CYBER AWARENESS CHALLENGE 2024 (50)
Which of the following is permitted when using an unclassified laptop within a collateral classified space?
A Government-issued wired headset with microphone
Which of the following is permitted when using an unclassified laptop within a collateral classified space?
A government-issued WIRED headset with microphone
When is the safest time to post on social media about your vacation plans?
After the trip
Which of the following contributes to your online identity?
All of these
When linked to a specific individual, which of the following is NOT an example of Personally Identifiable Information (PII)?
Automobile make and model
What does the Common Access Card (CAC) contain?
Certificates for identification, encryption, and digital signature
Which of the following is an allowed use of government furnished equipment (GFE)?
Checking personal e-mail if your organization allows it
How can an adversary use information available in public records to target you?
Combine it with information from other data sources to learn how best to bait you with a scam
Annabeth becomes aware that a conversation with a co-worker that involved Sensitive Compartmented Information (SCI) may have been overheard by someone who does not have the required clearance. What action should Annabeth take?
Contact her security POC to report the incident.
You receive a text message from a package shipper notifying you that your package delivery is delayed due to needing updated delivery instructions from you.
Delete the message
You receive a text message from a package shipper notifying you that your package delivery is delayed due to needing updated delivery instructions from you. It provides a shortened link for you to provide the needed information. You are not expecting a package. What is the best course of action?
Delete the message
What is the goal of an Insider Threat Program?
Deter, detect, and mitigate
Which of the following is NOT a best practice for protecting data on a mobile device?
Disable automatic screen locking after a period of inactivity
Which of the following is a best practice for using government e-mail?
Do not send mass e-mails
Which of the following is an appropriate use of a DoD PKI token?
Do not use a token approved for NIPR on SIPR
Carl receives an e-mail about a potential health risk caused by a common ingredient in processed food. Which of the following actions should Carl NOT take with the e-mail?
Forward it
Carl receives an e-mail about a potential health risk...
Forward it
Which of the following uses of removable media is allowed?
Government owned removable media that is approved as operationally necessary
On your home computer, how can you best establish passwords when creating separate user accounts?
Have each user create their own, strong password
How should government owned removable media be stored?
In a GSA-approved container according to the appropriate security classification
Which of the following statements about PHI is false?
It is created or received by a healthcare provider, health plan, or employer of a business associate of these.
Which of the following statements is true of DoD Unclassified data?
It may require access and distribution controls
Which of the following is a best practice when browsing the internet?
Only accept cookies from reputable, trusted websites
Where are you permitted to use classified data?
Only in areas with security appropriate to the classification level
Which of the following is true of transmitting or transporting SCI?
Printed SCI must be retrieved promptly from the printer
How can you protect your home computer?
Regularly back up your files
Which of the following is NOT a way that malicious code can spread?
Running a virus scan
How can you prevent viruses and malicious code?
Scan all external files before uploading to your computer
Which of the following is an authoritative source for derivative classification?
Security Classification Guide
Which of the following is an example of behavior that you should report?
Taking sensitive information home for telework without authorization
Terry sees a post on her social media feed that says there is smoke billowing from the Pentagon...
This is probably a post designed to attract Terr's attention to click on a link and steal her information
What conditions are necessary to be granted access to SCI?
Top Secret clearance and indoctrination into the SCI program
What conditions are necessary to be granted access to Sensitive Compartmented Information (SCI)?
Top Secret clearance and indoctrination into the SCI program
How can you protect your home computer?
Turn on the password feature
Which of the following is NOT a best practice for protecting your home wireless network for telework?
Use your router's pre-set SSID and password
Which of the following is NOT a best practice for protecting your home wireless network for telework?
Use your router's pre-set Service Set Identifier (SSID) and password
Which of the following is an appropriate use of government e-mail?
Using a digital signature when sending attachments
Which of the following is NOT an appropriate use of your CAC?
Using it as photo identification with a commercial entity
Which of the following is NOT an appropriate use of your Common Access Card (CAC)?
Using it as photo identification with a commercial entity
Beth taps her phone at a payment terminal to pay for a purchase. Does this pose a security risk?
Yes, there is a risk that the signal could be intercepted and altered
Beth taps her phone at a payment terminal to pay for a purchase. Does this pose a security risk?
Yes, there is a risk that the signal could be intercepted and altered.
Sylvia commutes to work via public transportation. She often uses...
Yes. Eavesdroppers may be listening to Sylvia's phone calls, and shoulder surfers may be looking at her screen.
Sylvia commutes to work via public transportation. She often uses the time to get a head start on work by making phone calls or responding to e-mails on her government approved mobile device. Does this pose a security concern?
Yes. Eavesdroppers may be listening to Sylvia's phone calls, and shoulder surfers may be looking at her screen. Sylvia should be aware of these risks.
Which of the following is true of telework?
You must have permission from your organization to telework.
After a classified document is leaked online, it makes national headlines. Which of the following statements is true of the leaked information that is now accessible by the public?
You should still treat it as classified even though it has been compromised.
Which best describes an insider threat? Someone who uses __________ access, ___________, to harm national security through unauthorized disclosure, data modification, espionage, terrorism, or kinetic actions.
authorized, wittingly or unwittingly
