D340 Cyber Defense and Countermeasures
Access The Exact Questions for D340 Cyber Defense and Countermeasures
💯 100% Pass Rate guaranteed
🗓️ Unlock for 1 Month
Rated 4.8/5 from over 1000+ reviews
- Unlimited Exact Practice Test Questions
- Trusted By 200 Million Students and Professors
What’s Included:
- Unlock Actual Exam Questions and Answers for D340 Cyber Defense and Countermeasures on monthly basis
- Well-structured questions covering all topics, accompanied by organized images.
- Learn from mistakes with detailed answer explanations.
- Easy To understand explanations for all students.
Free D340 Cyber Defense and Countermeasures Questions
Social engineering is also known as...
-
Malware
-
Encryption
-
Human hacking
-
Data mining
Explanation
Explanation:
Social engineering is often referred to as human hacking because it exploits human psychology rather than technical vulnerabilities to gain unauthorized access or information. Attackers manipulate individuals into performing actions or revealing confidential data, making the human element the key focus. It is not malware, encryption, or data mining, which involve technical processes rather than psychological manipulation.
Correct Answer:
Human hacking
What are the 2 types of internal attackers
-
Careless insiders and malicious employees
-
CEO and CFO
-
Cyber criminals and lone wolf attackers
-
Hacktivists and cyber terrorists
Explanation
Explanation:
Internal attackers are individuals within an organization who pose security risks. They are generally categorized as careless insiders, who unintentionally cause security breaches due to negligence, and malicious employees, who deliberately exploit their access for personal or financial gain. Other options, such as CEOs, CFOs, external cyber criminals, hacktivists, or cyber terrorists, refer to external threats or specific roles and are not the standard classification of internal attackers.
Correct Answer:
Careless insiders and malicious employees
Viruses that are attached to an executable file and activated when the file was ran by a user. Typically spread from system to system by sharing via floppy disk, flash drive or network drive.
-
executable virus
-
boot sector virus
-
macro virus
-
logic bomb
-
worm virus
-
trojan virus
Explanation
Explanation:
An executable virus is specifically designed to attach itself to executable files and is activated when the infected file is run by the user. These viruses spread through direct sharing of infected files via storage media or network drives. This type of virus differs from boot sector viruses, which infect system startup areas, macro viruses, which infect documents and macros, logic bombs, which trigger under specific conditions, worms, which self-replicate across networks, and trojan viruses, which disguise themselves as legitimate software.
Correct Answer:
executable virus
What is a primary reason that attackers target intellectual property (IP) in cybercrime?
-
To gain competitive advantage by stealing proprietary information
-
To disrupt services and cause financial loss
-
To recruit individuals for terrorist activities
-
To spread malware across networks
Explanation
Explanation:
Attackers target intellectual property (IP) to steal proprietary information, such as designs, patents, formulas, or business strategies, which can provide them or their organization with a competitive advantage. This type of cybercrime focuses on obtaining valuable knowledge rather than directly disrupting services, recruiting individuals, or spreading malware. IP theft can have long-term economic and strategic consequences for the victim organization.
Correct Answer:
To gain competitive advantage by stealing proprietary information
What are the primary functions of hacker scripts in the context of cyber attacks?
-
To enhance system security
-
To automate the process of exploiting vulnerabilities
-
To create legitimate software applications
-
To monitor network traffic for security breaches
Explanation
Explanation:
Hacker scripts are typically used to automate repetitive tasks that exploit vulnerabilities, allowing attackers to efficiently scan, probe, and compromise many targets without manual intervention. These scripts can execute exploit payloads, open backdoors, or perform reconnaissance at scale. While some scripts may be repurposed for defensive testing, their primary function in malicious contexts is automation of exploitation rather than creating legitimate applications or monitoring for security.
Correct Answer:
To automate the process of exploiting vulnerabilities
Most traditional external attackers were primarily motivated by ________
-
stealing personal identity data
-
the thrill of breaking in
-
capturing thousands and thousands of credit card numbers
-
making money through crime
Explanation
Explanation:
Historically, many traditional external attackers (often described as “hackers” in earlier eras) were driven largely by the thrill of breaking into systems — the challenge, curiosity, and the prestige among peers — rather than immediate financial gain. These attackers sought the intellectual satisfaction of bypassing defenses and demonstrating skill; while some later shifted to financially motivated crimes, the classic motive for many traditional intruders was the excitement and recognition of successful intrusions.
Correct Answer:
the thrill of breaking in
What characterizes nonmobile malware in terms of its propagation?
-
It can replicate itself across networks without user intervention.
-
It requires manual placement on a device to initiate its effects
-
It spreads through email attachments automatically.
-
It is designed to infect mobile devices exclusively
Explanation
Explanation:
Nonmobile malware is characterized by the fact that it requires manual placement on a device to initiate its effects. Unlike worms or self-replicating malware that spread automatically across networks, nonmobile malware relies on user action, such as installing a malicious file, to become active. It does not specifically target mobile devices and does not propagate independently, making user interaction a key factor in its activation.
Correct Answer:
It requires manual placement on a device to initiate its effects.
What is a common method by which employees may exploit vulnerabilities within their company's computer systems?
-
Utilizing unauthorized access through stolen login information
-
Implementing advanced encryption protocols
-
Conducting regular security audits
-
Installing legitimate software updates
Explanation
Explanation:
Employees may exploit vulnerabilities by using unauthorized access, such as stolen or shared login credentials, to gain entry to restricted areas of the system. This allows them to manipulate, steal, or damage data and bypass normal security controls. The other options—implementing encryption, conducting audits, or installing legitimate updates—are legitimate security practices and do not represent exploitation of system vulnerabilities.
Correct Answer:
Utilizing unauthorized access through stolen login information
Which piece of malware hides itself as a legitimate file?
-
Worm
-
Virus
-
Trojan Horse
-
Logic Bomb
Explanation
Explanation:
A Trojan Horse is a type of malware that disguises itself as a legitimate file or program to trick users into executing it. Once activated, it can perform malicious activities such as stealing data, creating backdoors, or giving attackers remote access, all while appearing harmless to the user. Unlike worms or viruses, which replicate themselves to spread, or logic bombs, which execute under specific conditions, the defining characteristic of a Trojan Horse is its ability to conceal its malicious intent within a seemingly legitimate file.
Correct Answer:
Trojan Horse
Which of the following is a type of security attack that takes advantage of human errors of judgment to gain access to the attacker's objective?
-
Social engineering
-
IDS
-
Biometrics
-
Perimeter security
Explanation
Explanation:
Social engineering is a type of attack that manipulates individuals into making security mistakes or divulging confidential information. It exploits human psychology rather than technical vulnerabilities, tricking people into actions such as revealing passwords or providing unauthorized access. IDS (Intrusion Detection Systems), biometrics, and perimeter security are defensive mechanisms, not attacks, making social engineering the correct type of attack targeting human error.
Correct Answer:
Social engineering
How to Order
Select Your Exam
Click on your desired exam to open its dedicated page with resources like practice questions, flashcards, and study guides.Choose what to focus on, Your selected exam is saved for quick access Once you log in.
Subscribe
Hit the Subscribe button on the platform. With your subscription, you will enjoy unlimited access to all practice questions and resources for a full 1-month period. After the month has elapsed, you can choose to resubscribe to continue benefiting from our comprehensive exam preparation tools and resources.
Pay and unlock the practice Questions
Once your payment is processed, you’ll immediately unlock access to all practice questions tailored to your selected exam for 1 month .