CCNA Itf Security Questions

75 of 98 questions · Page 1/2 · Itf Security topic · Answers revealed

1
MCQmedium

A company requires all employees to use a smart card and a PIN to access the building. This is an example of which concept?

A.Authorization
B.Biometrics
D.Single sign-on
AnswerC

Two different factors are used: possession (smart card) and knowledge (PIN).

Why this answer

Multi-factor authentication combines something you have (smart card) and something you know (PIN).

2
MCQmedium

Which type of malware is designed to replicate itself and spread to other computers without needing to attach to a host file?

A.Worm
B.Trojan
C.Virus
D.Ransomware
AnswerA

Worms spread without needing a host file.

Why this answer

Worms are self-replicating and spread independently, unlike viruses which attach to files.

3
MCQmedium

An attacker gains physical access to a secure area by following an authorized employee through a door that requires a badge. This social engineering technique is known as:

A.Pretexting
B.Phishing
C.Tailgating
D.Baiting
AnswerC

Tailgating is physically following someone through a door without authorization.

Why this answer

Tailgating (or piggybacking) is when an unauthorized person follows an authorized person into a restricted area without proper authentication.

4
MCQhard

A small business owner wants to protect customer data stored on laptops in case the devices are stolen. Which encryption method provides the best protection for the entire hard drive?

A.HTTPS encryption for web traffic
B.File-level encryption on individual documents
C.A VPN when connecting to the internet
D.Full disk encryption
AnswerD

Correct: full disk encryption protects all data on the drive.

Why this answer

Full disk encryption (e.g., BitLocker or FileVault) encrypts the entire drive, making data unreadable without the decryption key even if the physical device is stolen.

5
MCQmedium

An employee allows a delivery person to enter a secure office building by holding the door open. The delivery person does not have an access badge. Which social engineering attack is this?

A.Phishing
B.Tailgating
C.Baiting
D.Pretexting
AnswerB

Correct. Following someone into a secure area is tailgating.

Why this answer

Tailgating (or piggybacking) occurs when an unauthorized person follows an authorized person into a restricted area without proper authentication.

6
Multi-Selectmedium

Which TWO of the following are effective measures to protect against ransomware attacks? (Select two.)

Select 2 answers
A.Using the same password for all accounts
B.Installing the latest software updates and patches
C.Disabling the firewall
D.Regularly backing up important files
E.Opening email attachments from unknown senders
AnswersB, D

Patches fix vulnerabilities that ransomware might exploit.

Why this answer

Regular backups allow restoration without paying ransom; keeping systems patched closes vulnerabilities that ransomware exploits.

7
Multi-Selecthard

A security analyst is evaluating risks to the company's network. According to the risk formula (Risk = Likelihood × Impact), which THREE of the following are considered vulnerabilities?

Select 3 answers
A.Weak encryption used for data in transit
B.A hacker attempting to guess passwords
C.A fire in the data center
D.Employees not trained to recognize phishing emails
E.Unpatched software on the company's web server
AnswersA, D, E

Weak encryption is a vulnerability that can be exploited to intercept data.

Why this answer

A vulnerability is a weakness that can be exploited by a threat.

8
MCQmedium

A user receives an email from their bank asking them to click a link and verify their account information. The email contains spelling errors and the sender's address looks suspicious. Which type of social engineering attack is this?

A.Spear phishing
B.Pretexting
C.Vishing
D.Phishing
AnswerD

The email is a typical phishing attempt trying to steal credentials.

Why this answer

Phishing is a social engineering attack where attackers send deceptive emails to trick recipients into revealing sensitive information.

9
MCQmedium

A user reports that their computer has been displaying unwanted pop-up advertisements frequently. Which type of malware is most likely responsible?

A.Ransomware
B.Adware
C.Spyware
D.Rootkit
AnswerB

Adware is specifically designed to display advertisements.

Why this answer

Adware displays unwanted advertisements, often in pop-ups or banners.

10
MCQeasy

Which of the following is a best practice for creating a strong password?

A.Using a long passphrase that includes symbols and numbers
B.Using a password with 8 characters including letters and numbers
C.Reusing the same password across multiple sites
D.Using your pet's name as a password
AnswerA

Correct: a long passphrase with complexity is strong.

Why this answer

Strong passwords should be at least 12 characters, include a mix of uppercase, lowercase, numbers, and symbols, and should not be reused across accounts.

11
MCQhard

A security analyst discovers that a file on a server has been modified without authorization. Which element of the CIA triad has been compromised?

A.Non-repudiation
B.Integrity
C.Availability
D.Confidentiality
AnswerB

Integrity is compromised when data is altered without authorization.

Why this answer

Integrity ensures that data is not altered unexpectedly. Unauthorized modification violates integrity.

12
MCQmedium

What is the primary risk of using public Wi-Fi without a VPN?

A.The Wi-Fi network may be slower
B.Data transmitted can be intercepted by attackers
C.The device may overheat
D.Increased risk of malware infection from the network
AnswerB

Correct. Without encryption, data can be intercepted.

Why this answer

Public Wi-Fi is often unencrypted, allowing attackers to intercept data transmitted over the network. A VPN encrypts traffic, protecting data in transit.

13
MCQmedium

Which of the following is the best practice for creating strong passwords?

A.Use your birthday and pet's name
B.Use a common phrase with numbers replacing letters
C.Use a random combination of uppercase, lowercase, numbers, and symbols of at least 12 characters
D.Use the same password for all accounts but change it monthly
AnswerC

This produces a strong password.

Why this answer

A strong password should be at least 12 characters long and include a mix of character types.

14
MCQeasy

What is the primary purpose of a password manager?

A.To store passwords in the cloud for easy access
B.To encrypt all network traffic
C.To share passwords securely with team members
D.To generate and store strong, unique passwords
AnswerD

This is the core function.

Why this answer

Password managers generate and store complex, unique passwords for each account, reducing password reuse and improving security.

15
MCQeasy

Which component of the CIA triad ensures that data cannot be modified by unauthorized users?

A.Integrity
B.Authentication
C.Availability
D.Confidentiality
AnswerA

Correct. Integrity ensures data is not altered without authorization.

Why this answer

Integrity ensures that data is not altered unexpectedly by unauthorized parties. Confidentiality prevents unauthorized access, and availability ensures systems are accessible when needed.

16
MCQmedium

A user is concerned about connecting to a public Wi-Fi network at a coffee shop. Which security measure can best protect their data?

A.Use HTTPS websites only
B.Use a firewall
C.Disable antivirus
D.Use a VPN
AnswerD

Correct. VPNs encrypt data over public networks.

Why this answer

A VPN encrypts traffic between the user's device and the VPN server, protecting data on public networks.

17
MCQmedium

Which of the following is the primary purpose of hashing a password before storing it in a database?

A.To make the password longer and more secure
B.To verify the password without storing it in plaintext
C.To compress the password to save storage space
D.To encrypt the password so it can be decrypted later
AnswerB

Hashing allows verification by comparing hashes.

Why this answer

Hashing is a one-way function that converts a password into a fixed-length string. It is used to securely store passwords so that even if the database is breached, the actual passwords are not easily recoverable.

18
MCQhard

A company's backup strategy requires three copies of data, on two different media types, with one copy offsite. Which backup rule does this follow?

A.3-2-1 rule
B.Incremental backup
C.Differential backup
D.Full backup
AnswerA

Correct. This is the 3-2-1 backup rule.

Why this answer

The 3-2-1 backup rule: three copies, two different media types, one offsite.

19
Multi-Selecthard

A company is developing a security policy. Which THREE of the following are examples of physical security controls?

Select 3 answers
A.Employing security guards to monitor entrances
B.Requiring employees to use strong passwords
C.Using a firewall to filter network traffic
D.Installing badge readers on doors
E.Locking server rooms with biometric locks
AnswersA, D, E

Guards are physical security.

Why this answer

Physical security controls protect hardware and facilities. Badge readers, locks, and guards are physical. Firewalls and antivirus are logical/technical controls.

20
MCQeasy

What is the primary purpose of a network firewall?

A.To prevent malware infections by scanning files
B.To encrypt data transmitted over the network
C.To block unauthorized network traffic based on rules
D.To provide wireless network access
AnswerC

Correct. Firewalls filter traffic to block unauthorized access.

Why this answer

A network firewall filters incoming and outgoing traffic based on a set of rules, typically by port and protocol, to block unauthorized access while allowing legitimate communication.

21
Multi-Selecteasy

Which TWO of the following are examples of multi-factor authentication?

Select 2 answers
A.A smart card and a PIN
B.Two different passwords
C.A password and a fingerprint scan
D.A username and a password
E.A password and a security question
AnswersA, C

Smart card (something you have) and PIN (something you know) are different factors.

Why this answer

Multi-factor authentication requires two or more different types of authentication factors.

22
MCQmedium

A user receives an email that appears to be from their bank, asking them to click a link and verify their account details. The user suspects it is a phishing attempt. Which type of phishing attack is this most likely to be?

A.Vishing
B.Spear phishing
C.Whaling
D.Smishing
AnswerB

The email is personalized and appears to come from the user's bank, making it a targeted attack.

Why this answer

Spear phishing targets specific individuals or organizations, often using personalized information to appear legitimate.

23
MCQeasy

Which of the following is the strongest password?

A.12345678
B.P@ssw0rd
C.MyD0g!sF1d0
D.password
AnswerC

12 characters, mix of uppercase, lowercase, numbers, symbol.

Why this answer

A strong password is long and includes a mix of character types.

24
MCQmedium

An organization requires employees to use a password and a one-time code sent to their mobile phone when logging into the network. Which security principle is being implemented?

A.Least privilege
B.Biometrics
C.Single sign-on
AnswerD

Correct. MFA uses multiple authentication factors.

Why this answer

Multi-factor authentication (MFA) requires two or more factors: something you know (password) and something you have (phone).

25
MCQmedium

A user receives an email that appears to be from their bank, asking them to click a link and verify their account details. The email contains urgent language and threats of account closure. What type of attack is this?

A.Spear phishing
B.Smishing
C.Phishing
D.Vishing
AnswerC

The email is a phishing attempt to steal credentials.

Why this answer

Phishing is a social engineering attack where attackers impersonate a legitimate entity to steal sensitive information.

26
MCQmedium

A user receives an email that appears to be from their bank, asking them to click a link and verify their account. The email contains urgent language and a generic greeting. Which type of security threat is this?

A.Smishing
B.Spear phishing
C.Vishing
D.Phishing
AnswerD

Correct. This is a typical phishing attempt.

Why this answer

Phishing is a social engineering attack where attackers send deceptive emails to steal credentials. The generic greeting and urgent language are common signs.

27
MCQeasy

Which element of the CIA triad is primarily concerned with ensuring that data is not accessed by unauthorized individuals?

A.Confidentiality
B.Authentication
C.Availability
D.Integrity
AnswerA

Correct. Confidentiality prevents unauthorized access to data.

Why this answer

Confidentiality ensures that data is accessible only to authorized users, preventing unauthorized access.

28
MCQeasy

Which of the following is a characteristic of a worm in the context of malware?

A.It disguises itself as legitimate software
B.It encrypts files and demands a ransom
C.It requires a host file to spread
D.It self-replicates without needing a host file
AnswerD

Correct: worms are self-propagating and do not need a host file.

Why this answer

A worm is a standalone malware that replicates itself to spread to other computers without needing to attach to a host file, often exploiting network vulnerabilities.

29
MCQhard

An organization uses a security model where users are granted the minimum permissions necessary to perform their job functions. This model is known as:

A.Role-based access control
B.Principle of least privilege
C.Mandatory access control
D.Discretionary access control
AnswerB

This is the definition of least privilege.

Why this answer

The principle of least privilege ensures users have only the access they need, reducing risk of misuse.

30
Multi-Selectmedium

Which TWO of the following are characteristics of ransomware?

Select 2 answers
A.It collects user information without consent.
B.It self-replicates to other systems without user interaction.
C.It encrypts the victim's files.
D.It demands payment in exchange for decryption.
E.It disguises itself as legitimate software.
AnswersC, D

Ransomware encrypts files to prevent access.

Why this answer

Ransomware encrypts files and demands payment for decryption.

31
Multi-Selecthard

Which THREE of the following are effective methods to protect against malware infections? (Select THREE.)

Select 3 answers
A.Open all email attachments regardless of sender
B.Install and maintain antivirus software
C.Use a firewall to filter incoming and outgoing traffic
D.Disable automatic software updates to avoid changes
E.Keep operating systems and applications up to date
AnswersB, C, E

Antivirus software is a primary defense against malware.

Why this answer

Antivirus software detects and removes malware; keeping software updated patches vulnerabilities; using a firewall blocks malicious traffic. Disabling software updates would increase risk, and opening all email attachments is dangerous.

32
MCQhard

An employee calls the help desk claiming to be a manager from another department and requests a password reset. This is an example of which social engineering technique?

A.Baiting
B.Pretexting
C.Tailgating
D.Phishing
AnswerB

Correct. The attacker creates a false identity to gain information.

Why this answer

Pretexting involves creating a fabricated scenario (pretext) to obtain information.

33
Multi-Selectmedium

Which THREE of the following are best practices for password security?

Select 3 answers
A.Sharing passwords with trusted coworkers when necessary
B.Enabling two-factor authentication where possible
C.Using a password manager to generate and store passwords
D.Reusing the same password across multiple sites
E.Using a password with at least 12 characters including uppercase, lowercase, numbers, and symbols
AnswersB, C, E

2FA adds an extra layer of security beyond the password.

Why this answer

Strong passwords are long, complex, unique, and not shared.

34
MCQeasy

Which of the following best describes the 'Confidentiality' component of the CIA triad?

A.Systems are operational when needed
B.Data is accessible only to authorized users
C.Data is encrypted at rest
D.Data is not modified without authorization
AnswerB

Confidentiality prevents unauthorized access.

Why this answer

Confidentiality ensures that data is not accessed by unauthorized individuals. Integrity protects data from unauthorized modification, and availability ensures data is accessible when needed.

35
MCQeasy

Which of the following best describes the principle of least privilege?

A.Users should have all permissions by default
B.Users should have the minimum permissions needed to do their job
C.Users should use multi-factor authentication
D.Users should change passwords every 30 days
AnswerB

This is the correct definition of the principle of least privilege.

Why this answer

The principle of least privilege states that users should be granted only the minimum permissions necessary to perform their job functions, reducing potential damage from accidents or attacks.

36
MCQmedium

Which type of malware is disguised as legitimate software but performs malicious actions?

A.Virus
B.Ransomware
C.Trojan
D.Worm
AnswerC

Correct. A Trojan disguises itself as legitimate software.

Why this answer

A Trojan horse appears useful but contains harmful code, unlike viruses or worms that self-replicate.

37
MCQmedium

An employee is working from a coffee shop and needs to access company files. Which of the following is the most secure method?

A.Use a VPN to encrypt all traffic between the laptop and the company
B.Connect directly to the company's network over the public Wi-Fi
C.Disable file sharing on the laptop
D.Use HTTPS websites only
AnswerA

VPN provides a secure tunnel.

Why this answer

A VPN encrypts traffic between the device and the company network, protecting data on public Wi-Fi. HTTPS alone protects only web traffic, and disabling sharing is not sufficient.

38
MCQeasy

What is the difference between a threat and a vulnerability?

A.A threat is a potential harm, and a vulnerability is a weakness
B.They are the same thing
C.A threat is a weakness, and a vulnerability is a danger
D.A threat is a type of malware, and a vulnerability is a type of attack
AnswerA

Correct definitions.

Why this answer

A threat is a potential source of harm (e.g., a hacker), while a vulnerability is a weakness that can be exploited (e.g., unpatched software).

39
Multi-Selecteasy

Which TWO of the following are best practices for password security?

Select 2 answers
A.Enabling multi-factor authentication whenever possible
B.Using simple patterns like '123456' or 'password'
C.Using the same password for multiple accounts
D.Sharing passwords with coworkers for convenience
E.Using a password manager to generate and store strong passwords
AnswersA, E

MFA provides additional security beyond passwords.

Why this answer

Using a password manager helps generate and store strong, unique passwords. Enabling MFA adds an extra layer of security. Sharing passwords and using simple patterns are insecure.

40
Multi-Selectmedium

A company wants to implement the principle of least privilege for its employees. Which TWO of the following actions align with this principle? (Choose TWO.)

Select 2 answers
A.Providing access only to the applications needed for each employee's role
B.Allowing employees to share passwords for convenience
C.Granting all employees administrative rights by default
D.Revoking access to systems when an employee changes roles
E.Giving all employees full access to the company's financial data
AnswersA, D

This aligns with least privilege.

Why this answer

Least privilege means giving users only the permissions necessary to perform their jobs. Granting access only to required applications and revoking old permissions enforce this.

41
MCQhard

A company is implementing a backup strategy. Which of the following best adheres to the 3-2-1 backup rule?

A.Two backups on tape drives, both stored in the server room
B.Original data on a server, a backup on a NAS in the same building, and a backup in the cloud
C.Original data on a laptop, a backup on a USB drive, and a backup on a second USB drive stored in a safe
D.One backup on an external drive stored in the same room as the server
AnswerB

Three copies, two media types (NAS and cloud), one offsite (cloud).

Why this answer

The 3-2-1 rule means 3 copies of data, on 2 different media types, with 1 offsite. Option B meets this: 3 copies (original + 2 backups), 2 media (NAS + cloud), 1 offsite (cloud).

42
MCQmedium

A company implements a policy where employees must lock their computer screen when leaving their desk. Which security principle does this practice support?

A.Confidentiality
B.Availability
C.Authentication
D.Integrity
AnswerA

Correct: locking the screen prevents others from viewing or accessing data, maintaining confidentiality.

Why this answer

Locking the screen prevents unauthorized access when the user is away, supporting confidentiality by ensuring only authorized users can access the system.

43
MCQeasy

Which of the following is the best practice for backing up data according to the 3-2-1 rule?

A.Three copies on two different media types, with one copy stored offsite
B.Three copies on three different external hard drives stored in the same building
C.Two copies on the same server, one on a different server
D.One copy on the same drive, one on an external drive, one in the cloud
AnswerA

This follows the 3-2-1 backup rule.

Why this answer

The 3-2-1 rule means at least three copies of data, on two different types of storage media, with one copy stored offsite.

44
MCQmedium

Which backup strategy involves keeping three copies of data on two different media types with one copy offsite?

A.3-2-1 backup rule
B.Full backup
C.Differential backup
D.Incremental backup
AnswerA

Correct. This is the 3-2-1 rule.

Why this answer

The 3-2-1 rule: three copies of data, on two different media types, with one copy stored offsite to ensure redundancy and disaster recovery.

45
MCQmedium

Which of the following is a key difference between a vulnerability and a threat in cybersecurity?

A.A vulnerability is a potential harm, while a threat is a weakness
B.A vulnerability is always present, while a threat is actively exploited
C.A vulnerability is a weakness, while a threat is a potential danger
D.A vulnerability can be patched, but a threat cannot be mitigated
AnswerC

Correct: vulnerability = weakness; threat = potential danger.

Why this answer

A vulnerability is a weakness that could be exploited, while a threat is a potential danger (e.g., a hacker or malware) that could exploit that vulnerability.

46
MCQmedium

Which of the following malware types is characterized by self-replication without needing to attach to a host file?

A.Worm
B.Virus
C.Trojan
D.Ransomware
AnswerA

Worms self-replicate without host files.

Why this answer

A worm is standalone malware that replicates itself to spread to other computers, often using network connections.

47
MCQhard

A security analyst is explaining the difference between a threat and a vulnerability. Which statement accurately describes this difference?

A.A vulnerability is a risk, and a threat is a countermeasure.
B.A threat is a weakness in a system, and a vulnerability is an attack that exploits it.
C.A threat is a potential cause of harm, and a vulnerability is a weakness that can be exploited.
D.A vulnerability is a potential harm, and a threat is likelihood times impact.
AnswerC

Correct. A threat is a potential danger; a vulnerability is a weakness.

Why this answer

A vulnerability is a weakness, while a threat is a potential danger that exploits that weakness.

48
MCQmedium

A company wants to ensure that sensitive documents are not readable if a laptop is stolen. Which of the following provides the best protection?

A.Full disk encryption
B.Antivirus software
D.Strong password on user account
AnswerA

FDE protects data at rest.

Why this answer

Full disk encryption (FDE) encrypts the entire drive, making data unreadable without the decryption key.

49
Multi-Selecteasy

Which TWO of the following are recommended practices for physical security in an office environment? (Select two.)

Select 2 answers
A.Locking computer screens when leaving the desk
B.Writing passwords on sticky notes and attaching them to monitors
C.Sharing access badges with colleagues
D.Shredding documents containing sensitive information before disposal
E.Leaving doors propped open for convenience
AnswersA, D

Prevents unauthorized access to the system.

Why this answer

Locking screens when away prevents unauthorized access; shredding documents ensures sensitive information is not readable.

50
MCQhard

Which of the following encryption methods is used to protect data in transit over a public network, such as the internet?

A.Full disk encryption
B.File encryption
C.VPN
AnswerC

A VPN encrypts all data transmitted over a public network, securing the entire connection.

Why this answer

A VPN encrypts data traffic over public networks, providing a secure tunnel for data in transit.

51
MCQhard

An organization implements a security control that requires users to swipe a smart card and then enter a PIN to access a secure facility. Which combination of authentication factors does this represent?

A.Something you are and something you have
B.Something you know and something you do
C.Something you have and something you know
D.Something you know and something you are
AnswerC

This is correct: smart card (have) and PIN (know).

Why this answer

Smart card is 'something you have' and PIN is 'something you know', making it two-factor authentication using different factor types.

52
Multi-Selecthard

Which THREE of the following are examples of multi-factor authentication? (Select three.)

Select 3 answers
A.A smart card and a PIN
B.A password and a fingerprint scan
C.A retina scan and a fingerprint scan
D.A username and password
E.A one-time code sent to a phone and a password
AnswersA, B, E

Smart card (have) + PIN (know) = two factors.

Why this answer

MFA requires two or more different factors: something you know, something you have, and something you are. Each correct answer uses at least two distinct factors.

53
MCQmedium

Which of the following is an example of multi-factor authentication?

A.Using a PIN and a smart card
B.Using a password and answering a security question
C.Using a fingerprint scanner alone
D.Using a password and a one-time code sent via SMS
AnswerA

PIN (something you know) and smart card (something you have) are two different factors.

Why this answer

MFA requires two or more factors: something you know (PIN), something you have (smart card), something you are (biometric). Option D combines a PIN (know) and a smart card (have).

54
Multi-Selecthard

An IT administrator is hardening a server. Which three of the following actions should be taken to improve security? (Select THREE.)

Select 3 answers
A.Disable unused services and ports
B.Implement the principle of least privilege
C.Disable the firewall for better performance
D.Enable automatic software updates
E.Grant all users administrative rights
AnswersA, B, D

Correct. This reduces attack vectors.

Why this answer

Disabling unnecessary services reduces attack surface; enabling automatic updates ensures patches; implementing least privilege limits access.

55
MCQmedium

An organization adopts the 3-2-1 backup rule. Which of the following practices aligns with this rule?

A.Three copies of data on two different media types, with one offsite
B.Four backups all stored on tape
C.One backup stored in the same location as the original
D.Two copies of data on the same hard drive
AnswerA

Correct: this is the definition of the 3-2-1 rule.

Why this answer

The 3-2-1 rule means having three copies of data on two different media types with one copy offsite. Storing backups on external drives and cloud meets this requirement.

56
MCQhard

A security analyst notices that a user's computer is running slowly and displaying many pop-up ads. Which type of malware is most likely causing this?

A.Spyware
B.Ransomware
C.Rootkit
D.Adware
AnswerD

Adware displays pop-up ads and can slow down the system.

Why this answer

Adware displays unwanted advertisements and often causes performance issues. Spyware collects information, ransomware encrypts files, and a rootkit hides itself.

57
MCQeasy

Which of the following is a characteristic of a strong password?

A.Contains a combination of uppercase, lowercase, numbers, and symbols
B.Is exactly 8 characters long
C.Uses only lowercase letters
D.Is the same as the username
AnswerA

This meets the criteria for a strong password.

Why this answer

Strong passwords are at least 12 characters long and include a mix of uppercase letters, lowercase letters, numbers, and symbols.

58
Multi-Selecteasy

Which TWO of the following are examples of physical security controls?

Select 2 answers
A.A security guard at the entrance
C.Antivirus software
E.A lock on a server room door
AnswersA, E

A security guard is a physical control to prevent unauthorized access.

Why this answer

Physical security controls protect the physical environment and assets.

59
Multi-Selectmedium

A company is implementing physical security measures. Which two of the following are examples of physical security controls? (Select TWO.)

Select 2 answers
A.Enforcing strong passwords
B.Using a firewall
C.Installing antivirus software
D.Locking screens when leaving the desk
E.Shredding sensitive documents
AnswersD, E

Correct. This is a physical security practice.

Why this answer

Locking screens prevent unauthorized viewing, and shredding documents destroys sensitive paper data. Both are physical security.

60
MCQmedium

A company implements a policy requiring employees to use a password and a one-time code sent to their mobile phone when logging into the corporate network. Which security concept is being employed?

A.Role-based access control
B.Single sign-on
D.Biometrics
AnswerC

Password and phone code are two different factors.

Why this answer

Multi-factor authentication (MFA) requires two or more factors: something you know (password) and something you have (phone).

61
Multi-Selectmedium

Which TWO of the following are examples of physical security measures? (Select TWO)

Select 2 answers
A.Locking the computer screen when leaving the desk
B.Requiring strong passwords
C.Shredding documents containing confidential information
D.Using encryption for sensitive files
E.Installing a network firewall
AnswersA, C

Correct. This is a physical security practice.

Why this answer

Locking screens when away (lock screen) and shredding sensitive documents are physical security measures. Firewalls and encryption are logical/technical controls; passwords are authentication.

62
MCQmedium

A user receives an email that appears to be from their bank, asking them to click a link and verify their account details. The user notices the email address is slightly misspelled (e.g., 'support@bankk.com' instead of 'support@bank.com'). Which type of attack is this?

A.Smishing
B.Phishing
C.Spear phishing
D.Vishing
AnswerB

This is a classic example of a phishing email attempting to trick the recipient.

Why this answer

Phishing is a social engineering attack where attackers send fraudulent emails pretending to be from legitimate sources to steal sensitive information.

63
MCQeasy

Which of the following is the best practice for creating a strong password?

A.Using your pet's name
B.Using the same password for multiple accounts
C.Using a sequence of 8 characters with letters only
D.Using a 14-character phrase with numbers and symbols
AnswerD

Correct. Long and complex passwords are strong.

Why this answer

A strong password is at least 12 characters with a mix of uppercase, lowercase, numbers, and symbols.

64
Multi-Selectmedium

Which TWO of the following are examples of social engineering attacks? (Select TWO.)

Select 2 answers
A.Rootkit
B.Pretexting
C.Worm
D.Tailgating
E.Ransomware
AnswersB, D

Pretexting is a social engineering attack where the attacker invents a scenario to trick the victim.

Why this answer

Pretexting involves creating a fabricated scenario to gain information, and tailgating is following an authorized person into a restricted area. Both manipulate human behavior rather than technical systems.

65
MCQmedium

Which of the following is an example of something you are in multi-factor authentication?

A.Password
B.Fingerprint scan
C.Smart card
D.One-time passcode
AnswerB

Correct. Fingerprint is a biometric, something you are.

Why this answer

Biometrics (fingerprint, face) are physical characteristics, i.e., something you are.

66
MCQeasy

Which of the following best describes the principle of confidentiality in the CIA triad?

A.Data is not altered unexpectedly
B.Systems are accessible when needed
C.Ensuring data is backed up regularly
D.Preventing unauthorized access to information
AnswerD

Confidentiality is about preventing unauthorized access.

Why this answer

Confidentiality ensures that information is not disclosed to unauthorized individuals, systems, or processes.

67
MCQeasy

Which of the following best describes the principle of confidentiality in the CIA triad?

A.Systems are accessible when needed
B.Ensuring data is backed up regularly
C.Data is not altered unexpectedly
D.Preventing unauthorized access to data
AnswerD

Confidentiality is about keeping data secret from unauthorized parties.

Why this answer

Confidentiality ensures that data is not disclosed to unauthorized individuals or systems.

68
MCQeasy

Which of the following is a characteristic of a strong password?

A.A password that is at least 12 characters long with a mix of character types
B.A short password with only letters
C.A password that is easy to remember, like a pet's name
D.A password that is the same across multiple accounts
AnswerA

Long and complex passwords are strong.

Why this answer

A strong password should be at least 12 characters, include uppercase, lowercase, numbers, and symbols, and should not be reused or shared.

69
MCQhard

A company requires employees to use a one-time code from a smartphone app in addition to their password to log into the corporate VPN. This is an example of:

A.Single factor authentication
C.Two-step verification using the same factor
D.Biometric authentication
AnswerB

Correct. Password (know) and code (have) are two factors.

Why this answer

Multi-factor authentication (MFA) combines something you know (password) and something you have (smartphone app generating a code). This is MFA.

70
Multi-Selecthard

Which THREE of the following are characteristics of a strong password? (Select THREE)

Select 3 answers
A.At least 12 characters in length
B.Contains uppercase, lowercase, numbers, and symbols
C.Includes the user's birth date
D.Is unique and not used on other accounts
E.Is reused across multiple accounts
AnswersA, B, D

Correct. Length is a key factor for strength.

Why this answer

A strong password is at least 12 characters long, contains a mix of uppercase, lowercase, numbers, and symbols, and is not reused across accounts. Using personal information or common words makes passwords weak.

71
MCQmedium

A company wants to protect its network from unauthorized external access. Which of the following devices should be configured to filter traffic based on port and protocol?

A.Network firewall
B.Host-based firewall
C.VPN concentrator
D.Antivirus software
AnswerA

Correct: a network firewall filters traffic between networks based on rules.

Why this answer

A network firewall examines incoming and outgoing traffic and can block or allow based on rules involving ports and protocols, providing a barrier between internal and external networks.

72
MCQhard

Which of the following is a characteristic of a worm compared to a virus?

A.A worm is always disguised as legitimate software
B.A worm is a type of ransomware
C.A worm can self-replicate without user intervention
D.A worm requires a host file to replicate
AnswerC

Worms exploit network vulnerabilities to spread autonomously.

Why this answer

A worm can spread automatically without needing to attach to a host file or require user action, while a virus typically requires a host file and user execution to spread.

73
MCQmedium

Which of the following best describes the principle of least privilege?

A.Access should be granted based on seniority within the organization.
B.All users should have the same level of access to ensure consistency.
C.Users should have the minimum access needed to perform their tasks.
D.Users should have full administrative access to their own devices.
AnswerC

Correct. Least privilege means minimal necessary access.

Why this answer

The principle of least privilege grants users only the permissions necessary to perform their job functions, minimizing potential damage from accidents or attacks.

74
MCQhard

A security analyst discovers that a file on a server has been modified without authorization. However, the system logs show that the modification was made by an authenticated user who had legitimate access to the file. Which aspect of the CIA triad has been violated?

A.Non-repudiation
B.Integrity
C.Availability
D.Confidentiality
AnswerB

Unauthorized modification violates integrity.

Why this answer

Integrity ensures data is not altered by unauthorized parties. Even though the user was authenticated, the modification was unauthorized, violating integrity.

75
MCQhard

A security administrator wants to protect data at rest on a laptop that may be lost or stolen. Which of the following is the BEST solution?

A.Use a VPN when connecting to the internet
B.Install a host-based firewall
C.Enable full disk encryption
D.Implement strong password policies
AnswerC

Correct. Full disk encryption protects data on the laptop.

Why this answer

Full disk encryption (e.g., BitLocker or FileVault) encrypts the entire drive, making data inaccessible without the decryption key, protecting data at rest.

Page 1 of 2 · 98 questions totalNext →

Ready to test yourself?

Try a timed practice session using only Itf Security questions.

CCNA Itf Security Questions — Page 1 of 2 | Courseiva