Cyber Security: Network Administration and Risk Management

Questions and Answers

What is social engineering based on?

Exploiting technology

Implementing strict security measures

Trusting side of human nature (correct)

Physically infiltrating an office

During the intelligence-gathering phase, an attacker can find information from all of the following EXCEPT:

Ex-employees

Dumpster diving

Web pages

Current employees (correct)

Which of the following job roles is often targeted in social engineering attacks because they handle a large volume of calls?

Software developers

Security analysts

Help desk employees (correct)

Data scientists

What is the final phase of a social engineering attack known as?

Attack phase

Which of the following is NOT one of the three broad categories of social engineering attacks?

Trust attacks

What is one of the common methods used at the physical level of social engineering?

Dumpster diving

What is the primary focus of this text?

Explaining cyber security threats and prevention methods

What is one of the biggest threats that security professionals often overlook?

Social engineering tactics

What aspect of cyber security does the lesson focus on regarding social engineering?

Methods of social engineering used to obtain sensitive information

Which of the following is NOT mentioned as a common security measure discussed in the text?

Antivirus software

What is the primary reason cited in the text for the expanded scope of IT duties?

Tighter budgets and limited resources

What is the purpose of discussing social engineering tactics?

To showcase the vulnerabilities in existing hardware and software defenses