Threats, Attacks, & Vulnerabilities

Question 1

What does the term ‘threat’ refer to in cybersecurity?

Answer 1

A potential cause of an unwanted incident that may result in harm to a system or organization.

Question 2

True or False: A vulnerability is a weakness in a system that can be exploited by a threat.

Answer 2

True

Question 3

Fill in the blank: A _____ attack involves overwhelming a system with traffic to make it unavailable.

Answer 3

Denial of Service (DoS)

Question 4

What is the primary goal of a phishing attack?

Answer 4

To trick individuals into providing sensitive information such as usernames and passwords.

Question 5

Which type of malware is designed to replicate itself and spread to other systems?

Answer 5

Virus

Question 6

What is an example of a physical security threat?

Answer 6

Theft of hardware or equipment.

Question 7

Multiple Choice: Which of the following is NOT a type of social engineering attack? A) Phishing B) Shoulder Surfing C) Firewall Bypass

Answer 7

C) Firewall Bypass

Question 8

What does the acronym Ransomware stand for?

Answer 8

A type of malware that encrypts the user’s files and demands payment for the decryption key.

Question 9

True or False: A zero-day vulnerability is one that is known and has a patch available.

Answer 9

False

Question 10

What is the purpose of a firewall?

Answer 10

To monitor and control incoming and outgoing network traffic based on predetermined security rules.

Question 11

Fill in the blank: A _____ attack targets a specific individual or organization.

Answer 11

Spear Phishing

Question 12

What is the term for an attack that intercepts communication between two parties?

Answer 12

Man-in-the-Middle attack

Question 13

Multiple Choice: Which of the following is a common method to gain unauthorized access to a system? A) Brute Force Attack B) Data Encryption C) Software Update

Answer 13

A) Brute Force Attack

Question 14

What is the main function of antivirus software?

Answer 14

To detect, prevent, and remove malicious software from a computer system.

Question 15

True or False: A DDoS attack is more severe than a DoS attack because it uses multiple systems to launch the attack.

Answer 15

True

Question 16

What is the term for a weak password that is easy to guess or crack?

Answer 16

Weak password

Question 17

Fill in the blank: _____ is a technique used by attackers to gain access by exploiting weaknesses in software.

Answer 17

Exploitation

Question 18

What does the acronym SQL in SQL Injection stand for?

Answer 18

Structured Query Language

Question 19

What is the purpose of a penetration test?

Answer 19

To simulate an attack on a system to identify vulnerabilities.

Question 20

Multiple Choice: Which of the following is a method of securing data at rest? A) Data Encryption B) Network Monitoring C) User Training

Answer 20

A) Data Encryption

Question 21

What is the main difference between a worm and a virus?

Answer 21

A worm can self-replicate and spread independently, while a virus requires a host file.

Question 22

True or False: Insider threats come from individuals within an organization who have access to its resources.

Answer 22

True

Question 23

Fill in the blank: A _____ is a malicious software that disguises itself as legitimate software.

Answer 23

Trojan horse

Question 24

What is the purpose of an Intrusion Detection System (IDS)?

Answer 24

To monitor network traffic for suspicious activity and alert administrators.

Question 25

What does the term ‘patch management’ refer to?

Answer 25

The process of managing updates for software applications and technologies.

Question 26

Multiple Choice: Which of the following is NOT a type of malware? A) Adware B) Spyware C) Firewall

Answer 26

C) Firewall