Question 1

Wireless networks are more difficult for hackers to gain access too because radio frequency bands are difficult to scan.

Accepted Answer

A) True 
 B)False

Question 2

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

Accepted Answer

A)  Sasser 
B)  Zeus Trojan 
C)  Melissa 
D)  ILOVEYOU 
E)  Conficker 
A)  Sasser 
B)  Zeus Trojan 
C)  Melissa 
D)  ILOVEYOU 
E)  Conficker

Question 3

In a client/server environment, corporate servers are specifically vulnerable to

Accepted Answer

A)  unauthorized access. 
B)  sniffing. 
C)  malware. 
D)  radiation. 
E)  tapping. 
A)  unauthorized access. 
B)  sniffing. 
C)  malware. 
D)  radiation. 
E)  tapping.

Question 4

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

Accepted Answer

A) True 
 B)False

Question 5

How do software vendors correct flaws in their software after it has been distributed?

Accepted Answer

A)  They issue bug fixes. 
B)  They issue patches. 
C)  They re-release the software. 
D)  They release updated versions of the software. 
E)  They don't; users purchase software at their own risk. 
A)  They issue bug fixes. 
B)  They issue patches. 
C)  They re-release the software. 
D)  They release updated versions of the software. 
E)  They don't; users purchase software at their own risk.

Question 6

You have been hired as a security consultant for a law firm. Which of the following constitutes the greatest source for network security breaches to the firm?

Accepted Answer

A)  wireless network 
B)  employees 
C)  authentication procedures 
D)  lack of data encryption 
E)  software quality 
A)  wireless network 
B)  employees 
C)  authentication procedures 
D)  lack of data encryption 
E)  software quality

Question 7

The dispersed nature of cloud computing makes it difficult to track unauthorized access.

Accepted Answer

A) True 
 B)False

Question 8

The most common type of electronic evidence is

Accepted Answer

A)  voice-mail. 
B)  spreadsheets. 
C)  instant messages. 
D)  e-mail. 
E)  VOIP data. 
A)  voice-mail. 
B)  spreadsheets. 
C)  instant messages. 
D)  e-mail. 
E)  VOIP data.

Question 9

Your company, an online discount stationers, has calculated that a loss of Internet connectivity for 3 hours results in a potential loss of $2,000 to $3,000 and that there is a 50% chance of this occurring each year. What is the annual expected loss from this exposure?

Accepted Answer

A)  $500 
B)  $1,000 
C)  $1,250 
D)  $1,500 
E)  $2,500 
A)  $500 
B)  $1,000 
C)  $1,250 
D)  $1,500 
E)  $2,500

Question 10

In which method of encryption is a single encryption key sent to the receiver so both sender and receiver share the same key?

Accepted Answer

A)  SSL/TLS 
B)  symmetric key encryption 
C)  public key encryption 
D)  private key encryption 
E)  distributed encryption 
A)  SSL/TLS 
B)  symmetric key encryption 
C)  public key encryption 
D)  private key encryption 
E)  distributed encryption

Question 11

Smartphones typically feature state-of-the-art encryption and security features, making them highly secure tools for businesses.

Accepted Answer

A) True 
 B)False

Question 12

Tricking employees to reveal their passwords by pretending to be a legitimate member of a company is called

Accepted Answer

A)  sniffing. 
B)  social engineering. 
C)  phishing. 
D)  pharming. 
E)  snooping 
A)  sniffing. 
B)  social engineering. 
C)  phishing. 
D)  pharming. 
E)  snooping

Question 13

The intentional defacement or destruction of a Web site is called

Accepted Answer

A)  spoofing. 
B)  cybervandalism. 
C)  cyberwarfare. 
D)  phishing. 
E)  pharming. 
A)  spoofing. 
B)  cybervandalism. 
C)  cyberwarfare. 
D)  phishing. 
E)  pharming.

Question 14

As discussed in the chapter opening case, magnetic stripes are an old technology that is vulnerable to counterfeit and theft.

Accepted Answer

A) True 
 B)False

Question 15

Most antivirus software is effective against

Accepted Answer

A)  only those viruses active on the Internet and through e-mail. 
B)  any virus. 
C)  any virus except those in wireless communications applications. 
D)  only those viruses already known when the software is written. 
E)  only viruses that are well-known and typically several years old. 
A)  only those viruses active on the Internet and through e-mail. 
B)  any virus. 
C)  any virus except those in wireless communications applications. 
D)  only those viruses already known when the software is written. 
E)  only viruses that are well-known and typically several years old.

Question 16

The Sarbanes-Oxley Act

Accepted Answer

A)  requires financial institutions to ensure the security of customer data. 
B)  specifies best practices in information systems security and control. 
C)  imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D)  outlines medical security and privacy rules. 
E)  identifies computer abuse as a crime and defines abusive activities. 
A)  requires financial institutions to ensure the security of customer data. 
B)  specifies best practices in information systems security and control. 
C)  imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D)  outlines medical security and privacy rules. 
E)  identifies computer abuse as a crime and defines abusive activities.

Question 17

Rigorous password systems

Accepted Answer

A)  are one of the most effective security tools. 
B)  may hinder employee productivity. 
C)  are costly to implement. 
D)  are often disregarded by employees. 
A)  are one of the most effective security tools. 
B)  may hinder employee productivity. 
C)  are costly to implement. 
D)  are often disregarded by employees.

Question 18

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Accepted Answer

A) True 
 B)False

Question 19

Electronic data are more susceptible to destruction, fraud, error, and misuse because information systems concentrate data in computer files that

Accepted Answer

A)  are easily decrypted. 
B)  can be opened with easily available software. 
C)  may be accessible by anyone who has access to the same network. 
D)  are unprotected by up-to-date security systems. 
E)  are rarely validated. 
A)  are easily decrypted. 
B)  can be opened with easily available software. 
C)  may be accessible by anyone who has access to the same network. 
D)  are unprotected by up-to-date security systems. 
E)  are rarely validated.

Question 20

In 2013, Panda Security reported approximately 30 million new kinds of malware strains.

Accepted Answer

A) True 
 B)False

Wireless networks are more difficult for hackers to gain access too because radio frequency bands are difficult to scan.

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

In a client/server environment, corporate servers are specifically vulnerable to

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

How do software vendors correct flaws in their software after it has been distributed?

You have been hired as a security consultant for a law firm. Which of the following constitutes the greatest source for network security breaches to the firm?

The dispersed nature of cloud computing makes it difficult to track unauthorized access.

The most common type of electronic evidence is

Your company, an online discount stationers, has calculated that a loss of Internet connectivity for 3 hours results in a potential loss of $2,000 to $3,000 and that there is a 50% chance of this occurring each year. What is the annual expected loss from this exposure?

In which method of encryption is a single encryption key sent to the receiver so both sender and receiver share the same key?

Smartphones typically feature state-of-the-art encryption and security features, making them highly secure tools for businesses.

Tricking employees to reveal their passwords by pretending to be a legitimate member of a company is called

The intentional defacement or destruction of a Web site is called

As discussed in the chapter opening case, magnetic stripes are an old technology that is vulnerable to counterfeit and theft.

Most antivirus software is effective against

The Sarbanes-Oxley Act

Rigorous password systems

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Electronic data are more susceptible to destruction, fraud, error, and misuse because information systems concentrate data in computer files that

In 2013, Panda Security reported approximately 30 million new kinds of malware strains.

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems, Organizations, and Strategy

Ethical and Social Issues in Information Systems

It Infrastructure and Emerging Technologies

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets, Digital Goods

Managing Knowledge

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters

Exam 8: Securing Information Systems

Wireless networks are more difficult for hackers to gain access too because radio frequency bands are difficult to scan.

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

In a client/server environment, corporate servers are specifically vulnerable to

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

How do software vendors correct flaws in their software after it has been distributed?

You have been hired as a security consultant for a law firm. Which of the following constitutes the greatest source for network security breaches to the firm?

The dispersed nature of cloud computing makes it difficult to track unauthorized access.

The most common type of electronic evidence is

Your company, an online discount stationers, has calculated that a loss of Internet connectivity for 3 hours results in a potential loss of $2,000 to $3,000 and that there is a 50% chance of this occurring each year. What is the annual expected loss from this exposure?

In which method of encryption is a single encryption key sent to the receiver so both sender and receiver share the same key?

Smartphones typically feature state-of-the-art encryption and security features, making them highly secure tools for businesses.

Tricking employees to reveal their passwords by pretending to be a legitimate member of a company is called

The intentional defacement or destruction of a Web site is called

As discussed in the chapter opening case, magnetic stripes are an old technology that is vulnerable to counterfeit and theft.

Most antivirus software is effective against

The Sarbanes-Oxley Act

Rigorous password systems

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Electronic data are more susceptible to destruction, fraud, error, and misuse because information systems concentrate data in computer files that

In 2013, Panda Security reported approximately 30 million new kinds of malware strains.

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems, Organizations, and Strategy

Ethical and Social Issues in Information Systems

It Infrastructure and Emerging Technologies

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets, Digital Goods

Managing Knowledge

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters