Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

← Security practice sets

FC0-U61 Security • Complete Question Bank

FC0-U61 Security — All Questions With Answers

Complete FC0-U61 Security question bank — all 0 questions with answers and detailed explanations.

36
Questions
Free
No signup
Certifications/FC0-U61/Practice Test/Security/All Questions
Question 1mediummultiple choice
Read the full wireless explanation →

A small business owner wants to protect sensitive customer data stored on a laptop that is frequently used on public Wi-Fi networks. The owner is considering implementing a security control that ensures data remains confidential even if the laptop is stolen. Which of the following is the BEST control for this scenario?

Question 2hardmulti select
Read the full Security explanation →

A security analyst is reviewing user permissions and discovers that several users have been granted more privileges than necessary to perform their job functions. The analyst wants to apply the principle of least privilege. Which TWO actions should the analyst take? (Choose TWO.)

Question 3easymultiple choice
Read the full Security explanation →

A help desk technician receives an alert from the security monitoring system showing multiple events like the one in the exhibit. The technician is investigating a possible brute-force attack. Based on the exhibit, which of the following is the primary attack vector being used?

Exhibit

Refer to the exhibit.

```
Event ID: 4625
Time: 2023-08-15 14:23:45
Account Name: jsmith
Failure Reason: Unknown user name or bad password.
Workstation Name: WORKSTATION-05
Logon Type: 10 (RemoteInteractive)
```
Question 4hardmultiple choice
Read the full Security explanation →

You are the IT security administrator for a mid-sized law firm that handles sensitive client data. The firm has a mix of Windows 10 workstations, a Windows Server 2019 domain controller, and a network printer. All users have standard user accounts. The senior partner recently received a phishing email that appeared to be from a known client, requesting that he click a link to review a document. He clicked the link and entered his domain credentials on a fake login page. Shortly after, the firm's file server began encrypting files and displaying a ransom note. The incident response team isolated the infected server and restored files from backup. However, the senior partner now reports that he cannot access the file server from his workstation. He receives an 'Access Denied' message. You check his account in Active Directory and find that his account is not locked out and the password is correct. The file server is back online and accessible by other users. You verify that the senior partner's workstation has network connectivity and can ping the file server. Which of the following is the MOST likely cause of the access issue?

Question 5easymulti select
Read the full Security explanation →

Which TWO of the following are examples of social engineering attacks?

Question 6hardmultiple choice
Read the full Security explanation →

Refer to the exhibit. A security analyst reviews the NTFS permissions on the C:\Shared folder. Which user or group has the ability to delete files created by other users?

Exhibit

Refer to the exhibit.

C:\Users\Admin>icacls C:\Shared
C:\Shared Everyone:(OI)(CI)(RX)
           Admin:(OI)(CI)(F)
           Users:(OI)(CI)(M)

Successfully processed 1 files.
Question 7mediummultiple choice
Read the full Security explanation →

You are the IT administrator for a small accounting firm with 25 employees. The firm uses a Windows Server 2019 domain controller, a file server, and an email server running Microsoft Exchange. Each employee has a company-issued laptop running Windows 10. The firm recently experienced a ransomware attack that encrypted all files on the file server. The attacker demanded a ransom in Bitcoin. The firm restored the files from a backup that was taken the previous night. However, the CEO is concerned about future attacks and wants to implement additional security measures. The firm has a limited budget and cannot afford a full security suite. Which of the following is the BEST course of action to reduce the risk of another ransomware infection?

Question 8mediumdrag order
Read the full Security explanation →

Drag and drop the steps to shut down a Windows 10 computer properly into the correct order.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order
1Step 1
2Step 2
3Step 3
4Step 4
5Step 5
Question 9mediummatching
Read the full Security explanation →

Match each troubleshooting step to its order in the CompTIA A+ methodology.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Step 1

Step 2

Step 3

Step 5

Question 10easymultiple choice
Read the full Security explanation →

A user wants to ensure data confidentiality. Which action is most appropriate?

Question 11easymultiple choice
Read the full Security explanation →

Which of the following is an example of a strong password?

Question 12easymultiple choice
Read the full Security explanation →

A company wants to prevent unauthorized physical access to its server room. Which control is best?

Question 13mediummultiple choice
Read the full Security explanation →

An employee receives an email from 'IT Support' asking for his password due to 'system maintenance'. This is an example of:

Question 14mediummultiple choice
Read the full wireless explanation →

A small business wants to secure its wireless network. Which configuration provides the strongest encryption?

Question 15hardmultiple choice
Read the full Security explanation →

After a ransomware attack, which step should be taken FIRST in the incident response process?

Question 16easymultiple choice
Read the full Security explanation →

Which principle ensures that data is not modified by unauthorized users?

Question 17mediummultiple choice
Read the full Security explanation →

A user wants to prevent unauthorized access to their laptop if stolen. Which is the best method?

Question 18hardmultiple choice
Read the full Security explanation →

Which type of malware replicates itself across a network without user interaction?

Question 19mediummulti select
Read the full Security explanation →

Which TWO of the following are examples of social engineering attacks?

Question 20hardmulti select
Read the full Security explanation →

Which THREE of the following are best practices for creating secure passwords?

Question 21easymulti select
Read the full Security explanation →

Which TWO of the following are types of malware?

Question 22mediummultiple choice
Read the full Security explanation →

Which security threat is indicated in the exhibit?

Exhibit

Refer to the exhibit.
Security Event Log:
Event ID: 4625
Logon Type: 10 (RemoteInteractive)
Account Name: Administrator
Source Network Address: 203.0.113.50
Failure Reason: Unknown user name or bad password.
Question 23hardmultiple choice
Read the full Security explanation →

Which security best practice is being demonstrated?

Exhibit

Refer to the exhibit.
C:\> nslookup example.com
Server: dns.company.com
Address: 192.168.1.1
Non-authoritative answer:
Name: example.com
Address: 93.184.216.34
Question 24easymultiple choice
Read the full Security explanation →

Which security principle is being applied?

Exhibit

Refer to the exhibit.
Firewall Rule:
Source IP: 192.168.1.0/24
Destination IP: 10.0.0.0/8
Protocol: TCP
Port: 22
Action: Allow
Question 25easymultiple choice
Read the full Security explanation →

An employee receives an email from an unknown sender that includes an attachment labeled 'Invoice.pdf'. The employee does not recall ordering anything. What is the most secure action for the employee to take?

Question 26mediummultiple choice
Read the full Security explanation →

A company requires all employees to use strong passwords. Which of the following password policies best aligns with security best practices?

Question 27hardmultiple choice
Read the full Security explanation →

An employee receives a phone call from someone claiming to be from the IT department. The caller states there is a security issue and requests the employee's login credentials to 'fix the problem'. What should the employee do?

Question 28easymultiple choice
Read the full Security explanation →

A security guard notices an individual following closely behind an employee through a secured door without swiping a badge. This scenario is an example of which type of security threat?

Question 29easymulti select
Read the full Security explanation →

Which two of the following are types of malware? (Choose two.)

Question 30mediummulti select
Read the full wireless explanation →

Which three of the following are recommended practices for securing a home wireless network? (Choose three.)

Question 31hardmultiple choice
Read the full Security explanation →

Based on the exhibit, which type of attack is most likely occurring?

Exhibit

Refer to the exhibit.
Exhibit:
Event Viewer Security Log Entry:
Log Name: Security
Source: Microsoft-Windows-Security-Auditing
Event ID: 4625
Task Category: Logon
Level: Information
Keywords: Audit Failure
User: Network Service
Logon Type: 3
Account For Which Logon Failed: Administrator
Failure Reason: Unknown user name or bad password.
Workstation Name: WS-01
Source Network Address: 10.0.0.45
Question 32mediummultiple choice
Read the full Security explanation →

You are the IT administrator for a small company with 50 employees. The company uses a shared network drive for project files. Employees have read/write access to all folders on the drive. Recently, a ransomware attack encrypted many files on the network drive after an employee's workstation became infected. The employee had mapped the drive as a local letter. Backups are available but restoring takes several hours. Management wants to reduce the risk of future ransomware damage to the network drive. You are considering implementing one of the following controls. Which control would be most effective in limiting the spread of ransomware to the network drive?

Question 33hardmultiple choice
Read the full Security explanation →

A medium-sized business has a policy that requires all employees to use two-factor authentication (2FA) when accessing the corporate email system. The authentication method uses a time-based one-time password (TOTP) app on employees' smartphones. Several employees have reported that they cannot log in because they recently changed phones and did not transfer the TOTP seed. The help desk has been resetting 2FA for these users, but management is concerned about the security of the reset process. Which of the following procedures should the help desk follow to securely reset 2FA for a user?

Question 34mediummultiple choice
Read the full Security explanation →

A user reports that their computer is running slowly and the network activity light is constantly on. The technician runs the command shown in the exhibit. Based on the output, what is the most likely cause?

Exhibit

Refer to the exhibit.

C:\Users\Admin> netstat -an | find "ESTABLISHED"
  TCP    192.168.1.10:49152    203.0.113.5:443       ESTABLISHED
  TCP    192.168.1.10:49153    203.0.113.5:443       ESTABLISHED
  TCP    192.168.1.10:49154    203.0.113.5:443       ESTABLISHED
  TCP    192.168.1.10:49155    203.0.113.5:443       ESTABLISHED
Question 35easymulti select
Read the full Security explanation →

Which TWO of the following are best practices for creating and managing passwords?

Question 36hardmultiple choice
Read the full Security explanation →

A small real estate office with 12 employees has been using the same network setup for five years. Employees use both company-issued laptops and personal smartphones to access email and client listings. Last week, an employee clicked a link in a phishing email, which led to a ransomware infection on the company file server. The server was encrypted, and the attackers demanded a ransom. The office had no backups; all client data and contracts were lost. The office manager wants to prevent such incidents in the future. Which of the following should be the FIRST security measure implemented, considering the root cause of the breach?

Practice tests

Scored 10-question sessions with instant feedback and explanations.

FC0-U61 Practice Test 1 — 10 Questions→FC0-U61 Practice Test 2 — 10 Questions→FC0-U61 Practice Test 3 — 10 Questions→FC0-U61 Practice Test 4 — 10 Questions→FC0-U61 Practice Test 5 — 10 Questions→FC0-U61 Practice Exam 1 — 20 Questions→FC0-U61 Practice Exam 2 — 20 Questions→FC0-U61 Practice Exam 3 — 20 Questions→FC0-U61 Practice Exam 4 — 20 Questions→Free FC0-U61 Practice Test 1 — 30 Questions→Free FC0-U61 Practice Test 2 — 30 Questions→Free FC0-U61 Practice Test 3 — 30 Questions→FC0-U61 Practice Questions 1 — 50 Questions→FC0-U61 Practice Questions 2 — 50 Questions→FC0-U61 Exam Simulation 1 — 100 Questions→

Practice by domain

Each domain maps to a weighted exam section. Focus on the domain where you are weakest.

IT Concepts and TerminologyInfrastructureApplications and SoftwareSoftware Development ConceptsSecurityDatabase Fundamentals

Practice by scenario

Filter questions by type — troubleshooting, exhibit, drag-and-drop, PBQ, ACLs, OSPF, and more.

Browse scenarios→

Continue studying

All Security setsAll Security questionsFC0-U61 Practice Hub