Common Hacking Techniques Quiz

Questions and Answers

What is the most important step to take when opening links?

• Disable your antivirus software to open the link
• Check for the lock icon and ensure the link starts with `https` (correct)
• Click the link immediately without checking anything
• Forward the link to other people to verify its safety

What is the minimum number of characters recommended for a strong password?

• 5 characters
• 7 characters
• 8 characters (correct)
• 6 characters

Which of the following is NOT a recommended strategy for creating a strong password?

• Using personal information that people can easily guess (correct)
• Using uncommon words
• Using a mix of symbols, numbers, and upper/lower case letters
• Activating Two-Factor Authentication

Which type of data is covered by the official secrets act and pertains to national security?

Classified Data (D)

Which of the three main cybersecurity objectives for NTU is focused on ensuring data or information remains accurate and unmodified?

Integrity (C)

What should you do if you receive an email that asks you to delete it and not forward it to others?

Delete the email and do not forward it to others (D)

What is the technique where hackers inject malicious code into a legitimate website?

XSS attacks (B)

Which hacking technique forces victims to land on a fake website by manipulating DNS servers?

DNS spoofing (B)

What is the term used for the hacking technique that uses multiple password combinations until one matches?

Brute force (D)

Which of the following is a technique where hackers use advertising spots on popular websites to lure victims?

Baiting (C)

What is the term used for the hacking technique that takes advantage of vulnerabilities in a website's SQL to gain entry?

SQL injection (D)

Which of the following is a preventive measure against phishing attacks, as mentioned in the text?

Be cautious when receiving emails and check the sender (B)

What is the primary function of the NTU cyber security team?

Cyber security defense, governance, and engineering (A)

What does the acronym AIUP stand for?

Acceptable IT Usage Policy (D)

Which of the following is NOT a recommended practice according to the AIUP?

Using personal email for forwarding university documents (B)

What is the primary purpose of the AIUP?

To protect university information and IT resources (B)

Which of the following is NOT listed as a recommended practice in the AIUP?

Installing software without appropriate licenses (C)

Which of the following is a responsibility of the NTU cyber security team?

Monitoring and responding to cyber attacks on a 24/7 basis (D)

Which hacking technique involves using a fake website that closely resembles a legitimate one?

Phishing (B)

What is the purpose of a DDoS attack?

To bring down a website by overwhelming its servers (B)

Which hacking technique involves exploiting vulnerabilities in website plugins?

Exploiting plugin vulnerabilities (D)

What is the purpose of a cookie theft attack?

To steal login credentials and passwords stored in cookies (D)

Which of the following is a recommended practice to detect and prevent phishing attacks?

Be cautious when receiving emails, and check the sender before clicking on anything (A)

What is the term used for the hacking technique that uses multiple password combinations until one matches?

Brute force (D)

What is the primary purpose of the Acceptable IT Usage Policy (AIUP) mentioned in the text?

To protect university information and IT resources, and minimize risks and damages (A)

Which of the following is NOT listed as a recommended practice in the AIUP 'Don'ts'?

Don't turn off your firewall software (B)

What is the primary function of the NTU cyber security team according to the text?

Detecting and responding to cyber attacks 24/7, 365 days a year (A)

Which of the following is listed as a recommended practice in the AIUP 'Do's'?

Always keep your password safe (B)

Which of the three main cybersecurity objectives for NTU is focused on ensuring data or information remains accurate and unmodified?

The text does not specify an objective focused on data/information integrity (B)

What does the acronym 'AIUP' stand for?

Acceptable IT Usage Policy (D)

What is the main difference between Open Data and Restricted Data?

Open Data is published online, while Restricted Data is only accessible to a community. (B)

Which level of data security involves information like personal identification information and staff performance reports?

Confidential Data (D)

What should you look out for when opening links to ensure secure browsing?

The presence of the lock icon and an https start (D)

Which type of data is protected by the official secrets act and relates to national security?

Classified Data (B)

Flashcards are hidden until you start studying