Question 1. What is the most common threat to information security in an organization?
Question 2. Background checks, drug testing, retirement, and termination are elements found in what type of policy?
Question 3. The term hacktivist refers to _____.
- a hacker with low technical ability
- a hacker motivated by a political agenda
- a hacker who can write scripts
Question 4. What is a Solar Sunrise?
- An attack that was made to look like an attack from Iraq but that was actually made by two teenagers from California who got training in Israel
- Electronic interference resulting from solar flares and occurring most commonly in the early morning hours
- A penetration test conducted by the FBI and other government agencies to test the defenses of government networks and critical infrastructures
- The name of a virus that would burn up a hard drive at 6 a.m. on the day of the summer solstice
Question 5. What was the Slammer Worm or Virus?
- It was a macro virus that spread by e-mailing the first 50 people in the victim's address book with the subject "Important Message."
- It was the first Internet worm to slam the Internet and was created by a graduate student from Cornell University in 1988.
- It was malware that exploited the Microsoft SQL server and spread across the world in just 10 minutes.
- It was malware that slammed shut your computer by not allowing you to log in.
Question 6. When information is disclosed to individuals who are not authorized to see it, a _____ has been suffered.
- loss of confidentiality
- loss of integrity
- loss of functionality
- loss of availability
Question 7. In April 2009, Homeland Security Secretary Janet Napolitano told reporters that _____.
- organized crime members made attempts to break into the U.S. electric power grid
- hacktivists made attempts to break into the U.S. electric power grid
- terrorists made attempts to break into the U.S. electric power grid
- China and Russia made attempts to break into the U.S. electric power grid
Question 8. The first step an administrator can take to reduce possible attacks is to _____.
- ensure that all patches for the operating system and the applications are installed
- install a firewall
- install antispyware software
- configure an intrusion-detection system
Question 9. Which of the following is a security model that addresses integrity?
- Biba
- Bell-LaPadula
- Layered defense
- Ring
Question 10. The hacker was successful in breaching the firewall, the packet filtering router, and the internal firewall but was quickly detected and unable to get past the workstation personal firewall. This is an example of what principle?
- Layered security
- Job rotation
- Diversity of defense
- Security through obscurity