Security + Flashcard Review

You need to ensure that your company’s anti-virus application protects against viruses that include protective code that prevents outside examination of critical elements. Which type of virus is this?

As the security administrator for your company, you are primarily concerned with protecting corporate assets. Currently you are working to ensure confidentiality for corporate data. Which activity is NOT a way to obtain confidential information? a. Dumpster diving, b. Treason, c. Social engineering, d. Shoulder surfing

Which threat actor would most likely have the most resources available? a. Hacktivist, b. Script kiddies, c. Organized crime, Nation States

What tool is used to preform a vulnerability test? Options: Black box test, White box test, Penetration test, Scanning tool

What is the goal when you passively test security controls?

What is often the weakest link in the security chain and represents the largest vulnerability?

Which type of vulnerability is demonstrated by an SQL injection?

Your manager suspects that your network is under attack. You have been asked to provide information regarding traffic flow and statistical information for your network. Which tool should you use?

Your company recently discover that an attacker carried out an exhaustive password attack. Which type of password attack is often referred to as?

What must be secured in the PKI (Public Key Infrastructure)?