Question 1

Which of the following definitions represents Internet censorship?

Accepted Answer

A) a problem that occurs when someone registers purposely misspelled variations of well-known domain names 
B) the theft of a website's name that occurs when someone, posing as a site's administrator, changes the ownership of the domain name assigned to the website to another website owner 
C) government attempts to control Internet traffic, thus preventing some material from being viewed by a country's citizens 
D) an anti-spamming approach where the receiving computer launches a return attack against the spammer, sending email messages back to the computer that originated the suspected spam 
A) a problem that occurs when someone registers purposely misspelled variations of well-known domain names 
B) the theft of a website's name that occurs when someone, posing as a site's administrator, changes the ownership of the domain name assigned to the website to another website owner 
C) government attempts to control Internet traffic, thus preventing some material from being viewed by a country's citizens 
D) an anti-spamming approach where the receiving computer launches a return attack against the spammer, sending email messages back to the computer that originated the suspected spam

Question 2

The most secure procedures combine which of the following authentication and authorization techniques?

Accepted Answer

A) something the user knows, such as a user ID and password 
B) something the user has, such as a smart card or token 
C) something that is part of the user, such as a fingerprint or voice signature 
D) All of these are correct. 
A) something the user knows, such as a user ID and password 
B) something the user has, such as a smart card or token 
C) something that is part of the user, such as a fingerprint or voice signature 
D) All of these are correct.

Question 3

Cyberbullying is an act or object that poses a danger to assets.

Accepted Answer

A) True 
 B)False

Question 4

Which of the following is considered a type of biometrics?

Accepted Answer

A) voice 
B) face 
C) iris 
D) All of these are considered biometrics. 
A) voice 
B) face 
C) iris 
D) All of these are considered biometrics.

Question 5

Provide an example of each of the three primary information security areas: (1) authentication and authorization, (2) prevention and resistance, and (3) detection and response.

Accepted Answer

Intrusion detection software (

Question 6

What is adware?

Accepted Answer

A) a form of malicious software that infects your computer and asks for money 
B) a new ransomware program that encrypts your personal files and demands payment for the file's decryption keys 
C) software that allows Internet advertisers to display advertisements without the consent of the computer user 
D) a special class of adware that collects data about the user and transmits it over the Internet without the user's knowledge or permission 
A) a form of malicious software that infects your computer and asks for money 
B) a new ransomware program that encrypts your personal files and demands payment for the file's decryption keys 
C) software that allows Internet advertisers to display advertisements without the consent of the computer user 
D) a special class of adware that collects data about the user and transmits it over the Internet without the user's knowledge or permission

Question 7

What is cybervandalism?

Accepted Answer

A) the electronic defacing of an existing website 
B) the abuse of pay-per-click, pay-per-call, and pay-per-conversion revenue models by repeatedly clicking on a link to increase charges or costs for the advertiser 
C) a computer crime where a competitor or disgruntled employee increases a company's search advertising costs by repeatedly clicking on the advertiser's link 
D) an act or object that poses a danger to assets 
A) the electronic defacing of an existing website 
B) the abuse of pay-per-click, pay-per-call, and pay-per-conversion revenue models by repeatedly clicking on a link to increase charges or costs for the advertiser 
C) a computer crime where a competitor or disgruntled employee increases a company's search advertising costs by repeatedly clicking on the advertiser's link 
D) an act or object that poses a danger to assets

Question 8

Two of the common forms of viruses discussed in the book include the Trojan-horse virus and the acceptance-of-service attack.

Accepted Answer

A) True 
 B)False

Question 9

What is pharming?

Accepted Answer

A) reroutes requests for legitimate websites to false websites 
B) a technique to gain personal information for the purpose of identity theft, usually by means of fraudulent emails that look as though they came from legitimate businesses 
C) a masquerading attack that combines spam with spoofing 
D) a phone scam that attempts to defraud people by asking them to call a bogus telephone number to "confirm" their account information 
A) reroutes requests for legitimate websites to false websites 
B) a technique to gain personal information for the purpose of identity theft, usually by means of fraudulent emails that look as though they came from legitimate businesses 
C) a masquerading attack that combines spam with spoofing 
D) a phone scam that attempts to defraud people by asking them to call a bogus telephone number to "confirm" their account information

Question 10

Which of the following changes its form as it propagates?

Accepted Answer

A) backdoor programs 
B) strikers 
C) polymorphic viruses and worms 
D) splogs 
A) backdoor programs 
B) strikers 
C) polymorphic viruses and worms 
D) splogs

Question 11

Fair information practices is a general term for a set of standards governing the collection and use of personal data and addressing issues of privacy and accuracy.

Accepted Answer

A) True 
 B)False

Question 12

What are the first two lines of defense a company should take when addressing security risks?

Accepted Answer

A) technology first, customers second 
B) technology first, people second 
C) innovation first, technology second 
D) people first, technology second 
A) technology first, customers second 
B) technology first, people second 
C) innovation first, technology second 
D) people first, technology second

Question 13

What is a process by which a user misleads a system into granting unauthorized rights, usually for the purpose of compromising or destroying the system?

Accepted Answer

A) elevation of privilege 
B) packet tampering 
C) spoofing 
D) spyware 
A) elevation of privilege 
B) packet tampering 
C) spoofing 
D) spyware

Question 14

Different organizations and countries have their own terms for fair information practices.Which of the following is correct?

Accepted Answer

A) The United Kingdom terms it "Data Protection." 
B) The European Union terms it "Data Protection." 
C) The United Kingdom terms it "Personal Data Privacy." 
D) The United States terms it "Personal Data Privacy." 
A) The United Kingdom terms it "Data Protection." 
B) The European Union terms it "Data Protection." 
C) The United Kingdom terms it "Personal Data Privacy." 
D) The United States terms it "Personal Data Privacy."

Question 15

What is the difference between phishing and pharming?

Accepted Answer

A) Phishing is not illegal, and pharming is illegal. 
B) Phishing is the right of the company, where pharming is the right of the individual. 
C) Phishing is a technique to gain personal information for the purpose of identity theft, and pharming reroutes requests for legitimate websites to false websites. 
D) All of these are correct. 
A) Phishing is not illegal, and pharming is illegal. 
B) Phishing is the right of the company, where pharming is the right of the individual. 
C) Phishing is a technique to gain personal information for the purpose of identity theft, and pharming reroutes requests for legitimate websites to false websites. 
D) All of these are correct.

Question 16

What requires the user to provide two means of authentication, what the user knows (password) and what the user has (security token)?

Accepted Answer

A) single-factor authentication 
B) two-factor authentication 
C) multifactor authentication 
D) biometrics 
A) single-factor authentication 
B) two-factor authentication 
C) multifactor authentication 
D) biometrics

Question 17

Smoking areas are targeted by hackers as they regularly use smoking entrances to gain building access where they pose as employees to gain access to the company network.

Accepted Answer

A) True 
 B)False

Question 18

Single-factor authentication requires the user to provide two means of authentication, what the user knows (password) and what the user has (security token).

Accepted Answer

A) True 
 B)False

Question 19

Which of the following represents the two fundamental building blocks that protect organizational information?

Accepted Answer

A) security and sales 
B) human resources and security 
C) ethics and security 
D) ethics and technology 
A) security and sales 
B) human resources and security 
C) ethics and security 
D) ethics and technology

Question 20

Epolicies are policies and procedures that address information management along with the ethical use of computers and the Internet in the business environment.

Accepted Answer

A) True 
 B)False

Which of the following definitions represents Internet censorship?

The most secure procedures combine which of the following authentication and authorization techniques?

Cyberbullying is an act or object that poses a danger to assets.

Which of the following is considered a type of biometrics?

Provide an example of each of the three primary information security areas: (1) authentication and authorization, (2) prevention and resistance, and (3) detection and response.

What is adware?

What is cybervandalism?

Two of the common forms of viruses discussed in the book include the Trojan-horse virus and the acceptance-of-service attack.

What is pharming?

Which of the following changes its form as it propagates?

Fair information practices is a general term for a set of standards governing the collection and use of personal data and addressing issues of privacy and accuracy.

What are the first two lines of defense a company should take when addressing security risks?

What is a process by which a user misleads a system into granting unauthorized rights, usually for the purpose of compromising or destroying the system?

Different organizations and countries have their own terms for fair information practices.Which of the following is correct?

What is the difference between phishing and pharming?

What requires the user to provide two means of authentication, what the user knows (password) and what the user has (security token)?

Smoking areas are targeted by hackers as they regularly use smoking entrances to gain building access where they pose as employees to gain access to the company network.

Single-factor authentication requires the user to provide two means of authentication, what the user knows (password) and what the user has (security token).

Which of the following represents the two fundamental building blocks that protect organizational information?

Epolicies are policies and procedures that address information management along with the ethical use of computers and the Internet in the business environment.

Management Information Systems: Business Driven MIS

Decisions and Processes: Value Driven Business

Ebusiness: Electronic Business Value

Infrastructures: Sustainable Technologies

Data: Business Intelligence

Networks: Mobile Business: Module 3: Enterprise MIS

Enterprise Applications: Business Communications

Systems Development and Project Management: Corporateresponsibility

Hardware and Software Basics

Networks and Telecommunications

Designing Data-Bases-Apply Your Knowledge-Glossary

Filters

Exam 4: Ethics and Information Security: Mis Business Concerns: Module 2: Technical Foundations of MIS

Which of the following definitions represents Internet censorship?

The most secure procedures combine which of the following authentication and authorization techniques?

Cyberbullying is an act or object that poses a danger to assets.

Which of the following is considered a type of biometrics?

Provide an example of each of the three primary information security areas: (1) authentication and authorization, (2) prevention and resistance, and (3) detection and response.

What is adware?

What is cybervandalism?

Two of the common forms of viruses discussed in the book include the Trojan-horse virus and the acceptance-of-service attack.

What is pharming?

Which of the following changes its form as it propagates?

Fair information practices is a general term for a set of standards governing the collection and use of personal data and addressing issues of privacy and accuracy.

What are the first two lines of defense a company should take when addressing security risks?

What is a process by which a user misleads a system into granting unauthorized rights, usually for the purpose of compromising or destroying the system?

Different organizations and countries have their own terms for fair information practices.Which of the following is correct?

What is the difference between phishing and pharming?

What requires the user to provide two means of authentication, what the user knows (password) and what the user has (security token)?

Smoking areas are targeted by hackers as they regularly use smoking entrances to gain building access where they pose as employees to gain access to the company network.

Single-factor authentication requires the user to provide two means of authentication, what the user knows (password) and what the user has (security token).

Which of the following represents the two fundamental building blocks that protect organizational information?

Epolicies are policies and procedures that address information management along with the ethical use of computers and the Internet in the business environment.

Management Information Systems: Business Driven MIS

Decisions and Processes: Value Driven Business

Ebusiness: Electronic Business Value

Infrastructures: Sustainable Technologies

Data: Business Intelligence

Networks: Mobile Business: Module 3: Enterprise MIS

Enterprise Applications: Business Communications

Systems Development and Project Management: Corporateresponsibility

Hardware and Software Basics

Networks and Telecommunications

Designing Data-Bases-Apply Your Knowledge-Glossary

Filters