IBM Cybersecurity Analyst Professional Certificate Assessment Exam Answers

IBM Cybersecurity Analyst Professional Certificate Assessment Examination Quiz Answers

Warning: Jo Answer Greenish hai wo correct hai but

Jo Green Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

Question 1)

Implementing a Security Awareness grooming program would be an example of which type of command?

  • Administrative control

Question 2)

Putting locks on a door is an example of which blazon of control?

  • Preventative

Question 3)

How would you classify a slice of malicious code that tin replicate itself and spread to new systems?

  • A worm

Question iv)

To engage in bundle sniffing, you lot must implement promiscuous fashion on which device ?

  • A network bill of fare
  • An Intrusion Detection System (IDS)
  • A sniffing router

Question 5)

Which machinery would help assure the integrity of a message, merely not do much to assure confidentiality or availability.

  • Hashing

Question 6)

An arrangement wants to restrict employee after-hours access to its systems and so it publishes a policy forbidding employees to work exterior of their assigned hours, and so makes certain the office doors remain locked on weekends. What two (ii) types of controls are they using? (Select 2)

  • Physical
  • Administrative

Question 7)

Which ii factors contribute to cryptographic strength? (Select ii)

  • The use of cyphers that are based on complex mathematical algorithms
  • The use of cyphers that have undergone public scrutiny

Question eight)

Trying to pause an encryption fundamental by trying every possible combination of characters is chosen what?

  • A brute force assail

Question 9)

Which of the following describes the cadre goals of IT security?

  • The Open Spider web Application Security Project (OWASP) Framework
  • The Business Process Management Framework
  • The CIA Triad

Question 10)

Which three (3) roles are typically found in an Information Security organization? (Select 3)

  • Vulnerability Assessor
  • Chief Information Security Officer (CISO)
  • Penetration Tester

Question xi)

Problem Management, Change Management, and Incident Management are all key processes of which framework?

  • ITIL

Question 12)

Alice sends a message to Bob that is intercepted by Trudy. Which scenario describes an integrity violation?

  • Trudy changes the bulletin and and so forwards it on
  • Trudy deletes the message without forwarding information technology
  • Trudy reads the message
  • Trudy cannot read information technology considering it is encrypted but allows it to be delivered to Bob in its original form

Question 13)

In cybersecurity, Accountability is defined as what?

  • Beingness able to map an activity to an identity

Question xiv)

Multifactor authentication (MFA) requires more than than one authentication method to be used before identity is authenticated. Which three (3) are authentication methods? (Select 3)

  • Something a person is
  • Something a person has
  • Something a person knows

Question xv)

Which iii (3) of the post-obit are Physical Access Controls? (Select 3)

  • Door locks
  • Security guards
  • Fences

Question sixteen)

If yous are setting upward a Windows ten laptop with a 32Gb difficult drive, which two (2) file system could yous select? (Select two)

  • NTFS
  • FAT32

Question 17)

Which iii (3) permissions can be assault a file in Linux? (Select 3)

  • write
  • execute
  • read

Question 18)

If cost is the primary business organisation, which type of cloud should be considered commencement?

  • Public deject

Question nineteen)

Consolidating and virtualizing workloads should be done when?

  • Before moving the workloads to the cloud

Question xx)

Which of the following is a self-regulating standard gear up upwards past the credit carte industry in the US?

  • PCI-DSS

Question 21)

Which two (2) of the post-obit attack types target endpoints?

  • Ad Network
  • Spear Phishing

Question 22)

If an Endpoint Detection and Response (EDR) organisation detects that an endpoint does not accept a required patch installed, which statement best characterizes the actions information technology is able to take automatically?

  • The endpoint can exist quarantined from all network resources except those that let information technology to download and install the missing patch

Question 23)

Granting access to a user based upon how high up he is in an system violates what basic security premise?

  • The principle of least privileges

Question 24)

The Windows Security App available in Windows ten provides uses with which of the following protections?

  • Firewall and network protection
  • Family options (parental controls)
  • All of the above

Question 25)

Hashing ensures which of the following?

  • Integrity

Question 26)

Which of the following practices helps assure the all-time results when implementing encryption?

  • Choose a reliable and proven published algorithm
  • Develop a unique cryptographic algorithm for your system and keep them undercover

Question 27)

Which of these methods ensures the authentication, not-repudiation and integrity of a digital communication?

  • Use of digital signatures

Question 28)

Which of the following practices volition help clinch the confidentiality of data in transit?

  • Disable certificate pinning
  • Accept self-signed certificates
  • Implement HTTP Strict Transport Protocol (HSTS)

Question 29)

Which iii (iii) of these are benefits you can realize from using a NAT (Network Accost Translation) router? (Select 3)

  • Allows static 1-to-i mapping of local IP addresses to global IP addresses
  • Allows dynamic mapping of many local IP addresses to a smaller number of global IP accost but when they are needed
  • Allows internal IP addresses to be subconscious from outside observers

Question 30)

Which argument best describes configuring a NAT router to use static mapping?

  • The organisation will demand as many registered IP addresses every bit it has computers that need Internet access

Question 31)

If a computer needs to send a message to a system that is function of the local network, where does it send the message?

  • To the system'due south MAC address

Question 32)

Which are backdrop of a highly bachelor system?

  • Redundancy, failover and monitoring

Question 33)

Which iii (iii) of these statements about the UDP protocol are True? (Select 3)

  • UDP is faster than TCP
  • UDP packets are reassembled by the receiving system in whatever order they are received
  • UDP is connectionless

Question 34)

What is one difference between a Stateful Firewall and a Next Generation Firewall?

  • A NGFW empathise which application sent a given packet

Question 35)

You are concerned that your organization is actually not very experienced with securing data sources. Which hosting model would require you to secure the fewest data sources?

  • SaaS

Question 36)

Hassan is an engineer who works a normal day shift from his visitor's headquarters in Austin, TX United states. Which 2 (2) of these activities raise the most cause for business organization? (Select 2)

  • Each night Hassan logs into his account from an ISP in China
  • One evening, Hassan downloads all of the files associated with the new production he is working on

Question 37)

Which 3 (3) of the following are considered safe coding practices? (Select iii)

  • Employ library functions in place of OS commands
  • Avoid using Bone commands whenever possible
  • Avoid running commands through a vanquish interpreter

Question 38)

Which three (3) items should be included in the Planning step of a penetration test? (Select three)

  • Informing Demand-to-know employees
  • Establishing Boundaries
  • Setting Objectives

Question 39)

Which portion of the pentest report would cover the risk ranking, recommendations and roadmap?

  • Executive Summary

Question forty)

Spare workstations and servers, blank removable media, packet sniffers and protocol analyzers, all belong to which Incident Response resource category?

  • Incident Post-Analysis Resources
  • Incident Analysis Hardware and Software

Question 41)

NIST recommends because a number of items, including a loftier level of testing and monitoring, during which phase of a comprehensive Containment, Eradication & Recovery strategy?

  • Recovery

Question 42)

True or False. Digital forensics is effective in solving cyber crimes but is not considered effective in solving violent crimes such every bit rape and murder.

  • Imitation

Question 43)

Which iii (three) are common obstacles faced when trying to examine forensic data? (Select 3)

  • Selecting the right tools to aid filter and exclude irrelevant data
  • Finding the relevant files among the hundreds of thousands found on most hard drives
  • Bypassing controls such as passwords

Question 44)

What scripting concept will repeatedly execute the same block of lawmaking while a specified condition remains true?

  • Loops

Question 45)

Which two (2) statements about Python are true? (Select 2)

  • Python code is considered piece of cake to debug compared with other pop programming languages
  • Python code is considered very readable past novice programmers

Question 46)

In the Python statement

pi="3"

What data type is the information blazon of the variable pi?

  • str

Question 47)

What will be printed by the post-obit block of Python lawmaking?

def Add5(in)

 out=in+5

 return out

 print(Add5(x))

  • 15

Question 48)

Which threat intelligence framework was developed past the United states of america Government to enable consistent characterization and categorization of cyberthreat events?

  • Cyber Threat Framework

Question 49)

True or Fake. An organization'due south security allowed organisation should exist integrated with outside organizations, including vendors and other third-parties.

  • True

Question 50)

Which three (iii) of these are among the top 12 capabilities that a good data security and protection solution should provide? (Select 3)

  • Vulnerability assessment
  • Real-fourth dimension alerting
  • Tokenization

Question 51)

True or False. For iOS and Android mobile devices, users must collaborate with the operating arrangement only through a series of applications, but not straight.

  • Truthful

Question 52)

All industries accept their own unique data security challenges. Which of these industries has a particular business concern with PCI-DSS compliance while having a large number of access points staffed by low-level employees who have access to payment bill of fare information?

  • Retail

Question 53)

Truthful or False. WireShark has an impressive array of features and is distributed free of accuse.

  • Truthful

Question 54)

In which component of a Mutual Vulnerability Score (CVSS) would privileges required be reflected?

  • Base-Exploitability Subscore

Question 55)

The Decommission step in the DevSecOps Release, Deploy & Decommission stage contains which of these activities?

  • IAM controls to regulate authority

Question 56)

You calculate that there is a ii% probability that a cybercriminal will be able to steal credit bill of fare numbers from your online storefront which will event in $10M in losses to your company. What take you but adamant?

  • A risk

Question 57)

Which i of the OWASP Top 10 Application Security Risks would exist occur when an application'southward API exposes financial, healthcare or other PII information?

  • Sensitive information exposure

Question 58)

Which three (three) of these are Solution Edifice Blocks (SBBs)? (Select 3)

  • Virus Protection
  • Application Firewall
  • Spam Filter

Question 59)

A robust cybersecurity defense includes contributions from three areas, human expertise, security analytics and artificial intelligence. Rapidly analyzing big quantities of unstructured data lends itself best to which of these areas?

  • Artificial intelligence

Question 60)

The triad of a security operations centers (SOC) is People, Process and Technology. Which role of the triad would network monitoring belong?

  • Technology

Question 61)

Which of these is a good definition for cyber threat hunting?

  • The human action of proactively and aggressively identifying, intercepting, tracking, investigating and eliminating cyber adversaries as early equally possible in the cyber kill chain

Question 62)

There is value brought by each of the IBM i2 EIA use cases. Which i of these provides immediate alerting on brand compromises and fraud on the dark spider web.

  • Threat Discovery

.

Question 63)

Which three (three) soft skills are of import to have in an organization's incident response team? (Select 3)

  • Communication
  • Teamwork
  • Problem solving and Critical thinking

Question 64)

Implementing strong endpoint detection and mitigation strategies falls into which stage of the incident response lifecycle?

  • Detection & Analysis

Question 65)

Which 3 (3) of these statistics almost phishing attacks are real? (Select 3)

  • Around 15 million new phishing sites are created each month
  • Phishing accounts for nearly 20% of information breaches
  • 30% of phishing messages are opened by their targeted users

Question 66)

Which three (3) of these control processes are included in the PCI-DSS standard? (Select 3)

  • Implement strong access command measures
  • Regularly monitor and test networks
  • Maintain an information security policy

Question 67)

Which three (three) are malware types usually used in PoS attacks to steal credit card data? (Select 3)

  • Alina
  • BlackPOS
  • vSkimmer

Question 68)

According to a 2019 Ponemon study, what pct of consumers indicated they would be willing to pay more than for a product or service from a provider with improve security?

  • 52%

Question 69)

You get a phone telephone call from a technician at the "Windows visitor" who tells you that they have detected a problem with your arrangement and would like to help you resolve it. In gild to help, they need you to become to a spider web site and download a simple utility that volition allow them to fix the settings on your figurer. Since you only own an Apple Mac, y'all are suspicious of this caller and hang up. What would the attack vector have been if you had downloaded the "simple utility" equally asked?

  • Remote Desktop Protocol (RDP)

Question seventy)

What is an effective fully automated way to prevent malware from inbound your organization as an electronic mail attachment?

  • Anti-virus software

 Question 71)

True or False. The large bulk of stolen credit menu numbers are used quickly past the thief or a member of his/her family.

  • False

Question 72)

Which 3 (3) of these are PCI-DSS requirements for any company handling, processing or transmitting credit menu information? (Select 3)

  • Restrict access to cardholder data by business demand-to-know
  • Assign a unique ID to each person with computer admission
  • Restrict physical access to cardholder information

Question 73)

True or False. Communications of a information breach should be handled by a team equanimous of members of the IR squad, legal personnel and public relations.

  • True

Question 74)

A Coordinating incident response team model is characterized by which of the following?

  • Multiple incident response teams inside an organization all of whom coordinate their activities only within their state or department
  • Multiple incident response teams within an arrangement but ane with authorization to assure consequent policies and practices are followed across all teams
  • This term refers to a structure that assures the incident response team's activities are coordinated with senior management and all advisable departments inside and organisation

Question 75)

The cyber hunting team and the SOC analysts are informally referred to equally the ____ and ____ teams, respectively.

  • Bluish Reddish
  • Red, Blue

Question 76)

The partnership betwixt security analysts and engineering science can be said to be grouped into three domains, human expertise, security analytics and bogus intelligence. The human being expertise domain would contain which three (3) of these topics?

  • Abstraction
  • Dilemmas
  • Morals

Question 77)

Solution architectures often contain diagrams like the one beneath. What does this diagram show?

<<Solution Architecture Data Menstruation.png>>

  • Functional components and information flow

Question 78)

Port numbers 1024 through 49151 are known as what?

  • Registered Ports

Question 79)

Which layer of the OSI model to packet sniffers operate on?

  • Data Link

Question 80)

True or False. Internal attacks from trusted employees represents every bit equally significant a threat as external attacks from professional person cyber criminals.

  • True

Question 81)

According to the FireEye Mandiant's Security Effectiveness Report 2020, what fraction of security tools are deployed with default settings and thus underperform expectations?

  • fourscore%

Question 82)

Which state had the highest average price per alienation in 2018 at $viii.19M

  • United States

Question 83)

Which ii (ii) of these Python libraries provides useful statistical functions? (Select 2)

  • StatsModels
  • Scikit-learn

Question 84)

What will impress out when this block of Python lawmaking is run?

i=1

#i=i+i

#i=i+two

#i=i+3

print(i)

  • 1

Question 85)

Which three (3) statements about Python variables are true? (Select 3)

  • A variable proper noun must start with a letter or the underscore "_" grapheme
  • Variables can alter type later they accept been ready
  • Variables do not take to be declared in accelerate of their utilize

Question 86)

PowerShell is a configuration management framework for which operating system?

  • Windows

Question 87)

In digital forensics documenting the chain of custody of show is critical. Which of these should be included in your concatenation of custody log?

  • All of the above

Question 88)

Forensic analysis should always be conducted on a copy of the original data. Which ii (2) types of copying are advisable for getting data from a laptop caused from a terminated employee, if you doubtable he has deleted incriminating files? (Select 2)

  • An incremental backup
  • A logical fill-in

Question 89)

Which of the following would exist considered an incident precursor?

  • An alarm from your antivirus software indicating it had detected malware on your system
  • An announced threat against your organization by a hactivist group

Question ninety)

If a penetration exam calls for you to create a diagram of the target network including the identity of hosts and servers also as a list of open ports and published services, which tool would be the best fit for this task?

  • Nmap

Question 91)

Which type of listing is considered best for safe coding do?

  • Whitelist

Question 92)

In reviewing the security logs for a company's headquarters in New York Metropolis, which of these activities should not heighten much of a security business concern?

  • A recently hired data scientist in the Medical Analytics section has repeatedly attempted to access the corporate financial database
  • An employee has started logging in from home for an hour or so during the last 2 weeks of each quarter

Question 93)

Data sources such as newspapers, books and web pages are considered which type of information?

  • Unstructured data
  • Semi-structured data
  • Structured data

Question 94)

Which 3 (3) of these statements nigh the TCP protocol are True? (Select 3)

  • TCP packets are reassembled by the receiving organisation in the order in which they were sent
  • TCP is more than reliable than UDP
  • TCP is connection-oriented

Question 95)

In IPv4, how many of the iv octets are used to define the network portion of the address in a Grade B network?

  • ii

Question 96)

A small company with 25 computers wishes to connect them to the Internet using a NAT router. How many Public IP addresses will this company need to clinch all 25 computers can communicate with each other and other systems on the Internet if they implement Port Address Translations?

  • 1

Question 97)

Why is symmetric key encryption the nearly common choice of methods to encryptic data at residual?

  • There are far more than keys bachelor for use
  • It is much faster than disproportionate key encryption

Question 98)

Which of the following statements about hashing is True?

  • Hashing uses algorithms that are known equally "i-way" functions

Question 99)

Why is hashing non a mutual method used for encrypting data?

  • Hashing is a i-style procedure so the original data cannot be reconstructed from a hash value

Question 100)

Public fundamental encryption incorporating digital signatures ensures which of the post-obit?

  • Confidentiality and Integrity

Question 101)

What is the principal hallmark protocol used by Microsoft in Active Directory?

  • Kerberos

Question 102)

Granting admission to a user account simply those privileges necessary to perform its intended functions is known as what?

  • The principle of least privileges

Question 103)

What is the almost common patch remediation frequency for most organizations?

  • Monthly
  • Annually

Question 104)

Island hopping is an attack method unremarkably used in which scenario?

  • Supply Chain Infiltration
  • Blocking access to a website for all users
  • Compromising a corporate VIP
  • Trojan Horse attacks

Question 105)

Security training for It staff is what blazon of control?

  • Virtual
  • Operational
  • Concrete

Question 106)

Which security concerns follow your workload even subsequently it is successfully moved to the cloud?

  • All of the higher up

Question 107)

Which form of Cloud calculating combines both public and private clouds?

  • Hybrid deject

Question 108)

Which component of the Linux operating system interacts with your figurer's hardware?

  • The kernel

Question 109)

The encryption and protocols used to preclude unauthorized access to data are examples of which type of access control?

  • Technical

Question 110)

In cybersecurity, Actuality is defined as what?

  • The belongings of beingness genuine and verifiable

Question 111)

ITIL is best described as what?

  • A collection of IT Service Management best practices

Question 112)

Which position is in accuse of testing the security and effectiveness of computer information systems?

  • Information Security Auditor

Question 113)

A company wants to preclude employees from wasting time on social media sites. To accomplish this, a document forbidding utilize of these sites while at work is written and circulated so the firewalls are updated to block access to Facebook, Twitter and other popular sites. Which two (2) types of security controls has the visitor just implemented? (Select two)

  • Administrative
  • Technical

Question 114)

An email bulletin that is encrypted, uses a digital signature and carries a hash value would accost which aspects of the CIA Triad?

Confidentiality and Integrity

Question 115)

What would a piece of malicious code that gets installed on a computer and reports back to the controller your keystrokes and other information information technology can gather from your system be called?

  • Spyware

Question 116)

Fancy Bears and Anonymous are examples of what?

  • Hacking organizations

Question 117)

Select the respond the fills in the blanks in the correct club.

A weakness in a organisation is a/an ____. The potential danger associated with this is a/an ____ that becomes a/an ____ when attacked by a bad actor.

  • vulnerability, threat, exploit
  • threat, exposure, risk
  • threat actor, vulnerability, exposure

Question 118)

Implement a filter to remove flooded packets before they reach the host is a countermeasure to which form of attack?

  • A Denial of Service (DoS) attack

Question 119)

Trudy intercepts a romantic plain-text message from Alice to her boyfriend Sam. The message upsets Trudy so she forrard information technology to Bob, making information technology look similar Alice intended information technology for Bob from the outset. Which aspect of the CIA Triad has Trudy violated ?

  • All of the above

Question 120)

Which factor contributes almost to the strength of an encryption system?

  • How many people accept admission to your public fundamental
  • The length of the encryption central used
  • The number of individual keys used by the system

Question 121)

What is an advantage disproportionate cardinal encryption has over symmetric key encryption?

  • Disproportionate keys can be exchanged more deeply than symmetric keys
  • Asymmetric key encryption is harder to suspension than symmetric key encryption
  • Asymmetric primal encryption is faster than symmetric central encryption

Question 122)

Which position is responsible for the "ethical hacking" of an organizations computer systems?

  • A Penetration Tester

Question 123)

Which iii (3) are considered best practices, baselines or frameworks? (Select three)

  • ISO27000 series
  • ITIL
  • COBIT

Question 124)

What does the "A" in the CIA Triad correspond?

  • Availability

Question 125)

Which type of access command is based upon the subject's clearance level and the objects classification?

  • Hierarchical Access Control (HAC)
  • Discretionary Admission Control (DAC)
  • Mandatory Access Control (MAC)
  • Role Based Access Control (RBAC)

Question 126)

Windows 10 stores 64-bit applications in which directory?

  • \Programme Files

Question 127)

To build a virtual computing surround, where is the hypervisor installed?

  • Between the applications and the data sources
  • On the cloud's supervisory arrangement
  • Betwixt the hardware and operating system
  • Between the operating system and applications

Question 128)

An identical email sent to millions of addresses at random would be classified as which type of attack?

  • A Shark assault
  • A Phishing attack

Question 129)

Which statement well-nigh drivers running in Windows kernel mode is true?

  • Only critical processes are permitted to run in kernel way since there is nothing to prevent a

Question 130)

Symmetric key encryption by itself ensures which of the following?

  • Confidentiality and Integrity
  • Confidentiality only
  • Confidentiality and Availability

Question 131)

Which statement best describes configuring a NAT router to use dynamic mapping?

  • The arrangement volition need as many registered IP addresses every bit it has computers that need Net admission
  • Many registered IP addresses are mapped to a single registered IP address using different port numbers
  • Unregistered IP addresses are mapped to registered IP addresses as they are needed
  • The NAT router uses each computer's IP address for both internal and external advice

Question 132)

Which address type does a computer apply to get a new IP address when it boots up?

  • The network's DHCP server address

Question 133)

What is the primary difference between the IPv4 and IPv6 addressing schema?

  • IPv6 is significantly faster than IPv4
  • IPv6 is used only for IOT devices
  • IPv6 allows for billions of times as many possible IP addresses

Question 134)

Which type of firewall understands which session a packet belongs to and analyzes it accordingly?

  • A Side by side Generation Firewall (NGFW)

Question 135)

An employee calls the IT Helpdesk and admits that maybe, just perchance, the links in the e-mail he clicked on this forenoon were non from the existent Lottery Committee. What is the starting time affair you should tell the employee to do?

  • Run a Port scan
  • Run an antivirus scan

Question 136)

A penetration tester involved in a "Black box" attack would be doing what?

  • Attempting to penetrate a customer's systems every bit if she were an external hacker with no within knowled

Question 137)

Which Post Incident activity would be concerned with maintaining the proper chain-of-custody?

  • Lessons learned coming together
  • Prove retention
  • Documentation review & update
  • Utilizing collected data

Question 138)

In digital forensics, which three (3) steps are involved in the drove of data? (Select 3)

  • Develop a program to acquire the information
  • Verify the integrity of the data
  • Acquire the data

Question 139)

Which three (3) of the following are considered scripting languages? (Select iii)

  • Perl
  • Bash
  • Python

Question 140)

What is the largest number that will be printed during the execution of this Python while loop?

i=0

while (i<x):

 print(i)

 i=i+1

  • 9

Question 141)

Activities performed as a role of security intelligence can be divided into pre-exploit and post-exploit activities. Which two (2) of these are post-exploit activities? (Select 2)

  • Assemble full situational sensation through advanced security analytics
  • Perform forensic investigation

Question 142)

There are many good reasons for maintaining comprehensive backups of critical data. Which aspect of the CIA Triad is most impacted by an system's fill-in practices?

  • Availability
  • Integrity
  • Authorization

Question 143)

Which phase of DevSecOps would contain the activities Internal/External testing, Continuous assurance, and Compliance checking?

  • Test
  • Code & build
  • Operate & monitor
  • Plan

Question 144)

Which one of the OWASP Pinnacle 10 Application Security Risks would be occur when there are no safeguards confronting a user being allowed to execute HTML or JavaScript in the user's browser that can hijack sessions.

  • Cross-site scripting

Question 145)

SIEM license costs are typically calculated based upon which two (2) factors? (Select two)

  • Flows per minute (FPM)
  • Events per 2nd (EPS)

Question 146)

Truthful or False. If you have no amend place to get-go hunting threats, start with a view of the global threat landscape and then drill down to a regional view, industry view and finally a view of the threats specific to your own organisation.

  • True

Question 147)

True or False. Deject-based storage or hosting providers are among the acme sources of 3rd-party breaches

  • True

Question 148)

You are looking very hard on the web for the lowest mortgage involvement load you can find and you come across a rate that is so low it could non perhaps be truthful. Y'all bank check out the site to encounter that the terms are and quickly find you are the victim of a ransomware attack. What was the likely attack vector used past the bad actors?

  • Phishing
  • Malicious Links
  • Software Vulnerabilities

Question 149)

Very provocative articles that come up upwardly in news feeds or Google searches are sometimes chosen "click-bait". These articles oft tempt yous to link to other sites that can be infected with malware. What attack vector is used by these click-allurement sites to go you to get to the actually bad sites?

  • Malicious Links

More than New Questions

Question 150)

Which of the following defines a security threat?

  • Any potential danger capable of exploiting a weakness in a organisation
  • The likelihood that the weakness in a system will exist exploited
  • Ane instance of a weakness beingness exploited
  • A weakness in a system that could exist exploited past a bad actor

Question 151)

Suspicious activity, similar IP addresses or ports being scanned sequentially, is a sign of which blazon of attack?

  • A mapping attack
  • A denial of service (DoS) attack
  • A phishing assault
  • An IP spoofing attack

Question 152)

Alice sends a message to Bob that is intercepted past Trudy. Which scenario describes a confidentiality violation?

  • Trudy deletes the message without forwarding information technology
  • Trudy cannot read it because information technology is encrypted simply allows it to be delivered to Bob in its original form
  • Trudy changes the message and so forrard it on
  • Trudy reads the message

Question 153)

Which regulation contains the security rule that requires all covered entities to maintain reasonable and appropriate administrative, technical, and concrete safeguards for protecting electronic protected health information (due east-PHI)?

  • PCI-DSS
  • ISO27000 series
  • HIPAA
  • GDPR
  • NIST 800-53A

Question 154)

A good Endpoint Detection and Response system (EDR) should accept which 3 (three) of these capabilities? (Select 3)

  • Automatically quarantine noncompliant endpoints
  • Manage encryption keys for each endpoint
  • Manage thousands of devices at once
  • Deploying devices with network configurations

Question 155)

Which statement about encryption is True about information in apply.

  • Data should always be kept encrypted since modernistic CPUs are fully capable of operating straight on encrypted information
  • It is vulnerable to theft and should exist decrypted only for the briefest possible time while it is being operated on
  • Curt of orchestrating a memory dump from a system crash, there is no practical style for malware to go at the data existence processed, so dump logs are your only real business concern
  • Information in active memory registers are non at risk of being stolen

Question 156)

For added security yous decide to protect your network by conducting both a stateless and stateful inspection of incoming packets. How can this be washed?

  • This cannot be done The network administrator must choose to run a given network segment in either stateful or stateless mode, and then select the corresponding firewall type
  • Install a single firewall that is capable of conducting both stateless and stateful inspections
  • Install a stateful firewall only These advanced devices inspect everything a stateless firewall inspects in addition to state related factors
  • You must install 2 firewalls in series, so all packets laissez passer through the stateless firewall showtime and then the stateless firewall

Question 157)

In IPv4, how many of the 4 octets are used to define the network portion of the accost in a Form A network?

  • 2
  • 1
  • 4
  • iii

Question 158)

If you have to rely upon metadata to piece of work with the data at paw, you are probably working with which type of data?

  • Meta-structured data
  • Semi-structured information
  • Structured data
  • Unstructured data

Question 159)

Which two (2) forms of discovery must exist conducted online? (Select 2)

  • Port scanning
  • Shoulder surfing
  • Social applied science
  • Packet sniffing

Question 160)

Which Incident Response Squad model describes a team that runs all incident response activities for a company?

  • Distributed
  • Central
  • Coordinating
  • Command

Question 161)

Which is the data protection process that prevents a suspicious information request from being completed?

  • Information hazard analysis
  • Data nomenclature
  • Information discovery
  • Blocking, masking and quarantining

Question 162)

Which form of penetration testing allows the testers partial knowledge of the systems they are trying to penetrate in advance of their attack to streamline costs and focus efforts?

  • Cherry Box Testing
  • Gray Box Testing
  • White Box testing
  • Blackness Box Testing

Question 163)

Which type of awarding assault would include User denies performing an operation, assailant exploits an application without trace, and attacker covers her tracks?

  • Auditing and logging
  • Authentication
  • Authorization
  • Input validation

Question 164)

Truthful or Faux. Thorough reconnaissance is an important step in developing an constructive cyber kill chain.

  • True
  • Fake

Question 165)

True or False. Ane of the chief challenges in cyber threat hunting is a lack of useful tools sold by besides few vendors.

  • True
  • Simulated

Question 166)

Truthful or False. A large company has a data breach involving the theft of employee personnel records just no customer data of any kind. Since no external data was involved, the company does non accept to report the breach to law enforcement.

  • True
  • False

Question 167)

Y'all are the CEO of a big tech company and have just received an angry email that looks like it came from one of your biggest customers. The e-mail says your visitor is overbilling the customer and asks that you examine the attached invoice. Yous practise but detect it blank, then you lot reply politely to the sender request for more details. You never hear back, just a calendar week later on your security team tells you that your credentials have been used to access and exfiltrate big amounts of company financial data. What kind of assault did yous fall victim to?

  • Every bit a phishing attack
  • As a whale attack
  • A shark attack
  • A fly phishing attack

Question 168)

Which of these statements about the PCI-DSS requirements for any company handling, processing or transmitting credit card data is true?

  • Muti-factor authentication is required for all new card holders
  • Some class of mobile device direction (MDM) must be used on all mobile credit card processing devices
  • All employees with direct access to cardholder information must be bonded
  • Cardholder data must be encrypted if it is sent beyond open up or public networks

Which Incident Response Team model describes a squad that acts as consulting experts to advise local IR teams?

  • Control
  • Coordinating
  • Distributed
  • O Central

In a Linux file system, which files are contained in the \bin folder?

  • All user binary files, their libraries and headers
  • Executable files such as grep and ping
  • Configuration files such equally fstab and inittab
  • Directories such as /dwelling and /usr

If a computer needs to send a message to a system that is not part of the local network, where does it send the bulletin?

  • To the system's domain proper noun
  • To the system's IP address
  • The network's DNS server accost
  • To the system's MAC address
  • The network's default gateway address
  • The network's DHCP server address

Which iii (3) of these statements near the TCP protocol are Truthful? (Select 3)

  • TCP is faster than UDP
  • TCP is connexion-oriented
  • TCP packets are reassembled by the receiving system in the social club in which they were sent
  • TCP is more reliable than UDP

A professor is not immune to alter a student'southward concluding course subsequently she submits information technology without completing a special form to explain the circumstances that necessitated the change. This additional pace supports which attribute of the CIA Triad?

  • Authorization
  • Integrity
  • Confidentiality
  • Availability

Which of these is the best definition of a security risk?

  • An instance of being exposed to losses
  • Any potential danger that is associated with the exploitation of a vulnerability
  • A weakness in a system
  • The likelihood of a threat source exploiting a vulnerability

Trudy intercepts a patently text message sent by Alice to Bob, but in no way interferes with its delivery. Which aspect of the CIA Triad was violated?

  • Confidentiality
  • Integrity
  • Availability
  • All of the above

What is an advantage symmetric fundamental encryption has over asymmetric central encryption?

  • Symmetric key encryption provides better security against Homo-in-the-centre attacks than is possible with disproportionate primal encryption
  • Symmetric primal encryption is faster than asymmetric key encryption
  • Symmetric keys can be exchanged more deeply than asymmetric keys
  • Symmetric primal encryption is harder to break than asymmetric key encryption

Which type of awarding attack would include network eavesdropping, dictionary attacks and cookie replays?

  • Configuration management
  • Authentication
  • Authorization
  • Exception management

Why should y'all always await for mutual patterns before starting a new security architecture design?

  • They can assist place best practices
  • They can shorten the development lifecycle
  • Some document complete tested solutions
  • All of the to a higher place

Last Update: 09/12/2021

Warning: Jo Answer Green hai wo right hai but

Jo Green Nahi hai. Usme se jo ek incorrect choice tha usko hata diya hai

Delight WAIT I Volition Add together More NEW QUETIONS..

Also if y'all have Questions with right answer  Send me on my Email i will update on my weblog..

niyander111@gmail.com

Give thanks y'all...