Q:1. What was the percentage increase in Zero Day Vulnerabilities in the year 2015?
1.4%
2.50%
3.100%
4.125%
Q:2. Identify the software whose vulnerability is exploited the most?
1.Android
2.Browser
3.Adobe Flash Player
4.Microsoft Office
Q:3. The computer vulnerabilities and exploits databases are maintained by _________.
1.Kaspersky Lab
2.Symantec Corporation
3.MITRE Corporation
4.None of the above
Q:4. Which of the following is/are correct with respect to Ransomware?
1.It is a form of Malware
2. It encrypts the whole hard drive of the computer, essentially locking the user out of the entire system.
3.It locks the system's screen or locks the users' files unless a ransom is paid.
4.All of the above.
Q:5. What hacking attacks were mentioned in the lesson?
1.Hacking in French Election
2.ATM Hacking in India
3.Denial of Service attack in Turkish Bank
4.All of the above
Q:6. Which of the following is not an advantage of studying Cyber Security?
1.It gives you the ability to hack a computer system
2.It allows you to know the ways through which cyberspace can be breached
3.Both A and B
4.None of the above
Q:7. Which of the following is considered legal?
1.Hacking a social media account and sending a private message
2.Hacking a bank account and siphoning funds
3.Hacking a company’s security system with permission from the management
4.All of the above
Q:8. What is the cost of launching Denial of Service attack on a website?
1.$20/hr
2.$100/day
3.$300/mont
4.Both A and B
Q:9. Which of the following is correct for silent banker?
1.It is a trojan horse
2.It records keystrokes, captures screens and steals confidential banking credentials and sends them to a remote attacker
3.Both A and B
4.None of the above
Q:10. Which of the following is not a part of Security System Centric Design?
1.Policy
2.Agreement
3.Mechanisms
4.Threat Models
Q:11. Which of the following is not a goal in the security system design?
1.Vulnerability.
2.Confidentiality
3.Integrity
4.Availability
Q:12. Which of the following is most important in design of secure system?
1.Assessing vulnerability
2.Changing or Updating System according to vulnerability
3.Both A and B.
4.None of the above
Q:13. Which of the following is correct with respect to Penetration testing?
1.It is an internal inspection of Applications and Operating systems for security flaws.
2.It is an authorized simulated cyber-attack on a computer system, performed to evaluate the security of the system.
3.It is hacking a security system of an organization.
4.All of the above
Q:14. Which of the following is to be done to avoid limitations in threat models?
1.Making more explicit and formalized threat models to understand possible weaknesses
2.Making simpler and more general threat models
3.Making less assumptions to design a better threat model
4.All of the above.
0 Comments