FC0-U61 · topic practice

Security practice questions

Practise CompTIA ITF+ FC0-U61 Security practice questions — original exam-style scenarios with answer choices, explanations, and analysis of common mistakes.

Courseiva uses original exam-style practice questions designed for learning and revision. The goal is to understand the concepts, recognise exam patterns, and improve through explanations — not memorise copied exam dumps.

Reviewed byJohnson Ajibi· MSc IT Security
20 questionsDomain: Security

What the exam tests

What to know about Security

Security questions test whether you can apply the concept in context, not just recognise a definition.

How the topic appears in realistic exam-style scenarios.

Which detail in the question changes the correct answer.

How to eliminate plausible but wrong options.

How to connect the question back to the wider exam objective.

Watch out for

Common Security exam traps

  • Answering from memory before reading the full scenario.
  • Missing a constraint such as cost, availability, security, scope or command context.
  • Choosing a broad answer when the question asks for the most specific fix.
  • Ignoring why the wrong options are tempting.

Practice set

Security questions

20 questions · select your answer, then reveal the explanation

Question 1mediummultiple choice
Read the full wireless explanation →

A small business owner wants to protect sensitive customer data stored on a laptop that is frequently used on public Wi-Fi networks. The owner is considering implementing a security control that ensures data remains confidential even if the laptop is stolen. Which of the following is the BEST control for this scenario?

Question 2hardmulti select
Read the full Security explanation →

A security analyst is reviewing user permissions and discovers that several users have been granted more privileges than necessary to perform their job functions. The analyst wants to apply the principle of least privilege. Which TWO actions should the analyst take? (Choose TWO.)

Question 3easymultiple choice
Read the full Security explanation →

A help desk technician receives an alert from the security monitoring system showing multiple events like the one in the exhibit. The technician is investigating a possible brute-force attack. Based on the exhibit, which of the following is the primary attack vector being used?

Exhibit

Refer to the exhibit.

```
Event ID: 4625
Time: 2023-08-15 14:23:45
Account Name: jsmith
Failure Reason: Unknown user name or bad password.
Workstation Name: WORKSTATION-05
Logon Type: 10 (RemoteInteractive)
```
Question 4hardmultiple choice
Read the full Security explanation →

You are the IT security administrator for a mid-sized law firm that handles sensitive client data. The firm has a mix of Windows 10 workstations, a Windows Server 2019 domain controller, and a network printer. All users have standard user accounts. The senior partner recently received a phishing email that appeared to be from a known client, requesting that he click a link to review a document. He clicked the link and entered his domain credentials on a fake login page. Shortly after, the firm's file server began encrypting files and displaying a ransom note. The incident response team isolated the infected server and restored files from backup. However, the senior partner now reports that he cannot access the file server from his workstation. He receives an 'Access Denied' message. You check his account in Active Directory and find that his account is not locked out and the password is correct. The file server is back online and accessible by other users. You verify that the senior partner's workstation has network connectivity and can ping the file server. Which of the following is the MOST likely cause of the access issue?

Question 5easymulti select
Read the full Security explanation →

Which TWO of the following are examples of social engineering attacks?

Question 6hardmultiple choice
Read the full Security explanation →

Refer to the exhibit. A security analyst reviews the NTFS permissions on the C:\Shared folder. Which user or group has the ability to delete files created by other users?

Exhibit

Refer to the exhibit.

C:\Users\Admin>icacls C:\Shared
C:\Shared Everyone:(OI)(CI)(RX)
           Admin:(OI)(CI)(F)
           Users:(OI)(CI)(M)

Successfully processed 1 files.
Question 7mediummultiple choice
Read the full Security explanation →

You are the IT administrator for a small accounting firm with 25 employees. The firm uses a Windows Server 2019 domain controller, a file server, and an email server running Microsoft Exchange. Each employee has a company-issued laptop running Windows 10. The firm recently experienced a ransomware attack that encrypted all files on the file server. The attacker demanded a ransom in Bitcoin. The firm restored the files from a backup that was taken the previous night. However, the CEO is concerned about future attacks and wants to implement additional security measures. The firm has a limited budget and cannot afford a full security suite. Which of the following is the BEST course of action to reduce the risk of another ransomware infection?

Question 8mediumdrag order
Read the full Security explanation →

Drag and drop the steps to shut down a Windows 10 computer properly into the correct order.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order
1Step 1
2Step 2
3Step 3
4Step 4
5Step 5

Match each troubleshooting step to its order in the CompTIA A+ methodology.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Step 1

Step 2

Step 3

Step 5

Question 10easymultiple choice
Read the full Security explanation →

A user wants to ensure data confidentiality. Which action is most appropriate?

Question 11easymultiple choice
Read the full Security explanation →

Which of the following is an example of a strong password?

Question 12easymultiple choice
Read the full Security explanation →

A company wants to prevent unauthorized physical access to its server room. Which control is best?

Question 13mediummultiple choice
Read the full Security explanation →

An employee receives an email from 'IT Support' asking for his password due to 'system maintenance'. This is an example of:

Question 14mediummultiple choice
Read the full wireless explanation →

A small business wants to secure its wireless network. Which configuration provides the strongest encryption?

Question 15hardmultiple choice
Read the full Security explanation →

After a ransomware attack, which step should be taken FIRST in the incident response process?

Question 16easymultiple choice
Read the full Security explanation →

Which principle ensures that data is not modified by unauthorized users?

Question 17mediummultiple choice
Read the full Security explanation →

A user wants to prevent unauthorized access to their laptop if stolen. Which is the best method?

Question 18hardmultiple choice
Read the full Security explanation →

Which type of malware replicates itself across a network without user interaction?

Question 19mediummulti select
Read the full Security explanation →

Which TWO of the following are examples of social engineering attacks?

Question 20hardmulti select
Read the full Security explanation →

Which THREE of the following are best practices for creating secure passwords?

Free account

Track your progress over time

Create a free account to save your results and see which topics improve across sessions.

Focused Security sessions

Start a Security only practice session

Every question in these sessions is drawn from the Security domain — nothing else.

Related practice questions

Related FC0-U61 topic practice pages

Move into related areas when this topic feels solid.

Frequently asked questions

What does the FC0-U61 exam test about Security?
Security questions test whether you can apply the concept in context, not just recognise a definition.
How should I use these practice questions?
Select your answer before revealing the explanation. Then read why each option is right or wrong — this active recall approach builds retention far faster than re-reading notes.
Can I practise just Security questions in a focused session?
Yes — the session launcher on this page draws every question from the Security domain. Use a 10-question session first to gauge your baseline, then move to 20 or 30 once the weak spots are clear.
Where can I practise other FC0-U61 topics?
Use the topic links above to move to related areas, or go back to the FC0-U61 question bank to see all topics.
Are these real exam questions or dumps?
These are original practice questions written to test the same concepts the FC0-U61 exam covers. They are not copied from any real exam or dump site.