Cybersecurity Basics Quiz

Questions and Answers

What is the name of the attack where an email mimics a legitimate source to deceive the user into providing personal information?

Broad Phishing (correct)

Device Left Behind

Spear Phishing

Whaling

What role is responsible for designing secure systems against potential cyber threats?

Security Software Developer

Penetration Tester

Security Architect (correct)

Information Security Analyst

Which type of security deals with restricting physical access to sensitive areas like server rooms?

Network Security

Operation Security

Physical Security (correct)

Personal Security

If an employee decides to engage in data theft after receiving termination notice, what type of cyber criminal does this employee exemplify?

Insider Signup and view all the answers

What type of malicious software is designed to encrypt your files and demand payment for their decryption?

Ransomware Signup and view all the answers

Which type of security focuses specifically on protecting data in all forms?

Information Security Signup and view all the answers

What category does a keylogger fall under when classifying types of malware?

Spyware Signup and view all the answers

Which security characteristic is necessary to verify the identity of the individual you are communicating with?

Authenticity Signup and view all the answers

In cybersecurity, what common type of attack involves tricking users into providing sensitive information through fake communications?

Broad Phishing Signup and view all the answers

What is the main concern of physical security within an organization?

Preventing unauthorized access to facilities Signup and view all the answers

What is the primary aim of a clean-desk policy?

Confidentiality Signup and view all the answers

What type of cyber attack involves tricking individuals into revealing private information through a deceptive link?

Phishing Signup and view all the answers

When access to the Internet is unrestricted and available whenever needed, this characteristic is referred to as?

Availability Signup and view all the answers

Who is primarily responsible for identifying vulnerabilities within a system?

Penetration Tester Signup and view all the answers

Which certification is recognized for individuals who identify and remediate system vulnerabilities?

CEH Signup and view all the answers

The term for attacking an unknown vulnerability of software is known as what type of attack?

Zero-Day Signup and view all the answers

Which of the following statements about malware classification is incorrect?

All malware is a virus. Signup and view all the answers

If data is received exactly as it was sent, what characteristic does this refer to?

Integrity Signup and view all the answers

What type of security focuses on protecting a wireless access point?

Network Security Signup and view all the answers

Which of the following examples can be categorized as a passive attack?

Eavesdropping Signup and view all the answers

Study Notes

Security Characteristics and Policies

A clean-desk policy focuses on confidentiality, ensuring sensitive information is not left exposed.
When data is transmitted unchanged, it demonstrates integrity.
The SUT Internet having unrestricted use indicates it possesses availability.

Cyber Attack Types

A malicious link tricking users into sharing private info is known as phishing.
Zero-Day attacks exploit unknown vulnerabilities within software or systems.
An email from SUT asking for a password reset can be classified as spear phishing or targeted phishing.

Vulnerability and Risk Management Roles

A penetration tester specializes in identifying vulnerabilities in systems.
A security architect designs robust systems to withstand cyber attacks.
An information security analyst monitors and improves security measures for organizations.

Certifications and Training

To validate skills in identifying and resolving system vulnerabilities, obtain the CEH (Certified Ethical Hacker) certification.

Attack Types and Tactics

Denial of Service (DoS) attacks aim to disrupt service by overwhelming systems.
Broad phishing targets a vast, non-specific audience with deceptive emails.
Eavesdropping is a passive attack that intercepts information without detection.

Malware Types

Ransomware encrypts files, demanding payment for decryption.
Keyloggers are classified as spyware, used to secretly record keystrokes.
Worms can self-replicate and spread, but not all malware qualifies as a virus; a virus is just one type of malware.

Security Areas and Focus

Network security safeguards wireless access points and network integrity.
Physical security ensures access control in sensitive areas, like server rooms.
Information security encompasses the protection of all data forms against unauthorized access.

User Behavior and Insider Threats

An employee stealing company data could be considered an insider threat if they misuse their access rights.

Studying That Suits You

Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

Description

Test your knowledge of basic cybersecurity principles with this quiz. Explore topics such as clean-desk policies, types of cyber attacks, and internet access authorizations. Perfect for students and professionals looking to enhance their understanding of digital security.