SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Information Security
Start Test
Study First
Subject
:
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Typically used on home routers that allow multiple users to share one IP address received from an Internet service provider (ISP).
PAT
Role Based Access Control
Identity Theft
Phishing
2. A password-protected and encrypted file that holds an individual's identification information - including a public key and a private key. The individual's public key is used to verify the sender's digital signature - and the private key allows the in
Adware
Digital Certificate
Trojan-horse virus
Access Control
3. A variety of threats such as viruses - worms - and Trojan horses
Authentication
Malicious code
BioMetric devices
Human memory
4. These accounts are user accounts that remain active after an employee has left an organization.
Backup frequency
DAP
Spyware
Orphaned
5. The most popular attack toolkit - which has almost half of the attacker toolkit market is ____.
MPack
Bluejacking
Content inspection
Social engineering
6. Pretending to be another person.
Brute Force Attack
Impersonation
Cipher locks
Ciphertext
7. Scrambles information into an alternative form that requires a key or password to decrypt the information
Encryption
Malicious Insiders
MPack
Physical security
8. A group of piconets in which connections exist between different piconets is called a ____.
Whaling
Loop Protection
External Threat
Scatternet
9. Often used for managing user access to one or more systems.
Open Port
Rule Based Access Control
SYN Flood
Cyberstalking/Harassment
10. Hacker who exposes vulnerabilities for financial gain or malicious purpose.
Mandatory Access Control
Black Hat
Mouse Trapping
Logic Bomb
11. A pay-per-use computing model in which customers pay only for the computing resources they need.
Cloud computing
Reverse proxy
DAP
CHAP (Challenge Handshake Authentication Protocol)
12. A method for confirming users' identities
Trojan-horse virus
Authentication
Distributed Denial of Service (DDoS)
Ciphertext
13. Lock - conduit - card key - video equipment - secured guard
Physical security access control measures
Stateless Firewall
Flaming
Distributed
14. The Chinese government uses _____ to prevent Internet content that it considers unfavorable from reaching its citizenry.
PAT
DNS poisoning
GIF Layering
NAT
15. A security attack in which an internet user sends commands to another internet user's machine that cause the screen to fill with garbage characters. A flashing attack causes the user to terminate her session.
White Hat
Rainbow Tables
Flashing
Fencing
16. Can be accidental or intentional - internal or external. (ex. back-hoe operator performing legitimate construction cuts cables leading into a facility.)
Kerberos
Man-made Threat
Amart card
Chain
17. Mass mailings sent as Instant Messages to users. Often these can feature links to explicit porn sites.
Spimming
Word Splitting
Authorization
Cybercriminals
18. If a password is communicated across a network to log on to a remote system - it is vulnerable to ______.
Scatternet
Electronic Vandal
Electronic eavesdropping
External Threat
19. A database - organized as a hierarchy or tree - of the name of each site on the Internet and its corresponding IP number.
DNS
Distributed storage
Flaming
Replay
20. Can be used to determine whether new IP addresses are attempting to probe the network.
Human memory
Firewall logs
DAP
Biometrics
21. Using one's social skills to trick people into revealing access credentials or other information valuable to the attacker. <dumpster diving - or looking through people's trash - etc>
Virus
WEP (Wired Equivalent Privacy)
Social engineering
Dumpster Diving
22. Sending or posting harmful or cruel text or images using the internet or other digital communication devices.
Physical security
Electronic Activist (hacktivist)
Cyberbullying
Virus
23. In the context of SSL encryption - a message issued from the client to the server that contains information about what level of security the client's browser is capable of accepting and what type of encryption the client's browser can decipher (for e
VPN
Sniffer
Client_Hello
PAT
24. A form of filtering that blocks only sites specified as harmful.
Port Scanner
Blacklisting Software
Operation
Cybercriminals
25. Sifting through a company's garbage to find information to help break into their computers
Phishing
Dumpster Diving
IEEE 802.1x
Rainbow Tables
26. Software that comes hidden in free downloadable software and tracks online movements - mines the information stored on a computer - or uses a computer's CPU and storage for some task the user knows nothing about - can cause extremely slow performance
NAT
Kerberos
Backup scope
Spyware
27. How many past backups you keep - what you did on your machine etc.
History
Spyware
Loop Protection
WEP (Wired Equivalent Privacy)
28. Altering the contents of packets as they travel over the Internet or altering data on computer disks after penetrating a network. For example - an attacker might place a tap on a network line to intercept packets as they leave the computer. The attac
Encryption
Packet tampering
Dwell Time
Virtualization
29. A ____ encrypts all data that is transmitted between the remote device and the network.
DNS Hijacking
Cyberterrorist
VPN
DLP
30. ____ are a loose-knit network of attackers - identity thieves - and financial fraudsters.
Cybercriminals
Spoofing
Environmental Threat
Wireless VLANs
31. Software that can guess passwords
Password Crackers
Wireless security
Mantrap
EAP
32. A ____ attack is similar to a passive man-in-the-middle attack.
Cloud computing
Cognitive biometrics
Replay
Honeypot
33. It accepts spoken words for input as if they had been typed on the keyboard.
Social engineering
War Driving
Speech recognition
VPN
34. When organizations use software that filters content to prevent the transmission of unauthorized information
Black Hat
Spear Phishing
Content filtering
Fake Antivirus
35. An operating system that has been reengineered so that it is designed to be secure from the ground up is known as a ____.
BioMetric devices
Authorization
DNS Log
Trusted OS
36. To create a rainbow table - each ____ begins with an initial password that is encrypted.
Chain
Distributed storage
Physical security
Port Scanner
37. A ____ virus is loaded into random access memory (RAM) each time the computer is turned on and infects files that are opened by the user or the operating system.
PAT
Resident
Content filtering
Scatternet
38. If a user typically accesses his bank's Web site from his home computer on nights and weekends - then this information can be used to establish a ____ of typical access.
computer footprint
Association request
CCTV
Wireless VLANs
39. A ____ means that the application or service assigned to that port is listening for any instructions.
Security
Account expiration
Open Port
CHAP (Challenge Handshake Authentication Protocol)
40. Attacker sets up a rogue DNS server that responds to legitimate requests with IP addresses for malicious or non-existent websites.
Spimming
DNS Hijacking
VPN
EAP
41. Email attack that targets only specific users and has familiar information in it - making it more tempting to click the links in the message.
Spear Phishing
Bluesnarfing
Firewall logs
WEP (Wired Equivalent Privacy)
42. A ____ tester has an in-depth knowledge of the network and systems being tested - including network diagrams - IP addresses - and even the source code of custom applications.
White box
Mandatory Access Control
Drive-by Download
Proximity reader
43. Hurricanes - tornadoes - flooding and earthquakes are all examples of this.
Distributed
Natural Threat
Media for backups
Electronic eavesdropping
44. ____ uses "speckling" and different colors so that no two spam e-mails appear to be the same.
Cyberterrorist
Geometric variance
Offline cracking
Flashing
45. Ensures that messages are not corrupt or tampered with
Account expiration
Hash encoding
Character
VPN
46. A random string of text issued from one computer to another in some forms of authentication. It is used - along with the password (or other credential) - in a response to verify the computer's credentials.
Identification
Challenge
Data
Mouse Trapping
47. The breadth of your back-up (what types of files you will back up-media - documents - OS - etc)
Rainbow Tables
Separation of duties
Fencing
Backup scope
48. An attack that intercepts legitimate communication between two victims and captures - analyzes and possibly alters the data packets before sending a fake reply.
EAP
Media for backups
Port Scanner
Man-in-the-Middle Attack
49. Wants to cause as much damage as possible - without a particular target or goal.
Mantrap
Electronic Vandal
Content-Filtering Firewall
Man-in-the-Middle Attack
50. Form of phishing that targets wealthy individuals.
NAT
Whaling
Federated identity management
Encryption
