,TESTBANK for Principles of Incident Response and
Disaster Recovery, 3rd Edition Michael E. Whitman
Notes
1- The file is chapter after chapter.
2- We have shown you 10 or five pages.
3- The file contains all Appendix and Excel
sheet if it exists.
4- We have all what you need, we make
update at every time. There are many
new editions waiting you.
5- If you think you purchased the wrong file
You can contact us at every time, we can
replace it with true one.
Our email:
,Name: Class: Date:
Mod 01: Introduction to Security
1. Which type of threat actor would benefit the most from accessing your enterprise's new
machine learning algorithm research and development program?
a. Shadow IT
b. Brokers
c. Criminal syndicates
d. Competitors
ANSWER: d
FEEDBACK: a. Incorrect. Shadow IT are employees of the enterprise
frustrated with the pace of acquiring new technology.
b. Incorrect. Brokers sell their knowledge of a security
weakness to other attackers or governments.
c. Incorrect. Criminal syndicates are threat actors who involve
experienced online criminals who do not commit crimes
themselves but acts as entrepreneurs.
d. Correct. Competitors are threat actors who launch attacks
against an opponent's system to steal classified information
like industry research or customer lists.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.2 - Identify threat actors and their attributes
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Apply
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
2. Which of the following types of platforms is known for its vulnerabilities due to age?
a. On-premises platform
b. Cloud platform
c. Legacy platform
d. Online platform
ANSWER: c
FEEDBACK: a. Incorrect. On-premises platforms ("on-prem") are the
software and technology located within an enterprise's
physical confines, usually consolidated in the company's data
center.
b. Incorrect. Cloud platforms are a new model gaining
widespread use. They are a pay-per-use computing model in
which customers pay only for the online computing resources
they need.
c. Correct. Legacy platforms are no longer in widespread use,
often because they have been replaced by an updated
version of the earlier technology.
d. Incorrect. An online platform is one that has its front end and
back end online.
Copyright Cengage Learning. Powered by Cognero. Page 1
,Name: Class: Date:
Mod 01: Introduction to Security
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
3. Your enterprise has played fast and loose with customer information for years. While there has
been no significant breach of information that could damage the organization and/or their
customers, many in the enterprise feel it is only a matter of time before a major leak occurs.
Which type of threat actor is an employee who wishes to personally ensure that the enterprise is
exposed and blocked from accessing their customers' information until they ensure more secure
protocols?
a. Hacktivist
b. Insider
c. State actor
d. Script kiddy
ANSWER: a
FEEDBACK: a. Correct. A hacktivist is strongly motivated by ideology for the
sake of their principles or beliefs.
b. Incorrect. This serious threat to an enterprise comes from its
own employees, contractors, and business partners, called
insiders. They pose an insider threat of manipulating data
from the position of a trusted employee.
c. Incorrect. These types of actors are employed by
governments for launching cyberattacks against their foes.
d. Incorrect. Script kiddies do their work by downloading freely
available automated attack software (scripts) and using it to
perform malicious acts.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.2 - Identify threat actors and their attributes
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Apply
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
4. Threat actors focused on financial gain often attack which of the following main target
Copyright Cengage Learning. Powered by Cognero. Page 2
,Name: Class: Date:
Mod 01: Introduction to Security
categories?
a. Product lists
b. Individual users
c. Social media assets
d. REST services
ANSWER: b
FEEDBACK: a. Incorrect. Product lists could be used for many things, but they are not a mai
attacks motivated by financial gain.
b. Correct. This category focuses on individuals as the victims. Threat actors st
data, credit card numbers, online financial account information, or social sec
or send millions of spam emails to peddle counterfeit drugs, pirated software
watches, and pornography to profit from their victims.
c. Incorrect. Social media assets are attacked but do not fall into one of the ma
d. Incorrect. REST services could be a potential sub-level target but are not con
of the main categories.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.2 - Identify threat actors and their attributes
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
5. Which issue can arise from security updates and patches?
a. Difficulty patching firmware
b. Difficulty updating settings
c. Difficulty resetting passwords
d. Difficulty installing databases
ANSWER: a
FEEDBACK: a. Correct. Updating firmware to address a vulnerability can
often be difficult and requires specialized steps. Furthermore,
some firmware cannot be patched.
b. Incorrect. While a potential difficulty in some situations,
updating most settings is an easy change in many cases.
c. Incorrect. Resetting passwords is not included in updates and
patches.
d. Incorrect. Installing databases is not a function of security
updates.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
Copyright Cengage Learning. Powered by Cognero. Page 3
,Name: Class: Date:
Mod 01: Introduction to Security
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attacks
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
6. Which of the following is an attack vector used by threat actors to penetrate a system?
a. Phishing
b. Intimidation
c. Urgency
d. Email
ANSWER: d
FEEDBACK: a. Incorrect. Phishing is a specific type of attack but not an
actual vector type.
b. Incorrect. Intimidation might be used to scare someone into
giving information but is not a type of vector.
c. Incorrect. Urgency is a psychological-based social
engineering tactic used to get the victim to give up sensitive
information; it is not an attack vector type.
d. Correct. Almost 94 percent of all malware is delivered
through email to an unsuspecting user. The goal is to trick
the user into opening an attachment that contains malware or
click on a hyperlink that takes the user to a fictitious website.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Vulnerabilities and Attacks
KEYWORDS: Bloom's: Understand
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
7. Which threat actors sell their knowledge to other attackers or governments?
a. Brokers
b. Cyberterrorists
c. Competitors
d. Criminal syndicates
ANSWER: a
FEEDBACK: a. Correct. Brokers sell their knowledge of a weakness to other
attackers or governments.
b. Incorrect. Cyberterrorists attack a nation's network and
Copyright Cengage Learning. Powered by Cognero. Page 4
,Name: Class: Date:
Mod 01: Introduction to Security
computer infrastructure to cause disruption and panic among
citizens.
c. Incorrect. Competitors launch attacks against an opponent's
system to steal classified information.
d. Incorrect. Criminal syndicates move from traditional criminal
activities to more rewarding and less risky online attacks.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
8. Which of the following computing platforms is highly vulnerable to attacks?
a. On-premises
b. Cloud
c. Legacy
d. Hybrid
ANSWER: c
FEEDBACK: a. Incorrect. On-premises platforms are not highly vulnerable
compared to other platforms, as on-prem networks are kept
up-to-date by security personnel.
b. Incorrect. Cloud platforms are not as vulnerable as other
platforms, as they use new technologies.
c. Correct. Old and outdated computing resources used in
legacy platforms make them highly vulnerable.
d. Incorrect. Hybrid platforms are a combination of on-prem and
cloud platforms. They are not highly vulnerable when
compared to other platforms.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Understand
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
9. Your company is considering updating several electronic devices used in the enterprise
Copyright Cengage Learning. Powered by Cognero. Page 5
,Name: Class: Date:
Mod 01: Introduction to Security
network. The third-party service provider that your company approached says that they require
access to the enterprise network in order to implement the updates. As the chief information
security officer, you are asked to analyze the requirement and submit a report on potential
vulnerabilities when giving a third-party access to the network.
Which of the following vulnerabilities should you list as the most likely to affect the enterprise
network?
a. Zero day
b. Weakest link
c. Weak encryption
d. Default settings
ANSWER: b
FEEDBACK: a. Incorrect. A zero-day vulnerability is a vulnerability present in a software that
an outsider, not the developer.
b. Correct. The enterprise network is highly vulnerable to the weakest link on th
of a third-party. That is, if the third-party's security has any weaknesses, it ca
opening for attackers to infiltrate the enterprise network.
c. Incorrect. Using weak encryption is a configuration vulnerability. This vulnera
likely to occur in relation to third-party integration with a network.
d. Incorrect. Using default settings is a configuration vulnerability. This vulnerab
likely to occur in relation to third-party integration with a network.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various types of vulner
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Analyze
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
10. What is an officially released software security update intended to repair a vulnerability
called?
a. Firmware
b. Vector
c. Patch
d. Default
ANSWER: c
FEEDBACK: a. Incorrect. Firmware is software that is embedded into
hardware.
b. Incorrect. Vectors are not software security updates.
c. Correct. A security patch is an officially released software
security update intended to repair a vulnerability.
d. Incorrect. Defaults or default settings are the settings
predetermined by a vendor for usability and ease of use.
Copyright Cengage Learning. Powered by Cognero. Page 6
,Name: Class: Date:
Mod 01: Introduction to Security
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
11. Your company recently purchased routers with new and updated features and deployed them
in the highly secure enterprise network without changing the default settings. A few days later,
the enterprise network suffered a data breach, and you are assigned to prepare a report on the
data breach. Which of the following vulnerabilities should you identify as the source of the
breach?
a. Platform vulnerability
b. Configuration vulnerability
c. Third-party vulnerability
d. Zero-day vulnerability
ANSWER: b
FEEDBACK: a. Incorrect. Platform vulnerabilities are the result of platforms
being used as high security. Maintained in the enterprise
network, platform vulnerabilities are less likely to occur.
b. Correct. As the routers were deployed without changing
configuration from the default settings, threat actors might
have gained easy access to the enterprise network.
c. Incorrect. There is nothing in this scenario that indicates the
enterprise uses third-party vendors; it is unlikely the breach
was caused by a third-party vulnerability.
d. Incorrect. Zero-day vulnerabilities are associated with
unknown vulnerabilities present in a software.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Apply
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
12. Zero-day vulnerabilities and configuration vulnerabilities can heavily impact a system if
exploited. How should you differentiate between a zero-day vulnerability and a configuration
Copyright Cengage Learning. Powered by Cognero. Page 7
, Name: Class: Date:
Mod 01: Introduction to Security
vulnerability?
a. A zero-day vulnerability results from improper hardware configurations, whereas a configuration vu
results from improper software configuration.
b. A zero-day vulnerability is an easily fixable vulnerability recognized by a software developer, where
configuration vulnerability is a major vulnerability present in a system exploited by a threat actor be
software developer can fix it.
c. A zero-day vulnerability is an unknown vulnerability in released software that is found and exploited
actor, whereas a configuration vulnerability is caused by improper settings in hardware or software.
d. A zero-day vulnerability results from users improperly configuring software, whereas a configuratio
vulnerability results from the developers improperly configuring the software.
ANSWER: c
FEEDBACK: a. Incorrect. A zero-day vulnerability is not a result of improper hardware config
configuration vulnerability can be caused by improper software configuration
b. Incorrect. A zero-day vulnerability is not uncovered by the developer and exp
threat actor, and it might not be easily fixable. A configuration vulnerability is
vulnerability exposed and exploited by threat actors before developers can fi
c. Correct. A zero-day vulnerability is uncovered first by threat actors, who expl
penetrate systems. A configuration vulnerability occurs when a user misconf
system or fails to configure it past the default settings.
d. Incorrect. A zero-day vulnerability is not caused by users misconfiguring the
configuration vulnerability is not caused by the developers or designers.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various types of vulner
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Analyze
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
13. In an interview, the interviewer introduced the following scenario:
An enterprise is hosting all its computing resources on a cloud platform, and you need to identify
which vulnerability is most likely to occur.
Which of the following should you choose?
a. Physical access vulnerability
b. Configuration vulnerability
c. Zero-day vulnerability
d. Third-party vulnerability
ANSWER: b
FEEDBACK: a. Incorrect. Since the resources are hosted in the cloud, they
are likely well-protected from threat actors gaining physical
access to them.
b. Correct. Misconfiguration vulnerabilities are often found in
cloud platforms, as company personnel responsible for
Copyright Cengage Learning. Powered by Cognero. Page 8
Disaster Recovery, 3rd Edition Michael E. Whitman
Notes
1- The file is chapter after chapter.
2- We have shown you 10 or five pages.
3- The file contains all Appendix and Excel
sheet if it exists.
4- We have all what you need, we make
update at every time. There are many
new editions waiting you.
5- If you think you purchased the wrong file
You can contact us at every time, we can
replace it with true one.
Our email:
,Name: Class: Date:
Mod 01: Introduction to Security
1. Which type of threat actor would benefit the most from accessing your enterprise's new
machine learning algorithm research and development program?
a. Shadow IT
b. Brokers
c. Criminal syndicates
d. Competitors
ANSWER: d
FEEDBACK: a. Incorrect. Shadow IT are employees of the enterprise
frustrated with the pace of acquiring new technology.
b. Incorrect. Brokers sell their knowledge of a security
weakness to other attackers or governments.
c. Incorrect. Criminal syndicates are threat actors who involve
experienced online criminals who do not commit crimes
themselves but acts as entrepreneurs.
d. Correct. Competitors are threat actors who launch attacks
against an opponent's system to steal classified information
like industry research or customer lists.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.2 - Identify threat actors and their attributes
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Apply
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
2. Which of the following types of platforms is known for its vulnerabilities due to age?
a. On-premises platform
b. Cloud platform
c. Legacy platform
d. Online platform
ANSWER: c
FEEDBACK: a. Incorrect. On-premises platforms ("on-prem") are the
software and technology located within an enterprise's
physical confines, usually consolidated in the company's data
center.
b. Incorrect. Cloud platforms are a new model gaining
widespread use. They are a pay-per-use computing model in
which customers pay only for the online computing resources
they need.
c. Correct. Legacy platforms are no longer in widespread use,
often because they have been replaced by an updated
version of the earlier technology.
d. Incorrect. An online platform is one that has its front end and
back end online.
Copyright Cengage Learning. Powered by Cognero. Page 1
,Name: Class: Date:
Mod 01: Introduction to Security
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
3. Your enterprise has played fast and loose with customer information for years. While there has
been no significant breach of information that could damage the organization and/or their
customers, many in the enterprise feel it is only a matter of time before a major leak occurs.
Which type of threat actor is an employee who wishes to personally ensure that the enterprise is
exposed and blocked from accessing their customers' information until they ensure more secure
protocols?
a. Hacktivist
b. Insider
c. State actor
d. Script kiddy
ANSWER: a
FEEDBACK: a. Correct. A hacktivist is strongly motivated by ideology for the
sake of their principles or beliefs.
b. Incorrect. This serious threat to an enterprise comes from its
own employees, contractors, and business partners, called
insiders. They pose an insider threat of manipulating data
from the position of a trusted employee.
c. Incorrect. These types of actors are employed by
governments for launching cyberattacks against their foes.
d. Incorrect. Script kiddies do their work by downloading freely
available automated attack software (scripts) and using it to
perform malicious acts.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.2 - Identify threat actors and their attributes
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Apply
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
4. Threat actors focused on financial gain often attack which of the following main target
Copyright Cengage Learning. Powered by Cognero. Page 2
,Name: Class: Date:
Mod 01: Introduction to Security
categories?
a. Product lists
b. Individual users
c. Social media assets
d. REST services
ANSWER: b
FEEDBACK: a. Incorrect. Product lists could be used for many things, but they are not a mai
attacks motivated by financial gain.
b. Correct. This category focuses on individuals as the victims. Threat actors st
data, credit card numbers, online financial account information, or social sec
or send millions of spam emails to peddle counterfeit drugs, pirated software
watches, and pornography to profit from their victims.
c. Incorrect. Social media assets are attacked but do not fall into one of the ma
d. Incorrect. REST services could be a potential sub-level target but are not con
of the main categories.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.2 - Identify threat actors and their attributes
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
5. Which issue can arise from security updates and patches?
a. Difficulty patching firmware
b. Difficulty updating settings
c. Difficulty resetting passwords
d. Difficulty installing databases
ANSWER: a
FEEDBACK: a. Correct. Updating firmware to address a vulnerability can
often be difficult and requires specialized steps. Furthermore,
some firmware cannot be patched.
b. Incorrect. While a potential difficulty in some situations,
updating most settings is an easy change in many cases.
c. Incorrect. Resetting passwords is not included in updates and
patches.
d. Incorrect. Installing databases is not a function of security
updates.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
Copyright Cengage Learning. Powered by Cognero. Page 3
,Name: Class: Date:
Mod 01: Introduction to Security
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attacks
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
6. Which of the following is an attack vector used by threat actors to penetrate a system?
a. Phishing
b. Intimidation
c. Urgency
d. Email
ANSWER: d
FEEDBACK: a. Incorrect. Phishing is a specific type of attack but not an
actual vector type.
b. Incorrect. Intimidation might be used to scare someone into
giving information but is not a type of vector.
c. Incorrect. Urgency is a psychological-based social
engineering tactic used to get the victim to give up sensitive
information; it is not an attack vector type.
d. Correct. Almost 94 percent of all malware is delivered
through email to an unsuspecting user. The goal is to trick
the user into opening an attachment that contains malware or
click on a hyperlink that takes the user to a fictitious website.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Vulnerabilities and Attacks
KEYWORDS: Bloom's: Understand
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
7. Which threat actors sell their knowledge to other attackers or governments?
a. Brokers
b. Cyberterrorists
c. Competitors
d. Criminal syndicates
ANSWER: a
FEEDBACK: a. Correct. Brokers sell their knowledge of a weakness to other
attackers or governments.
b. Incorrect. Cyberterrorists attack a nation's network and
Copyright Cengage Learning. Powered by Cognero. Page 4
,Name: Class: Date:
Mod 01: Introduction to Security
computer infrastructure to cause disruption and panic among
citizens.
c. Incorrect. Competitors launch attacks against an opponent's
system to steal classified information.
d. Incorrect. Criminal syndicates move from traditional criminal
activities to more rewarding and less risky online attacks.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.5 - Explain different threat actors, vectors, and intelligence
sources.
TOPICS: Who Are the Threat Actors?
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
8. Which of the following computing platforms is highly vulnerable to attacks?
a. On-premises
b. Cloud
c. Legacy
d. Hybrid
ANSWER: c
FEEDBACK: a. Incorrect. On-premises platforms are not highly vulnerable
compared to other platforms, as on-prem networks are kept
up-to-date by security personnel.
b. Incorrect. Cloud platforms are not as vulnerable as other
platforms, as they use new technologies.
c. Correct. Old and outdated computing resources used in
legacy platforms make them highly vulnerable.
d. Incorrect. Hybrid platforms are a combination of on-prem and
cloud platforms. They are not highly vulnerable when
compared to other platforms.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Understand
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
9. Your company is considering updating several electronic devices used in the enterprise
Copyright Cengage Learning. Powered by Cognero. Page 5
,Name: Class: Date:
Mod 01: Introduction to Security
network. The third-party service provider that your company approached says that they require
access to the enterprise network in order to implement the updates. As the chief information
security officer, you are asked to analyze the requirement and submit a report on potential
vulnerabilities when giving a third-party access to the network.
Which of the following vulnerabilities should you list as the most likely to affect the enterprise
network?
a. Zero day
b. Weakest link
c. Weak encryption
d. Default settings
ANSWER: b
FEEDBACK: a. Incorrect. A zero-day vulnerability is a vulnerability present in a software that
an outsider, not the developer.
b. Correct. The enterprise network is highly vulnerable to the weakest link on th
of a third-party. That is, if the third-party's security has any weaknesses, it ca
opening for attackers to infiltrate the enterprise network.
c. Incorrect. Using weak encryption is a configuration vulnerability. This vulnera
likely to occur in relation to third-party integration with a network.
d. Incorrect. Using default settings is a configuration vulnerability. This vulnerab
likely to occur in relation to third-party integration with a network.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various types of vulner
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Analyze
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
10. What is an officially released software security update intended to repair a vulnerability
called?
a. Firmware
b. Vector
c. Patch
d. Default
ANSWER: c
FEEDBACK: a. Incorrect. Firmware is software that is embedded into
hardware.
b. Incorrect. Vectors are not software security updates.
c. Correct. A security patch is an officially released software
security update intended to repair a vulnerability.
d. Incorrect. Defaults or default settings are the settings
predetermined by a vendor for usability and ease of use.
Copyright Cengage Learning. Powered by Cognero. Page 6
,Name: Class: Date:
Mod 01: Introduction to Security
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Remember
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
11. Your company recently purchased routers with new and updated features and deployed them
in the highly secure enterprise network without changing the default settings. A few days later,
the enterprise network suffered a data breach, and you are assigned to prepare a report on the
data breach. Which of the following vulnerabilities should you identify as the source of the
breach?
a. Platform vulnerability
b. Configuration vulnerability
c. Third-party vulnerability
d. Zero-day vulnerability
ANSWER: b
FEEDBACK: a. Incorrect. Platform vulnerabilities are the result of platforms
being used as high security. Maintained in the enterprise
network, platform vulnerabilities are less likely to occur.
b. Correct. As the routers were deployed without changing
configuration from the default settings, threat actors might
have gained easy access to the enterprise network.
c. Incorrect. There is nothing in this scenario that indicates the
enterprise uses third-party vendors; it is unlikely the breach
was caused by a third-party vulnerability.
d. Incorrect. Zero-day vulnerabilities are associated with
unknown vulnerabilities present in a software.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and
attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various
types of vulnerabilities.
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Apply
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
12. Zero-day vulnerabilities and configuration vulnerabilities can heavily impact a system if
exploited. How should you differentiate between a zero-day vulnerability and a configuration
Copyright Cengage Learning. Powered by Cognero. Page 7
, Name: Class: Date:
Mod 01: Introduction to Security
vulnerability?
a. A zero-day vulnerability results from improper hardware configurations, whereas a configuration vu
results from improper software configuration.
b. A zero-day vulnerability is an easily fixable vulnerability recognized by a software developer, where
configuration vulnerability is a major vulnerability present in a system exploited by a threat actor be
software developer can fix it.
c. A zero-day vulnerability is an unknown vulnerability in released software that is found and exploited
actor, whereas a configuration vulnerability is caused by improper settings in hardware or software.
d. A zero-day vulnerability results from users improperly configuring software, whereas a configuratio
vulnerability results from the developers improperly configuring the software.
ANSWER: c
FEEDBACK: a. Incorrect. A zero-day vulnerability is not a result of improper hardware config
configuration vulnerability can be caused by improper software configuration
b. Incorrect. A zero-day vulnerability is not uncovered by the developer and exp
threat actor, and it might not be easily fixable. A configuration vulnerability is
vulnerability exposed and exploited by threat actors before developers can fi
c. Correct. A zero-day vulnerability is uncovered first by threat actors, who expl
penetrate systems. A configuration vulnerability occurs when a user misconf
system or fails to configure it past the default settings.
d. Incorrect. A zero-day vulnerability is not caused by users misconfiguring the
configuration vulnerability is not caused by the developers or designers.
POINTS: 1
QUESTION TYPE: Multiple Choice
HAS VARIABLES: False
LEARNING OBJECTIVES: CIAM.SEC+.22.1.3 - Describe the different types of vulnerabilities and attacks
ACCREDITING STANDARDS: SY0-601.1.6 - Explain the security concerns associated with various types of vulner
TOPICS: Vulnerabilities and Attack
KEYWORDS: Bloom's: Analyze
DATE CREATED: 2/16/2022 10:23 PM
DATE MODIFIED: 2/16/2022 10:23 PM
13. In an interview, the interviewer introduced the following scenario:
An enterprise is hosting all its computing resources on a cloud platform, and you need to identify
which vulnerability is most likely to occur.
Which of the following should you choose?
a. Physical access vulnerability
b. Configuration vulnerability
c. Zero-day vulnerability
d. Third-party vulnerability
ANSWER: b
FEEDBACK: a. Incorrect. Since the resources are hosted in the cloud, they
are likely well-protected from threat actors gaining physical
access to them.
b. Correct. Misconfiguration vulnerabilities are often found in
cloud platforms, as company personnel responsible for
Copyright Cengage Learning. Powered by Cognero. Page 8
