<< Prev Question Next Question >>

Question 115/179

In the context of cybersecurity, typical threat actors include the following:

LEAVE A REPLY

Your email address will not be published. Required fields are marked *

Question List (179q)
Question 1: Selvaa presents a userid and a password to a system in order...
Question 2: Which of the following is the least secure communications pr...
Question 3: A company network has been infected with malware and all its...
Question 4: Which of the following best describes a zero-day vulnerabili...
Question 5: allows for extremely granular restrictions within the IT env...
Question 6: Which of the following properties is not guaranteed by Digit...
Question 7: Which of the following is NOT one of the four typical ways o...
Question 8: What is knowledge based authentication...
Question 9: What is the primary goal of incident management...
Question 10: What is a security token used to authenticate a user to a we...
Question 11: What is the importance of non-repudiation in todays world of...
Question 12: An analysis of an information system's requirements, functio...
Question 13: The testing or evaluation of security controls to determine ...
Question 14: In what way do a victim's files get affected by ransomware?...
Question 15: Which type of encryption uses only one shared key to encrypt...
Question 16: Communication between end systems is encrypted using a key, ...
Question 17: Example of Token based Authentication...
Question 18: A chief information security officer (CISO) at a large organ...
Question 19: Which TLS extension is used to optimize the TLS handshake pr...
Question 20: What is the main purpose of creating baseline in ensuring sy...
Question 21: A portion of the organization's network that interfaces dire...
Question 22: What is the purpose of defense in depth in information secur...
Question 23: A company experiences a power outage that causes a major dis...
Question 24: System capabilities designed to detect and prevent the unaut...
Question 25: Common network device used to connect networks?...
Question 26: Structured way to align IT with business goals while managin...
Question 27: Protection against an individual falsely denying having perf...
Question 28: The practice of sending fraudulent communications that appea...
Question 29: Your organization is concerned about network security and wa...
Question 30: A cyber security professional observes an unusual occurrence...
Question 31: The prevention of authorized access to resources or the dela...
1 commentQuestion 32: A hacker is trying to gain access to a company network which...
Question 33: Devid's team recently implemented a new system that gathers ...
Question 34: DevOps team has updated the application source code, Tom has...
Question 35: Which one of the following controls is not particularly effe...
Question 36: Which element of the security policy framework includes reco...
Question 37: What is the first phase in System Development Life Cycle...
Question 38: Which type of encryption uses only one shared key to encrypt...
Question 39: Which one of the following groups is NOT normally part of an...
Question 40: Which security control mostly used to prevent data breach...
Question 41: What is privacy in the context of Information Security?...
Question 42: Which type of software testing focuses on examining the sour...
Question 43: Security control used to protect against environmental threa...
Question 44: A________creates an encrypted tunnel to protect your persona...
Question 45: Which version of TLS is considered to be the most secure and...
Question 46: Uses multiple types of access controls in literal or theoret...
Question 47: Access control used in in high-security situations such as m...
Question 48: What is the main purpose of using multi-factor authenticatio...
Question 49: A hacker gains access to a compony network and begins to int...
Question 50: Which of the following is a characteristic of cloud...
Question 51: The process of applying secure configurations (to reduce the...
Question 52: A company experiences a major IT outage and cannot perform i...
Question 53: A set of security controls or system settings used to ensure...
Question 54: Which of the following is a type of risk that involves the u...
Question 55: In information systems terms, the activities necessary to re...
Question 56: Which device is used to control traffic flow in network...
Question 57: Methods or mechanisms cybercriminals use to gain illegal, un...
Question 58: The requirement of both the manager and the accountant to ap...
Question 59: Hashing used to safe guard which CIA triad...
Question 60: What is IPSEC reply attack
Question 61: When is the Business Continuity Plan Enacted?...
Question 62: What is the benefit of subnet
Question 63: A company has implemented Mandatory access control for its c...
Question 64: What does a breach refer to in the context of cybersecurity...
Question 65: How do IT professionals differentiate between typical IT pro...
Question 66: A_________is a distributed denial-of-service (DDoS) attack i...
Question 67: Which is a curated knowledge base and model for cyber advers...
Question 68: What is the primary purpose of a honeytoken in cybersecurity...
Question 69: A organization's security system which involves in preventin...
Question 70: What is a threat in the context of cybersecurity...
Question 71: Which of the following uses registered port...
Question 72: In Which of the following access control models can the crea...
Question 73: A collection of actions that must be followed in order to co...
Question 74: Exhibit. (Exhibit) IPSec works in which layer of OSI Model...
Question 75: A common network device used to filter traffic?...
Question 76: Embedded systems and network-enabled devices that communicat...
Question 77: Which penetration testing technique requires the team to do ...
Question 78: A device that routes traffic to the port of a known device...
Question 79: The primary goal of a risk assessment...
Question 80: A company primary data center goes down due to a hardware fa...
Question 81: Which uses encrypted, machine-generated codes to verify a us...
Question 82: What security feature used in HTTPS...
Question 83: What federal law requires the use of vulnerability scanning ...
Question 84: A large organization is planning to create a DRP. Which of t...
Question 85: Modern solutions try to provide a more holistic approach det...
Question 86: Which drives for the IPv6 introduction...
Question 87: In DAC, the policy specifies that a subject who has been gra...
Question 88: Which protocol is used for secure email...
Question 89: A/hich layer of the OSI Layer model is the target of a buffe...
Question 90: A Company IT system experienced a system crash that result i...
Question 91: What is Remanence
Question 92: Natalia is concerned about the security of his organization'...
Question 93: What does Personally Identifiable Information (Pll) pertain ...
Question 94: John joined the ISC2 Organizations, his manager asked to che...
Question 95: A popular way of implementing "least privilege''...
Question 96: An unknown person obtaining access to the company file syste...
Question 97: Which is related to Standard
Question 98: Which one of the following cryptographic algorithms does not...
Question 99: Which threats are directly associated with malware? Select t...
Question 100: Which of the following is not a Social engineering technique...
Question 101: What is the primary goal of Identity and Access Management (...
Question 102: Exhibit. (Exhibit) What is the PRIMARY purpose of a web appl...
Question 103: Government can imposes financial penalties as a consequence ...
Question 104: Which of the following is a systematic approach to protectin...
Question 105: Devid's team recently implemented a new system that gathers ...
Question 106: Which of the following documents identifies the principles a...
Question 107: An outward-facing IP address used to access the Internet....
Question 108: When Operating in A Cloud Environment, What Cloud Deployment...
Question 109: What is the primary goal of implementing input validation in...
Question 110: Which addresses reserved for internal network use and are no...
Question 111: What does the concept of integrity applied to...
Question 112: Exhibit. (Exhibit) What kind of vulnerability is typically n...
Question 113: The practice of ensuring that an organizational process cann...
Question 114: Requires that all instances of the data be identical in form...
Question 115: In the context of cybersecurity, typical threat actors inclu...
Question 116: Measure of the extent to which an entity is threatened by a ...
Question 117: Faking the sender address in a transmission to gain illegal ...
Question 118: Which is the component of a Business Continuity (BC) plan...
Question 119: What goal of security is enhanced by a strong business conti...
Question 120: Which of the following attacks can TLS help mitigate?...
Question 121: Actions, processes and tools for ensuring an organization ca...
Question 122: A set of instructions to help IT staff detect, respond to, a...
Question 123: Which is the loopback address
Question 124: Mark works in the security office. During research, Mark lea...
Question 125: An organization develops a set of procedures to restore crit...
Question 126: What is the purpose of multi-factor authentication (MFA) in ...
Question 127: Which plan provides the team with immediate response procedu...
Question 128: An entity that acts to exploit a target organizations system...
Question 129: Type 1 authentication posses
Question 130: What is the purpose of immediate response procedures and che...
Question 131: What is the recommended fire suppression system for server r...
Question 132: Load balancing safe guard which CIA triad...
Question 133: Which maintains that a user or entity should only have acces...
Question 134: Which authentication helps build relationships between diffe...
Question 135: What type of attack does the attacker store and reuse login ...
Question 136: How does IPSec protect against reply attacks...
Question 137: What cybersecurity principle focuses on granting users only ...
Question 138: Who should participate in creation a business continuity pla...
Question 139: A type of malware that is capable of self propagation and ca...
Question 140: Which document serve as specifications for the implementatio...
Question 141: Set of rules that everyone must comply with and usually carr...
Question 142: Timiting access to resources based on the sensitivity of the...
Question 143: In incident terminology the Zero day is...
Question 144: Which of the following principles aims primarily at fraud de...
Question 145: A structured approach used to oversee and manage risk for an...
Question 146: Restoring IT and communications back to full operation after...
Question 147: The harmonization of automated computing tasks, providing a ...
Question 148: What is the purpose of the post incident phase of incident r...
Question 149: Mark has purchased a MAC LAPTOP. He is scared of losing his ...
Question 150: Which protocol would be most suitable to fulfill the secure ...
Question 151: An external entity has tried to gain access to your organiza...
Question 152: Derrick logs on to a system in order to read a file. In this...
Question 153: Mark is configuring an automated data transfer between two h...
Question 154: What should been done to limit the damage caused by the rans...
Question 155: Removing the design belief that the network has any trusted ...
Question 156: which is the short form of IPv6 address 2001:0db8:0000:0000:...
Question 157: The magnitude of the harm expected as a result of the conseq...
Question 158: Who should participate in creating a BCP...
Question 159: Which of the following is not a protocol of the OSI layer 3...
Question 160: What is the difference between BCP and DRP...
Question 161: Which type of control is used to minimize the impact of an a...
Question 162: Which of the following is not an element of system security ...
Question 163: 255.255.255.0 Address represents...
Question 164: 4 Embedded systems and network-enabled devices that communic...
Question 165: What is the BEST defense against dumpster diving attacks?...
Question 166: Example of Technical controls
Question 167: When the ISC2 Mail server sends mail to other mail servers i...
Question 168: Which of the following best describes the type of technology...
Question 169: Which access control model grants permission based on the se...
Question 170: Juli is listening to network traffic and capturing passwords...
Question 171: When responding to a security incident, your team determines...
Question 172: Which term describes a communication tunnel that provides po...
Question 173: Which of these is the most efficient and effective way to te...
Question 174: What is the difference between hub and switch...
Question 175: A company's governing board may agree that legal services wi...
Question 176: DNS works in which OSI layer
Question 177: What is the term used to denote the inherent set of privileg...
Question 178: What is the best practise to clear SSD storage after usage i...
Question 179: What is the primary goal of a risk management process in cyb...