🔐 Cyber Security

100 Internet Security Quiz Questions & Answers 2026

Passwords, phishing, VPN, HTTPS, social engineering and online safety best practices

📖 10 min read ❓ 100 quiz questions 🗓️ Updated Jun 2026

Ready to test your knowledge? Take the Quiz →

Password Security — 20 Questions

What makes a strong password? (12+ characters, mix of uppercase/lowercase, numbers, symbols)
What is a password manager? (Tool that generates and stores strong unique passwords)
What is two-factor authentication (2FA)? (Requires second verification — code, biometric, or hardware key)
What is the most common password? ("123456" — still used by millions)
How often should you change passwords? (Only when compromised — unique strong passwords per site is more important)
What is a passphrase? (Multiple random words — longer but memorable — "correct horse battery staple")
What is biometric authentication? (Using fingerprint, face ID, or iris scan for verification)
What is a hardware security key? (Physical device (YubiKey) for 2FA — most secure option)
What is single sign-on (SSO)? (Login once to access multiple applications)
What is credential stuffing? (Using stolen passwords from one breach to access other accounts)

Online Privacy & Safe Browsing — 25 Questions

What is a browser cookie? (Small file storing user preferences and session data)
What is private/incognito browsing? (Session not saved locally — but ISP and websites still see you)
What is a VPN? (Encrypts traffic and hides IP address)
What is the Tor browser? (Routes traffic through multiple nodes for anonymity)
What does HTTPS padlock mean? (Connection is encrypted — data is secure in transit)
What is a tracking pixel? (Invisible 1×1 image tracking email opens and web activity)
What does GDPR stand for? (General Data Protection Regulation — EU privacy law)
What is data minimization? (Collecting only the minimum data necessary)
What is a privacy policy? (Legal document explaining how a company collects and uses data)
What is a data breach? (Unauthorized access/exposure of sensitive data)
What is doxxing? (Publishing private personal information online without consent)
What is identity theft? (Using someone's personal information without permission for fraud)
How do you spot a phishing email? (Check sender address, look for urgency/threats, hover over links, watch for typos)
What is HTTPS vs HTTP? (HTTPS encrypts data; HTTP sends in plaintext — never enter passwords on HTTP)
What is a man-in-the-middle attack on public WiFi? (Attacker intercepts traffic between you and the hotspot)

❓ Frequently Asked Questions

What are the most important internet security practices?

Use strong unique passwords + password manager, enable two-factor authentication, keep software updated, use HTTPS websites only, be suspicious of emails/links, use a VPN on public WiFi, and back up data regularly.

What is the biggest internet security threat in 2026?

Phishing remains the #1 threat — it accounts for over 80% of successful cyberattacks. AI-powered phishing (using deepfakes and personalized messages) is making attacks more convincing than ever.