1.Question 1APT is an acronym for:1 pointAdvanced Process ThreatAdvanced Persistent ThreatAggregated and Pernicious ThreatAdvanced Personal ThreatAggregated Parallel Threat2.Question 2Which of the following is NOT considered a cyber threat actor?1 pointIndividuals or groups who use information technology to promote a political agendaNation states who utilize information technology and network access to acquire data or to disrupt operations.Criminal gangs who use information technology and the internet to steal information for profit, or utilize technology to solicit a ransom.People who are curious about how technology works and report vulnerabilities to organizations and authorities they discover in their own devices and networks.None of the Above3.Question 3A hacker who defaces a government website to protest the arrest of a political prisoner would be considered what type of threat actor?1 pointFreedom FighterAPTHacktivistWhite Hat HackerNone of the above4.Question 4How would you best describe the capabilities and motives of an APT?1 pointThey are lightly skilled, uncoordinated and primarily motivated by curiosity.They are lightly skilled, coordinated and primarily motivated by economic incentives.They are heavily skilled, highly coordinated, and usually motivated by national objectives such as espionage.They are heavily skilled, uncoordinated, and motivated due to moral objections to corporate policies.None of the Above5.Question 5Fancy Bear is a threat actor that is best categorized as what type of threat actor?1 pointHacktivistBasement HackerCriminal SyndicateAPTNone of the Above6.Question 6Criminal organizations engage in hacking activity primarily to:1 pointSteal national secretsProtest unpopular policy positions by a national governmentIllegally obtain monies from their victimsIncrease their reputation in the hacking community or to simply understand how to take advantage of vulnerabilities in technology None of the Above

Question 1Fill in the blank: Cybersecurity aims to protect networks, devices, people, and data from _____ or unauthorized access. 1 pointmarket shiftspoor financial managementchanging business prioritiescriminal exploitation2.Question 2Which of the following tasks are typically responsibilities of entry-level security analysts? Select all that apply.1 pointCreating organizational policiesProtecting computer and network systemsInstalling prevention softwareExamining in-house security issues3.Question 3Someone outside of an organization attempts to gain access to its private information. What type of threat does this scenario describe?1 pointExternalEthicalAccidentalInternal4.Question 4Fill in the blank: Identity theft is the act of stealing _____ to commit fraud while impersonating a victim.1 pointhardwarebusiness recordstrade secretspersonal information5.Question 5What is regulatory compliance?1 pointThreats and risks from employees and external vendorsLaws and guidelines that require implementation of security standardsSites and services that require complex passwords to accessExpenses and fines associated with vulnerabilities6.Question 6An individual is in their first job as an entry-level security professional. They take training to learn more about the specific tools, procedures, and policies that are involved in their career. What does this scenario describe?1 pointTransferring capabilities from one career to anotherImproving management capabilitiesGaining new technical skillsUnderstanding different perspectives7.Question 7Fill in the blank: Security information and _____ management (SIEM) tools enable security professionals to identify and analyze threats, risks, and vulnerabilities. 1 pointemergencyeventemployerenterprise8.Question 8What do security professionals typically do with SIEM tools?1 pointEducate others about potential security threats, risks, and vulnerabilitiesIdentify threat actors and their locationsLocate and preserve criminal evidenceIdentify and analyze security threats, risks, and vulnerabilities9.Question 9Which of the following statements accurately describe personally identifiable information (PII) and sensitive personally identifiable information (SPII)? Select all that apply.1 pointSPII is a type of PII that falls under stricter handling guidelines.An example of PII is someone’s email address.An example of SPII is someone’s last name. The theft of SPII is often more damaging than the theft of PII.

1.Question 1Since 1999 cyber attacks have caused large-scale injury, loss of life and destruction of property. 1 pointFalseTrue2.Question 2Identify the item which has NOT been recognized as a mode of cyberwarfare attack and activity.1 pointInformation gathering and espionage Disruption of services Physical system attacks Social media and propaganda None of the above 3.Question 3The countries who conduct powerful cyber attacks are: 1 pointRussia and China China and U.S. U.S. and Russia All of the above 4.Question 4What's the current level of threat of cyber attack of terrorist activity, aka cyber terrorism?1 pointCyber terrorism threat is extremely likely and dangerous Cyber terrorism threat is somewhat likely Cyber terrorism threat has been largely unfounded Cyber terrorism often happened in the past but no longer a big issue 5.Question 5What's an example of a real event for an activity of non-state actors? 1 pointCitizens in Russia working to attack computers in Estonia Bank personel in China using computers to attack Australia Groups of thugs in Egypt using cyber attacks on Tunisia All of the above6.Question 6There are a defined set of cyber attack characteristics that can clearly identify the different types of actor motivations.1 pointFalseTrue7.Question 7A 2009 attack on more than 30 companies including Google and Yahoo stealing intellectual property was attributed to Taiwan. Where were the hackers traced back to? 1 pointIranTaiwanRussiaChinaU.S.8.Question 8___________ of infrastructure means a failure in one element could cause cascading failures on multiple _____________ infrastructure components.Choose the BEST set of terms to complete the phrase above: 1 pointinterdependence; critical association; cyber criticality; complex internet; cyber comparability; internet 9.Question 9Techniques for censoring information include the following, except: 1 pointURL and packet filtering DNS filtering IT blocking Web feed blocking 10.Question 10__________ are machines connected to the Internet who have been infected by a virus or spyware and may be used by others to cause damage to any computer or networks, including by "denial of service attacks" where multiple __________ can suck up the resources of certain critical computers connected to the Internet. 1 pointComputers; spamsModems, IPsTrojans; virusesBot nets; bots

Identify which is considered as computer threats?*2 pointsSpammingPhishingDos AttackSoliciting

A threat actor collects information from web servers of an organization and searches for employee contact information. The information collected is further used to search personal information on the Internet. To which attack phase do these activities belong according to the Cyber Kill Chain model?weaponizationreconnaissanceaction on objectivesexploitationNavigation Bar

Match the type of cyber attackers to the description. (Not all options are used.)gather intelligence or commit sabotage on specific goals on behalf of their government Answer 1make political statements in order to create an awareness of issues that are important to them Answer 2make political statements, or create fear, by causing physical or psychological damage to victims Answer 3