Course 1, Week 1

Question 1

Cybersecurity

Answer 1

The practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.

Question 2

Cloud Security

Answer 2

The practice of protecting cloud-based data, applications and infrastructure from cyber attacks and threats.

Question 3

Internal Threat

Answer 3

A security risk that originates from within the targeted organization.

Question 4

Network Security

Answer 4

Protects your network and data from breaches, intrusions and other threats.

Question 5

Personally Identifiable Information (PII)

Answer 5

Any data that could potentially identify a specific individual.

Question 6

Security Posture

Answer 6

An organization’s ability to protect its networks, information, and systems from threats.

Question 7

Sensitive Personally Identifiable Information (SPII)

Answer 7

A subset of PII, if lost, compromised, or disclosed without authorization, could result in substantial harm, embarrassment, inconvenience, or unfairness to an individual.

Question 8

Technical Skills

Answer 8

A subset of hard skills, which are the knowledge or abilities needed to perform specific tasks.

Question 9

Threat

Answer 9

A malicious act that seeks to damage data, steal data, or disrupt digital life in general.

Question 10

Threat Actor

Answer 10

Individuals or groups that intentionally cause harm to digital devices or systems.

Question 11

Transferable Skills

Answer 11

Skills you can transfer from one job to another.

Question 12

Adversarial Artificial Intelligence (AI)

Answer 12

A technique that manipulates artificial intelligence (AI) and machine learning (ML) technology to conduct attacks more efficiently.

Question 13

Business Email Compromise (BEC)

Answer 13

A spear phishing email scam that attempts to steal money or sensitive data from a business.

Question 14

Phishing

Answer 14

A type of social engineering attack often used to steal user data, including login credentials and credit card numbers.

Question 15

Computer Code

Answer 15

Malicious code designed to cause damage, security breaches or other threats to application security.

Question 16

Cryptographic Attack

Answer 16

Allows threat actors to bypass the security of a cryptographic system by finding weaknesses in its code, cipher, cryptographic protocol, or key management scheme.

Question 17

Hacker

Answer 17

Any person who uses computers to gain access to computer systems, networks, or data.

Question 18

Malware

Answer 18

Software made to harm devices or networks.

Question 19

Password Attack

Answer 19

An attempt to access password secured devices, systems, networks, or data.

Question 20

Physical Attack

Answer 20

A security breach that impacts operations, damages property, or otherwise impacts the physical environment.

Question 21

Physical Social Engineering

Answer 21

A physical breach where an unauthorized person manipulates their way into a restricted or employee only authorized area through the use of social engineering tactics.

Question 22

Social Engineering

Answer 22

A manipulation technique that exploits human error to gain private information, access, or valuables.

Question 23

Social Media Phishing

Answer 23

Used by attackers seeking to steal personal data to sell on the dark web or to gain access, typically to financial accounts.

Question 24

Spear Phishing

Answer 24

Malicious email attack that targets a specific organization or individual.

Question 25

Supply-Chain Attack

Answer 25

An attack that targets systems, applications, hardware, and/or software to locate a vulnerability where malware can be deployed.

Question 26

USB Baiting

Answer 26

Leaving a piece of portable storage media such as a CD, laptop or USB in an open location to tempt a victim into seeing what’s on it.

Question 27

Vishing

Answer 27

Using electronic voice communication to trick people and get secret information or pretend to be someone they know.

Question 28

Watering Hole Attack

Answer 28

When an attacker tries to mess with a website that lots of people from a particular group like to visit.

Question 29

Whaling

Answer 29

A type of phishing attack targeting senior employees with the purpose of stealing money or information.