FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 25: B: Extension: A Information Security

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 31

True/False

Review LaterAdd Note

Review Later

Information security policies detail how an organization will implement the information security plan.

A) True
B) False

Correct Answer

verified

Show Answer

Question 32

Multiple Choice

Review LaterAdd Note

Review Later

What is dumpster diving?

A) A form of social engineering in which one individual lies to obtain confidential data about another individual.
B) A hacker looking through your trash to find personal information.
C) Legitimate users purposely or accidentally misusing their access to the environment and causing some kind of business-affecting incident.
D) Malicious agents designed by spammers and other Internet attackers to farm email addresses off websites or deposit spyware on machines.

E) A) and B)
F) All of the above

Correct Answer

verified

Show Answer

Question 33

Multiple Choice

Review LaterAdd Note

Which of the following is not considered a form of biometrics?

Through pretexting, hackers use their social skills to trick people into revealing access credentials or other valuable information.

What prevention technique scrambles information into an alternative form that requires a key or password to decrypt?

The best and most effective way to manage authentication is through ___________.

What is a set of measurable characteristics of a human voice that uniquely identifies an individual?

Single-factor authentication requires the user to provide two means of authentication, what the user knows (password) and what the user has (security token).

What is forging of someone's identity for the purpose of fraud?

Ransomware is a form of social engineering in which one individual lies to obtain confidential data about another individual.

Phishing reroutes requests for legitimate websites to false websites.

Pretexting is a form of social engineering in which one individual lies to obtain confidential data about another individual.

Insiders are illegitimate users who purposely or accidentally misuse their access to the environment to do business.

A phishing expedition is a masquerading attack that combines spam with spoofing.The perpetrator sends millions of spam emails that appear to be from a respectable company.The emails contain a link to a website that is designed to look exactly like the company's website.The victim is encouraged to enter his or her username, password, and sometimes credit card information.

Cryptography is the science that studies encryption, which is the hiding of messages so that only the sender and receiver can read them.

What is single-factor authentication?

Single-factor authentication requires more than two means of authentication such as what the user knows (password), what the user has (security token), and what the user is (biometric verification).

What is a phone scam that attempts to defraud people by asking them to call a bogus telephone number to "confirm" their account information?

What is pretexting?

What is the category of computer security that addresses the protection of data from unauthorized disclosure and confirmation of data source authenticity?