NEW QUESTION 18
A distributed Denial of Service (DDoS) attack is a more common type of DoS Attack, where a single system is targeted by a large number of infected machines over the Internet. In a DDoS attack, attackers first infect multiple systems which are known as:

NEW QUESTION 19
Common name(s) for CSIRT is(are)

NEW QUESTION 20
What command does a Digital Forensic Examiner use to display the list of all open ports and the associated IP
addresses on a victim computer to identify the established connections on it:

NEW QUESTION 21
Keyloggers do NOT:

NEW QUESTION 22
To whom should an information security incident be reported?

NEW QUESTION 23
Incident handling and response steps help you to detect, identify, respond and manage an incident. Which of the following steps focus on limiting the scope and extent of an incident?

NEW QUESTION 24
Business continuity is defined as the ability of an organization to continue to function even after a disastrous event, accomplished through the deployment of redundant hardware and software, the use of fault tolerant systems, as well as a solid backup and recovery strategy. Identify the plan which is mandatory part of a business continuity plan?

NEW QUESTION 25
Based on the some statistics; what is the typical number one top incident?

NEW QUESTION 26
A computer forensic investigator must perform a proper investigation to protect digital evidence. During the investigation, an investigator needs to process large amounts of data using a combination of automated and manual methods. Identify the computer forensic process involved:

NEW QUESTION 27
An audit trail policy collects all audit trails such as series of records of computer events, about an operating system, application or user activities. Which of the following statements is NOT true for an audit trail policy:

NEW QUESTION 28
The most common type(s) of intellectual property is(are):

NEW QUESTION 29
In NIST risk assessment/ methodology; the process of identifying the boundaries of an IT system along with
the resources and information that constitute the system is known as:

NEW QUESTION 30
Which of the following service(s) is provided by the CSIRT:

NEW QUESTION 31
The most common type(s) of intellectual property is(are):

NEW QUESTION 32
In NIST risk assessment/ methodology; the process of identifying the boundaries of an IT system along with the resources and information that constitute the system is known as:

NEW QUESTION 33
In which of the steps of NIST’s risk assessment methodology are the boundary of the IT system, along with the resources and the information that constitute the system identified?

NEW QUESTION 34
An information security incident is

NEW QUESTION 35
A malicious security-breaking code that is disguised as any useful program that installs an executable programs when a file is opened and allows others to control the victim’s system is called:

NEW QUESTION 36
Business continuity is defined as the ability of an organization to continue to function even after a disastrous
event, accomplished through the deployment of redundant hardware and software, the use of fault tolerant
systems, as well as a solid backup and recovery strategy. Identify the plan which is mandatory part of a
business continuity plan?

NEW QUESTION 37
The role that applies appropriate technology and tries to eradicate and recover from the incident is known as:

NEW QUESTION 38
A Host is infected by worms that propagates through a vulnerable service; the sign(s) of the presence of the worm include:

NEW QUESTION 39
Insider threats can be detected by observing concerning behaviors exhibited by insiders, such as conflicts with supervisors and coworkers, decline in performance, tardiness or unexplained absenteeism. Select the technique that helps in detecting insider threats:

NEW QUESTION 40
A malicious security-breaking code that is disguised as any useful program that installs an executable
programs when a file is opened and allows others to control the victim’s system is called:

NEW QUESTION 41
Risk is defined as the probability of the occurrence of an incident. Risk formulation generally begins with the likeliness of an event’s occurrence, the harm it may cause and is usually denoted as Risk = ∑(events)X(Probability of occurrence)X?