Palo Alto Quizzes with Complete Solutions Graded A+
8 views 0 purchase
Module
Palo Alto
Institution
Palo Alto
Palo Alto Quizzes with Complete Solutions Graded A+
Which of the following techniques and tools are used by an attacker to hide attack communications traffic?
Select one or more:
(a) Port Hopping and Dynamic DNS
(b) Secure Socket Layer (SSL) Encryption
(c) Web Browsing
(d) Process and Rem...
palo alto quizzes with complete solutions graded a
Written for
Palo Alto
Palo Alto
Seller
Follow
Scholarsstudyguide
Reviews received
Content preview
Palo Alto Quizzes with Complete Solutions
Graded A+
Which of the following techniques and tools are used by an attacker to hide attack
communications traffic?
Select one or more:
(a) Port Hopping and Dynamic DNS
(b) Secure Socket Layer (SSL) Encryption
(c) Web Browsing
(d) Process and Remote Access Tools (RATs) - Answer-Port Hopping and Dynamic
DNS, Secure Socket Layer (SSL) Encryption, Process and Remote Access Tools
(RATs)
Business intelligence (BI) software consists of tools and techniques used to surface
large amounts of raw unstructured data to perform a variety of tasks including data
mining, event processing, and predictive analytics. TRUE/FALSE - Answer-true
What is the name of the international cybercrime group that delivered the 2014 Sony
hack and the 2017 HaoBao campaign? - Answer-Lazarus
Which of the following values is the true % increase for the number of Coin Miner
threats from Q4 2017 to Q1 2018?
Select one:
(a) 189%
(b) 247%
(c) 1,189%
(d) 2,477% - Answer-1,189%
An attacker only needs to successfully execute one step of the Cyber Kill Chain® to
infiltrate a network, whereas a defender must "be right every time" and break every step
of the chain to prevent an attack. TRUE/FALSE - Answer-false (A defender only needs
to break a single step in the Cyber Kill Chain® framework to prevent an attack from
succeeding.)
The Lockheed Martin Cyber Kill Chain® framework is a five-step process that an
attacker goes through in order to attack a network. - Answer-false (The Lockheed Martin
Cyber Kill Chain® framework is a seven-step process.)
A decline in the number of Faceliker malware instances was the primary reason why the
number of ransomware attacks declined by 81% from Q4 2017 to Q1 2018.
TRUE/FALSE - Answer-false
, What is the primary function of coin miner malware?
Select one:
(a) Coin miner is a sophisticated macro virus that propagates through sharing of
Microsoft Office documents, and captures user online banking logon information.
(b) Coin miner malware's primary function is to use .lnk shortucts to secretly deliver
additional malware.
(c) Coin miner malware hijacks systems to create or mine cybercurrency without victims
consent or awareness. - Answer-Coin miner malware hijacks systems to create or mine
cybercurrency without victims consent or awareness.
Which of the following are examples of an endpoint?
Select one or more:
(a) Smartphone
(b) Point-Of-Sale (POS) Terminal
(c) Mainframe
(d) Desktop - Answer-smartphone, Point-Of-Sale (POS) Terminal, desktop
Someone with limited hacking and/or programming skills that uses malicious programs
(malware) written by others to attack a computer or network is known as a newbie.
TRUE/FALSE - Answer-false (The correct answer is "script kiddie.")
What type of malware allows an attacker to bypass authentication to gain access to a
compromised system? - Answer-Backdoor
Malicious software or code that typically damages, takes control of, or collects
information from an infected endpoint is known as: _____________. - Answer-malware
Most Botnets are designed to withstand the loss of a command and control (CnC)
server, meaning that the entire Botnet infrastructure must be disabled almost
simultaneously. TRUE/FALSE - Answer-true (Although you only need to disrupt one of
the 7 steps in the Cyber Kill Framework, when engaging with bots and botnets the
problem is the bot models are flexible and designed to withstand failures in the
command chain. An attempt to disable the botnet needs to be applied universally, if not
simultaneously, to all CnC servers.)
What type of malware is triggered by a specific condition, such as a specific date or a
particular user account being disabled? - Answer-Logic Bomb
What type of malware typically targets a computer network by replicating itself in order
to spread rapidly? - Answer-Worm
Wired Equivalent Privacy (WEP) is the most effective protocol for securing wireless
networks. TRUE/FALSE - Answer-false
A vulnerability is a small piece of software code, part of a malformed data file, or a
sequence (string) of commands created by an attacker to cause unintended or
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Scholarsstudyguide. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for £11.49. You're not tied to anything after your purchase.