Prelim Exam

Question 1

Accepted from an Authority, usually cultural ore religious.

Answer 1

MORAL

Question 2

Is easier and conflicts are limited when people share convictions

Answer 2

Cooperation

Question 3

Provides the framework in which company’s employees are to act in response to various:

Answer 3

Policy

Question 4

Is a separate matter from ethics.

Answer 4

LAW

Question 5

Are an integral part of any culture:

Answer 5

Standards and values

Question 6

Positive or Negative Leadership:

Answer 6

Ethical Leadership

Question 7

Keep system away from the intruders:

Answer 7

Motivation

Question 8

Opinion or perceptions officially written and share among employees.

Answer 8

Formal Ethics

Question 9

All companies should have this to drive the policies it sets

Answer 9

ETHICS

Question 10

Describe a body of information that is either not written down or poorly documented.

Answer 10

INFORMAL ETHICS

Question 11

Responsibility for Vulnerability Reproduction.

Answer 11

VENDOR COORDINATION

Question 12

Product reviews from programmers of the vendor.

Answer 12

AWARE POTENTIAL VICTIMS

Question 13

Detecting and Fixing product vulnerabilities.

Answer 13

PATCH DEVELOPMENT

Question 14

The Black Hat community.

Answer 14

VULNERABILITY ISSUES AND ORGANIZATIONS

Question 15

Instilling public fear with full disclosure.

Answer 15

ETHICAL DUTY TO WARN

Question 16

To allow customers of a vendor product ample time to protect their systems from exploitation and attack.

Answer 16

RESPONSIBLE DISCLOSURE

Question 17

Is the use of electronic messaging system to send unsolicited messages.

Answer 17

SPAMMING

Question 18

A business policy that permits employees to use their mobile devices.

Answer 18

BRING YOUR OWN
DEVICE (BYOD)

Question 19

is one in which a malicious hacker takes over computers via the internet and causes them to flood a target site.

Answer 19

DISTRIBUTED DENIAL-OF-SERVICE (DDoS) ATTACK

Question 20

The primary goal is to minimize that period of time to reduce the occurrence of attack.

Answer 20

GOVERNMENT DISCLOSURE

Question 21

ENUMERATION:
SPAM EMAIL HACKING VIRUS WORMS TROJAN_HORSE DISTRIBUTED DENIAL OF SERVICE_DDoS
ROOTKIT PHISHING MALWARE SPYWARE SPOOFING ADWARE PASSWORD_ATTACK
CRYPTO_JACKING INSIDER_THREAT SMISHING VISHING

Answer 21

spam
hacking
virus
worms
trojans horse
ddos
rootkit
malware
phishing
smishing
vishing

Question 22

DISADVANTEGES OF VULNERABILITY NON-DISCLOSURE

• LEAKED OR SIMULTANEOUSLY DISCOVERED
• NO PRESSURE FOR S/W VENDORS
• CROSSING THE AUDIT LINE TOO FAR
• DISCLOSURE REFERRAL FEES
• RECEIVING GIFTS AS AN AUDITOR
• NOT DISCOVERED PUBLICLY ADMINS DO NOT HAVE OPPORTUNITY
• RELATIONSHIPS WITH MANAGEMENT
• DIVULGING AUDIT INFORMATION TO THE COMPETITION
• DIFFICULTY OF SELECTING TRUSTED INDIVIDUALS

Answer 22

• LEAKED OR SIMULTANEOUSLY DISCOVERED
• NOT DISCOVERED PUBLICY ADMINS DO NOT HAVE OPPORTUNITY
• NO PRESSURE FOR S/W VENDORS
• DIFFICULTY OF SELECTING TRUSTED INDIVIDUALS