Question

Multiple Choice

1. Which statement applies to a lowimpact exposure incident?

A. A low-impact exposure incident only involves repairing the broken system.

B. A low-impact exposure incident may result in significant risk exposure.

C. A low-impact exposure incident require the highest level of scrutiny.

D. A low-impact exposure incident can essentially be ignored.

2. What are the two components comprising information criticality?

A. Data location and data classification

B. Quantity of data involved and data location

C. Data classification and the quantity of data involved

D. Impact on the core business process and its location

3. Which term refers to a key measure used to prioritize actions throughout the incident response process?

A. Information criticality

B. Information scalability

C. Footprinting

D. Steganography

4. In an “old school” attack, which step is a listing of the systems and vulnerabilities to build an attack game plan.

A. Scanning

B. Footprinting

C. Enumeration

D. Pilfering

5. Which infection method involves planting malware on a Web site that the victim employees will likely visit?

A. Watering hole attack

B. Spoofing

C. SQL injection attack

D. Remote administration Trojan (RAT) attack

6. Which term refers to the targeting of specific steps of a multistep process with the goal of disrupting the overall process?

A. Scanning

B. Footprinting

C. Kill chain

D. Indicator of compromise (IOC)

7. How is quarantine accomplished?

A. With the erection of firewalls that restrict communication between machines

B. By rebooting the infected machine as many times as needed

C. By encrypting the infected data on the network’s hard drive

D. With periodic patches of the infected systems

8. Which attack type is common, and to a degree, relatively harmless?

A. Port flooding

B. Port scan

C. Buffer overflow

D. SQL injection

9. What tool is the protocol/standard for the collection of network metadata on the flows of network traffic?

A. Sniffer

B. Penetration test

C. NetFlow

D. NetStat

10. Which indicator of compromise (IOC) standard is a method of information sharing developed by MITRE?

A. Structured Threat Information eXpression (STIX)

B. Incident Object Description Exchange Format (IODEF)

C. OpenIOC

D. Cyber Observable eXpression (CybOX)

11. What are the three states of the data lifecycle in which data requires protection?

A. In storage, during encryption, and during backup

B. During processing, during encryption, and during deletion

C. In storage, in transit, and during processing

D. During identification, during encryption, and during backup

12. Which service allows organizations to share cyberthreat information in a secure and automated manner?

A. Cyber kill chain

B. Cyber Observable eXpression (CybOX)

C. Trusted Automated eXchange of Indicator Information (TAXII)

D. Structured Threat Information eXpression (STIX)

Answer 1

Hi,

The problem has been solved. I have given the all answer below. The all questions are related to real life scenario and not written in any book so I have given my best answer. Please verify it.

----------------------------------

Ans 1: A low-impact exposure incident require the highest level of scrutiny statement applies to a lowimpact exposure incident.
C: A low-impact exposure incident require the highest level of scrutiny

Ans 2: Data classification and the quantity of data involved are the two components comprising information criticality.
C. Data classification and the quantity of data involved

Ans 3: Information scalability is the term refers to a key measure used to prioritize actions throughout the incident response process.
B. Information scalability

Ans 4: In an “old school” attack, Footprinting is the step to listing of the systems and vulnerabilities to build an attack game plan
B. Footprinting

Ans 5: Watering hole attack method involves planting malware on a Web site that the victim employees will likely visit.
A. Watering hole attack

Ans 6: Kill chain is the term refers to the targeting of specific steps of a multistep process with the goal of disrupting the overall process.
C. Kill chain

Ans 7: With the erection of firewalls that restrict communication between machines you can accomplished quarantine.
A. With the erection of firewalls that restrict communication between machines

Ans 8: SQL injection attack is common, and to a degree, relatively harmless.
D. SQL injection

Ans 9: NetStat is the command/tool to collect the network metadata on the flows of network traffic.
D. NetStat

Ans 10: Structured Threat Information eXpression (STIX) indicator of compromise (IOC) standard is a method of information sharing developed by MITRE.
A. Structured Threat Information eXpression (STIX)

Ans 11: Three states of the data lifecycle in which data requires protection are In storage, in transit, and during processing.
C. In storage, in transit, and during processing

Ans 12: Trusted Automated eXchange of Indicator Information (TAXII) service allows organizations to share cyberthreat information in a secure and automated manner.
C. Trusted Automated eXchange of Indicator Information (TAXII)

--------------------------------

The problem has been resolved, I hope you will like the answer. If you have any question or query regarding this problem or other, please comment below and give the positive rating.

Thank You!! Happy Learning!! !!