Common Hacking Techniques Quiz

Questions and Answers

What is the recommended character length for a strong password?

• 8 characters (correct)
• 4 characters
• 10 characters
• 6 characters

Which type of data refers to information like internal meeting minutes or project reports?

• Open Data
• Restricted Data (correct)
• Classified Data
• Confidential Data

What is one of the main objectives of NTU cyber security team as mentioned in the text?

• Confidentiality (correct)
• Authentication
• Integrity
• Availability

What is the importance of activating Two-Factor Authentication as mentioned in the text?

To verify identity through multiple methods (D)

Which type of data is covered by the official secrets act as per the text?

Classified Data (A)

What should be avoided when creating a password to make it strong?

Making the password easy to guess (D)

What does AIUP stand for?

Acceptable IT Usage Policy (A)

Which of the following is a DO according to AIUP?

Turning off your anti-virus software (B)

What is the main function of NTU cyber security defense?

Detecting and responding to cyber attacks (D)

What should you do with NTU email for official communications?

Use it for all official communications (D)

Which of the following is a DON'T according to AIUP?

Sharing your password with anyone (B)

What is the responsibility of the Cyber security engineering function at NTU?

Exploring different technologies to enhance cyber security (A)

What hacking technique involves injecting malicious code into a legitimate website?

SQL injection (D)

Which technique involves using fake websites to deceive victims?

Phishing (B)

What type of attack involves forcing victims to land on a fake website by changing IP addresses in the DNS server?

DNS spoofing (B)

Which hacking technique involves launching seemingly legitimate ads on popular websites?

Baiting (B)

What is the main purpose of a DDoS attack?

Bring down websites by crashing servers (D)

Which vulnerability is primarily exploited by hackers to take control of a website?

Exploiting plugin vulnerabilities (A)

How can you ensure a strong password according to the text?

Having 8 characters in the password (C)

What level of data security involves information like internal meeting minutes and project reports?

Restricted Data (A)

What is the main objective of ensuring integrity as mentioned in the text?

Ensuring data accuracy and unmodified content (C)

What type of information should NOT be used when creating a strong password?

Personal information (B)

Which of the following is covered by the official secrets act as mentioned in the text?

Personal identification information (D)

What is the significance of avoiding sharing emails and ensuring links start with https as per the text?

To ensure secure communication and prevent phishing attacks (D)

What is the main purpose of the AIUP at NTU?

To protect university information and IT resources (A)

Which of the following is a recommended practice according to AIUP?

Regularly updating software with security patches (B)

What is one of the key responsibilities of the Cyber security governance function at NTU?

Developing and maintaining policies, standards, and procedures (C)

Why is it important to avoid using personal email for forwarding university documents?

To ensure the security of university information (B)

What is a key aspect of acceptable IT usage in terms of password management?

Updating passwords regularly (B)

Which action violates the AIUP at NTU?

Installing software without appropriate licenses (D)

What is the main objective of a DDoS attack?

To bring down websites by crashing their servers (C)

How do SQL injection attacks work?

By exploiting vulnerabilities in a website's SQL to gain entry into libraries and databases (A)

What does XSS stand for in the context of hacking techniques?

Cross-Site Scripting (A)

How do Baiting attacks lure victims?

By using advertising spots on popular websites with deceptive ads (D)

What is the primary target of cookie theft by hackers?

Stealing login credentials and passwords (B)

How can phishing attacks be detected and prevented based on the text?

Report suspicious emails to the official ServiceNow account (C)