ThatQuiz
|
Test Library
|
Take this test now
NETSEC
  • 1. The word 'Security' comes from the Latin word 'securitas'. What is the literal meaning of this word?
A) Strength in numbers
B) Locked and bolted
C) Free from care
D) To protect or guard
  • 2. In the context of computer security, what is the 'goal' of security often defined as?
A) Maximum speed of network data
B) The elimination of all software bugs
C) The state of being free from danger
D) Physical isolation of all servers
  • 3. Which security term refers to 'anything of value to the organization, including people, equipment, resources, and data'?
A) Threat
B) Assets
C) Mitigation
D) Vulnerability
  • 4. How is a 'Vulnerability' defined in the provided security table?
A) A potential danger to a company's assets
B) A mechanism that takes advantage of a mechanism
C) A weakness in a system or design that could be exploited
D) The counter-measure that reduces the likelihood of an attack
  • 5. What is the primary difference between a 'Threat' and an 'Exploit'?
A) An exploit is the likelihood of an event, while a threat is a counter-measure
B) They are identical terms in modern network security
C) A threat is potential danger; an exploit is the mechanism used to take advantage of a vulnerability
D) A threat is a weakness, while an exploit is a dange
  • 6. what is 'Mitigation'?
A) The process of identifying all assets in an organization
B) The act of intentionally leaking data to the outside world
C) The counter-measure that reduces the severity of a potential threat
D) The likelihood of a threat to exploit a vulnerability
  • 7. Risk is measured using which two primary factors?
A) Hardware age and Software version
B) Number of users and amount of data
C) Probability of occurrence and its consequences
D) Speed and Cost
  • 8. Which of the following is NOT one of the three core principles network security is designed to protect?
A) Profitability
B) Confidentiality
C) Availability
D) Integrity
  • 9. According to the 'Current State of Affairs',
    why are cyber criminals becoming more adept?
A) They no longer target critical infrastructure
B) They are using stealth and evasion techniques to hide their activity
C) They only target individual home users now
D) They have stopped using malware entirely
  • 10. What is an 'Attack Vector'?
A) The physical location of an attacker
B) A software that prevents viruses from entering a system
C) The final result of a successful security breach
D) A path by which a threat actor can gain access to a server, host, or network
  • 11. Internal threats are considered potentially more damaging than external threats because
A) External threats are easier to ignore
B) Internal users always have better hacking tools
C) Internal users have direct access to the building and infrastructure
D) Firewalls only block internal traffic
  • 12. Which of these is an example of an internal threat action
A) An automated bot scanning the web for open ports
B) A hacker in another country brute-forcing a password
C) Disconnecting a critical network connection and causing an outage
D) A global DDoS attack originating from the internet
  • 13. Data loss or data exfiltration is defined as when data is lost, stolen, or leaked to the outside world. This can result in:
A) Automatic system upgrades
B) Increased customer trust
C) Decreased litigation costs
D) Brand damage and loss of reputation
  • 14. Which 'Data Loss Vector' involves intercepted IM messages or emails?
A) Email/Social Networking
B) Hard Copy
C) Removable Media
D) Unencrypted Devices
  • 15. Why are 'Unencrypted Devices' listed as a data loss vector?
A) Encryption is only used for internet traffic
B) Encrypted devices are easier to lose
C) Encryption makes the device run slower
D) If the data is not encrypted, a thief can retrieve valuable confidential data
  • 16. what is the risk associated with 'Removable Media' like USB drives?
A) They automatically encrypt all data they touch
B) They are only dangerous if they are empty
C) Employees could perform an unauthorized transfer of data to the drive
D) They consume too much power from the computer
  • 17. What is the specific mitigation mentioned for 'Hard Copy' data loss vectors?
A) Using invisible ink
B) Lamination
C) Scanning everything into the cloud
D) Confidential data should be shredded when no longer required
  • 18. How can 'Improper Access Control' lead to a data threat?
A) Too many people having access to the building's cafeteria
B) Weak passwords that have been compromised provide easy access to data
C) Using a keyboard instead of a mouse
D) Computers being left on overnight
  • 19. What is the primary danger of using 'Cloud Storage Devices' without proper settings?
A) Sensitive data can be lost if access is compromised due to weak security settings
B) It is impossible to store confidential data in the cloud
C) Cloud storage only works during the daytime
D) The data becomes too heavy for the internet to carry
  • 20. what is 'Security is about protection'?
A) Protecting the public internet
B) Protecting your assets
C) Protecting your competitors
D) Protecting only your hardware
  • 21. Which of the following is a goal of security measures
A) Giving everyone administrative access
B) Detecting when, how, and by whom an asset has been damaged
C) Deleting data every 24 hours
D) Ensuring no one can ever use the computer
  • 22. If an asset has been stolen, a security measure should allow you to:
A) Blame the network provider
B) Buy a cheaper version of the asset
C) Forget about the asset
D) Recover your assets
  • 23. Network security breaches can result in the theft of 'Intellectual Property'. What is Intellectual Property?
A) The physical building of the company
B) Intangible creations of the human intellect, like designs or trade secrets
C) The public social media posts of the company
D) The chairs and desks in the office
  • 24. Why is it important for organizations to have individuals who can recognize the 'speed of scale' of adversaries?
A) Because adversaries are amassing and refining cyber weaponry quickly
B) Because hackers only attack during the night
C) To increase the company's internet speed
D) To ensure employees type faster
  • 25. According to the 'Vectors of Attacks' diagram, where can attack vectors originate?
A) Only from physical USB drives
B) Inside or outside the corporate network
C) Only from the internet
D) Only from the server room
  • 26. Which of these is a potential consequence of a breach listed under 'Data Loss'?
A) Reduction in security budget
B) Loss of revenue
C) Increase in competitive advantage
D) Faster recovery from hardware failures
  • 27. Litigation' as a consequence of data loss. What is Litigation?
A) The process of taking legal action
B) A type of malware used by internal users
C) The act of encrypting a hard drive
D) The process of fixing a broken server
  • 28. What does 'Data Exfiltration' literally mean in a security context?
A) Backing up data to a secondary server
B) Deleting data to save space
C) The unauthorized transfer of data from a computer
D) Scanning data for viruses
  • 29. an internal user could 'accidentally or intentionally' do what to a network?
A) Create a new internet for the company
B) Increase the physical size of the monitors
C) Compromise internal servers or network infrastructure devices
D) Remove the need for a firewall
  • 30. Complete the security principle: 'Vulnerabilities must be addressed before they become a ____ and are exploited.'
A) Mitigation
B) Threat
C) Requirement
D) Asset
Created with That Quiz — a math test site for students of all grade levels.