IT6205A-2113T Introduction to Cybersecurity Introduction
(Chapter 2 Quiz)
Question text
In what way are zombies used in security attacks?
Select one:
They target specific individuals to gain corporate or personal information.
They probe a group of machines for open ports to learn which services are running.
They are infected machines that carry out a DDoS attack.
They are maliciously formed code segments used to replace legitimate applications.
Feedback
Refer to curriculum topic: 2.1.5
Zombies are infected computers that make up a botnet. The zombies are used to deploy a distributed denial of service (DDoS) attack.
Zombies are infected computers that make up a botnet. The zombies are used to deploy a distributed denial of service (DDoS) attack.
The correct answer is: They are infected machines that carry out a DDoS attack.
Question text
Which tool is used to provide a list of open ports on network devices?
Select one:
Tracert
Nmap
Whois
Ping
Feedback
Refer to curriculum topic: 2.1.4
The Nmap tool is a port scanner that is used to determine which ports are open on a particular network device. A port scanner is used before launching an attack.
The Nmap tool is a port scanner that is used to determine which ports are open on a particular network device. A port scanner is used before launching an attack.
The correct answer is: Nmap
Question text
Which two characteristics describe a worm? (Choose two.)
Select one or more:
hides in a dormant state until needed by an attacker
is self-replicating
infects computers by attaching to software code
travels to new computers without any intervention or knowledge of the user
executes when software is run on a computer
Feedback
Refer to curriculum topic: 2.1.3
Worms are self-replicating pieces of software that consume bandwidth on a network as they propagate from system to system. They do not require a host application, unlike a virus. Viruses, on the other hand, carry executable malicious code which harms the target machine on which they reside.
Worms are self-replicating pieces of software that consume bandwidth on a network as they propagate from system to system. They do not require a host application, unlike a virus. Viruses, on the other hand, carry executable malicious code which harms the target machine on which they reside.
The correct answers are: is self-replicating, travels to new computers without any intervention or knowledge of the user
Question text
Which example illustrates how malware might be concealed?
Select one:
An attack is launched against the public website of an online retailer with the objective of blocking its response to visitors.
A botnet of zombies carry personal information back to the hacker.
A hacker uses techniques to improve the ranking of a website so that users are redirected to a malicious site.
An email is sent to the employees of an organization with an attachment that looks like an antivirus update, but the attachment actually consists of spyware.
Feedback
Refer to curriculum topic: 2.1.3
An email attachment that appears as valid software but actually contains spyware shows how malware might be concealed. An attack to block access to a website is a DoS attack. A hacker uses search engine optimization (SEO) poisoning to improve the ranking of a website so that users are directed to a malicious site that hosts malware or uses social engineering methods to obtain information. A botnet of zombie computers is used to launch a DDoS attack.
An email attachment that appears as valid software but actually contains spyware shows how malware might be concealed. An attack to block access to a website is a DoS attack. A hacker uses search engine optimization (SEO) poisoning to improve the ranking of a website so that users are directed to a malicious site that hosts malware or uses social engineering methods to obtain information. A botnet of zombie computers is used to launch a DDoS attack.
The correct answer is: An email is sent to the employees of an organization with an attachment that looks like an antivirus update, but the attachment actually consists of spyware.
Question text
What is the most common goal of search engine optimization (SEO) poisoning?
Select one:
to increase web traffic to malicious sites
to build a botnet of zombies
to overwhelm a network device with maliciously formed packets
to trick someone into installing malware or divulging personal information
Feedback
Refer to curriculum topic: 2.1.5
A malicious user could create a SEO so that a malicious website appears higher in search results. The malicious website commonly contains malware or is used to obtain information via social engineering techniques.
A malicious user could create a SEO so that a malicious website appears higher in search results. The malicious website commonly contains malware or is used to obtain information via social engineering techniques.
The correct answer is: to increase web traffic to malicious sites
Question text
What is the purpose of a rootkit?
Select one:
to masquerade as a legitimate program
to replicate itself independently of any other programs
to gain privileged access to a device while concealing itself
to deliver advertisements without user consent
Feedback
Refer to curriculum topic: 2.1.2
Malware can be classified as follows:
- Virus (self replicates by attaching to another program or file)
- Worm (replicates independently of another program)
- Trojan Horse (masquerades as a legitimate file or program)
- Rootkit (gains privileged access to a machine while concealing itself)
- Spyware (collects information from a target system)
- Adware (delivers advertisements with or without consent)
- Bot (waits for commands from the hacker)
- Ransomware (holds a computer system or data captive until payment is received)
Malware can be classified as follows:
- Virus (self replicates by attaching to another program or file)
- Worm (replicates independently of another program)
- Trojan Horse (masquerades as a legitimate file or program)
- Rootkit (gains privileged access to a machine while concealing itself)
- Spyware (collects information from a target system)
- Adware (delivers advertisements with or without consent)
- Bot (waits for commands from the hacker)
- Ransomware (holds a computer system or data captive until payment is received)
The correct answer is: to gain privileged access to a device while concealing itself
Question text
Which type of attack allows an attacker to use a brute force approach?
Select one:
denial of service
packet sniffing
password cracking
social engineering
Feedback
Refer to curriculum topic: 2.1.4
Common ways used to crack Wi-Fi passwords include social engineering, brute-force attacks, and network sniffing.
Common ways used to crack Wi-Fi passwords include social engineering, brute-force attacks, and network sniffing.
The correct answer is: password cracking
Question text
What is the primary goal of a DoS attack?
Select one:
to obtain all addresses in the address book within the server
to scan the data on the target server
to prevent the target server from being able to handle additional requests
to facilitate access to external networks
Feedback
Refer to curriculum topic: 2.1.5
A denial of service (DoS) attack attempts to overwhelm a system or process by sending large amounts of data or requests to the target. The goal is to keep the system so overwhelmed handling false requests that it is unable to respond to legitimate ones.
A denial of service (DoS) attack attempts to overwhelm a system or process by sending large amounts of data or requests to the target. The goal is to keep the system so overwhelmed handling false requests that it is unable to respond to legitimate ones.
The correct answer is: to prevent the target server from being able to handle additional requests