Security+ Practice Test 1

Question 1

Harmful programs used to disrupt computer operation, gather sensitive information, or gain unauthorized access to computer systems are commonly referred to as:

Answer 1

Malware

Question 2

Which of the following statements apply to the definition of a computer virus?
A self-replicating computer program containing malicious segment
Requires its host application to be run to make the virus active
A standalone malicious computer program that replicates itself over a computer network
Can run by itself without any interaction
Attaches itself to an application program or other executable component
A self-contained malicious program or code that does need a host to propagate itself

Answer 2

A self-replicating computer program containing malicious segment
Requires its host application to be run to make the virus active
Attaches itself to an application program or other executable

Question 3

Which of the terms listed below refers to an example of a crypto-malware?
Backdoor
Ransomware
Keylogger
Rootkit

Answer 3

Ransomware

Question 4

Malware that restricts access to a computer system by encrypting files or locking the entire system down until the user performs requested action is known as:

Answer 4

Ransomware

Question 5

A standalone malicious computer program that typically propagates itself over a computer network to adversely affect system resources and network bandwidth is called:

Answer 5

Worm

Question 6

A type of software that performs unwanted and harmful actions in disguise of legitimate and useful program is known as a Trojan horse. This type of malware may act like a legitimate program and have all the expected functionalities, but apart from that it will also contain a portion of malicious code that the user is unaware of. (True or False)

Answer 6

True

Question 7

A collection of software tools used by a hacker to mask intrusion and obtain administrator-level access to a computer or computer network is known as:

Answer 7

Rootkit

Question 8

Which of the following answers lists an example of spyware?
Keylogger
Vulnerability scanner
Computer worm
Packet Sniffer

Answer 8

Keylogger

Question 9

What is adware?

Answer 9

Software that displays advertisements

Question 10

Malicious software collecting information about users without their knowledge/consent is known as:

Answer 10

Spyware

Question 11

A malware-infected networked host under remote control of a hacker is commonly referred to as:

Answer 11

Bot

Question 12

Which of the terms listed below applies to a collection of intermediary compromised systems that are used as a platform for a DDoS attack?
Honeynet
Botnet
Quarantine network
Malware

Answer 12

Botnet

Question 13

Which type of Trojan enables unauthorized remote access to a compromised system?

Answer 13

RAT

Question 14

Malicious code activated by a specific event is called:

Answer 14

Logic Bomb

Question 15

Which of the following answers refers to an undocumented (and often legitimate) way of gaining access to a program, online service, or an entire computer system?

Answer 15

Backdoor

Question 16

An unauthorized practice of obtaining confidential information by manipulating people into disclosing sensitive data is referred to as:

Answer 16

Social Engineering

Question 17

A fraudulent email requesting its recipient to reveal sensitive information (e.g. user name and password) used later by an attacker for the purpose of identity theft is an example of:

Answer 17

Phishing

Social Engineering

Question 18

A social engineering technique whereby attackers under disguise of legitimate request attempt to gain access to confidential information they shouldn’t have access to is commonly referred to as:

Answer 18

Phishing

Question 19

Phishing scams targeting a specific group of people are referred to as:

Answer 19

Spear phishing

Question 20

Phishing scams targeting people holding high positions in an organization of business are known as

Answer 20

Whaling

Question 21

The practice of using a telephone system to manipulate user into disclosing confidential information is called:

Answer 21

Vishing

Question 22

What is tailgating?

Answer 22

Gaining unauthorized access to restricted areas by following another person

Question 23

Which social engineering attack relies on identity theft?

Answer 23

Impersonation

Question 24

In computer security, the term “Dumpster diving” is used to describe a practice of sifting through trash for discarded documents containing sensitive data. Found documents containing names and surnames of the employees along with the information about positions held in the compnay and other data can be used to facilitate social engineering attacks. Having documents shredded or incinerated before disposal makes dumpster diving less effective and mitigates the risk of social engineering attacks. (True or False)

Answer 24

True

Question 25

A situation in which an unauthorized person can view another user’s display or keyboard to learn their password or other confidential information is referred to as:

Answer 25

Shoulder Surfing