CNIT123-Quiz#03
T/F? Malware is malicious software, such as a virus, worm, or Trojan program, introduced into a network.
True
What type of malicious procedure involves using sniffing tools to capture network communications to intercept confidential information or gather credentials that can be used to extend the attack? a) capturing b) eavesdropping c) injecting d) overflowing
b) eavesdropping
What type of attack is occurring when an attacker places themselves between two parties and manipulates messages being passed back and forth? a) Ping of Death b) Middle-Capture c) Man-in-the-Middle d) DDOS
c) Man-in-the-Middle
Which of the following physical security methods provides the ability to secure a company's assets and document any individuals physical time of entry? a) deadbolt locks b) rotary locks c) card access d) combination locks
c) card access
T/F? A DDoS attack is launched against a host from a single server or workstation.
False
T/F? Malware programs cannot be detected by antivirus programs.
False
T/F? Whitelisting allows only approved programs to run on a computer.
True
Which term best describes a hash or code pattern that antivirus software companies use to compare known viruses to every file on a computer? a) signatures b) bots c) heuristics d) macros
a) signatures
When a computer hacker uses multiple compromised computers to carry out a DDOS attack, the compromised computers are usually referred to as which of the following? a) zombies b) viruses c) cyborgs d) macros
a) zombies
Which type of security is specifically concerned with computers or devices that are part of a network infrastructure? a) Host security b) Network security c) Computer security d) Server security
b) Network security
Which type of attack is being carried out when an attacker joins a TCP session and makes both parties think he or she is the other party? a) Ping of Death b) Session hijacking c) A buffer overflow attack d) A DoS attack
b) Session hijacking
If an attacker wishes to collect confidential financial data, passwords, PINs and any personal data stored on your computer which of the following programs would they choose to use? a) Adware b) Spyware c) Malware d) Spybot
b) Spyware
Which of the following sometimes displays a banner that notifies the user of its presence? a) Malware b) Webware c) Adware d) Spyware
c) Adware
Which type of program can mitigate some risks associated with malware? a) rootkits b) shells c) antivirus d) bots
c) antivirus
What type of hardware devices and computer programs can be used to obtain passwords by capturing key strokes on a targeted computer system? a) Shells b) Viruses c) Keyloggers d) Macro viruses
c) Keyloggers
What type of malicious program cannot stand on its own and can replicate itself through an executable program attached to an e-mail? a) keylogger b) shell c) virus d) rootkit
c) virus
The virus signature file is maintained by what type of software? a) keylogger b) firewall c) remote control d) antivirus
d) antivirus
T/F? In a buffer overflow attack, an attacker finds a vulnerability in poorly written code that doesn't check for a defined amount of memory space use.
True
Which type of attack cripples the network and prevents legitimate users from accessing network resources? a) session hijacking b) buffer overflow c) social engineering d) denial-of-service
d) denial-of-service
A malicious computer program that replicates and propagates itself without having to attach to a host is called which of the following? a) shell b) virus c) Trojan d) worm
d) worm
Trojan Programs can install a specific type of program to allow an attacker access to the attacked computer later. What means of access is the attacker utilizing? a) worm b) backdoor c) macro virus d) shell
b) backdoor
What type of malicious computer programs present themselves as useful computer programs or applications? a) Spyware programs b) macro viruses c) Trojan programs d) worms
c) Trojan programs
The acronym IDS stands for which of the following? a) Intrusion Detection System b) Information Destruction System c) Intruder Dispersal System d) Information Dissemination System
a) Intrusion Detection System
What type of attack causes the victim's computer to crash or freeze when the attacker delivers an ICMP packet that is larger than the maximum allowed 65,535 bytes? a) Ping of Death b) MTU ping c) buffer overflow d) session hijacking
a) Ping of Death
When a programmer exploits written code that doesn't check for a defined amount of memory space they are executing which of the following attacks? a) buffer overflow b) DDoS c) session hijacking d) DoS
a) buffer overflow
Which term best describes malicious programmatic behaviors that antivirus software companies use to compare known viruses to every file on a computer? a) macros b) signatures c) heuristics d) bots
c) heuristics
Which type of virus is written as a list of commands that can be set automatically to run as soon as a computer user opens the file? a) keylogger b) rootkit c) macro d) adware
c) macro
What type of virus is used to lock a user's system, or cloud accounts until the system's owner complies by paying the attacker a monetary fee? a) rootkit b) macro c) ransomeware d) keylogger
c) ransomeware
Which of the following is created after an attack and usually hides within the OS tools, so it is almost impossible to detect? a) macro virus b) toolbox c) rootkit d) shell
c) rootkit
A computer hacker may use a phishing e-mail to lure a user into following a malicious link. What type of technique is being used by the computer hacker? a) ransoming b) mail fraud c) social engineering d) heuristics
c) social engineering