CYBER AWARENESS CHALLENGE EXAM
SCRIPT 2026 FULL QUESTIONS AND ANSWERS
ALREADY PASSED
◉ *Spillage
Which of the following may help to prevent spillage? Answer: Label
all files, removable media, and subject headers with appropriate
classification markings.
◉ *Spillage
A user writes down details marked as Secret from a report stored on
a classified system and uses those details to draft a briefing on an
unclassified system without authorization. What is the best choice to
describe what has occurred? Answer: Spillage because classified
data was moved to a lower classification level system without
authorization.
◉ *Spillage
What should you do when you are working on an unclassified
system and receive an email with a classified attachment? Answer:
Call your security point of contact immediately
◉ *Spillage
,What should you do if a reporter asks you about potentially
classified information on the web? Answer: Ask for information
about the website, including the URL.
◉ *Spillage
.What should you do if a reporter asks you about potentially
classified information on the web? Answer: Refer the reporter to
your organization's public affairs office.
◉ *Spillage
What should you do if you suspect spillage has occurred? Answer:
Immediately notify your security point of contact
◉ *Spillage
Which of the following is a good practice to prevent spillage?
Answer: Be aware of classification markings and all handling
caveats.
◉ *Spillage
Which of the following actions is appropriate after finding classified
information on the Internet? Answer: Note any identifying
information and the website's Uniform Resource Locator (URL)
◉ *Spillage
,Which of the following may help to prevent spillage?
-Verify that any government equipment used for processing
classified information has valid anti-virus software before
connecting it to the internet
-Follow procedures for transferring data to and from outside agency
and non-Government networks
-Purge the memory of any device removed from a classified network
before connecting it to an unclassified network
-Process all data at the highest classification or protection level
available, including unclassified data Answer: ~Verify that any
government equipment used for processing classified information
has valid anti-virus software before connecting it to the internet
(wrong)
~Follow procedures for transferring data to and from outside
agency and non-Government networks
◉ *Spillage
You find information that you know to be classified on the Internet.
What should you do? Answer: ~Note the website's URL and report
the situation to your security point of contact
◉ *Spillage
You Receive an inquiry from a reporter about government
information not cleared for public release. How should you respond?
, -Ignore the inquiry
-Refer to reporter to your organization's public affairs office
-Gather as much information as possible about the reporter's source
-Tell the reporter that the information must not be publicly shared
Answer: Refer to reporter to your organization's public affairs office
◉ *Spillage
A vendor conducting a pilot program with your organization
contacts you for organizational data to use in a prototype. How
should you respond?
-Provide the requested data using an encrypted channels
-Direct the vendor to publicly available data
-Refer the vendor to the appropriate personnel
-Ask the vendor to sign a confidentiality agreement before providing
data Answer: Direct the vendor to publicly available data
◉ **Classified Data
When classified data is not in use, how can you protect it? Answer:
Store classified data appropriately in a GSA-approved
vault/container.
◉ **Classified Data
SCRIPT 2026 FULL QUESTIONS AND ANSWERS
ALREADY PASSED
◉ *Spillage
Which of the following may help to prevent spillage? Answer: Label
all files, removable media, and subject headers with appropriate
classification markings.
◉ *Spillage
A user writes down details marked as Secret from a report stored on
a classified system and uses those details to draft a briefing on an
unclassified system without authorization. What is the best choice to
describe what has occurred? Answer: Spillage because classified
data was moved to a lower classification level system without
authorization.
◉ *Spillage
What should you do when you are working on an unclassified
system and receive an email with a classified attachment? Answer:
Call your security point of contact immediately
◉ *Spillage
,What should you do if a reporter asks you about potentially
classified information on the web? Answer: Ask for information
about the website, including the URL.
◉ *Spillage
.What should you do if a reporter asks you about potentially
classified information on the web? Answer: Refer the reporter to
your organization's public affairs office.
◉ *Spillage
What should you do if you suspect spillage has occurred? Answer:
Immediately notify your security point of contact
◉ *Spillage
Which of the following is a good practice to prevent spillage?
Answer: Be aware of classification markings and all handling
caveats.
◉ *Spillage
Which of the following actions is appropriate after finding classified
information on the Internet? Answer: Note any identifying
information and the website's Uniform Resource Locator (URL)
◉ *Spillage
,Which of the following may help to prevent spillage?
-Verify that any government equipment used for processing
classified information has valid anti-virus software before
connecting it to the internet
-Follow procedures for transferring data to and from outside agency
and non-Government networks
-Purge the memory of any device removed from a classified network
before connecting it to an unclassified network
-Process all data at the highest classification or protection level
available, including unclassified data Answer: ~Verify that any
government equipment used for processing classified information
has valid anti-virus software before connecting it to the internet
(wrong)
~Follow procedures for transferring data to and from outside
agency and non-Government networks
◉ *Spillage
You find information that you know to be classified on the Internet.
What should you do? Answer: ~Note the website's URL and report
the situation to your security point of contact
◉ *Spillage
You Receive an inquiry from a reporter about government
information not cleared for public release. How should you respond?
, -Ignore the inquiry
-Refer to reporter to your organization's public affairs office
-Gather as much information as possible about the reporter's source
-Tell the reporter that the information must not be publicly shared
Answer: Refer to reporter to your organization's public affairs office
◉ *Spillage
A vendor conducting a pilot program with your organization
contacts you for organizational data to use in a prototype. How
should you respond?
-Provide the requested data using an encrypted channels
-Direct the vendor to publicly available data
-Refer the vendor to the appropriate personnel
-Ask the vendor to sign a confidentiality agreement before providing
data Answer: Direct the vendor to publicly available data
◉ **Classified Data
When classified data is not in use, how can you protect it? Answer:
Store classified data appropriately in a GSA-approved
vault/container.
◉ **Classified Data
