An employee receives an email from her bank asking her to verify her account details due to recent security breaches. The email contains a link to a website that looks similar to her bank's website. She becomes suspicious because the email has typos and the URL seems off. This email is likely an example of which type of attack?
- Phishing
- Spear Phishing
- Malware
- Social Engineering
This scenario is an example of "Phishing." Phishing attacks involve sending deceptive emails, often impersonating trusted entities, to trick recipients into revealing sensitive information or clicking on malicious links. In this case, the email's typos and suspicious URL are typical signs of phishing.
A system that combines the features of both firewalls and IDS/IPS is commonly referred to as a _______.
- DMZ (Demilitarized Zone)
- NAT (Network Address Translation)
- SIEM (Security Information and Event Management)
- UTM (Unified Threat Management)
A UTM (Unified Threat Management) system combines the functionalities of both firewalls and IDS/IPS, providing comprehensive security.
What is the primary purpose of a software patch?
- Add new features
- Enhance user interface
- Fix software vulnerabilities
- Improve system performance
The primary purpose of a software patch is to fix software vulnerabilities. Software vulnerabilities can be exploited by malicious actors to compromise a system's security. Patches are essential for maintaining a secure and stable software environment.
Which VPN protocol operates at Layer 2 of the OSI model and is often used for remote access?
- IPsec
- L2TP
- OpenVPN
- PPTP
The VPN protocol that operates at Layer 2 of the OSI model is "L2TP" (Layer 2 Tunneling Protocol), which is commonly used for remote access VPN connections.
GDPR introduces the role of a _______ to ensure compliance within organizations.
- Compliance Officer
- Data Officer
- Data Privacy Officer
- Data Protection Officer
GDPR (General Data Protection Regulation) introduces the role of a Data Protection Officer (DPO) to ensure compliance within organizations. The DPO is responsible for monitoring data protection activities, advising on data protection obligations, and serving as a contact point for data protection authorities.
After implementing a strict CSP on a website, a developer notices that some of the third-party widgets are not functioning. Which of the following is the most likely reason?
- The widgets are not properly configured
- The widgets lack a Content Security Policy
- The widgets need browser extensions to function
- The widgets violate the Same-Origin Policy
The most likely reason for the third-party widgets not functioning after implementing a strict CSP (Content Security Policy) is that the widgets violate the Same-Origin Policy. CSP restricts the sources from which content can be loaded on a web page, and if the widgets come from a different origin, they may be blocked.
Which security measure can prevent attackers from capturing session IDs by listening to network traffic between the client and server?
- Cross-Site Request Forgery
- HTTPS Encryption
- Rate Limiting
- Secure Cookies
HTTPS (HyperText Transfer Protocol Secure) encryption is a security measure that encrypts data in transit between the client and server, making it difficult for attackers to capture session IDs by eavesdropping on network traffic. It's a fundamental method for ensuring data privacy and security during transmission.
What is the primary advantage of using a biometric authentication method, such as fingerprint or facial recognition?
- Easy to Implement
- High Efficiency
- Low Cost
- Strong Security
The primary advantage of biometric authentication methods like fingerprint or facial recognition is their strong security. Biometrics provide a high level of security because they are based on unique physical or behavioral characteristics, making it extremely difficult for unauthorized users to gain access. These methods are challenging to fake or replicate, enhancing security.
Which device is typically used to segment a network and control incoming and outgoing network traffic based on security policies?
- Hub
- Modem
- Router
- Switch
A router is used to segment a network and control network traffic based on security policies by directing traffic between different network segments, effectively acting as a gateway for traffic control.
Which stage of security incident response is focused on eradicating the root cause of the incident?
- Analysis
- Containment
- Identification
- Recovery
The 'Analysis' stage focuses on identifying the root cause of the incident by examining how the breach occurred. Once the root cause is known, efforts can be directed toward eradicating it and preventing future occurrences.