Question 1

Cyber criminals who infiltrate systems and collect data for illegal resale are called _____.

Accepted Answer

A)  cash-out fraudsters 
B)  data harvesters 
C)  corporate spies 
D)  ethical hackers 
E)  information hoarders 
A)  cash-out fraudsters 
B)  data harvesters 
C)  corporate spies 
D)  ethical hackers 
E)  information hoarders

Question 2

Challenge questions offered by Web sites to automate password distribution and resets are formidable in protecting the privacy of email accounts.

Accepted Answer

A) True 
 B)False

Question 3

Briefly explain the steps one should take to ensure that their highest priority accounts are not compromised easily by hackers.

Accepted Answer

A user must make it a priority to create

Question 4

_____ refers to confidence scams executed through technology.

Accepted Answer

The answer of _____ refers to confidence scams executed through...

Question 5

Con games that trick employees into revealing information or performing other tasks that compromise a firm are known as _____ in security circles.

Accepted Answer

The answer of Con games that trick employees into revealing...

Question 6

A team working on organizational security should include representatives from general counsel, audit, public relations, and human resources, in addition to those from specialized security and broader technology and infrastructure functions.

Accepted Answer

A) True 
 B)False

Question 7

A security group's R&D function would be involved in:

Accepted Answer

A)  the day-to-day monitoring of existing systems. 
B)  understanding emerging threats and reviewing, selecting, and implementing updated security techniques. 
C)  working on broader governance issues. 
D)  educating the organization on the need to improve information security. 
E)  hunting for and exposing organizational security weakness before hackers find them. 
A)  the day-to-day monitoring of existing systems. 
B)  understanding emerging threats and reviewing, selecting, and implementing updated security techniques. 
C)  working on broader governance issues. 
D)  educating the organization on the need to improve information security. 
E)  hunting for and exposing organizational security weakness before hackers find them.

Question 8

Fingerprint readers, retina scanners, voice and face recognition technologies are all part of _____.

Accepted Answer

The answer of Fingerprint readers, retina scanners, voice and face...

Question 9

Spear phishing attacks specifically target a given organization or group of users.

Accepted Answer

A) True 
 B)False

Question 10

Hackers might infiltrate computer systems to enlist hardware for subsequent illegal acts.

Accepted Answer

A) True 
 B)False

Question 11

Briefly explain the threat posed by botnets.

Accepted Answer

Botnets of zombie computers (networks of

Question 12

What type of tool enforces access privileges and helps verify that systems are not being accessed by the unauthorized, or in suspicious ways?

Accepted Answer

A)  Audit trails 
B)  Intrusion detection tools 
C)  Access control tools 
D)  User-tracking tools 
E)  Network watching tools 
A)  Audit trails 
B)  Intrusion detection tools 
C)  Access control tools 
D)  User-tracking tools 
E)  Network watching tools

Question 13

What security risk could be posed by a botnet large enough to hold a few million zombie computers?

Accepted Answer

A)  Restricting communication between approved entities 
B)  Crippling a substantially sized network by withholding critical information like passwords 
C)  Organizing an underworld market dealing in trade of stolen information 
D)  Stealing critical information like social security numbers, or revenue records 
E)  Sending spam mail from thousands of difficult-to-shut-down accounts 
A)  Restricting communication between approved entities 
B)  Crippling a substantially sized network by withholding critical information like passwords 
C)  Organizing an underworld market dealing in trade of stolen information 
D)  Stealing critical information like social security numbers, or revenue records 
E)  Sending spam mail from thousands of difficult-to-shut-down accounts

Question 14

A research scientist with a major pharmaceutical firm in New Jersey is caught passing on sensitive information, worth millions of dollars, regarding the composition and test results of his firm's latest drug to a rival company. What crime is he being held responsible for?

Accepted Answer

A)  Cyber-fraud 
B)  Corporate espionage 
C)  Carrying out technology disruptions 
D)  Extortion 
E)  Illegal funds transfer 
A)  Cyber-fraud 
B)  Corporate espionage 
C)  Carrying out technology disruptions 
D)  Extortion 
E)  Illegal funds transfer

Question 15

_____ refers to a term that either means breaking into a computer system or a particularly clever solution.

Accepted Answer

The answer of _____ refers to a term that either...

Question 16

Web sites of reputed companies can also be sources of malware.

Accepted Answer

A) True 
 B)False

Question 17

According to research firm Gartner, the majority of loss-causing security incidents involve the handiwork of international cyber-criminal gangs.

Accepted Answer

A) True 
 B)False

Question 18

Information security policies would be ineffective without _____ and _____.

Accepted Answer

A)  audit; enforcement 
B)  accountability; flexibility 
C)  compliance; objectivity 
D)  regulation; transparency 
E)  consistency; adaptability 
A)  audit; enforcement 
B)  accountability; flexibility 
C)  compliance; objectivity 
D)  regulation; transparency 
E)  consistency; adaptability

Question 19

Worms require an executable (a running program) to spread, attaching to other executables.

Accepted Answer

A) True 
 B)False

Question 20

Which of the following actions should users take to protect themselves from security attacks?

Accepted Answer

A)  Frequently upgrade their systems with the latest hardware available in the market 
B)  Use a universal password for all secure sites to avoid chances of forgetting different passwords 
C)  Use VPN software to encrypt transmission and hide from eavesdroppers 
D)  Use unrestricted folder sharing settings to maintain transparency 
E)  Use passwords that are random and more than 12 characters long to avoid easy guessing 
A)  Frequently upgrade their systems with the latest hardware available in the market 
B)  Use a universal password for all secure sites to avoid chances of forgetting different passwords 
C)  Use VPN software to encrypt transmission and hide from eavesdroppers 
D)  Use unrestricted folder sharing settings to maintain transparency 
E)  Use passwords that are random and more than 12 characters long to avoid easy guessing

Cyber criminals who infiltrate systems and collect data for illegal resale are called _____.

Challenge questions offered by Web sites to automate password distribution and resets are formidable in protecting the privacy of email accounts.

Briefly explain the steps one should take to ensure that their highest priority accounts are not compromised easily by hackers.

_____ refers to confidence scams executed through technology.

Con games that trick employees into revealing information or performing other tasks that compromise a firm are known as _____ in security circles.

A team working on organizational security should include representatives from general counsel, audit, public relations, and human resources, in addition to those from specialized security and broader technology and infrastructure functions.

A security group's R&D function would be involved in:

Fingerprint readers, retina scanners, voice and face recognition technologies are all part of _____.

Spear phishing attacks specifically target a given organization or group of users.

Hackers might infiltrate computer systems to enlist hardware for subsequent illegal acts.

Briefly explain the threat posed by botnets.

What type of tool enforces access privileges and helps verify that systems are not being accessed by the unauthorized, or in suspicious ways?

What security risk could be posed by a botnet large enough to hold a few million zombie computers?

A research scientist with a major pharmaceutical firm in New Jersey is caught passing on sensitive information, worth millions of dollars, regarding the composition and test results of his firm's latest drug to a rival company. What crime is he being held responsible for?

_____ refers to a term that either means breaking into a computer system or a particularly clever solution.

Web sites of reputed companies can also be sources of malware.

According to research firm Gartner, the majority of loss-causing security incidents involve the handiwork of international cyber-criminal gangs.

Information security policies would be ineffective without _ and _.

Worms require an executable (a running program) to spread, attaching to other executables.

Which of the following actions should users take to protect themselves from security attacks?

Setting the Stage: Technology and the Modern Enterprise

Strategy and Technology: Concepts and Frameworks for Understanding What Separates Winners From Losers

Zara: Fast Fashion From Savvy Systems

Netflix in Two Acts: the Making of an E-Commerce Giant and the Uncertain Future of Atoms to Bits

Moores Law and More: Fast, Cheap Computing, Disruptive Innovation, and What This Means for the Manager

Amazoncom: an Empire Stretching From Cardboard Box to Kindle to Cloud

Understanding Network Effects: Strategies for Competing in a Platform-Centric, Winner-Take-All World

Social Media, Peer Production, and Web 20

Facebook: Building a Business From the Social Graph

Understanding Software: a Primer for Managers

Software in Flux: Partly Cloudy and Sometimes Free

The Data Asset: Databases, Business Intelligence, Big Data, and Competitive Advantage

A Managers Guide to the Internet and Telecommunications

Google in Three Parts: Search, Online Advertising, and Beyond

Filters

Exam 14: Information Security: Barbarians at the Gateway and Just About Everywhere Else

Cyber criminals who infiltrate systems and collect data for illegal resale are called _____.

Challenge questions offered by Web sites to automate password distribution and resets are formidable in protecting the privacy of email accounts.

Briefly explain the steps one should take to ensure that their highest priority accounts are not compromised easily by hackers.

_____ refers to confidence scams executed through technology.

Con games that trick employees into revealing information or performing other tasks that compromise a firm are known as _____ in security circles.

A team working on organizational security should include representatives from general counsel, audit, public relations, and human resources, in addition to those from specialized security and broader technology and infrastructure functions.

A security group's R&D function would be involved in:

Fingerprint readers, retina scanners, voice and face recognition technologies are all part of _____.

Spear phishing attacks specifically target a given organization or group of users.

Hackers might infiltrate computer systems to enlist hardware for subsequent illegal acts.

Briefly explain the threat posed by botnets.

What type of tool enforces access privileges and helps verify that systems are not being accessed by the unauthorized, or in suspicious ways?

What security risk could be posed by a botnet large enough to hold a few million zombie computers?

A research scientist with a major pharmaceutical firm in New Jersey is caught passing on sensitive information, worth millions of dollars, regarding the composition and test results of his firm's latest drug to a rival company. What crime is he being held responsible for?

_____ refers to a term that either means breaking into a computer system or a particularly clever solution.

Web sites of reputed companies can also be sources of malware.

According to research firm Gartner, the majority of loss-causing security incidents involve the handiwork of international cyber-criminal gangs.

Information security policies would be ineffective without _____ and _____.

Worms require an executable (a running program) to spread, attaching to other executables.

Which of the following actions should users take to protect themselves from security attacks?

Setting the Stage: Technology and the Modern Enterprise

Strategy and Technology: Concepts and Frameworks for Understanding What Separates Winners From Losers

Zara: Fast Fashion From Savvy Systems

Netflix in Two Acts: the Making of an E-Commerce Giant and the Uncertain Future of Atoms to Bits

Moores Law and More: Fast, Cheap Computing, Disruptive Innovation, and What This Means for the Manager

Amazoncom: an Empire Stretching From Cardboard Box to Kindle to Cloud

Understanding Network Effects: Strategies for Competing in a Platform-Centric, Winner-Take-All World

Social Media, Peer Production, and Web 20

Facebook: Building a Business From the Social Graph

Understanding Software: a Primer for Managers

Software in Flux: Partly Cloudy and Sometimes Free

The Data Asset: Databases, Business Intelligence, Big Data, and Competitive Advantage

A Managers Guide to the Internet and Telecommunications

Google in Three Parts: Search, Online Advertising, and Beyond

Filters

Information security policies would be ineffective without _ and _.