CISM: Different Attack Methods
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 51% Most missed: “Which of the following attacks does not require any tools and techniques to obta…”
CISM: Different Attack Methods
Time left 00:00
25 Questions

1. A password sniffing attack can do which of the following?
2. Which of the following exposures is introduced by the use of the simple network management protocol v2 (SNMP v2)?
3. Social engineering can succeed due to which of the following?
4. Passwords should be masked onscreen to prevent what?
5. In which of the following attacks do employees run the task scheduler without authorization to access restricted applications?
6. What is the most effective way to reduce the consequences of social engineering attacks?
7. Wireless infrastructure increases which of the following risks?
8. A form-based authentication control requiring the user to input their user ID and password can be bypassed by which of the following?
9. Which of the following can be considered a significant risk for voice over internet protocol (VoIP) infrastructure?
10. Which of the following attacks is used to gather information about encrypted data being transmitted over a network?
11. Which of the following is considered a passive cybersecurity attack?
12. An attack in which internet traffic appears to originate from an internal IP address of the organization is known as what?
13. Mandatory processes of reading employee ID badges at the entrance are to prevent which of the following?
14. Which of the following attacks is considered an inherent risk in data entry processes, for which apparently there is no preventive control?
15. What is the best way to prevent brute force attacks?
16. What is the most important aspect of securing credit card data when using the card with the POS device?
17. The use of hidden files on web pages to save information from client sessions can risk what?
18. Man-in-the-middle attacks between two computers can be prevented by which of the following?
19. In which of the following attacks is residual biometric information used to gain unauthorized access?
20. Which of the following attack methods has the capability to circumvent two-factor authentication?
21. Which of the following attacks does not require any tools and techniques to obtain critical information?
22. Which of the following risks increases due to URL-shortening services?
23. Which technique is used to test the wireless security of an organization?
24. Which of the following risks increases due to poor programming and coding practices?
25. What is the best way to prevent intruders masquerading as authorized users and connecting to the corporate network?