Computer Security Threats

Questions and Answers

What is the primary goal of ransomware?

• To cause a computer to behave in an unexpected and undesirable manner
• To duplicate itself in the active memory of the computer
• To spread to other machines when a computer user shares an infected file
• To stop users from accessing their data until certain demands are met (correct)

What can spread to other machines when a computer user shares an infected file or sends an email with a virus-infected attachment?

• Worms
• Ransomware
• Malware
• Viruses (correct)

What type of threat is characterized by attacking a specific organization or website?

• Trojan horses
• Distributed denial-of-service attacks
• Advanced persistent threat (correct)
• Phishing

What resides in the active memory of the computer and duplicates itself?

Worms (C)

What is a type of malware that demands payment in exchange for restoring access to data?

Ransomware (D)

What is a piece of programming code that causes a computer to behave in an unexpected and undesirable manner?

Viruses (B)

What is a type of attack where an attacker sends fraudulent emails to trick victims into revealing sensitive information?

Phishing (A)

What is the common term for all types of malicious programs mentioned in the text?

Malware (D)

What is a type of malicious software that hides itself from the operating system?

Rootkits (A)

What is a type of attack where multiple systems are compromised to attack a single system or network?

Distributed denial-of-service attacks (D)

What is a type of malware that replicates itself and spreads to other devices?

Worms (D)

What is the purpose of CAPTCHA software?

To generate and grade tests that humans can pass and computers cannot (B)

What is a botnet?

A large group of computers controlled from one or more remote locations by hackers (D)

What is the result of a Distributed Denial-of-Service attack?

The target site is flooded with requests, making it inaccessible to legitimate users (D)

What is the purpose of a Distributed Denial-of-Service attack?

To make a website inaccessible to legitimate users (B)

What is the term used to describe computers controlled by hackers without their owners' consent?

Zombies (D)

What is the main difference between a human and a computer program in terms of CAPTCHA software?

Humans can pass CAPTCHA tests, but computers cannot (A)

What is the primary function of a corporate firewall?

To limit network access based on the organization's access policy (A)

What is a next-generation firewall (NGFW) capable of doing?

Filtering network traffic based on the packet contents (D)

What is the purpose of a security dashboard?

To provide a comprehensive display of all vital data related to an organization's security defenses (B)

What is a characteristic of a next-generation firewall (NGFW)?

It is able to inspect the payload of packets and match sequences of bytes for harmful activities (C)

What is the primary difference between a corporate firewall and a next-generation firewall (NGFW)?

The depth of packet inspection they perform (C)

What is the primary benefit of using a security dashboard?

It provides a comprehensive display of all vital data related to an organization's security defenses (C)

What is the primary purpose of US-CERT's vulnerability summary?

To provide a summary of high-impact vulnerabilities for organizations to address (A)

What is a crucial step in addressing high-impact vulnerabilities?

Installing a known patch to the software (C)

What is the main objective of a security audit?

To evaluate whether an organization has a well-considered security policy in place (B)

What is reviewed during a security audit?

User access and authority levels (B)

What is the purpose of a penetration test?

To try to break through the security measures and identify vulnerabilities (C)

What is the primary focus of a security audit and penetration test?

Evaluating security policies and measures (C)