Question 4Which of the following threats are most likely to occur in the event of a phishing attack? Select all that apply. 1 pointEmployees inadvertently revealing sensitive dataOvertaxing systems with too many internal emailsTheft of the organization’s hardwareMalicious software being deployed

Which of the following attacks can be launched by a malicious user either through a web page or email a. Phishing attacks b. Virus Attacks c. Spyware d. All of the above

Which one of the following is considered in the category of computer threats?    a) Soliciting    b) DoS attack    c) Phishing   d) Both A and B

Identify which is considered as computer threats?*2 pointsSpammingPhishingDos AttackSoliciting

1.Question 1Which of the following threats are examples of malware? Select two answers.1 pointError messagesWormsVirusesBugs2.Question 2Fill in the blank: The _____ spread globally within a couple of months due to users inserting a disk into their computers that was meant to track illegal copies of medical software. 1 pointBrain virusMorris wormLoveLetter attackEquifax breach3.Question 3Fill in the blank: Social engineering is a manipulation technique that exploits _____ error to gain access to private information.1 pointhumannetworkcomputercoding4.Question 4A security professional is asked to teach employees how to avoid inadvertently revealing sensitive data. What type of training should they conduct?1 pointTraining about social engineeringTraining about security architectureTraining about network optimizationTraining about business continuity5.Question 5Which of the following tasks are part of the security and risk management domain? Select all that apply.1 pointBusiness continuityComplianceSecuring physical assetsDefining security goals and objectives6.Question 6Which of the following tasks may be part of the security architecture and engineering domain? Select all that apply.1 pointEnsuring that effective systems and processes are in placeConfiguring a firewallValidating the identities of employeesSecuring hardware7.Question 7A security professional is ensuring proper storage, maintenance, and retention of their organization’s data. Which domain does this scenario describe?1 pointSecurity operationsAsset securityCommunication and network securitySecurity assessment and testing8.Question 8Which of the following tasks may be part of the security assessment and testing domain? Select all that apply.1 pointCollecting and analyzing dataAuditing user permissionsSecuring physical networks and wireless communicationsConducting security audits9.Question 9Which domain involves keeping data secure by ensuring users follow established policies to control and manage physical assets?1 pointCommunication and network securityIdentity and access managementSecurity assessment and testingSecurity and risk management10.Question 10Which domain involves conducting investigations and implementing preventive measures?1 pointSecurity operations Security and risk managementIdentity and access managementAsset security

Question 4A security professional conducts internal training to teach their coworkers how to identify a social engineering attack. What types of security issues are they trying to avoid? Select all that apply.1 pointEmployees inadvertently revealing sensitive dataOvertaxing systems with too many internal emailsMalicious software being deployedPhishing attacks