Topic 2

Question 1

Malware

Answer 1

Refers to malicious software designed to disrupt, damage or gain unauthorized access to systems

Question 2

Malware Prevention Methods

Answer 2

1. Regular Software Updates
2. Antivirus Software
3. Network Segmentation
4. Educate Users

Question 3

Malware Prevention Tools and Strategies

Answer 3

1. Patch Management Systems
2. Endpoint Detection and Response (EDR)
3. Regular Backups
4. Network Segmentation

Question 4

Phishing

Answer 4

Involves tricking individuals into providing sensitive information by pretending to be a trusted entity

Question 5

Phishing Prevention Methods

Answer 5

1. Email Filtering
2. Employee Training
3. Verify Links and Senders
4. Multi-Factor Authentication (MFA)

Question 6

Phishing Prevention Tools and Strategies

Answer 6

1. Email Security Gateways
2. Phishing Simulations
3. Zero Trust Access
4. Threat Intelligence Feeds

Question 7

Social Engineering

Answer 7

This threat exploits human psychology to manipulate individuals into divulging confidential information

Question 8

Social Engineering Prevention Methods

Answer 8

1. Strict Access Control
2. Verify Requests
3. Awareness Programs
4. Incident Reporting

Question 9

Social Engineering Prevention Tools and Strategies

Answer 9

1. Access management
2. Strong Internal Authentication
3. Verification Protocols
4. Social Engineering Defense Training

Question 10

Software Vulnerabilities

Answer 10

Flaws or weaknesses in code that attackers can exploit to compromise systems, steal data, or gain unauthorized access

Question 11

Software Vulnerabilities

Common Vulnerabilities

Answer 11

1. Buffer Overflow
2. Injection Flaws (SQL/Command injection)
3. Cross-Site Scripting (XSS)

Question 12

Hardware Vulnerabilities

Answer 12

1. Physical Access Exploits
2. Side-Channel Attacks

Question 13

Network Vulnerabilities

Answer 13

Weaknesses in network protocols, configurations, or infrastructure that can lead to unauthorized access or data interception

Question 14

Network Vulnerabilities

Common Vulnerabilities

Answer 14

1. Weak or Default Credentials
2. Man-in-the-Middle (MITM) Attacks
3. Unsecured Network Devices
4. Denial of Service (DoS) and Distributed Denial of Service (DDos Attacks:
5. Outdated or Insecure Protocols

Question 15

Denial of Service (DoS)

Answer 15

Overloading systems of networks to make them unavailable to legitimate users

Question 16

Man in the Middle (MITM) Attacks

Answer 16

Intercepting communication between two parties to eavesdrop or alter data

Question 17

Password Attacks

Answer 17

Cracking or steals passwords through brute force, dictionary, attacks, or keylogging

Question 18

Zero-Day Exploits

Answer 18

Exploiting software vulnerabilities before the vendor releases a patch

Question 19

Refers to malicious software designed to disrupt, damage or gain unauthorized access to systems

Answer 19

Malware

Question 20

Involves tricking individuals into providing sensitive information by pretending to be a trusted entity

Answer 20

Phishing

Question 21

This threat exploits human psychology to manipulate individuals into divulging confidential information

Answer 21

Social Engineering

Question 22

Flaws or weaknesses in code that attackers can exploit to compromise systems, steal data, or gain unauthorized access

Answer 22

Software Vulnerabilities

Question 23

Weaknesses in network protocols, configurations, or infrastructure that can lead to unauthorized access or data interception

Answer 23

Network Vulnerabilities

Question 24

Overloading systems of networks to make them unavailable to legitimate users

Answer 24

Denial of Service (DoS)

Question 25

Intercepting communication between two parties to eavesdrop or alter data

Answer 25

Man in the Middle (MITM) Attacks

Question 26

Cracking or steals passwords through brute force, dictionary, attacks, or keylogging

Answer 26

Password Attacks

Question 27

Exploiting software vulnerabilities before the vendor releases a patch

Answer 27

Zero-Day Exploits