What does NIST define as malware?

A program that is covertly inserted into another program to destroy data.

A software that enhances the performance of a system.

A network service that improves data availability.

According to NIST, what is social engineering?

The act of deceiving individuals to gain unauthorized access or information.

The process of improving social skills via technology.

A method of securing networks against unauthorized access.

The study of social interactions in a digital environment.

What is phishing often used for in the context of social engineering?

To fraudulently obtain private information by posing as a legitimate source.

To verify legitimate user credentials.

To enhance the security of online transactions.

To provide educational information about cybersecurity.

What is one example of a logical Denial of Service (DoS) attack?

Flooding a device with a high volume of messages.

Emitting electromagnetic energy on a WLAN.

Physically damaging network infrastructure.

Installing anti-malware software.

What is an example of a physical DoS attack?

Emitting electromagnetic energy to disrupt WLAN frequencies.

Using strong passwords to protect data.

Flooding a device with messages.

Encrypting data to prevent unauthorized access.

What is the primary goal of a DoS attack on a network device?

To overwhelm the network device with traffic until it fails

Which method is NOT typically used to detect DoS attacks?

Increasing the bandwidth of the network

Signature-based intrusion and misuse detection

What is the role of a botnet in a DDoS attack?

To control a group of compromised computers called bots

To provide physical security to servers

Which of the following is a defensive measure against physical intrusion of network security?

Implementing software firewalls

What is the purpose of securing a premises in the context of IT security?

To protect structures and equipment from theft, vandalism, and other damages

To enhance the aesthetic appeal of the building

To increase the resale value of the property

To comply with local business operation laws

Which of the following is NOT a method used to secure a premises?

Using energy and water supplies

Implementing emergency action plans

Installing physical barriers and locks

Monitoring with video surveillance

What role do bollards play in physical security measures?

They prevent vehicles from driving into or pulling up to buildings

They are used to beautify the entrance of military bases

They are used to display security warnings

They provide lighting to enhance visibility at night

Why is it important to have layered security in IT environments?

It provides solid network security by using multiple defensive measures

It simplifies the security management process

It is cheaper than single-layer security systems

It is a legal requirement in all countries

What is the primary purpose of video surveillance in sensitive rooms, as mentioned in the text?

To record and bridge the gap between protection degradations

To physically protect the server

To provide a true prevention measure

To replace the need for ID badges

What type of identification system is described as being used in most computer rooms and businesses?

Card-accessible or token-accessible system

What is an evil twin attack in the context of wireless security?

A method where an attacker sets up a rogue access point to mimic a legitimate one.

A type of attack where the attacker sends unsolicited messages over Bluetooth.

A strategy where an attacker uses physical force to gain network access.

A technique involving the use of malware to corrupt data on a wireless network.

What is the primary purpose of jamming in wireless networks?

To emit electromagnetic energy to make the network unusable.

To intercept data by mimicking a legitimate access point.

To steal login credentials via a rogue access point.

To send unsolicited messages over a network.

Which of the following is NOT a characteristic of a Bluetooth bluesnarfing attack?

It requires the attacker to be in physical possession of the target device.

It involves sending unsolicited messages over Bluetooth.

It typically occurs within 10 meters of the target device.

It involves taking over a Bluetooth connection during its initialization.

What is a recommended security practice for managing Wi-Fi and Bluetooth when not in use?

Turning them off to prevent unauthorized access and data capture.

Keeping them always turned on to update their security patches.

Using strong passwords only, without turning off the technologies.

Limiting their use to secure locations regardless of their state.

What is the primary purpose of a Computer Security Incident Response Team (CSIRT)?

To respond to computer security-related incidents

To conduct regular security audits

To develop new security technologies

According to NIST SP 800-61 Rev. 2, what constitutes a computer security incident?

A violation or imminent threat of violation of computer security policies

Any event that improves system performance

A scheduled IT maintenance task

What are the four phases of an Incident Response Plan as outlined by NIST?

Preparation, Detection and Analysis, Containment, Eradication, and Recovery

Analysis, Design, Implementation, and Maintenance

Notification, Response, Mitigation, and Documentation

Setup, Operation, Evaluation, and Conclusion

What is one of the first steps taken in the preparation phase of an Incident Response Plan (IRP) when an event occurs?

Disconnecting the affected machine and preserving data

Consulting the legal department

What is the primary mission of the Integrated Network Operations and Security Center (I-NOSC)?

To ensure systems are operational and fully capable

What role does each base’s I-NOSC play in network security?

They coordinate activities of the Network Control Centers and take appropriate response actions

They handle physical security of devices

They coordinate with external IT consultants

They are responsible for software development

What is essential for protecting information systems employed by organizations?

Selecting, implementing, and maintaining an appropriate set of security controls

Maintaining a minimal level of security controls

Isolating the network from the internet

What is one of the primary challenges organizations face when executing missions and business functions with information systems?

Determining the most cost-effective security controls

Increasing the speed of data processing

Reducing the number of employees

According to the text, what must organizations do after determining the efficacy of security controls?

They should mitigate risk while complying with security requirements defined by applicable federal laws

They should ignore federal laws and regulations

They should decrease their investment in security

They should focus solely on internal policies

What role has the U.S. Defense Information Systems Agency's Field Security Operations played since 1998?

Enhancing the security posture of DoD's security systems

Developing software for private sector use

Marketing security solutions internationally

Providing financial aid to technology startups

What is the purpose of Security Technical Implementation Guides (STIGs)?

To serve as configuration standards for DOD IA and IA-enabled devices/systems

To provide entertainment to IT staff

To manage employee performance reviews

What is the primary purpose of CAT I severity code in security findings?

To indicate the highest risk and urgency requiring immediate action

To indicate a moderate risk that requires regular monitoring

To indicate a low risk that can be managed in routine operations

To provide information for statistical purposes only

Which of the following is an example of a CAT II finding?

An open, unused port on a system

A software bug that slightly slows down system performance

A fully patched and updated software system

A strong firewall with no known vulnerabilities

What does CAT III severity code indicate in terms of security measures?

It indicates a degradation of measures protecting against loss of confidentiality, availability, or integrity

It indicates an improvement in security measures

It indicates no significant impact on security measures

It indicates complete compliance with security standards

What is the definition of malicious logic or malware according to the document?

Hardware or software that is intentionally included or inserted in a system for a harmful purpose

Software used for data analysis

A program that enhances system performance

What is a Trojan in the context of computer security?

A program that appears useful but performs malicious actions secretly

A virus that replicates itself by copying its code from one computer to another

A type of security software designed to protect against unauthorized access

A tool used to detect and eliminate computer viruses

Which of the following best describes 'Spyware'?

Software that collects information secretly from a user's computer

Software that helps secure computers against hackers

A type of software used for data analysis

A program that assists users in managing their email

What is the function of a Logic Bomb?

To trigger a malicious function under certain conditions

To create backups of data automatically at regular intervals

To detect and remove spyware from a system

To enhance the performance of computer applications

Which practice is recommended to protect systems against malicious software?

Using outdated software versions

Enabling AutoRun and AutoPlay features

What is the primary function of Antivirus (AV) Software?

To scan computer files and memory for malicious code

To enhance the audio quality of the computer

8 2c

12th Grade

•

57 Qs

Similar activities

Computer Science Quiz

3rd - 12th Grade

•

59 Qs

Advanced HTML5 & CSS3 Part IV

9th - 12th Grade

•

55 Qs

#5 CIW Data Analyst - Certification Prep

9th Grade - University

•

54 Qs

Ulangan Harian

12th Grade

•

60 Qs

on tap cuoi ki 1 tin 12

12th Grade

•

60 Qs

Media and Information Literacy (Generated)

12th Grade

•

52 Qs

UH 1 bahasa pemograman

10th Grade - University

•

60 Qs

Apple Motion and Final Cut Pro X

10th - 12th Grade

•

60 Qs

8 2c

Quiz

•

Computers

•

12th Grade

•

Practice Problem

•

Easy

De'Andre Sellers

Used 2+ times

FREE Resource

To increase data processing speed

To comply with user access policies

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

60 questions

Soal ASJ - TKJ XII

Quiz

•

12th Grade

55 questions

Computer Science AQA A-Level Paper 2 Practice

Quiz

•

11th - 12th Grade

55 questions

DASAR MERAKIT KOMPUTER

Quiz

•

12th Grade

62 questions

ICDL | CYBER SECURITY

Quiz

•

12th Grade

60 questions

Analisis Data

Quiz

•

5th Grade - University

57 questions

MTA Mobility and Devices

Quiz

•

9th - 12th Grade

55 questions

SKT5 : Bab 1 : c) Senibina Komputer

Quiz

•

10th - 12th Grade

57 questions

Ulangkaji ASK T1 Bab 2.2 Ukuran Data

Quiz

•

1st - 12th Grade

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

18 questions

[AP CSP] JavaScript Programming Lesson 2025-2026

Lesson

•

9th - 12th Grade

57 questions

[AP CSP] Unit 5 Review: Internet & Cybersecurity

Quiz

•

9th - 12th Grade