WGU D430 CYBERSECURITY EXAM 2025| 169 QUESTIONS
WITH ACCURATE SOLUTIONS
1. Describe the significance of data security in the context of information
systems.
Data security is irrelevant in cloud computing environments.
Data security is only important for financial data.
Data security is crucial for protecting sensitive information from
unauthorized access and ensuring its integrity and availability.
Data security focuses solely on data storage efficiency.
2. What is the primary purpose of COPPA?
To establish guidelines for adult online privacy.
To regulate online advertising for all age groups.
To protect children under the age of 13 from the collection of
private information online.
To ensure data encryption for all online transactions.
3. Which is true when implementing the concept of defense in depth?
Using multiple solutions on the internal network.
Using different solutions in different logical layers.
Turning off logging, because it is not a defense.
Using multiple external firewalls.
4. If a company fails to comply with PCI DSS, what potential consequence
could it face regarding its credit card processing capabilities?
,It may face penalties or lose the ability to process credit card
transactions.
, It will automatically be fined by the government.
It will receive a warning but no further action will be taken.
It will be required to switch to a different payment method.
5. What is a common method used in fabrication attacks to propagate
malware?
Install a keylogger
Generate a fake email
Create a phishing website
Use a denial-of-service attack
6. Which of the following best describes IPsec?
Is used to secure IP communication between network hosts.
Allows traffic from specific computers without authentication.
Is a unique tunneling protocol that will reconnect a dropped
connection.
Ignores all inbound rules, effectively blocking all inbound
connections.
7. What is the primary purpose of allowing access in cybersecurity?
To encrypt sensitive information
To restrict unauthorized users from accessing data
To give a particular party or parties access to a given resource
To monitor user activity on a network
8. In a scenario where a company is experiencing frequent data breaches,
how could implementing a Deep Packet Inspection Firewall help mitigate
this issue?
, By increasing the overall network speed to handle more traffic.
By analyzing traffic content to detect and block malicious data
before it reaches applications.
By encrypting all outgoing data to prevent interception.
By blocking all incoming connections to the network.
9. A system administrator is implementing a technology that prevents
certain memory portions from being used to execute code, enhancing
security against certain types of attacks. What term describes this
hardware and software-based protection mechanism?
Buffer Overflow Prevention
Memory Isolation
Executable Space Protection
Code Execution Firewall
10. PSOs must remember to practice good OPSEC and not divulge
information contained in the Post Orders to anyone who is not
authorized to view them. What is OPSEC?
Operational Screening
Operational Standing
Operational Seeking
Operational Security
11. Describe how an integrity attack differs from an availability attack in the
context of cybersecurity.
An integrity attack is less harmful than an availability attack.
An integrity attack prevents data from being accessed, while an
availability attack alters data.
WITH ACCURATE SOLUTIONS
1. Describe the significance of data security in the context of information
systems.
Data security is irrelevant in cloud computing environments.
Data security is only important for financial data.
Data security is crucial for protecting sensitive information from
unauthorized access and ensuring its integrity and availability.
Data security focuses solely on data storage efficiency.
2. What is the primary purpose of COPPA?
To establish guidelines for adult online privacy.
To regulate online advertising for all age groups.
To protect children under the age of 13 from the collection of
private information online.
To ensure data encryption for all online transactions.
3. Which is true when implementing the concept of defense in depth?
Using multiple solutions on the internal network.
Using different solutions in different logical layers.
Turning off logging, because it is not a defense.
Using multiple external firewalls.
4. If a company fails to comply with PCI DSS, what potential consequence
could it face regarding its credit card processing capabilities?
,It may face penalties or lose the ability to process credit card
transactions.
, It will automatically be fined by the government.
It will receive a warning but no further action will be taken.
It will be required to switch to a different payment method.
5. What is a common method used in fabrication attacks to propagate
malware?
Install a keylogger
Generate a fake email
Create a phishing website
Use a denial-of-service attack
6. Which of the following best describes IPsec?
Is used to secure IP communication between network hosts.
Allows traffic from specific computers without authentication.
Is a unique tunneling protocol that will reconnect a dropped
connection.
Ignores all inbound rules, effectively blocking all inbound
connections.
7. What is the primary purpose of allowing access in cybersecurity?
To encrypt sensitive information
To restrict unauthorized users from accessing data
To give a particular party or parties access to a given resource
To monitor user activity on a network
8. In a scenario where a company is experiencing frequent data breaches,
how could implementing a Deep Packet Inspection Firewall help mitigate
this issue?
, By increasing the overall network speed to handle more traffic.
By analyzing traffic content to detect and block malicious data
before it reaches applications.
By encrypting all outgoing data to prevent interception.
By blocking all incoming connections to the network.
9. A system administrator is implementing a technology that prevents
certain memory portions from being used to execute code, enhancing
security against certain types of attacks. What term describes this
hardware and software-based protection mechanism?
Buffer Overflow Prevention
Memory Isolation
Executable Space Protection
Code Execution Firewall
10. PSOs must remember to practice good OPSEC and not divulge
information contained in the Post Orders to anyone who is not
authorized to view them. What is OPSEC?
Operational Screening
Operational Standing
Operational Seeking
Operational Security
11. Describe how an integrity attack differs from an availability attack in the
context of cybersecurity.
An integrity attack is less harmful than an availability attack.
An integrity attack prevents data from being accessed, while an
availability attack alters data.
