Help
Options
Didn't know it?
click below
click below
Knew it?
click below
click below
Don't Know
Remaining cards (0)
Know
retry
shuffle
restart
0:00
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.
Normal Size Small Size show me how
Normal Size Small Size show me how
CTAINASL_Week 3
| Question | Answer |
|---|---|
| Malware refers only to software that damages files, and it does not include code designed to exploit users or networks. | False — Malware is any malicious software or code designed to harm or exploit computer systems, networks, or users. |
| A virus requires attachment to a clean file or program and commonly spreads when the infected host file is executed. | True |
| A worm differs from a virus because it can self-replicate and spread across networks without requiring user interaction. | True |
| A Trojan is dangerous mainly because it appears legitimate while hiding malicious functionality. | True |
| Ransomware primarily works by encrypting a victim’s files and demanding payment in exchange for a decryption key. | True |
| Spyware is considered harmless if it only observes user behavior without deleting files. | False — Spyware is harmful because it secretly collects data, monitors activity, and can transmit sensitive information to third parties. |
| Adware is always installed intentionally by users because it is only found in advertising-supported free applications. | False — Adware can be unwanted software bundled with legitimate applications and may display excessive ads or redirect users. |
| Keyloggers are designed to capture keystrokes and can expose passwords, credit card details, and private messages. | True |
| Emotet is presented as an example of malware that spreads through email attachments and can steal sensitive information. | True |
| WannaCry is classified as a Trojan because it disguised itself as legitimate software before stealing credentials. | False — WannaCry is identified as a worm that exploited a Windows vulnerability and spread rapidly across systems. |
| TrickBot is an example of ransomware that primarily encrypts files and demands cryptocurrency payment. | False — TrickBot is described as a Trojan used to steal online banking credentials through phishing emails and malicious attachments. |
| Ryuk ransomware is associated with attacks on organizations and high ransom demands. | True |
| Pegasus spyware is dangerous because it can infect mobile devices, access data, track communications, and record conversations. | True |
| Vonteera is an example of adware that can inject advertisements into browsers and redirect users to unwanted websites. | True |
| Formbook is identified as a keylogger capable of recording keystrokes, taking screenshots, and stealing sensitive information. | True |
| Email attachments are safe when they appear as common document formats such as PDFs, ZIP files, or office documents. | False — Malware can be disguised as legitimate documents, PDFs, ZIP archives, or other files attached to emails. |
| Infected websites can install malware silently through malicious code or drive-by downloads. | True |
| Malicious downloads are risky because attackers may disguise malware as legitimate software, media, or files. | True |
| Removable media such as USB drives can spread malware when connected to a device. | True |
| Social engineering spreads malware by exploiting human behavior through phishing emails, fake updates, deceptive pop-ups, or malicious links. | True |
| A data breach caused by malware may expose financial records, customer information, or intellectual property. | True |
| Financial loss from malware can result only from ransom payments. | False — Financial loss can also come from unauthorized transactions, recovery costs, downtime, and cybersecurity investments. |
| Malware infections can cause operational disruption by corrupting files, disabling services, or making devices unusable. | True |
| Personal privacy invasion from malware can include keystroke capture, online monitoring, and unauthorized audio or video recording. | True |
| Reputation damage from malware incidents can reduce customer trust and create long-term business consequences. | True |
| Antivirus and anti-malware tools are no longer important if users practice safe browsing habits. | False — Reliable antivirus and anti-malware software remain important because they provide threat detection, behavioral analysis, and real-time protection. |
| Regular software updates help prevent malware by closing known vulnerabilities that malware authors may exploit. | True |
| User awareness training is a prevention strategy because users can learn to recognize suspicious emails, links, files, and social engineering attempts. | True |
| Secure browsing habits include being cautious with websites, avoiding suspicious links, and using browser security features. | True |
| Network security tools such as intrusion prevention systems, sandboxing, threat intelligence feeds, and next-generation firewalls can help detect and block malware. | True |
| Incident response begins only after malware has been removed from all affected systems. | False — Incident response begins with identifying, containing, eradicating, and recovering from the malware attack. |
| Isolation and containment aim to prevent malware from spreading further across systems or networks. | True |
| Disconnecting an infected machine from the network is an example of containment during a ransomware incident. | True |
| Malware removal may require antivirus software, specialized malware removal tools, or cybersecurity professionals. | True |
| System restoration focuses on restoring affected systems to their pre-incident state using backups, reinstallation, updates, and integrity checks. | True |
| Post-incident analysis is unnecessary if the malware has already been removed. | False — Post-incident analysis is essential to identify the root cause, security gaps, entry point, and improvements needed to prevent future attacks. |
| Keeping operating systems, applications, and firmware updated is a best practice because it applies patches and bug fixes. | True |
| Opening an attachment from an unknown sender is acceptable if the email subject looks urgent and work-related. | False — Users should verify sender authenticity, scan attachments, and avoid suspicious attachments, especially from unknown senders. |
| Backups reduce the impact of malware because important data can be restored without paying ransom or accepting major data loss. | True |
| Cloud or offline backups are recommended because they can help recover files after malware infection or data loss. | True |
| Using the same complex password for all accounts is secure because complexity matters more than uniqueness. | False — Passwords should be both strong and unique for each account to reduce the risk of credential compromise. |
| Password managers can help users securely store and generate complex passwords. | True |
| Firewalls help prevent malware-related threats by controlling incoming and outgoing network traffic. | True |
| Secure network configuration includes disabling unnecessary services, limiting remote access, and securing Wi-Fi with strong encryption. | True |
| Threat awareness matters because malware is one of the most significant and common threats to systems and networks. | True |
| Risk mitigation requires understanding malware so individuals and organizations can apply proactive defenses such as antivirus tools, safe browsing, and system updates. | True |
| Layered defense is stronger than relying on a single control because it combines tools such as firewalls, intrusion detection, and secure authentication. | True |
| User education is part of malware defense because human mistakes can lead to malicious links, infected attachments, and unsafe downloads. | True |
| Threat intelligence helps defenders stay updated on malware trends, attack vectors, and cybercriminal tactics. | True |
| Incident analysis can support forensic investigation by studying malware behavior, propagation methods, and possible attack sources. | True |
| Malware threats remain static, so once a defense strategy is created, it rarely needs updating. | False — Malware constantly evolves, so cybersecurity strategies must adapt to new variants and attack techniques. |
| A malware infection can affect both personal users and organizations, not only large companies. | True |
| Malware prevention depends only on technical tools and does not require user behavior changes. | False — Prevention requires both technical controls and responsible user behavior, such as safe browsing, cautious downloading, and strong password practices. |
| A compromised legitimate website can still become a malware infection source if attackers inject malicious code into it. | True |
| Torrent sites, peer-to-peer networks, and unauthorized app stores can increase malware risk because they may distribute disguised malicious files. | True |
| Phishing emails are a form of social engineering that can lead users to download malware or reveal sensitive information. | True |
| A ransomware recovery plan should include containment, malware removal, restoration from backups, and post-incident improvement. | True |
| Installing security patches after restoration helps reduce the chance of reinfection through the same vulnerability. | True |
| Simulated phishing campaigns can train employees to identify and report suspicious emails. | True |
| Browser extensions that block malicious ads and scripts can reduce exposure to malware from compromised or malicious websites. | True |
| Malware that records private messages and passwords can contribute to identity theft or blackmail. | True |
| A firewall alone guarantees complete protection against all malware infections. | False — Firewalls help control network traffic, but malware prevention requires layered defenses such as updates, antivirus tools, user training, secure browsing, and backups. |
Created by:
MamurMD