Comptia Security+ Exam Prep 2

Quiz Summary

0 of 17 Questions completed

Questions:

You have already completed the quiz before. Hence you can not start it again.

Quiz is loading…

You must sign in or sign up to start the quiz.

You must first complete the following:

Results

Quiz complete. Results are being recorded.

Results

0 of 17 Questions answered correctly

Your time:

You have reached 0 of 0 point(s), (0)

Average score
Your score

Current
Review / Skip
Answered
Correct
Incorrect

Question 1 of 17

1. Question
1 point(s)
A company has a problem with privilege creep. Which access control model is MOST susceptible to this problem?
- Mandatory access control (MAC)
- Rule-based access control
- Role-based access control (RBAC)
- Discretionary access control
Correct

Incorrect
Question 2 of 17

2. Question
1 point(s)
What is the PRIMARY purpose of Security Content Automation Protocol (SCAP)?
- To define a common format for security logs
- To provide a standardized approach to vulnerability management
- To automate the configuration of security tools
- To encrypt security data
Correct

Incorrect
Question 3 of 17

3. Question
1 point(s)
An art gallery is upgrading its security systems to protect valuable artworks. The gallery is considering incorporating pressure-sensitive technologies for enhanced security. Which TWO of the following applications of pressure-sensitive technology would be most effective in securing the artworks? (SELECT TWO)
- Pressure-sensitive pads under each artwork to detect removal
- Pressure-sensitive paint on walls to detect graffiti
- Pressure-sensitive alarms on windows and doors
- Pressure-sensitive flooring in gallery rooms to monitor foot traffic
Correct

Incorrect
Question 4 of 17

4. Question
1 point(s)
Paul wants to protect sensitive data from unauthorized access and ensure that it remains confidential while being processed. Which cryptographic concept should Paul apply for this purpose?
- Cipher suites
- Quantum computing
- Homomorphic encryption
- Perfect forward secrecy
Correct

Incorrect
Question 5 of 17

5. Question
1 point(s)
An employee receives an email from what appears to be the company’s CEO, urgently requesting the transfer of funds to a new account for a confidential deal. The email address is similar to the CEO’s but with a minor difference. What should be the employee’s response to this potential social engineering attack?
- Immediately transfer the funds as the request is from the CEO
- Verify the request through a direct phone call to the CEO
- Forward the email to other colleagues for their opinion
- Delete the email as it is clearly a scam
Correct

Incorrect
Question 6 of 17

6. Question
1 point(s)
During a routine security assessment, it is found that an external attacker is able to perform on-path attacks on a company’s wireless network, intercepting and altering data. Which of the following vulnerabilities is MOST likely enabling this attack?
- Weak encryption on the wireless network.
- Outdated antivirus software on company computers.
- Unpatched security vulnerabilities in network routers.
- Inadequate physical security of network equipment.
Correct

Incorrect
Question 7 of 17

7. Question
1 point(s)
A healthcare organization is reviewing its authentication protocols to secure access to electronic health records (EHR) systems and other sensitive medical databases. The organization aims to protect patient data and ensure compliance with health data protection regulations. Which TWO of the following authentication protocols should be prioritized for implementation to achieve these objectives? (SELECT TWO)
- Utilizing Fast Identity Online (FIDO) protocols for strong, phishing-resistant authentication.
- Implementing Lightweight Directory Access Protocol (LDAP) for efficient user and resource management.
- Adopting Time-based One-Time Password (TOTP) algorithm for generating dynamic, time-sensitive passwords.
- Applying Extensible Authentication Protocol (EAP) for securing wireless network access to medical databases.
Correct

Incorrect
Question 8 of 17

8. Question
1 point(s)
An online retailer has noticed a pattern of fraudulent transactions originating from certain IP addresses. To effectively monitor and identify such activities in the future, which detective control should the security team focus on implementing?
- Installing a web application firewall (WAF)
- Setting up a system for real-time transaction monitoring
- Implementing two-factor authentication for customer logins
- Conducting regular vulnerability assessments
Correct

Incorrect
Question 9 of 17

9. Question
1 point(s)
A large enterprise is optimizing its network infrastructure with the implementation of load balancers. The network team is tasked with configuring the load balancers to enhance both performance and security. Which TWO of the following configurations should be applied to achieve these objectives? (SELECT TWO)
- Configuring the load balancers for content-based routing to efficiently distribute specific types of traffic.
- Setting up the load balancers to double as antivirus scanners for incoming traffic.
- Implementing health checks on the load balancers to ensure traffic is sent to operational servers.
- Using the load balancers to perform rate limiting to prevent excessive traffic from overwhelming servers.
Correct

Incorrect
Question 10 of 17

10. Question
1 point(s)
A government agency is implementing a new security policy but decides to exempt an older, legacy system from certain requirements due to compatibility issues. What should be the agency’s primary focus to manage the risks associated with this exemption?
- Upgrading the legacy system as soon as possible to comply with the new policy.
- Monitoring the legacy system closely for any signs of security breaches.
- Documenting the exemption and the rationale behind it for future reference.
- Implementing compensating controls to mitigate the risks of the exemption.
Correct

Incorrect
Question 11 of 17

11. Question
1 point(s)
A cybersecurity team in a medium-sized enterprise has automated its patch management process to enhance security. However, during the last update cycle, several critical systems experienced downtime due to incompatible patches. What is the MOST likely cause of this issue, considering the automated patch management system?
- The cybersecurity team's failure to manually test each patch before deployment.
- The automated system was not configured to account for system compatibility checks.
- Inadequate network bandwidth during the patch deployment process.
- Lack of coordination with the vendor providing the patches.
Correct

Incorrect
Question 12 of 17

12. Question
1 point(s)
A technology firm plans to implement a new secure access policy for its data center. The policy includes various authentication methods to ensure that only authorized personnel can access sensitive areas. Which TWO of the following authentication methods should the firm consider implementing to authenticate individuals effectively and enhance security? (SELECT TWO)
- Installing keypad locks that require a PIN code
- Implementing facial recognition systems
- Distributing color-coded physical badges
- Requiring voice recognition at entry points
Correct

Incorrect
Question 13 of 17

13. Question
1 point(s)
You are responsible for the security of an internal network. In reviewing the firewall rules, what potential security concern is addressed by Rule 5?

Rule 5. Deny TCP Traffic from any source to any destination on ports 1-1023
- Blocking outbound web traffic from the inside network.
- Allowing unrestricted access to well-known service ports.
- Facilitating communication for custom applications.
- Enforcing egress traffic restrictions for sensitive data.
Correct

Incorrect
Question 14 of 17

14. Question
1 point(s)
A security team at DataSight Solutions utilizes OSINT to enhance their threat intelligence capabilities. They gather information from various online sources, including social media, forums, and news sites. To effectively use OSINT in their vulnerability management strategy, which TWO of the following actions should the team prioritize? (SELECT TWO)
- Regularly update the organization's security policies based on OSINT findings.
- Cross-reference and validate OSINT findings with other intelligence sources.
- Focus exclusively on information obtained from official government sources.
- Train employees on recognizing and reporting potential threats identified through OSINT.
Correct

Incorrect
Question 15 of 17

15. Question
1 point(s)
Which log entry may indicate exploitation of system vulnerabilities?

2023-04-20T08:30:00.123Z INFO ApplicationServer – User ‘jdoe’ initiated login process from IP: 172.16.254.1
2023-04-20T08:30:05.456Z INFO ApplicationServer – User ‘jdoe’ successfully authenticated.
2023-04-20T08:32:22.789Z WARN ApplicationServer – Unexpected input validation failure in module ‘PaymentProcessor’.
2023-04-20T08:33:15.012Z ERROR ApplicationServer – System exception occurred: stack overflow exception in module ‘PaymentProcessor’.
2023-04-20T08:35:00.678Z INFO ApplicationServer – New user ‘tempUser’ created by ‘admin’.
2023-04-20T08:36:45.901Z INFO ApplicationServer – User ‘tempUser’ initiated login process from IP: 203.0.113.42
2023-04-20T08:37:00.345Z INFO ApplicationServer – User ‘tempUser’ assigned role ‘Administrator’ by ‘admin’.
2023-04-20T08:39:15.678Z ALERT ApplicationServer – Multiple failed login attempts for user ‘admin’ from IP: 198.51.100.7
2023-04-20T08:41:30.123Z WARN ApplicationServer – Unusual activity: High volume of data requests by user ‘tempUser’.
2023-04-20T08:43:00.456Z ALERT ApplicationServer – Outbound traffic spike detected.
2023-04-20T08:45:30.789Z INFO ApplicationServer – User ‘jdoe’ initiated logout process.
- A. 2023-04-20T08:32:22.789Z WARN ApplicationServer – Unexpected input validation failure in module 'PaymentProcessor'.
- 2023-04-20T08:30:05.456Z INFO ApplicationServer – User 'jdoe' successfully authenticated.
- 2023-04-20T08:37:00.345Z INFO ApplicationServer – User 'tempUser' assigned role 'Administrator' by 'admin'.
- 2023-04-20T08:36:45.901Z INFO ApplicationServer – User 'tempUser' initiated login process from IP: 203.0.113.42
Correct

Incorrect
Question 16 of 17

16. Question
1 point(s)
A healthcare organization handles a variety of data, including human-readable patient records and non-human-readable diagnostic machine outputs. To enhance data security, which TWO of the following measures should the organization prioritize? (SELECT TWO)
- Implementing an end-to-end encryption solution for data storage and transmission.
- Upgrading the physical security of the data storage facilities.
- Applying data masking techniques to patient records.
- Utilizing a centralized logging system for all data access and modification.
Correct

Incorrect
Question 17 of 17

17. Question
1 point(s)
A healthcare organization adheres to the principle of least privilege in managing access to patient records. However, during an internal audit, it is discovered that several administrative staff members have access to all patient records, regardless of their specific job requirements. What is the MOST likely cause of this violation of the least privilege principle?
- The organization's role-based access control system is not properly configured.
- Administrative staff are sharing their access credentials with each other.
- The organization lacks a policy on regular review of access rights.
- The electronic health record system has a default setting granting full access to all users.
Correct

Incorrect

Comptia Security+ Exam Prep 2

Comptia Security+ Exam Prep 2

Quiz Summary

Information

Results

Results

Categories

1. Question

2. Question

3. Question

4. Question

5. Question

6. Question

7. Question

8. Question

9. Question

10. Question

11. Question

12. Question

13. Question

14. Question

15. Question

16. Question

17. Question