Jose 4 5

Question 1

It helps vendors and developers create interoperable network devices and software.

Answer 1

Standardization

Question 2

It gives network engineers a clear structure to isolate and fix issues.

Answer 2

Troubleshooting

Question 3

It simplifies the complexity of networking into digestible parts.

Answer 3

Education

Question 4

It is the protocol suite that runs the internet, intranets, and most local networks today.

Answer 4

TCP/IP (Transmission Control Protocol/Internet Protocol)

Question 5

A cyber attack aimed at making a computer or device unavailable to its intended users by interrupting normal functioning, typically by overwhelming it with requests.

Answer 5

Denial-of-Service (DoS) Attack

Question 6

Exploit memory buffer vulnerabilities, consuming resources like hard disk space or CPU time, causing system slowdowns or crashes.

Answer 6

Buffer Overflow Attack

Question 7

Overwhelm the target with excessive network packets, using more bandwidth than the target can handle, causing service denial.

Answer 7

Flood Attack

Question 8

Involves using a broadcast address to send spoofed packets, flooding the target IP address.

Answer 8

Smurf Attack

Question 9

Overwhelms a target with excessive ICMP (ping) packets, disrupting its ability to respond efficiently.

Answer 9

Ping Flood

Question 10

Sends a malformed packet that causes system crashes or other harmful behaviors.

Answer 10

Ping of Death

Question 11

An attack that attempts to disrupt an online service by flooding it with traffic from one source.

Answer 11

DoS Attack

Question 12

An attack that aims to disrupt an online service by flooding it with traffic from multiple sources.

Answer 12

DDoS Attack

Question 13

A hacker secretly intercepting or altering communication between two parties to steal data without their knowledge.

Answer 13

Man-in-the-Middle (MitM) Attack

Question 14

Hackers impersonate banks or companies via email to steal data or money.

Answer 14

Email Hijacking

Question 15

Fake public Wi-Fi networks used to spy on users and steal sensitive data.

Answer 15

Wi-Fi Eavesdropping

Question 16

Redirects users to fake websites to steal login credentials.

Answer 16

DNS Spoofing

Question 17

Steals session cookies after login to hijack user sessions.

Answer 17

Session Hijacking

Question 18

Exploits outdated SSL protocols to intercept encrypted data.

Answer 18

SSL Hijacking

Question 19

Sends fake ARP messages to reroute traffic through the attacker’s device.

Answer 19

ARP Cache Poisoning

Question 20

Fakes IP addresses to trick users into visiting malicious sites.

Answer 20

IP Spoofing

Question 21

Accesses browser cookies (with other methods) to steal passwords or credit card info.

Answer 21

Cookie Theft

Question 22

A network security tool that controls incoming and outgoing traffic based on predefined security rules, acting as a checkpoint between trusted internal networks and potential external threats.

Answer 22

Firewall

Question 23

A system that detects potential threats and vulnerabilities by monitoring network traffic and alerting administrators without interfering with data flow.

Answer 23

Intrusion Detection System (IDS)

Question 24

Monitors traffic across the entire network.

Answer 24

Network-based IDS (NIDS)

Question 25

Runs on individual devices to monitor system-level activities.

Answer 25

Host-based IDS (HIDS)

Question 26

Monitors specific protocols at the transport layer.

Answer 26

Protocol-based IDS (PIDS)

Question 27

Focuses on traffic specific to applications.

Answer 27

Application Protocol-based IDS (APIDS)

Question 28

Combines features from multiple IDS types for broader coverage.

Answer 28

Hybrid IDS

Question 29

Detects threats by comparing traffic against known attack patterns.

Answer 29

Signature-based IDS

Question 30

Identifies deviations from normal behavior, flagging unusual activity that may indicate a new or unknown threat.

Answer 30

Anomaly-based IDS

Question 31

A security tool that actively analyzes and blocks malicious traffic in real time, positioned inline with network traffic.

Answer 31

Intrusion Prevention System (IPS)

Question 32

Recognizes known threats using a database of attack patterns.

Answer 32

Signature-based detection (IPS)

Question 33

Compares network activity against a baseline of normal behavior to detect deviations.

Answer 33

Anomaly-based detection (IPS)

Question 34

Uses custom rules set by administrators to enforce specific security protocols.

Answer 34

Policy-based detection (IPS)

Question 35

Unauthorized users connecting to your network and potentially engaging in illegal activities or stealing information.

Answer 35

Piggybacking

Question 36

Attackers driving around looking for unsecured networks to exploit.

Answer 36

Wardriving

Question 37

Attackers mimicking a legitimate Wi-Fi access point to steal personal data from unsuspecting users.

Answer 37

Evil Twin Attack

Question 38

Unencrypted public Wi-Fi exposing sensitive data like passwords and credit card numbers.

Answer 38

Wireless Sniffing

Question 39

Exposure of files and directories if file sharing is enabled on an unsecured network.

Answer 39

Unauthorized Computer Access

Question 40

Attackers stealing sensitive data by observing what you type in public spaces.

Answer 40

Shoulder Surfing

Question 41

Physical theft of devices leading to potential data exposure.

Answer 41

Theft of Mobile Devices

Question 42

Replace default passwords to prevent easy access to your network.

Answer 42

Change Default Passwords

Question 43

Use MAC address filtering and guest networks to control who can connect.

Answer 43

Restrict Access

Question 44

Use WPA2 or WPA3 encryption to protect data transmitted over your network.

Answer 44

Encrypt Data

Question 45

Avoid broadcasting your network name and use a unique SSID to make it harder for attackers to find.

Answer 45

Protect SSID

Question 46

Use both network-based and host-based firewalls to add layers of protection.

Answer 46

Install Firewalls

Question 47

Keep antivirus software updated to protect against malicious software.

Answer 47

Maintain Antivirus Software

Question 48

Disable file sharing when not needed and protect shared files with passwords.

Answer 48

Use File Sharing Cautiously

Question 49

Regularly check for software updates or patches for your router.

Answer 49

Update Access Point Software

Question 50

Consult your ISP or router manufacturer for recommended security settings.

Answer 50

Check Security Options

Question 51

It addresses minor bugs and serious vulnerabilities, preventing exploitation.

Answer 51

Application Security (AppSec)

Question 52

Updating software, drivers, and firmware to fix vulnerabilities and enhance system performance.

Answer 52

Patch Management

Question 53

Up-to-date systems function more reliably, helping employees work more efficiently.

Answer 53

Improves Productivity

Question 54

Remote patching tools minimize the need for on-site repairs, especially for remote workforces.

Answer 54

Reduces Costs

Question 55

Patch management aids in meeting data protection laws such as HIPAA and GDPR by ensuring systems stay secure.

Answer 55

Supports Compliance

Question 56

Include firmware and driver updates to address risks across the full computing stack.

Answer 56

Go Beyond Software Updates

Question 57

Establish and communicate a consistent patching cycle to reduce disruption and improve preparedness.

Answer 57

Create a Regular Schedule

Question 58

Apply patches to a small user group first to identify any issues before a company-wide rollout.

Answer 58

Test Before Full Deployment

Question 59

IT managers typically oversee patch deployment, but in smaller setups, users may handle updates themselves.

Answer 59

Define Responsibilities

Question 60

Use software like Microsoft Endpoint Configuration Manager to manage and automate patching remotely and at scale.

Answer 60

Use Patch Management Tools

Question 61

Integrates security into every phase of the software development process.

Answer 61

Secure Software Development Lifecycle (SSDLC)

Question 62

Identify security requirements and potential risks, using threat modeling to foresee attack paths.

Answer 62

Planning (SSDLC phase)

Question 63

Apply least privilege, defense in depth, and secure design patterns during system structure creation.

Answer 63

Architecture & Design (SSDLC phase)

Question 64

Follow secure coding standards, conduct code reviews, static analysis, and use automation tools.

Answer 64

Development (SSDLC phase)

Question 65

Perform SAST, DAST, and penetration testing to simulate real attacks and validate security controls.

Answer 65

Testing & Verification (SSDLC phase)

Question 66

Use Infrastructure as Code, implement secrets management, and ensure compliant deployments.

Answer 66

Deployment (SSDLC phase)

Question 67

Conduct regular patching and logging, and implement incident response plans.

Answer 67

Maintenance & Monitoring (SSDLC phase)

Question 68

Embed security into DevOps practices as a shared responsibility for fast and secure development cycles.

Answer 68

Integration with DevOps (SSDLC phase)

Question 69

Apply security early in development (coding/build).

Answer 69

Shift Left

Question 70

Continue testing and monitoring in production.

Answer 70

Shift Right

Question 71

Automate security checks to avoid slowing down development.

Answer 71

Automate Security Checks

Question 72

Promote developer security training and teamwork.

Answer 72

Developer Security Training and Teamwork

Question 73

Secure by default with least privilege, access control, and encryption in containerized environments.

Answer 73

Security for Containers & Microservices

Question 74

Protection of physical devices from threats that enable unauthorized system access, including physical security and cryptographic protection.

Answer 74

Hardware Security

Question 75

Attacks can come via internal actors, misconfigurations, or malicious hardware, making device-level protection critical.

Answer 75

Why Hardware Security Matters

Question 76

Outdated firmware with bugs and flaws due to poor patching.

Answer 76

Outdated Firmware

Question 77

Inadequate encryption leaving data at rest or in motion unprotected.

Answer 77

Inadequate Encryption

Question 78

Poorly protected local ports or interfaces that allow unauthorized access.

Answer 78

Unsecured Local Access

Question 79

Easy for attackers to guess or find default passwords on hardware devices.

Answer 79

Unchanged Default Passwords

Question 80

Security gaps in tailor-made devices.

Answer 80

Vulnerable Custom Hardware

Question 81

Hidden access intentionally built into hardware.

Answer 81

Backdoors

Question 82

Data capture from compromised devices.

Answer 82

Eavesdropping

Question 83

Tampering to control or alter hardware behavior.

Answer 83

Modification Attacks

Question 84

Induced malfunctions for exploitation.

Answer 84

Triggering Faults

Question 85

Fake or altered hardware with built-in threats.

Answer 85

Counterfeit Hardware

Question 86

Investigate manufacturers, their partners, and supply chains before acquisition.

Answer 86

Vet Hardware Suppliers

Question 87

Use full-spectrum encryption at rest, in transit, and during processing.

Answer 87

Encrypt Everything

Question 88

Disable unused ports/interfaces and fix misconfigurations to reduce potential entry points.

Answer 88

Minimize Attack Surface

Question 89

Use secure elements, authenticators, and tamper detection switches to strengthen electronic security.

Answer 89

Strengthen Electronic Security

Question 90

Lock BIOS, firewall configurations, servers, and use surveillance for protection.

Answer 90

Ensure Strong Physical Security

Question 91

Use cloud-based tools for alerts, automation, and device discovery to monitor hardware in real time.

Answer 91

Implement Real-Time Monitoring

Question 92

Perform vulnerability testing, physical inspections, and even X-rays when needed.

Answer 92

Conduct Regular Audits

Question 93

A conceptual framework that standardizes network functions into seven layers.

Answer 93

Open Systems Interconnection (OSI) Model