September 2008 PDE Please choose the best answer to each question. At the conclusion of this exercise you will receive feedback that you may print for your records. To begin, please enter your first name, last name and CM Number or C.A.M. number. CMAR certificants, please enter "CMAR" in place of a CM or C.A.M. number. First name:   Last name:   CM or C.A.M. number:     1 Botnets were identified as one of the top security threats for 2008 because: they are becoming increasingly sophisticated with time variants have made botnets more difficult to detect botnets can spread viruses that infect large numbers of computers all of the above none of the above 2 The email delivery medium of choice for phishers and virus attackers is: spam worms trojan horses botnets none of the above 3 The number one cause of business interruption and downtime is: power outages technology glitches people making system changes weather events 4 Phishing, spamming, and changing one’s caller-ID are examples of: role based access controls. “insider” security breaches. pretending to be something or someone you are not. fail open which allows assets to be accessed by any party. 5 Spam can be reduced, freeing a user’s inbox from mounds of digital debris, through the use of: anti-virus software encryption spam filters all of the above 6 Protections to employ when using social network sites for business include: visit trusted sites/links only verify the identity of people you communicate with do not share sensitive data on social network sites provide employee training on social network security threats all of the above 7 A target of cyber espionage is to obtain ____________ for economic advantage. sensitive data financial resources corporate talent software programs 8 Consultants and contractors can present a security risk to an organization because: they are on the organization’s payroll they use rootkits to work remotely on the organization’s computers they often have some degree of access to systems and/or networks they work independently without supervision 9 Which of the following security threats should employees be aware of when using social networking sites for business purposes? age misrepresentation social engineering spooling and spelunking cyber espionage all of the above 10 An example of the IT concept “least privilege” is: the combined use of a firewall and encryption to safeguard e-commerce data. the system components that give integrity to data by ensuring it is tamper-proof. an intruder who goes through an organization’s trash to obtain information that allows unauthorized entry to a system or facility. a human resource associate that has system access limited to employment records Please click the SUBMIT button to view your results.

Created and managed with SmartLite WebQuiz XP