1.
What is a 'botnet'?
-
A. A network of infected computers controlled remotely, often used for malicious purposes ✓
-
B. A legitimate computer network
-
C. A type of antivirus software
-
D. A type of firewall
💡 A botnet is a network of infected, compromised computers remotely controlled, often used to conduct large-scale attacks.
2.
What does 'sandboxing' allow in cybersecurity?
-
A. Running potentially malicious code in an isolated environment to observe its behavior safely ✓
-
B. Permanently deleting malicious files
-
C. Encrypting all files
-
D. Blocking all internet access
💡 Sandboxing runs potentially malicious code in an isolated, controlled environment to safely observe its behavior.
3.
What does 'endpoint protection' refer to?
-
A. Security measures applied to individual devices, like computers and phones, connected to a network ✓
-
B. Security measures applied only to network routers
-
C. A type of encryption
-
D. A type of firewall only
💡 Endpoint protection refers to security measures applied directly to individual devices, like laptops and phones, that connect to a network.
4.
What is 'ransomware' designed to do?
-
A. Encrypt a victim's files and demand payment for their release ✓
-
B. Speed up a computer
-
C. Improve internet connectivity
-
D. Provide free software
💡 Ransomware encrypts a victim's files, then demands payment for the decryption key needed to restore access.
5.
What is 'spyware' primarily designed to do?
-
A. Secretly monitor and collect information about a user without consent ✓
-
B. Speed up a computer
-
C. Protect a computer from viruses
-
D. Improve internet connectivity
💡 Spyware is designed to secretly monitor and collect information about a user, typically without their knowledge or consent.
6.
What does 'signature-based detection' rely on in antivirus software?
-
A. Comparing files against a database of known malware patterns ✓
-
B. Analyzing user behavior only
-
C. Blocking all internet traffic
-
D. Encrypting all files
💡 Signature-based detection compares files against a database of known malware patterns, or 'signatures', to identify threats.
7.
What is 'adware'?
-
A. Software that automatically displays or downloads unwanted advertisements ✓
-
B. A type of legitimate software update
-
C. A type of antivirus program
-
D. A type of firewall
💡 Adware automatically displays or downloads unwanted advertisements, often bundled with other software.
8.
What does 'quarantine' mean in the context of antivirus software?
-
A. Isolating a suspicious or infected file to prevent it from causing harm ✓
-
B. Permanently deleting a file immediately
-
C. Encrypting a file
-
D. Sharing a file with other users
💡 'Quarantine' isolates a suspicious or infected file, preventing it from causing further harm while allowing further review.
9.
What is a 'trojan horse' in cybersecurity?
-
A. Malware disguised as legitimate software to trick users into installing it ✓
-
B. A type of legitimate antivirus software
-
C. A type of firewall
-
D. A type of encryption
💡 A trojan horse disguises itself as legitimate software to trick users into willingly installing malicious code.
10.
What does 'zero-day exploit' refer to?
-
A. An attack that exploits a previously unknown software vulnerability ✓
-
B. An attack that takes zero days to execute
-
C. A type of antivirus software
-
D. A type of firewall
💡 A zero-day exploit takes advantage of a previously unknown software vulnerability, before developers can create a fix.
11.
What is a 'rootkit'?
-
A. Malicious software designed to gain unauthorized root or administrative access while hiding its presence ✓
-
B. A type of legitimate software
-
C. A type of antivirus program
-
D. A type of firewall
💡 A rootkit is malicious software designed to gain unauthorized administrative-level access while concealing its presence.
12.
What is 'polymorphic malware'?
-
A. Malware that changes its code to avoid detection by antivirus software ✓
-
B. Malware that only targets one type of device
-
C. A type of legitimate software
-
D. A type of firewall
💡 Polymorphic malware continuously changes its code or appearance to evade detection by traditional antivirus software.
13.
What is the difference between a 'virus' and a 'worm'?
-
A. A virus requires a host program to spread, while a worm can spread independently ✓
-
B. They are identical
-
C. A worm requires a host program, while a virus spreads independently
-
D. Neither can spread on their own
💡 A virus requires a host program to spread, while a worm can self-replicate and spread independently across networks.
14.
What is 'fileless malware'?
-
A. Malware that operates in a computer's memory without relying on files stored on the hard drive ✓
-
B. Malware that requires physical file storage only
-
C. A type of legitimate software
-
D. A type of antivirus program
💡 Fileless malware operates directly in a computer's memory, making it harder to detect since it avoids leaving traditional files on disk.
15.
What is 'heuristic analysis' in antivirus software?
-
A. Detecting malware based on suspicious behavior rather than known signatures ✓
-
B. Comparing files to a fixed list only
-
C. Blocking all software installations
-
D. Encrypting all user data
💡 Heuristic analysis detects potential malware by examining suspicious behavior, rather than relying solely on known signatures.