Security

Question 1

What is a code that runs on a computer without the users knowledge; it infects the computer when the code is accessed and executed?

Answer 1

Virus

Question 2

What is similar to viruses except that it self replicates whereas a virus does not?

Answer 2

Worm

Question 3

What appears to perform a desired functions but are actually performing malicious functions behind the scenes?

Answer 3

Trojan horse

Question 4

What malicious software either downloaded unwittingly from a website or installed along with some other third-party software?

Answer 4

Spyware

Question 5

What software designed to gain administrator local control over a computer system without being detected?

Answer 5

Rootkit

Question 6

What is the abuse of electronic messaging system such as email, broadcast media, and instant messaging?

Answer 6

Spam

Question 7

Some ways to prevent and troubleshoot viruses are:

Answer 7

Antivirus software. Update the antivirus software. Make sure the computer has the latest service packs and updates. Run Windows Update. Make sure a firewall is enabled and up to date.
You should also disable Autorun for CD, DVD, and Blu-ray.

Question 8

To disable AutoRun in Windows 7:

Answer 8

Click Start and type gpedit.msc
Go to Computer Configuration > Administrative Templates > Windows Components > Autoplay Policies
Double click the Turn Off Autoplay setting. Click Enabled radio button and click OK.

Question 9

Some symptoms of viruses are:

Answer 9

Computer runs slower than usual.
Computer locks up frequently.
Computer restarts on its own or crashes frequently.
Strange sounds occur.
Antivirus programs won't run.

Question 10

If a system is infected with a virus:

Answer 10

Disconnect the network cable from the computer. Make sure you back up critical data. Run a thorough scan with the antivirus program.

Question 11

Preventing and troubleshooting Spyware:

Answer 11

Download and install anti-spyware protection software.
Adjust Internet Explorer security settings.
Turn on the Phishing filter in IE.
Uninstall unnecessary application’s.
Educate users on how to surf the web safely.
Consider technologies that discourage spyware.

Question 12

Some symptoms of spyware are:

Answer 12

The web browser’s default homepage has been modified.
A particular website comes up every time you perform search.
Excessive pop up windows appear.
The network adapter’s activity LED blinks frequently even when the computer is not transmitting data.

Question 13

To repair Spyware:

Answer 13

First disconnect the system from the Internet.
Then try uninstalling the program from Control Panel > Programs and Features in Windows 7/Vista, and Add/Remove Programs in XP.
Then reboot the computer.
You can use HijackThis program.

Question 14

Preventing and troubleshooting rootkits:

Answer 14

The best way to identify root kit is to use removable media to boot the computer. Reinstall all software.

Question 15

Preventing and troubleshooting spam:

Answer 15

Use a strong password.
Use a spam filter.
Use whitelists and blacklists.
Train your users.

Question 16

What is access to an organization’s premises, computer resources and date out without consent of the owner?

Answer 16

Unauthorized access

Question 17

Unauthorized access can be prevented through the use of authentication.

Answer 17

Something that the user knows, for example, a password or PIN.

Something that user has, for example a smart card or other security token.

Something that user is, for example the biometric reading of a fingerprint or retina scan.

Something that user does, for example a signature or speaking words.

Question 18

You should always lock rooms and closets and you can even lock PCs and laptops.

Answer 18

Configure the BIOS to lock whether someone opened the case of the computer.

This is logged as chassis intrusion.

Question 19

What is software designed to infiltrate a computer system and possibly damage it without the user’s knowledge or consent?

Answer 19

Malware

Question 20

The most common electronic entry system is the card key system.

Answer 20

Other electronic systems will use key towards incorporate a photo ID, or magnetic stripe, barcode, or a radio frequency identification chip (RFID).
Some organizations will design what is known as a mantrap, an area with two locking doors.

Question 21

What is the science of recognizing humans based on one or more physical characteristics?

Answer 21

Biometrics

An example of biometric hardware is the Microsoft Fingerprint Scanner.

Question 22

Protecting data physically:

Answer 22

Password should not be written down and not left on the desk or taped to a monitor.
Users should lock their computers when they leave their workstation.

Question 23

What is the act of manipulating users into revealing confidential information or performing other actions detrimental to the user?

Answer 23

Social engineering

Question 24

What is the attempt at fraudulently obtaining private information?

Answer 24

Phishing

An example of phishing would be an email that requests verification of private information.

Question 25

What is when a person uses direct observation to find out a target’s password, PIN, or other such authentication information?

Answer 25

Shoulder surfing

Question 26

What is when an unauthorized person tags along with an authorized person to gain entry to a restricted area usually with the person’s consent?

Answer 26

Piggybacking

Question 27

When a hard drive is removed from my computer it either needs to be recycled or disposed of in a proper manner.

Answer 27

Sanitizing the hard drive is a common way of removing data.

Question 28

What are three options for data removal?

Answer 28

Clearing: this is the removal of data with a certain amount of assurance that it cannot be reconstructed.

Purging: this is the removal data done in such a way so that I cannot be reconstructed by any known technique. The media is released outside the company.

Destruction: this is when the storage media is physically destroyed through pulverizing, drilling holes through the platters, and so on.

Question 29

Which of the following malware self replicates?

A. Virus
B. Worm
C. Trojan
D. Rootkit

Answer 29

B. Worm

Question 30

What type of malware is the abuse of electronic messaging?

A. Virus
B. Spyware
C. Spam
D. Worm

Answer 30

C. Spam

Question 31

Which is the following are symptoms of viruses? (Select the the best answers.)

A. Computer runs slowly.
B. Computer locks up.
C. Excessive pop-up windows appear.
D. A strange website is displayed when a seedy is done.
E. Unusual error messages are displayed.

Answer 31

A, B, and E.

Question 32

Which of the following is the science of recognizing humans based on physical characteristics?

A. Mantraps
B. Biometrics
C. Tailgating
D. Something a person is

Answer 32

B. Biometrics

Question 33

A hard drive needs to be disposed of in a way so that no one can access the data. Which method should you use?

A. Phishing
B. Cleaning
C. Shoulder surfing
D. Destruction

Answer 33

D. Destruction

Question 34

Which of the following is the best mode to use when scanning for viruses?

A. Safe Mode
B. Last Known Good Configuration
C. Command Prompt only
D. Boot into Windows normally

Answer 34

A. Safe Mode

Question 35

Which of the following is one way to prevent spyware?

A. Use firewall exceptions
B. Adjust Internet Explorer settings
C. Adjust the Internet Explorer homepage
D. Remove the spyware from Add/Remove Programs

Answer 35

B. Adjust Internet Explorer settings

Question 36

One of your customers tells you that a bank employee called and asked for the person’s bank balance and telephone number. What is this an example of?

A. Spam
B. Virus
C. Social Engineering
D. Trojan

Answer 36

C. Social Engineering

Question 37

There are four types of user accounts:

Answer 37

Administrator
User
Power User
Guest

Question 38

This account has full control of an operating system.

Answer 38

Administrator

Question 39

This account is the normal standard account for a person on a network.

Answer 39

User

Question 40

This account has the ability to do some admin tasks but not full control.

Answer 40

Power User

Question 41

This account has limited access to the system.

Answer 41

Guest

Question 42

What is required for a strong password?

Answer 42

At least 8 characters, including 1 uppercase letter, 1 number, and 1 special character.

Question 43

How do you access Password Policy?

Answer 43

Start > All Programs >Administrative Tools > Local Security Policy > Security Settings > Account Policies > Password Policy

Question 44

Enforce password history:

Answer 44

When this is defined users cannot use any of the passwords that are remembered in the history. If you see the history to 3, then the last 3 passwords cannot be used again when it is time to change the password.

Question 45

Maximum and minimum password age:

Answer 45

This defines exactly how long a password can be used.

Question 46

Minimum password length:

Answer 46

This requires that the password must be at least a specified amount of characters. For a strong password policy, set this to between 8 and 14.

Question 47

Passwords must meet complexity requirements:

Answer 47

Uppercase characters, lowercase characters, digits between 0 and 9, and special characters.

Question 48

Rename and password protect the administrator account:

Answer 48

Computer Management > System Tools > Local Users and Groups > Users and locate the Administrator account. Right click and then rename it and give it a password.

Question 49

To enable the administrator account:

Answer 49

Open command line and type:

net user administrator /active:yes

Question 50

Verify that the Guest account is disabled:

Answer 50

Local Users and Groups > Users, and right click account, select Properties, and then check the box named Account is Disabled.

Question 51

Set the account lockout threshold:

Answer 51

Local Security settings window.

Security Settings > Account Policies > Account Lockup Policy

Question 52

To turn on/off UAC:

Answer 52

Start > Control Panel > User Accounts and Family Safety. Then select User Accounts, and click the Change User Account Control settings.

Question 53

To view files sigh as bootmgr, pagefile.sys, and hiberfil.sys:

Answer 53

Deselect the Hide Protected Operating System Files check box.

Go to Windows Explorer > Tools menu, and click Folder Options. Then select View tab and under Hidden Files and Folders select the Show Hidden Files button.

Question 54

Administrative shares can be created by simply adding what?

Answer 54

Adding a $ to the end of the share name when enabling the share.

Question 55

Where are NTFS permissions modified?

Answer 55

In the Security tab of the folder’s Properties window.

Question 56

What is the process of converting information, with the use of a cipher (algorithm), making it unreadable by other users unless they have the correct key to the information?

Answer 56

Encryption

Question 57

To encrypt a file in Windows:

Answer 57

Locate the file, right-click and select Properties.
At the bottom of the General tab, click the Advanced button.
Check the box labeled Encrypt Contents to Secure Data.
Click OK for both windows.

Question 58

The requirements for BitLocker encryption are:

Answer 58

A Trusted Platform Module: a chip residing on the motherboard that actually stores the encrypted keys.

An external USB key to store the encrypted keys.

A hard drive with two volumes, preferably created during the installation of Windows.
One volume for the operating system and the other is the active volume that remains unencrypted so that the computer can boot.

Question 59

BitLocker software is based on the Advanced Encryption Standard (AES):

Answer 59

It uses a 128-bit key.

Question 60

What is meant to protect client computers from malicious attacks and intrusions?

Answer 60

Windows Firewall

Question 61

Enforce password history:

Answer 61

When this is defined users cannot use any of the passwords that are remembered in the history. If you see the history to 3, then the last 3 passwords cannot be used again when it is time to change the password.

Question 62

Maximum and minimum password age:

Answer 62

This defines exactly how long a password can be used.

Question 63

Minimum password length:

Answer 63

This requires that the password must be at least a specified amount of characters. For a strong password policy, set this to between 8 and 14.

Question 64

Passwords must meet complexity requirements:

Answer 64

Uppercase characters, lowercase characters, digits between 0 and 9, and special characters.

Question 65

Rename and password protect the administrator account:

Answer 65

Computer Management > System Tools > Local Users and Groups > Users and locate the Administrator account. Right click and then rename it and give it a password.

Question 66

To enable the administrator account:

Answer 66

Open command line and type:

net user administrator /active:yes

Question 67

Verify that the Guest account is disabled:

Answer 67

Local Users and Groups > Users, and right click account, select Properties, and then check the box named Account is Disabled.

Question 68

Set the account lockout threshold:

Answer 68

Local Security settings window.

Security Settings > Account Policies > Account Lockup Policy

Question 69

To turn on/off UAC:

Answer 69

Start > Control Panel > User Accounts and Family Safety. Then select User Accounts, and click the Change User Account Control settings.

Question 70

To view files sigh as bootmgr, pagefile.sys, and hiberfil.sys:

Answer 70

Deselect the Hide Protected Operating System Files check box.

Go to Windows Explorer > Tools menu, and click Folder Options. Then select View tab and under Hidden Files and Folders select the Show Hidden Files button.

Question 71

Administrative shares can be created by simply adding what?

Answer 71

Adding a $ to the end of the share name when enabling the share.

Question 72

Where are NTFS permissions modified?

Answer 72

In the Security tab of the folder’s Properties window.

Question 73

What is the process of converting information, with the use of a cipher (algorithm), making it unreadable by other users unless they have the correct key to the information?

Answer 73

Encryption

Question 74

To encrypt a file in Windows:

Answer 74

Locate the file, right-click and select Properties.
At the bottom of the General tab, click the Advanced button.
Check the box labeled Encrypt Contents to Secure Data.
Click OK for both windows.

Question 75

The requirements for BitLocker encryption are:

Answer 75

A Trusted Platform Module: a chip residing on the motherboard that actually stores the encrypted keys.

An external USB key to store the encrypted keys.

A hard drive with two volumes, preferably created during the installation of Windows.
One volume for the operating system and the other is the active volume that remains unencrypted so that the computer can boot.

Question 76

BitLocker software is based on the Advanced Encryption Standard (AES):

Answer 76

It uses a 128-bit key.

Question 77

What is meant to protect client computers from malicious attacks and intrusions?

Answer 77

Windows Firewall

Question 78

How do you access Windows Firewall?

Answer 78

Start > Control Panel > Windows Firewall

Question 79

Which of the following is the strongest password?

A. |ocrian#
B. Marqu1sD3S0d
C. ThisIsV#ryS3cure
D. Thisisverysecure

Answer 79

C.

Question 80

Which of these is a security component of Windows 7/Vista?

A. UAC
B. UPS
C. Gadgets
D. Control Panel

Answer 80

A. UAC

Question 81

A customer complains that while away at lunch someone used his computer to send emails to other coworkers without his knowledge. What should you recommend?

A. Enable a screensaver.
B. Unplug the network cable before leaving for lunch.
C. Use the Windows Lock feature.
D. Enable the out of office message in email when leaving for lunch.

Answer 81

C. Use the Windows lock feature.

Question 82

Which of the following best describes encryption?

A. Prevents unauthorized users from viewing or reading data.
B. Prevents unauthorized users from deleting data.
C. Prevents unauthorized users from posing as the original source sending data.
D. Prevents unauthorized users from decompressing files.

Answer 82

A.

Question 83

One of the users on your network is trying to access the files shared on a remote computer. The files share for missions allow the user Full Control. But, the NTFS permissions allow the user Read access. What will be the resulting access for the user?

A. Full Control
B. Modify
C. Read
D. Write

Answer 83

C. Read

Question 84

You are the administrator for your network. You set up an administrative share called Data$. What is necessary for another user to access the share? (Select the two best answers.)

A. The user must be part of a HomeGroup.
B. The user must have permissions to access the share.
C. The user must know the decryption key.
D. The user must know the exact network path to the share.
E. The user must enable File Sharing in the Network and Sharing Center.

Answer 84

B and D.

Question 85

Always remember to change what first before anything else on a router?

Answer 85

The admin password

Question 86

Wireless Encryption Methods:

Answer 86

WEP: 64-bit
WPA: 128-bit
WPA2: 256-bit
TKIP: 128-bit
CCMP: 128-bit
AES: 128, 192, and 256-bit

Question 87

What filters out which computers can access the wireless network?

Answer 87

MAC Filtering

Question 88

What was originally intended to make connecting to a wireless access point easier for the average user?

Answer 88

WPS (Wi-Fi Protected Setup)

Question 89

Which of the following describes an attempt to guess a password by using a combination of letters and numbers?

A. Brute force
B. Social Engineering
C. WPS
D. War driving

Answer 89

A. Brute force

Question 90

Which of the following will help to secure a SOHO router? (Select the three best answers)

A. Change default passwords
B. Enable SSID
C. Enable MAC filtering
D. Enable WPS
E. Enable WPA2

Answer 90

A, C, and E.

Question 91

Which is the strongest form of wireless encryption?

A. WPA
B. WEP
C. AES
D. TKIP

Answer 91

C. AES

Question 92

You want to prevent rogue employees from connecting a laptop to the SOHO router and accessing the network. How can you accomplish this? (Select the two best answers)

A. Enable MAC filtering
B. Create a DMZ.
C. Configure a complex SSID.
D. Disable physical ports.

Answer 92

A and D.

Question 93

Android settings can be backed up and restored by:

Answer 93

Settings > Privacy

Question 94

How do you update an Android device?

Answer 94

Settings > System Updates > Software Update.

Question 95

How do you update an iOS device?

Answer 95

Settings > General > Software Update

Question 96

What is the process of removing the limitations that Apple imposes on its devices that run iOS?

Answer 96

Jailbreaking

Question 97

What is software that takes care of pushing updates and configuring hundreds of mobile devices from a central location?

Answer 97

Mobile Device Management (MDM) suite