Practice Exam Flashcards by Timothy Dang

A social engineering technique whereby attackers under the disguise of a legitimate request attempt to gain access to confidential information is commonly referred to as:

Phishing
Privilege escalation
Backdoor access
Shoulder surfing

Phishing

How well did you know this?

Not at all

Perfectly

Which of the following answers refer to smishing? (Select 2 answers):

Social engineering technique
Email communication
Spam over Internet Telephony (SPIT)
Text messaging
Spam over Internet Messaging

Social engineering technique
Text messaging

How well did you know this?

Not at all

Perfectly

The practice of using a telephone system to manipulate user into disclosing confidential information is known as:

Whaling
Spear phishing
Vishing
Pharming

Vishing

How well did you know this?

Not at all

Perfectly

Which of the following terms is commonly used to describe an unsolicited advertising message?:

Spyware
Adware
Malware
Spam

Spam

How well did you know this?

Not at all

Perfectly

What type of spam relies on text-based communication?:

Vishing
SPIM
Bluesnarfing
SPIT

SPIM

How well did you know this?

Not at all

Perfectly

Phishing scams targeting a specific group of people are referred to as:

Vishing
Spear phishing
Spoofing
Whaling

Spear phishing

How well did you know this?

Not at all

Perfectly

In computer security, the term “Dumpster diving” is used to describe a practice of sifting through trash for discarded documents containing sensitive data. Found documents containing names and surnames of the employees along with the information about positions held in the company and other data can be used to facilitate social engineering attacks. Having the documents shredded or incinerated before disposal makes dumpster diving less effective and mitigates the risk of social engineering attacks.

True or False

True

How well did you know this?

Not at all

Perfectly

A situation in which an unauthorized person can view another user’s display or keyboard to learn their password or other confidential information is referred to as:

Spear phishing
Tailgating
Shoulder surfing
Spoofing

Shoulder surfing

How well did you know this?

Not at all

Perfectly

Which of the following answers refer to the characteristic features of pharming? (Select 3 answers):

Domain hijacking
Traffic redirection
Fraudulent website
Password attack
Credential harvesting

Traffic redirection
Fraudulent website
Credential harvesting

How well did you know this?

Not at all

Perfectly

What is tailgating?:

Acquiring unauthorized access to confidential data
Looking over someone’s shoulder to get information
Gaining unauthorized access to restricted areas by following another person
Manipulating a user into disclosing confidential information

Gaining unauthorized access to restricted areas by following another person

How well did you know this?

Not at all

Perfectly

In social engineering, the term “Elicitation” describes the use of casual conversation to extract non-public information from people without giving them the feeling they are being interrogated.

True or False

True

How well did you know this?

Not at all

Perfectly

What is Bracketing?

Providing a high and low estimate in order to entice a more specific number

How well did you know this?

Not at all

Perfectly

What is confidential bait?

Pretending to divulge confidential information in hopes of receiving confidential information in return

How well did you know this?

Not at all

Perfectly

What do deliberate false statements entail?

Saying something wrong in the hopes that the person will correct the statement with true information

How well did you know this?

Not at all

Perfectly

What is feined ignorance?

Pretending to be ignorant of a topic in order to exploit the person’s tendency to educate

How well did you know this?

Not at all

Perfectly

What is denial of the obvious?

Saying something wrong in the hopes that the person will correct the statement with true information

How well did you know this?

Not at all

Perfectly

What does flattery involve in cyber security?

Using praise to coax a person into providing information

How well did you know this?

Not at all

Perfectly

Phishing scams targeting people holding high positions in an organization or business are known as:

Vishing
Smishing
Whaling
Pharming

Whaling

How well did you know this?

Not at all

Perfectly

Which of the following is used in data URL phishing?:

Prepending
Typosquatting
Pretexting
Domain hijacking

Prepending

How well did you know this?

Not at all

Perfectly

An email message containing a warning related to a non-existent computer security threat, asking a user to delete system files falsely identified as malware, and/or prompting them to share the message with others would be an example of:

Vishing
Impersonation
Virus hoax
Phishing

Virus Hoax

How well did you know this?

Not at all

Perfectly

Which social engineering attack relies on identity theft?

Impersonation

How well did you know this?

Not at all

Perfectly

The term “URL hijacking” (a.k.a. “Typosquatting”) refers to a practice of registering misspelled domain name closely resembling other well established and popular domain name in hopes of getting Internet traffic from users who would make errors while typing in the URL in their web browsers.

True or False

True

How well did you know this?

Not at all

Perfectly

Which of the terms listed below refers to a platform used for watering hole attacks?

Mail gateways
Websites
PBX systems
Web browsers

Websites

How well did you know this?

Not at all

Perfectly

An attacker impersonates a company’s managing staff member to manipulate a lower rank employee into disclosing confidential data. The attacker informs the victim that the information is essential for a task that needs to be completed within the business hours on the same day and mentions potential financial losses for the company in case the victim refuses to comply. Which social engineering principles apply to this attack scenario? (Select 3 answers):

Urgency
Familiarity
Authority
Consensus
Intimidation
Scarcity

Urgency
Authority
Intimidation

How well did you know this?

Not at all

Perfectly

While conducting a web research that would help in making a better purchasing decision, a user visits series of Facebook pages and blogs containing fake reviews and testimonials in favor of a paid app intentionally infected with malware. Which social engineering principle applies to this attack scenario?

Consensus

An attacker impersonating a software beta tester replies to a victim's post in a forum thread discussing the best options for affordable productivity software. A while later, he/she follows up by sending the victim private message mentioning the discussion thread and offering free access to a closed beta version of a fake office app. Which social engineering principles apply to this attack scenario? (Select 3 answers) - Authority - Intimidation - Consensus - Scarcity - Familiarity - Trust - Urgency

Scarcity Familiarity Trust

Harmful programs used to disrupt computer operation, gather sensitive information, or gain unauthorized access to computer systems are commonly referred to as:

Malware

Malware that restricts access to a computer system by encrypting files or locking the entire system down until the user performs requested action is known as:

Ransomware

What is Trojan Horse?

A type of software that performs unwanted and harmful actions in disguise of a legitimate and useful program is known as a Trojan horse. This type of malware may act like a legitimate program and have all the expected functionalities, but apart from that it will also contain a portion of malicious code that the user is unaware of.

A standalone malicious computer program that typically propagates itself over a computer network to adversely affect system resources and network bandwidth is called:

Worm

What is a PUP? (Potentially Unwanted Program): - A type of computer program not explicitly classified as malware by AV software - An application downloaded and installed without the user's consent - A type of software that may adversely affect the computer's security and performance, compromise user's privacy, or display unsolicited ads - An application downloaded and installed with the user's consent - A type of computer program explicitly classified as malware by AV applications - A type of free, utility software often bundled with a paid app

A type of computer program not explicitly classified as malware by AV software A type of software that may adversely affect the computer's security and performance, compromise user's privacy, or display unsolicited ads An application downloaded and installed with the user's consent

What type of malware resides ONLY in RAM?

Fileless Virus

What is the function of a C2 Server

Botnet Control

A malware-infected network host under remote control of a hacker is commonly referred to as:

Bot

Which of the following applies to a collection of intermediary compromised systems that can be used as a platform for a DDoS attack? - Botnet - Intranet - Honeynet - Extranet

Botnet

Which of the following is an example of cryptomalware?: - Backdoor - Ransomware - Keylogger - Rootkit

Ransomware

What is a logic bomb?

Malicious code activated by specific event

Explain spyware

Malicious software collecting information about users without their knowledge/consent

Which of the following is an example of spyware?: - Keylogger - Vulnerability scanner - Computer worm - Packet sniffer

Keylogger

Which type of Trojan enables unauthorized remote access to a compromised system?

RAT (Remote Access Trojan)

A collection of software tools used by a hacker to mask intrusion and obtain administrator-level access to a computer or computer network is known as:

Rootkit

Explain backdoor

An undocumented (and often legitimate) way of gaining access to a program, online service, or an entire computer system

Which password attack bypasses account-lockout policies?

Spraying attack

Which password attack takes advantage of a predefined list of words?

Dictionary attack

One of the measures for bypassing the failed logon attempt account lockout policy is to capture any relevant data that might contain the password and brute force it offline. True or False

True

A short list of commonly used passwords tried against large number of user accounts is a characteristic feature of:

Spraying attack

What are Rainbow Tables?

Lookup tables used to speed up the process of password guessing

An attack against encrypted data that relies heavily on computing power to check all possible keys and passwords until the correct one is found is known as:

Brute-force attack

Which of the following refers to the contents of a rainbow table entry?: - Hash/Password - IP address/Domain name - Username/Password - Account name/Hash

Hash / Password

What does 'Plaintext' refer to in Cryptography?

Data in unencrypted form

The practice of making an unauthorized copy of a payment card is referred to as

Cloning

Due to added functionality in its plug, malicious USB cable can be used for: - GPS tracking - Capturing keystrokes - Sending and receiving commands - Delivering and executing malware - Any of the above

Any of the above

What practice / attack refers to the theft of personal data from a payment card?

Skimming

An AI feature that enables it to accomplish tasks based on training data without explicit human instructions is called:

ML (Machine Learning)

A situation where a cryptographic hash function produces two different digests for the same data input is referred to as a hash collision. True or False

False

Which cryptographic attack relies on the concepts of probability theory?

Birthday attack

What is a downgrade attack?

A type of cryptographic attack that forces a network protocol to revert to its older, less secure version

Which of the following facilitate(s) privilege escalation attacks? (Select all that apply): - System/application vulnerability - Principle of least authority - Social engineering techniques - Mandatory Access Control (MAC) - System/application misconfiguration

System/application vulnerability Social engineering techniques System/application misconfiguration

Which of the following answers can be used to describe characteristics of a cross-site scripting attack? (Select 3 answers): - Exploits the trust a user's web browser has in a website - A malicious script is injected into a trusted website - User's browser executes attacker's script - Exploits the trust a website has in the user's web browser - A user is tricked by an attacker into submitting unauthorized web requests - Website executes attacker's requests

Exploits the trust a user's web browser has in a website A malicious script is injected into a trusted website User's browser executes attacker's script

What is DLL (Dynamic Link Library)

Collection of precompiled functions designed to be used by more than one Microsoft Windows application simultaneously to save system resources

What application attack relies on executing a library of code?

DLL Injection

Which of the following terms describes an attempt to read a variable value from an invalid address?: - Buffer Overflow - Null-pointer dereference - Integer overflow - Memory leak

Null-pointer dereference

What exploit type relies on overwriting contents of memory to cause unpredictable results in an application?

Buffer overflow

A situation in which an application writes to an area of memory it is not supposed to have access to is referred to as:

Buffer overflow

A malfunction in a preprogrammed sequential access to a shared resource is described as:

Race condition

What is a dot-dot-slash attack also referred as?

Directory traversal attack

Which of the following terms refers to a vulnerability caused by race conditions?: - Mean time to failure - Replay attack - Mean time between failures - Time-of-check to Time-of-use

Time-of-check to Time-of-use

A situation in which a web form field accepts data other than expected (e.g.- server commands) is an example of:

Improper input validation

In a session replay attack, an attacker steals a valid session ID of a user and resends it to the server with the intent of gaining unauthorized access or tricking the server into unauthorized operations. True or False

True

Which type of exploit allows an attacker to take control over a server and use it as a proxy for unauthorised actions?

SSRF (Server-Side Request Forgery)

Name the 7 layers of the OSI model

7. Application 6. Presentation 5. Session 4. Transport 3. Network 2. Data link 1. Physical

Which of the following answers refers to a countermeasure against code injection?: - Fuzzing - Input validation - Code signing - Normalisation

Input validation

How does a replay attack work?

Network replay attacks occur when attackers intercept sensitive user data and resents it to the receiver with the intent of gaining unauthorised access or tricking the receiver into unauthorised operations

What is the purpose of a DoS attack?

Resource exhaustion

SSL stripping is an example of (Select 2): - Brute force attack - Downgrade attack - Watering hole attack - On-path attack - DoS attack

Downgrade attack On-path attack

Which of the following enables the exchange of information between computer programs?: - API - UI - Device drivers - SDK

API (Application Programming Interface)

A situation in which an application fails to properly release memory allocated to it or continually requests more memory than required is known as:

Memory leak

What is Shimming?

Shimming refers to an attack where hackers insert a piece of malicious code, known as a shim, to intercept data and potentially gain control. Once in place, shims can intercept API calls, modify information, and open backdoors for attackers.

Which of the following alters the external behaviour of an application and at the same time does not introduce any changes to the application's code?: - Shimming - Refactoring - API call - Sideloading

Shimming

Which of the programming aspects listed below are critical in secure application development process? (Select 2 answers): - Patch management - Input validation - Password protection - Error and exception handling - Application whitelisting

Input validation Error and exception handling

Which of the following are characteristic of session IDs? (Select 3): - Stored on a server - A unique identifier assigned by the website to a specific user - Contains user's authentication credentials - A piece of data that can be stored in a cookie or embedded as a URL parameter - Stored in a visitor's browser - A unique identifier assigned to a server

A unique identifier assigned by the website to a specific user A piece of data that can be stored in a cookie or embedded as a URL parameter Stored in a visitor's browser

Which of the terms listed below describes a programming error where an application tries to store a numeric value in a variable that is too small to hold it?: - Buffer overflow - Pointer dereference - Memory leak - Integer overflow

Integer overflow

How do SSL stripping attacks work? List 3 ways

Proxy servers ARP (Address Resolution Protocol) Spoofing Network access

Which of the following can be used to describe the characteristics of a XSRF attack?: - Exploits the trust a website has in the user's web browser - A user is tricked by an attacker into submitting unauthorized web requests - Website executes attacker's requests - Exploits the trust a user's web browser has in a website - A malicious script is injected into a trusted website - User's browser executes attacker's script

Exploits the trust a website has in the user's web browser A user is tricked by an attacker into submitting unauthorized web requests Website executes attacker's requests

What is the practice of modifying an application's code without changing its external behaviour?

Refactoring

Which of the following terms refer to software/hardware driver manipulation techniques? (Select 2): - Prepending - Fuzz testing - Refactoring - Shimming - Sideloading

Refactoring Shimming

The term "Evil twin" refers to a rogue Wireless Access Point (WAP) set up for eavesdropping or stealing sensitive user data. Evil twin replaces the legitimate access point and by advertising its own presence with the same Service Set Identifier (SSID, a.k.a. network name) appears as a legitimate access point to connecting hosts. True or False

True

A technique that allows an attacker to authenticate to a remote server without extracting cleartext password from a digest is called:

Pass the hash

The practice of sending unsolicited messages over Bluetooth is known as:

Bluejacking

A wireless disassociation attack is a type of ___ (Select 2): - Cryptographic attack - Downgrade attack - Deauthentication attack - Brute-force attack - DoS attack

Deauthentication attack DoS attack

What is a wireless disassociation attack?

An attack that targets the 802.11 Wi-Fi protocol. Involves sending forged deauthentication frames to a WAP or client device, causing the device to disconnect from the network.

What is the name of a technology that is used for contactless payment transactions?

NFC (Near-field Communication)

Gaining unauthorized access to a Bluetooth device is referred to as:

Bluesnarfing

NFC is vulnerable to: - Data interception - Replay attacks - DoS attacks - All of the above

All of the above

What is a type of identification badge that can be held within a certain distance of a reader device to authenticate its holder called:

RFID Badge

A wireless jamming attack is a type of:

DoS attack

Which of the following provides randomisation during encryption processes? (Select 2): - Salting - Rainbow tables - Obfuscation - Initialisation Vector (IV) - Shimming

Salting Initialisation Vector (IV)

RFID is vulnerable to: - Spoofing - Eavesdropping - Data interception - Replay attacks - DoS attacks - All of the above

All of the above

Which of the following statements outline the characteristics of an on-path attack?: - Also known as a MITM attack - Attackers place themselves on the comms route between two devices - Attackers intercept or modify packets sent between 2 communicating devices - Attackers do not have access to packets exchanged during the communication between 2 devices - Attackers generate forged packets and inject them in the network

Also known as a MITM attack Attackers place themselves on the comms route between two devices Attackers intercept or modify packets sent between 2 communicating devices

What wireless technologies enable the identification and tracking of tags attached to objects?

RFID

An attacker managed to associate his/her MAC address with the IP address of the default gateway. In result, a targeted host is sending network traffic to the attacker's IP address instead of the IP address of the default gateway. Based on the given info, which type of attack is taking place in this scenario?

XSRF (Cross-Site Request Forgery)

Media Access Control (MAC) flooding is a network attack that compromises the security of a network switch by overflowing its memory used to store the MAC address table. True or False

True

Remapping a domain name to a rogue IP address is an example of what kind of exploit?

DNS poisoning

URL redirection is characteristic of what

Pharming

Which of the following fall(s) into the category of Layer 2 attacks? (Select all that apply): - MAC cloning - ARP poisoning - MAC flooding - DNS poisoning - MAC spoofing

MAC cloning ARP poisoning MAC flooding MAC spoofing

The term "Domain hijacking" refers to a situation in which domain registrants due to unlawful actions of third parties lose control over their domain names. True or false

True

An attack that relies on altering the burned-in address of a NIC to assume the identity of a different network host is known as (Select 2 answers): - ARP poisoning - On-path attack - MAC spoofing - Replay attack - MAC cloning

MAC spoofing MAC cloning

Remapping domain names to rogue IP addresses is an example of what kind of exploit?

DNS Poisoning

What is URL redirection a characteristic feature of?

Pharming

Which of the following enables client-side URL redirection?: - host - hosts - hostname - localhost

hosts

Which of the following factors has the biggest impact on domain reputation?: - Domain age - Missing SSL certificate - Derivative content - Bounce rate - Distribution of spam

Distribution of spam

As opposed to the simple Denial of Service (DoS) attacks that usually are performed from a single system, a Distributed Denial of Service (DDoS) attack uses multiple compromised computer systems to perform the attack against its target. The intermediary systems that are used as platform for the attack are the secondary victims of the DDoS attack; they are often referred to as zombies, and collectively as a botnet. True or false

True

What is the most common form of a DDoS attack?

Network-based

Which type of DDoS attack targets industrial equipment and infrastructure?

OT (Operational Technology)

What filename extension is used in cross-platform, general-purpose programming language?

.py

What filename extension is Microsoft PowerShell script file?

.ps1

Which of the following enables running macros in Microsoft Office applications?: - DOM (Document Object Model) - VBA (Visual Basic for Applications) - SDK (Software Development Kit) - RAD (Rapid Application Development)

VBA

What script file type is designed to be run in Unix command line?

What is the filename extension used scripting language based on Microsoft's Visual Basic programming language?

.vbs

Which statements best describe the attributes of an APT? (Select 3 answers): - Lack of extensive resources/funding - High level of technical sophistication - Extensive amount of resources/funding - Threat actors are individuals - Low level of technical sophistication - Typically funded by governments/nation states

High level of technical sophistication Extensive amount of resources/funding Typically funded by governments/nation states

What do you call a person who breaks into a computer network or system for a politically or socially motivated purpose?

Hacktivist

Which statements best describe the attributes of a script kiddie? (Select 2 answers): - Motivated by money - Low level of technical sophistication - Motivated by ideology - High level of technical sophistication - Lack of extensive resources / funding

Low level of technical sophistication Lack of extensive resources / funding

What term best describes a disgruntled employee abusing legitimate access to company's internal resources?

Insider Threat

Which of the following statements does not match a typical description of nation states or state-funded groups identified as threat actors?: - Political or economic motivation - High level of technical sophistication - Advanced Persistent Threat (APT) - High level of resources/funding - Typically classified as an internal threat

Typically classified as an internal threat

What term best describes threat actors whose sole intent behind breaking into a computer system or network is monetary gain?

Criminal syndicates

Which of the following terms fall into the category of authorized hacking activities? (Select 2 answers): - Black hat - Gray hat - White hat - Blue hat - Green hat

White hat Blue hat

Which of the following terms falls into the category of unauthorised hacking activities?: - Black hat - Gray hat - White hat - Blue hat

Black hat

Which of the following terms falls into the category of semi-authorised hacking activities?: - Blue hat - Black hat - Gray hat - White hat

Gray hat

In IT security, the term "Shadow IT" is used to describe software and hardware used within an organization, but outside of the organization's official IT infrastructure. True or false

True

What term best describes threat actors that engage in illegal activities to get the know-how and gain market advantage?

Competitors

Which of the following answers does not relate to a direct access threat vector?: - Malicious USB cable - Backdoor - Malicious URL - Lack of physical security controls - Malicious flash drive

Malicious URL

Which of the following answers refer(s) to wireless threat vector(s)? (Select all that apply): - Network protocol vulnerabilities (WEP/WPA) - Rogue AP / Evil twin - Default security configurations - Malicious email attachments - Vulnerabilities in network security standards (WPS)

Network protocol vulnerabilities (WEP/WPA) Rogue AP / Evil twin Default security configurations Vulnerabilities in network security standards (WPS)