Question 1 of 20
Albitrex Systems is an Asian software consulting firm which develops solutions for companies in the United States and Europe. The company is heavily dependent on the Internet for transporting data. The company wants to ensure that only authorized users access the data and that the data cannot be intercepted and compromised. Which of the following would be most helpful to the company in achieving this goal?
A. Spam filtering
B. Hot backing up
D. Open transmitting
Question 2 of 20
In __________, an attacker accesses the network, intercepts data from it, and even uses network services and/or sends attack instructions to it without having to enter the home, office, or organization that owns the network.
A. drive-by hacking
C. viral marketing
Question 3 of 20
Recovery point objectives of a recovery plan specify:
A. the maximum time allowed to recover from a catastrophic event.
B. data structures and patterns of the data.
C. the minimum time after which response should be allowed in a catastrophic event.
D. how current the backup data should be.
Question 4 of 20
When using Yahoo Messenger, you get an unsolicited advertisement from a company. This advertisement contains a link to connect to the merchant’s website. Which of the following is the best way of classifying this advertisement?
C. Internet hoax
Question 5 of 20
Which of the following types of plans describes how a business resumes operation after a disaster?
A. Business continuity plan
B. Internal operations plan
C. Collocation facilities plan
D. Emergency operation plan
Question 6 of 20
Organizations periodically have an external entity review the controls so as to uncover any potential problems in the controls. This process is called:
A. information systems audit.
B. risk analysis.
C. information modification.
D. recovery plan objective analysis.
Question 7 of 20
Ronald downloads a movie from the Internet onto his company’s computer. During this process, his system gets affected by a virus. The virus spreads rapidly in the company’s network and causes the server to crash. This type of virus is most likely:
B. phishing mail.
D. a worm.
Question 8 of 20
An organization takes active countermeasures to protect its systems, such as installing firewalls. This approach is known as risk:
Question 9 of 20
A hacker takes an individual’s Social Security number, credit card number, and other personal information for the purpose of using the victim’s credit rating to run up debts that are never repaid. This practice is called:
A. bot herding.
D. identity theft.
Question 10 of 20
Controls that are used to assess whether anything went wrong, such as unauthorized access attempts, are called __________ controls.
Question 11 of 20
A mass cyber attack occurred in a country when it took severe actions against a group of citizens who protested against the country’s religious policies. The attack involved a denial-of-service in which selected sites were bombarded with traffic to force them offline. This is an example of:
B. logic bombing.
C. hot backing up.
Question 12 of 20
__________ by terrorists refers to the use of the vast amount of information available on the Internet regarding virtually any topic for planning, recruitment, and numerous other endeavors.
A. Information dissemination
B. Data mining
C. Location monitoring
D. Information sharing
Question 13 of 20
Violating data belonging to banks or other financial institutions is a crime in the United States. Which of the following legislations prohibit such violations?
A. The Foreign Intelligence Surveillance Act
B. The Computer Fraud and Abuse Act
C. The Patriot Act
D. The Banking Rights and Privacy Act
Question 14 of 20
Employees steal time on company computers to do personal business. This can be considered as an example of:
A. unauthorized access.
C. Web vandalism.
Question 15 of 20
Which of the following is one of the main federal laws in the United States against computer crimes?
A. Satellite Act of 1962
B. Trade Expansions Act of 1962
C. United States Information and Educational Exchange Act
D. Electronic Communications Privacy Act of 1986
Question 16 of 20
__________ software is used to keep track of computer activity so that inspectors can spot suspicious activity and take action.
Question 17 of 20
An organization builds a fully equipped backup facility, having everything from office chairs to a one-to-one replication of the most current data. This facility is called a:
A. buying center.
C. hot backup site.
Question 18 of 20
Which of the following laws makes it mandatory for organizations to demonstrate that there are controls in place to prevent misuse or fraud, controls to detect any potential problems, and effective measures to correct any problems?
A. Trade Expansions Act of 1962
B. Sarbanes-Oxley Act
C. Electronic Communications Privacy Act of 1986
D. Central Intelligence Agency Act
Question 19 of 20
Which of the following terms represents junk newsgroup postings used for the purpose of advertising for some product or service?
D. Bot herder
Question 20 of 20
Your company uses a fingerprint recognition system instead of an access card. This helps the company prevent unauthorized physical access. Which of the following technologies is used for authentication here?
A. Access-control software
C. Smart cards