As a network administrator tasked with troubleshooting access issues to a shared folder, which of the following steps would you take first?

Check if the folder has NTFS permissions set for Jane or a group she belongs to.

Assign 'Co-owner' share permissions to Everyone.

Change Jane's share permissions to 'Owner.'

Which of the following BEST describes bluesnarfing?

Viewing calendar, emails, and messages on a mobile device without authorization

Executing commands on a mobile device

Sending anonymous electronic business cards

What does the netstat -a command show?

Active connections and listening ports

What is bluesnarfing primarily concerned with in the context of Bluetooth security?

Stealing information from someone else's phone by using an exploit in Bluetooth.

Compromising any active and unpatched system, regardless of whether discovery is enabled.

Launching highly effective attacks using a peripheral device with malicious firmware.

Sending unsolicited text messages or vCards to a discoverable device.

What type of threat actor uses cyber weapons to put companies at risk and promote their agenda?

Advanced persistent threats (APTs)

Both GPG and PGP can be used for which of the following purposes?

Encrypting, decrypting, and signing data

What is the compatibility status of GPG and PGP?

They are incompatible and cannot interoperate

They are compatible and can interoperate

They are different versions of the same software

They use only symmetric encryption

Which of the following tools can you use on a Windows network to automatically distribute and install software and operating system patches on workstations? (Select two.)

Security Configuration and Analysis

What steps should the security specialist take to verify the cause of the unauthorized applications and to re-establish proper security protocols? (Select two.)

Conduct device audits to identify unauthorized applications and to detect any signs of jailbreaking or sideloading.

Implement mobile device management (MDM) policies to restrict unauthorized application installation.

Purchase new mobile devices to replace all current ones.

Implement a credential management policy.

Hire external IT consultants to manage mobile device usage.

What should you do to ensure phishing emails from the domain kenyan.msn.pl never reach your inbox while not affecting other senders?

Add kenyan.msn.pl to the email blacklist.

Add msn.pl to the email blacklist.

Add youneedit.com.pl to the email blacklist.

Which of the following is subject to SQL injection attacks?

Browsers that allow client-side scripts

Web servers serving static content

Which of the following BEST describes a configuration baseline?

A list of common security settings that a group or all devices share.

A set of performance statistics that identifies normal operating performance.

The minimum services required for a server to function.

A collection of security settings that can be automatically applied to a device.

As an IT security manager, what is the BEST course of action when a significant vulnerability is discovered in the company's Linux-based server infrastructure that could allow unauthorized access to sensitive data?

Wait until off-peak hours to apply the patch to minimize business disruption.

Inform the senior management about the vulnerability and the potential impact of the patch on business operations, and ask for their decision.

Apply the patch immediately during peak business hours to ensure the vulnerability is fixed as soon as possible.

Ignore the patch since Linux is known for its security and the likelihood of an attack is low.

After installing antivirus software and updating it daily, what are two additional measures you should take to protect your systems from malware?

Schedule regular full-system scans

Enable chassis intrusion detection

Disable User Account Control (UAC)

As part of a company's OS hardening policy, what should be the first step to ensure the servers are secure before deployment?

Apply a configuration baseline template to the servers to ensure they are configured according to industry security standards.

Install the latest antivirus software on the servers.

Enforce a strict password policy for all users who will have access to the servers.

Connect the servers to the network to monitor for any potential security threats.

Which of the following BEST describes spyware?

It monitors the actions you take on your machine and sends the information back to its originating source.

It is a malicious program disguised as legitimate software.

It monitors user actions that denote personal preferences and then sends pop-ups and ads to the user that match their tastes.

It is a program that attempts to damage a computer system and replicate itself to other computer systems.

In what ways can a hacktivist group breach the target company MOST effectively when planning to purchase new laptops and USB drives? (Select two.)

Infiltrate the shipping company

Intercept the company's email communications

Install spyware on the vendor's systems

Physically steal the laptops and USB drives after delivery

A group of threat actors disrupts the online services of an oil company due to their disagreement with the company's environmental policies. What type of motivation is primarily driving these threat actors?

Political/philosophical beliefs

Which two vectors contributed to the success of the attack where hackers added malicious USB thumb drives to laptop orders?

Supply chain and Removable media

An attacker inserts SQL database commands into a data input field of an order form used by a web-based application. When submitted, these commands are executed on the remote database server, causing customer contact information from the database to be sent to the malicious user's web browser. Which practice would have prevented this exploit?

Implementing client-side validation

Using the latest browser version and patch level

Increasing server-side security measures

Regularly updating content management system

Which of the following malware recovery techniques is often faster and more effective than malware removal and cleanup of an infected computer?

Block specific executable files

Which of the following BEST describes an evil twin?

An access point configured to mimic a valid access point to obtain logon credentials and other sensitive information.

An access point that is added to a network by an internal employee to provide unauthorized network access.

A malicious software that duplicates data transmission

A security protocol that mimics legitimate authentication processes

Which of the following functions does a single quote (') perform in an SQL injection?

Indicates that the comment has ended and data is being entered.

Indicates that data has ended and a command is beginning.

Indicates that everything after the single quote is a comment.

Indicates that code is ending and a comment is being entered.

Security+ Domain 2

Authored by Kari Cobb

Computers

12th Grade

Used 4+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

56 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You are using a password attack that tests every possible keystroke for every single key in a password until the correct one is found. Which of the following technical password attacks are you using?

Pass-the-hash attack

Brute force attack

Password sniffing

Keylogger

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following do security templates allow you to do? (Select two.)

Fix a specific software problem

Configure consistent security settings between devices

Apply new software patches

Quickly apply settings to multiple computers

Block malicious websites

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A network administrator suspects an attacker is intercepting and potentially modifying communications between their organization's server and the client systems. The attacker is not detected by either party during this process. Which type of attack is the network administrator likely observing in this instance?

Domain Name System (DNS) attack

Man-in-the-middle attack

Denial of Service (DoS) attack

Phishing attack

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What type of attack involves overwhelming a service with excessive requests to cause denial of service?

Distributed denial-of-service (DDoS) attack

Replay attack

On-path attack

Phishing attack

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In a virtualized environment, what strategy should a network administrator employ to maintain the integrity and isolation of individual VMs?

Mitigating virtual machine escape

Establishing firewall rules

Implementing network segmentation

Enforcing user access controls

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which method of access control should be used to ensure that only specifically authorized users have access to a resource, while all others are denied?

Implicit allow, explicit deny

Explicit allow, implicit deny

Implicit allow, implicit deny

Explicit allow, explicit deny

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following BEST describes sideloading? (Select two.)

It does not undergo the same scrutiny and vetting process as those on official application stores.

It refers to the installation of applications from sources other than the official application store of the platform.

It allows users to install unauthorized applications and customize device appearance and behavior.

It is a method used to gain elevated privileges and access to system files on mobile devices.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

57 questions

Excel Review #1

Quiz

•

9th - 12th Grade

57 questions

MTA Mobility and Devices

Quiz

•

9th - 12th Grade

60 questions

Soal ASJ - TKJ XII

Quiz

•

12th Grade

55 questions

Computer Science AQA A-Level Paper 2 Practice

Quiz

•

11th - 12th Grade

55 questions

DASAR MERAKIT KOMPUTER

Quiz

•

12th Grade

60 questions

Analisis Data

Quiz

•

5th Grade - University

55 questions

SOAL OLIMPIADE JARINGAN MIKROTIK - 2

Quiz

•

12th Grade

60 questions

Information Technology 2023 Paper 1

Quiz

•

12th Grade

Popular Resources on Wayground

7 questions

History of Valentine's Day

Interactive video

•

4th Grade

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

15 questions

Valentine's Day Trivia

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Computers

18 questions

Valentines Day Trivia

Quiz

•

3rd Grade - University

20 questions

-AR -ER -IR present tense

Quiz

•

10th - 12th Grade

21 questions

Presidents Day Trivia

Quiz

•

6th - 12th Grade

10 questions

Valentine's Day: History and Modern Celebration

Interactive video

•

9th - 12th Grade

11 questions

Valentine's Day Trivia

Quiz

•

8th - 12th Grade

10 questions

Factor Quadratic Expressions with Various Coefficients

Quiz

•

9th - 12th Grade

18 questions

Success Strategies

Quiz

•

9th - 12th Grade

10 questions

Valentine's Day Trivia

Quiz

•

9th - 12th Grade

Security+ Domain 2

You are using a password attack that tests every possible keystroke for every single key in a password until the correct one is found. Which of the following technical password attacks are you using?

Which of the following do security templates allow you to do? (Select two.)

What type of attack involves overwhelming a service with excessive requests to cause denial of service?

In a virtualized environment, what strategy should a network administrator employ to maintain the integrity and isolation of individual VMs?

Which method of access control should be used to ensure that only specifically authorized users have access to a resource, while all others are denied?

Which of the following BEST describes sideloading? (Select two.)

As a network administrator tasked with troubleshooting access issues to a shared folder, which of the following steps would you take first?

Which of the following BEST describes bluesnarfing?

By definition, what is the process of reducing security exposure and tightening security controls?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers