As the security administrator for your organization, you must be aware of all types of attacks that can occur and plan for them. Which type of attack uses more than one computer to attack the victim?
DoS
DDoS
Worm
UDP attack
A server in your network has a program running on it that bypasses authorization. Which type of attack has occurred?
DoS
DDoS
Back door
Social engineering
An administrator at a sister company calls to report a new threat that is making the rounds. According to him, the latest danger is an attack that attempts to intervene in a communications session by inserting a computer between the two systems that are communicating. Which of the following types of attacks does this constitute?
Man-in-the-middle attack
Back door attack
Worm
TCP/IP hijacking
You've discovered that an expired certificate is being used repeatedly to gain logon privileges. Which type of attack is this most likely to be?
Man-in-the-middle attack
Back door attack
Replay attack
TCP/IP hijacking
A junior administrator comes to you in a panic. After looking at the log files, he has become convinced that an attacker is attempting to use an IP address to replace another system in the network to gain access. Which type of attack is this?
Man-in-the-middle attack
Back door attack
Worm
TCP/IP hijacking
A server on your network will no longer accept connections using the TCP protocol. The server indicates that it has exceeded its session limit. Which type of attack is probably occurring?
TCP ACK attack
Smurf attack
Virus attack
TCP/IP hijacking
A smurf attack attempts to use a broadcast ping on a network; the return address of the ping may be a valid system in your network. Which protocol does a smurf attack use to conduct the attack?
TCP
IP
UDP
ICMP
Your help desk has informed you that it received an urgent call from the vice president last night requesting his logon ID and password. What type of attack is this?
Spoofing
Replay attack
Social engineering
Trojan horse
A user calls you in a panic. He is receiving e-mails from people indicating that he is inadvertently sending viruses to them. Over 200 such e-mails have arrived today. Which type of attack has most likely occurred?
SAINT
Back door attack
Worm
TCP/IP hijacking
Your system has just stopped responding to keyboard commands. You noticed that this occurred when a spreadsheet was open and you dialed in to the Internet. Which kind of attack has probably occurred?
Logic bomb
Worm
Virus
ACK attack
You're explaining the basics of security to upper management in an attempt to obtain an increase in the networking budget. One of the members of the management team mentions that they've heard of a threat from a virus that attempts to mask itself by hiding code from antivirus software. What type of virus is he referring to?
Armored virus
Polymorphic virus
Worm
Stealth virus
What kind of virus could attach itself to the boot sector of your disk to avoid detection and report false information about file sizes?
Trojan horse virus
Stealth virus
Worm
Polymorphic virus
A mobile user calls you from the road and informs you that his laptop is exhibiting erratic behavior. He reports that there were no problems until he downloaded a tic-tac-toe program from a site that he had never visited before. Which of the following terms describes a program that enters a system disguised in another program?
Trojan horse virus
Polymorphic virus
Worm
Armored virus
Your system has been acting strangely since you downloaded a file from a colleague. Upon examining your antivirus software, you notice that the virus definition file is missing. Which type of virus probably infected your system?
Polymorphic virus
Retrovirus
Worm
Armored virus
Internal users are reporting repeated attempts to infect their systems as reported to them by pop-up messages from their virus scanning software. According to the pop-up messages, the virus seems to be the same in every case. What is the most likely culprit?
A server is acting as a carrier for a virus.
You have a worm virus.
Your antivirus software has malfunctioned.
A DoS attack is under way.
Your system log files report an ongoing attempt to gain access to a single account. This attempt has been unsuccessful to this point. What type of attack are you most likely experiencing?
Password guessing attack
Back door attack
Worm attack
TCP/IP hijacking
A user reports that he is receiving an error indicating that his TCP/IP address is already in use when he turns on his computer. A static IP address has been assigned to this user's computer, and you're certain this address was not inadvertently assigned to another computer. Which type of attack is most likely underway?
Man-in-the-middle attack
Back door attack
Worm
TCP/IP hijacking
You're working late one night, and you notice that the hard disk on your new computer is very active even though you aren't doing anything on the computer and it isn't connected to the Internet. What is the most likely suspect?
A disk failure is imminent.
A virus is spreading in your system.
Your system is under a DoS attack.
TCP/IP hijacking is being attempted.
You're the administrator for a large bottling company. At the end of each month, you routinely view all logs and look for discrepancies. This month, your e-mail system error log reports a large number of unsuccessful attempts to log on. It's apparent that the e-mail server is being targeted. Which type of attack is most likely occurring?
Software exploitation attack
Back door attack
Worm
TCP/IP hijacking
3.144.182.250