JavaScript isn't enabled in your browser, so this file can't be opened. Enable and reload.
Cyber Security Quiz 2
Test your knowledge of cybersecurity with this interactive quiz. Answer the questions, and based on your score, find out if you're a Beginner, Intermediate, or Advanced in cybersecurity awareness.
* Indicates required question
Email
*
Your email
You receive a notification that your company’s website is experiencing a DDoS (Distributed Denial-of-Service) attack. What’s the best immediate action?
*
10 points
Block the IP addresses involved in the attack.
Disconnect the website to mitigate damage.
Contact your ISP and implement rate limiting.
Announce on social media that the website is under attack.
During a pentest, you discover that a company uses “password123” as the administrator password for critical systems. What is this an example of?
*
10 points
Brute force vulnerability
Weak authentication
Credential stuffing
Social engineering
A colleague plugs in a USB drive they found in the parking lot, and the computer suddenly behaves strangely. What type of attack is this likely to be?
*
10 points
Ransomware
Social engineering
USB baiting
Keylogging
You receive an urgent email claiming to be from your senior manager, asking you to transfer money immediately to an account. What is the first thing you should do?
*
10 points
Verify the request by contacting the senior manager directly.
Transfer the money as instructed.
Report the email as spam.
Reply to the email asking for further details.
Which of these techniques can help defend against SQL injection attacks?
*
10 points
Storing passwords as plaintext.
Parameterized queries or prepared statements.
Using MD5 hashing for database encryption.
Limiting user permissions in the database.
A zero-day exploit targets:
*
10 points
An outdated operating system.
A vulnerability that is unknown to the vendor.
A known vulnerability without a patch.
A recently patched vulnerability.
An employee accidentally sends sensitive company data to the wrong email recipient. What is this type of incident called?
*
10 points
Insider threat
Data exfiltration
Data leakage
Spoofing
A phishing email appears to be from your bank, asking you to verify your account by clicking a link. The link redirects to a website that looks identical to your bank's site. What should you do?
*
10 points
Click the link and verify the account.
Reply to the email asking for clarification.
Call the bank using a number you find online.
Contact the bank using their official customer support number or website.
A hacker uses a fake Wi-Fi network to intercept the data you transmit online. What is this attack called?
*
10 points
Man-in-the-middle attack
Evil twin attack
Wi-Fi sniffing
Rogue access point attack
You notice an HTTPS site displaying a red padlock in your browser. What does this indicate?
*
10 points
The site is secure.
The certificate is expired or misconfigured.
Your browser is blocking the website.
The website has an active malware warning.
Submit
Page 1 of 1
Clear form
Forms
This form was created inside of Chirag Ganguli LLC.
Report Abuse
Terms of Service
Privacy Policy
Help and feedback
Contact form owner
Help Forms improve
Report