Question 1

Which type of vulnerability allows an attacker to execute arbitrary code on a remote machine?

Options :

A : Cross-site scripting (XSS)

B : Man-in-the-Middle (MitM)

C : Brute force attack

D : Buffer overflow

Answer: D

Question 2

What is "data encryption at rest" and why is it important in cloud security?

Options :

A : Encrypting data while it is being transmitted over the network to prevent interception

B : Encrypting data in transit between the user and the cloud service

C : Encrypting data during processing to ensure data integrity

D : Encrypting data stored on disk or in databases to protect it from unauthorized access

Answer: D

Question 3

What is "Pretexting" in the context of social engineering?

Options :

A : Using deception to convince individuals to reveal information by pretending to be someone they know or trust

B : An approach to exploiting software vulnerabilities

C : A technique for bypassing security controls on a system

D : A method of intercepting network traffic to gather sensitive information

Answer: A

Question 4

Which of the following is a common indicator of a phishing email?

Options :

A : A legitimate link to a trusted website

B : Proper grammar and spelling in the email content

C : A well-known and trusted sender’s email address

D : A request for immediate action or urgent response

Answer: D

Question 5

Which type of attack is characterized by an overload of requests to a system, causing legitimate requests to be denied?

Options :

A : Cross-site scripting (XSS)

B : Man-in-the-Middle (MitM)

C : Denial-of-Service (DoS)

D : Phishing

Answer: C