CompTIA exam questions
An administrative assistant receives a phone call from the IT department asking for personal information to update their records. One of the questions asked is the password to the companys administrative portal. Which of the following is occurring?
A. Shoulder surfing
B. Configuration management
C. Helpdesk troubleshooting methodology
D. Social engineering
A user, Jane, receives a call from Peter who states that he is brand new in the help desk. Peter states that he needs to update Janes email client to prevent corruption. At Peter’s request, Jane discloses her user name and password. She later discovers that Peter is not a member of the help desk. Which of the following has occurred?
A. Social engineering
B. Phishing
C. Spear phishing
D. Hijacking
Which of the following security threats involve shoulder surfing and phone phishing?
A. Man-in-the-Middle
B. Social engineering
C. Trojan virus
D. Spyware
A prospective employee asks for wired Internet access while waiting for a job interview. Later, it is discovered that spyware was uploaded to the network from this particular location and the prospective employee cannot be contacted with the information provided. Which of the following security threats is this an example of?
A. Phishing
B. Shoulder surfing
C. Viruses
D. Social engineering
A company’s security guard found Jane, an unauthorized person, searching through the recycling dumpster behind the building. When Jane was questioned she responded with, “I work for the company and have lost a report”. Which of the following is occurring?
A. Social engineering
B. Malware
C. Phishing
D. Shoulder surfing
On a mobile device, enforcing a policy that erases a device after a number of failed login attempts is used to prevent which of the following?
A. Unauthorized application installations
B. Brute forcing
C. Social engineering
D. Man-in-the-middle attack
Peter, a user, just downloaded a game onto his company phone. When he is not using the device, it unexpectedly dials unrecognized numbers and downloads new content. Peter is the victim of which of the following?
A. Trojan horse
B. Spyware
C. Social engineering
D. Worms
Jane, an executive, reports that she received a call from someone asking for information about her email account. Which of the following type of potential security threats does this scenario describe?
A. Social engineering
B. Spoofing
C. Zero-day
D. Man-in-the-middle
Jane, an end user, receives a call from someone claiming to be from the help desk and asking for her username and password to prevent her email box from being deleted immediately. Which of the following BEST describes this type of attack?
A. Shoulder surfing
B. Man-in-the-middle
C. Social engineering
D. Ransomware
Which of the following security threats are MOST likely prevented through user training?
A. Network Intrusion
B. Adware Popups
C. Social Engineering
D. Spam Messages