13.3.9 Practice exam – Flashcards
Unlock all answers in this set
Unlock answersquestion
Which of the following statements about the use of anti-virus software is correct?
answer
Anti-virus software should be configured to download updated virus definition files assoon as they become available.soon as they become
question
You have installed anti-virus software on the computers on your network. You update thedefinition and engine files, and configure the software to update those files every day. What else should you do to protect your systems from malware?(Select two.)
answer
Schedule regular full system scans. Educate users about malware.
question
An attacker sets up 100 drone computers that flood a DNS server with invalid requests. This isan example of which kind of attack?an example of which kind of attack
answer
DDoS
question
Which of the following is the best countermeasure against man-in-the middle attacks?
answer
IPsec
question
A collection of zombie computers have been setup to collect personal information. What type of malware do the zombie computers represent?
answer
Botnet
question
Which of the following describes a logic bomblogic bomb?
answer
A program that performs a malicious activity at a specific time or after a triggering event
question
Which of the following are characteristics of a rootkitrootkit? (Select two.)
answer
Hides itself from detection Requires administrator-level privileges for installation
question
Which of the following best describes spyware?
answer
It monitors the actions you take on your machine and sends the information back to itsoriginating source.
question
A relatively new employee in the data entry cubical farm was assigned a user account similar tothat of all of the other data entry employees. However, audit logs have shown that this useraccount has been used to change ACLs on several confidential files and has accessed data inaccount has been used to change This situation indicates which of the following has occurred?
answer
Privilege escalation
question
What are the most common network traffic packets captured and used in a replay attack?
answer
Authentication
question
Which of the following are denial of service attacks? (Select two.)
answer
Smurf Fraggle
question
An attacker uses an exploit to push a modified hosts file to client systems. This hosts fileredirects traffic from legitimate tax preparation sites to malicious sites to gather personal andredirects traffic from legitimate tax preparation sites to malicious sites to gather personal andfinancial information.financial information. What kind of exploit has been used in this scenario?
answer
Pharming DNS poisining
question
Users in your organization receive email messages informing them that suspicious activity hasbeen detected on their bank account. They are directed to click a link in the email to verify theirbeen detected on their bank account. They are directed to click a link in the email to verify theironline banking username and password. The URL in the link is in the .ru top-level DNS domain.online banking username and password. What kind of attack has occurred?
answer
Phishing
question
A programmer that fails to check the length of input before processing leaves his codevulnerable to what form of common attack?
answer
Buffer overflow
