ISM EXAM 4 QUESTIONS ANSWERED CORRECTLY LATEST UPDATE 2026
C branch of CIA - Answers protects data from unauthorized use and misuse
I branch of CIA - Answers protects data from unauthorized changes
A branch of CIA - Answers makes sure the organization can use the data when needed, without
interruption
• According to PWC's Global State of Information Security Report...
What is the annual growth rate for security incidents? - Answers 65%
Biggest hack--Saudi Aramco oil company. Attackers managed to wipe/destroy 35,000 computers in
just hours, leaving the huge oil company with nothing better than 1970's technology to run their
business. How did the hackers break into the company's computer systems? - Answers an IT
employee clicked on a bad link in a scam email
These days most malicious hacking attacks are the result of - Answers organized groups of
professional cybercriminals
Mr. Olson suggested that software bugs are inevitable.
What two reasons from the list below did he use support that statement? - Answers these programs
are huge: 40 millions lines of program code or more
humans make mistakes
According to the latest data, about 5% of smartphones are lost each year.
___ of those phones had sensitive data.
Of those that had sensitive data, ____ - Answers 60%, most had no protective measures for that data
This type of attack attempts to exploit naïve people, tricking them into providing information that the
attacker will use to gain access to their networks and systems. - Answers social engineering
Which of the following statements about insider threats is most accurate? - Answers They are
common. In a major survey, 94% of companies had experienced an insider data breach in the prior 12
months.
Loose confederation of individuals who seek political change through information security attacks on
target organizations - Answers hacktivists
Steal industrial secrets and sells them for profit - Answers IP thieves
According to IBM and Ponemon's research, on average, every single record of PII that is involved in a
data breach costs a company ____ - Answers $180
Hot lady hacker in the bar who hacked IBM's whole email structure--What method did the hacker
eventually use to compromise the company's email system? - Answers she tricked an employee into
putting an infected USB flash drive into his office computer
Suppose that an attacker has successfully broken into your system, which took a certain amount of
effort.
They want to access your network, systems, and data repeatedly in the future, without having to
break in again, so they setup a ________ so they can get in again at any time. - Answers back door
_________ is a "gold mine of information" that is incredibly useful during pre-attack research. The
attacker can get documents like lists of phone numbers or account names, printed emails, or maybe
even passwords. - Answers corporate dumpster, corporate trash, dumpster diving
While typing your PIN number into the banking app on your smartphone, you notice some creepy guy
trying to peek at what you're doing.
What term is used for this method of stealing passwords, PINs and other confidential data? - Answers
shoulder surfing
Which platform suffered nearly half of malware infections as of mid-2021? - Answers Android
Sara got a popup message suggesting she try an amazing new disk defragger application. The popup
said it'd make her computer run 47% faster. She was really excited and clicked to download and install
the disk defragger. In addition to being a disk utility, the program also contained a really nasty little
piece of malware. Sara's computer is now fully compromised and under the control of some
cybercriminals.
C branch of CIA - Answers protects data from unauthorized use and misuse
I branch of CIA - Answers protects data from unauthorized changes
A branch of CIA - Answers makes sure the organization can use the data when needed, without
interruption
• According to PWC's Global State of Information Security Report...
What is the annual growth rate for security incidents? - Answers 65%
Biggest hack--Saudi Aramco oil company. Attackers managed to wipe/destroy 35,000 computers in
just hours, leaving the huge oil company with nothing better than 1970's technology to run their
business. How did the hackers break into the company's computer systems? - Answers an IT
employee clicked on a bad link in a scam email
These days most malicious hacking attacks are the result of - Answers organized groups of
professional cybercriminals
Mr. Olson suggested that software bugs are inevitable.
What two reasons from the list below did he use support that statement? - Answers these programs
are huge: 40 millions lines of program code or more
humans make mistakes
According to the latest data, about 5% of smartphones are lost each year.
___ of those phones had sensitive data.
Of those that had sensitive data, ____ - Answers 60%, most had no protective measures for that data
This type of attack attempts to exploit naïve people, tricking them into providing information that the
attacker will use to gain access to their networks and systems. - Answers social engineering
Which of the following statements about insider threats is most accurate? - Answers They are
common. In a major survey, 94% of companies had experienced an insider data breach in the prior 12
months.
Loose confederation of individuals who seek political change through information security attacks on
target organizations - Answers hacktivists
Steal industrial secrets and sells them for profit - Answers IP thieves
According to IBM and Ponemon's research, on average, every single record of PII that is involved in a
data breach costs a company ____ - Answers $180
Hot lady hacker in the bar who hacked IBM's whole email structure--What method did the hacker
eventually use to compromise the company's email system? - Answers she tricked an employee into
putting an infected USB flash drive into his office computer
Suppose that an attacker has successfully broken into your system, which took a certain amount of
effort.
They want to access your network, systems, and data repeatedly in the future, without having to
break in again, so they setup a ________ so they can get in again at any time. - Answers back door
_________ is a "gold mine of information" that is incredibly useful during pre-attack research. The
attacker can get documents like lists of phone numbers or account names, printed emails, or maybe
even passwords. - Answers corporate dumpster, corporate trash, dumpster diving
While typing your PIN number into the banking app on your smartphone, you notice some creepy guy
trying to peek at what you're doing.
What term is used for this method of stealing passwords, PINs and other confidential data? - Answers
shoulder surfing
Which platform suffered nearly half of malware infections as of mid-2021? - Answers Android
Sara got a popup message suggesting she try an amazing new disk defragger application. The popup
said it'd make her computer run 47% faster. She was really excited and clicked to download and install
the disk defragger. In addition to being a disk utility, the program also contained a really nasty little
piece of malware. Sara's computer is now fully compromised and under the control of some
cybercriminals.
