Common Supply Chain Attacks and Malware Types Quiz

Questions and Answers

What are the two main kinds of rights under Intellectual Property Rights (IPR)?

• Copyright and Trademark Rights
• Patent Rights and Licensing Rights
• Intellectual Rights and Creative Rights
• Moral Rights and Economic Rights (correct)

What is the role of an Incident Response Team during cyber security incidents?

• Preparing, Detecting, Containing, Recovering, and Learning from incidents (correct)
• Developing new technologies
• Creating marketing strategies
• Providing IT support to other departments

Which organization serves as the global forum for intellectual property (IP) services, policy, and cooperation?

• International Monetary Fund (IMF)
• World Economic Forum (WEF)
• United Nations Educational, Scientific and Cultural Organization (UNESCO)
• World Intellectual Property Organization (WIPO) (correct)

Under Intellectual Property, what do Moral Rights mainly protect?

Personality and integrity of the author (D)

Which act addresses censorship in the Philippines according to the text?

Anti-Child Pornography Act (D)

What does an Incident Response Team primarily focus on during the 'Detection and Analysis' phase?

Identifying security vulnerabilities (C)

What is the primary function of managerial control according to the text?

Setting performance standards (C)

Which type of control anticipates problems before they occur?

Feedforward Control (A)

What is the essence of control according to the text?

Action (D)

What is the purpose of an organizational structure?

Define how activities are directed to achieve goals (C)

What does an organizational chart visually convey?

Company's internal structure (A)

Which type of control corrects problems after they have occurred?

Feedback Control (B)

Which of the following is NOT a type of malware attack mentioned in the text?

Keylogger (B)

What is the primary purpose of a social engineering attack?

To trick users into providing an entry point for malware by posing as a legitimate actor (A)

Which of the following is NOT a type of social engineering attack mentioned in the text?

Spear phishing (D)

What is the primary goal of a man-in-the-middle (MitM) attack?

To intercept communication between two endpoints (D)

Which of the following is NOT a type of man-in-the-middle (MitM) attack mentioned in the text?

Vishing (B)

What is the primary technique used in a spoofing attack?

Using deception (fraud) to appear as another person or source of information (A)

Which of the following is NOT one of the six main functions of a human resource department?

Ensuring organizational structure and design (C)

What is the LEAST important 'C' principle of human resource management according to the text?

Cost Effectiveness (C)

Which type of change agent is LEAST involved in the continuous change process within an organization?

External change agent (C)

What is the MAIN role of a change agent in an organization?

To initiate change to increase organizational effectiveness (B)

Which type of organizational structure is characterized by a clear hierarchy of authority, with decision-making power concentrated at the top?

Hierarchical (D)

Which of the following is NOT a type/means of departmentalization mentioned in the text?

Departmentalization by Product (A)

Which of the following is NOT considered a primary dimension of diversity in the workplace?

Education (D)

Which of the following best describes the concept of 'global management' as mentioned in the text?

The way an organization manages its business internationally, including its sales, marketing, hiring and finance practices. (D)

Which of the following is NOT considered a secondary dimension of diversity in the workplace?

Perception (B)

Which of the following best describes the concept of 'decentralization' as mentioned in the text?

The dissemination of powers by the top management to the middle or low-level management. (D)