer 9

RAT (remote access trojan)

Question 10

Malicious code activated by a specific event is called:

Answer 10

Logic bomb

Question 11

Which of the following answers refers to an undocumented (and often legitimate) way of gaining access to a program, online service, or an entire computer system?

Answer 11

Backdoor

Question 12

Unauthorized practice of obtaining confidential information by manipulating people into disclosing sensitive data is referred to as:

Answer 12

Social engineering

Question 13

A fraudulent email requesting its recipient to reveal sensitive information (e.g. username and password) used later by an attacker for the purpose of identity theft is an example of: (Select all that apply)

Answer 13

Phishing and Vishing

Question 14

A social engineering technique whereby attackers under disguise of a legitimate request attempt to gain access to confidential information they shouldn’t have access to is commonly referred to as:

Answer 14

Phishing

Question 15

Phishing scams targeting a specific group of people are referred to as:

Answer 15

Spear phishing

Question 16

Phishing scams targeting people holding high positions in an organization or business are known as:

Answer 16

Whaling

Question 17

The practice of using a telephone system to manipulate user into disclosing confidential information is called:

Answer 17

Vishing

Question 18

What is tailgating

Answer 18

Gaining unauthorized access to restricted areas followed by another person

Question 19

Which social engineering attack relies on identity theft?

Answer 19

Impersonation

Question 20

In computer security, the term “Dumpster diving” is used to describe a practice of sifting through trash for discarded documents containing sensitive data. Found documents containing names and surnames of the employees along with the information about positions held in the company and other data can be used to facilitate social engineering attacks. Having the documents shredded or incinerated before disposal makes dumpster diving less effective and mitigates the risk of social engineering attacks.

Answer 20

True

Question 21

A situation in which an unauthorized person can view another user’s display or keyboard to learn their password or other confidential information is referred to as:

Answer 21

Shoulder surfing

Question 22

Harmful programs used to disrupt computer operation, gather sensitive information, or gain unauthorized access to computer systems are commonly referred to as:

Answer 22

Malware