1

Question 1

What is the primary focus of information security in the modern digital era?

Answer 1

Governed by legal, ethical, and professional standards.

Question 2

What does the legal aspect of information security protect against?

Answer 2

Cyber threats, ensuring compliance and accountability.

Question 3

What role do ethics play in information security?

Answer 3

Guide professionals in responsible decisions regarding data privacy and cybersecurity practices.

Question 4

What is professionalism in the context of information security?

Answer 4

Maintaining integrity, competence, and a duty to protect information assets.

Question 5

What are the potential consequences of unethical behavior in cybersecurity?

Answer 5

Legal consequences, financial damage, reputational harm, operational disruption.

Question 6

What law can lead to criminal charges for unauthorized access (hacking)?

Answer 6

Computer Fraud and Abuse Act (CFAA).

Question 7

What can data breaches due to negligence result in?

Answer 7

Heavy fines under laws like HIPAA or GDPR.

Question 8

What is ethical hacking?

Answer 8

Legally authorized practice of probing systems to identify vulnerabilities.

Question 9

What are ethical hackers also known as?

Answer 9

White-hat hackers.

Question 10

What is the intent of unethical hacking?

Answer 10

Stealing data, causing harm, or disrupting operations.

Question 11

Who are black-hat hackers?

Answer 11

Hackers engaged in unauthorized access with malicious intent.

Question 12

What is penetration testing?

Answer 12

Simulating cyberattacks to find and fix weaknesses.

Question 13

What is a bug bounty program?

Answer 13

Companies reward ethical hackers for reporting security flaws.

Question 14

What does the GDPR stand for?

Answer 14

General Data Protection Regulation.

Question 15

What is the purpose of the GDPR?

Answer 15

Protect the privacy and personal data of EU citizens.

Question 16

What is a key provision of the GDPR?

Answer 16

Companies must report data breaches within 72 hours.

Question 17

What does the Digital Millennium Copyright Act (DMCA) protect against?

Answer 17

Digital piracy and unauthorized access to copyrighted material.

Question 18

What is one notable case associated with the CFAA?

Answer 18

Aaron Swartz Case (2011-2013).

Question 19

What is the purpose of the U.S. Electronic Communications Privacy Act (ECPA)?

Answer 19

Regulate government and private surveillance of electronic communications.

Question 20

What is one example of unethical hacking?

Answer 20

Ransomware attacks.

Question 21

Fill in the blank: Ethical hackers use their skills to ______.

Answer 21

strengthen security and prevent breaches.

Question 22

Fill in the blank: Unauthorized access to systems is characteristic of ______ hacking.

Answer 22

unethical.

Question 23

True or False: Ethical hacking requires authorization from the system owner.

Answer 23

True.

Question 24

True or False: Black-hat hackers act within legal and ethical boundaries.

Answer 24

False.

Question 25

What is one of the key lessons from Kevin Mitnick's story?

Answer 25

Even notorious black-hat hackers can turn ethical and contribute positively.

Question 26

What motivates hacktivists?

Answer 26

Promote a political or social agenda.

Question 27

What happened in the 2008 cyber-attacks by Anonymous?

Answer 27

They protested against the Church of Scientology's censorship.

Question 28

What is a gray-hat hacker?

Answer 28

Operates without permission but does not intend harm.

Question 29

What is the impact of unethical behavior in cybersecurity?

Answer 29

Causes financial losses and reputational damage.

Question 30

What is the role of cybersecurity laws?

Answer 30

Protect against unauthorized access, fraud, and data breaches.

Question 31

Who does the ECPA affect?

Answer 31

Internet users, law enforcement, ISPs, and companies storing user data.

Question 32

What does the ECPA prohibit?

Answer 32

Unauthorized interception of emails, phone calls, and online communications.

Question 33

What must law enforcement obtain to access stored digital communications?

Answer 33

A warrant.

Question 34

What can the government demand without a full warrant under the ECPA?

Answer 34

Metadata.

Question 35

What notable case involved Microsoft and the U.S. government?

Answer 35

Microsoft vs. U.S. Government (2013-2018).

Question 36

What did Microsoft argue in the notable case regarding ECPA?

Answer 36

That ECPA did not apply outside the U.S.

Question 37

Why is the ECPA significant?

Answer 37

It protects online privacy but has loopholes allowing government surveillance.

Question 38

What does intellectual property (IP) refer to in cybersecurity?

Answer 38

Creations of the mind that are legally protected from unauthorized use.

Question 39

What types of creations does IP protect in cybersecurity?

Answer 39

Software, databases, cryptographic methods, and other digital assets.

Question 40

What are the types of intellectual property protection?

Answer 40

* Copyright * Patents * Trademarks * Trade Secrets

Question 41

What does copyright protect?

Answer 41

Original works, including software code, digital content, music, books, and films.

Question 42

How long does copyright protection last?

Answer 42

For the creator’s lifetime + 50 to 100 years.

Question 43

What must be filed and approved for patent protection?

Answer 43

An application by a government patent office.

Question 44

How long does patent protection last?

Answer 44

20 years.

Question 45

What does trademark protection cover?

Answer 45

Distinctive brand elements like logos, names, and slogans.

Question 46

What is required for trademark protection?

Answer 46

Registration with trademark offices.

Question 47

How long can trademarks last?

Answer 47

Indefinitely, as long as they are renewed.

Question 48

What is a trade secret?

Answer 48

Privately held, valuable business information.

Question 49

What is required for trade secret protection?

Answer 49

No registration required; protection depends on keeping it secret.

Question 50

What are common types of software licenses?

Answer 50

* Proprietary License * Open-Source License * Freeware * Shareware

Question 51

What is software piracy?

Answer 51

Unauthorized copying, distribution, or use of software without a legal license.

Question 52

What is a key requirement of ISO/IEC 27001?

Answer 52

Risk Assessment.

Question 53

What is the purpose of the NIST Cybersecurity Framework?

Answer 53

Helps organizations identify, protect, detect, respond to, and recover from cyber threats.

Question 54

What are the five core functions of the NIST Cybersecurity Framework?

Answer 54

* Identify * Protect * Detect * Respond * Recover

Question 55

What is the role of an information security professional?

Answer 55

Protect organizations from cyber threats through risk assessment and policy implementation.

Question 56

What are potential consequences of negligence in cybersecurity?

Answer 56

* Data Breaches * Financial Penalties * Loss of Trust * Legal Action

Question 57

What does CISSP stand for?

Answer 57

Certified Information Systems Security Professional.

Question 58

What is the focus of the CISM certification?

Answer 58

Information security governance and compliance.

Question 59

What does CEH stand for?

Answer 59

Certified Ethical Hacker.

Question 60

What is the Security+ certification?

Answer 60

Entry-level certification for IT security fundamentals.