Skip to content (Press Enter)

Microsoft Azure MCSD MCSE MCSA MCTS Exams Questions Online

  • Home
  • Online Microsoft Exams PDF Files
  • Online Cisco Exams PDF Files
  • Online CompTIA Exams PDF Files
  • Online VMware Exams PDF Files

[Free] 2018(Apr) EnsurePass Braindumps CompTIA JK0-022 Dumps with VCE and PDF 601-610

by adminupdated on April 27, 2018April 27, 2018

Ensurepass.com : Ensure you pass the IT Exams
2018 Apr CompTIA Official New Released JK0-022
100% Free Download! 100% Pass Guaranteed!

CompTIA Academic/E2C Security Certification Exam Voucher Only

Question No: 601 – (Topic 3)

A security administrator is aware that a portion of the company’s Internet-facing network tends to be non-secure due to poorly configured and patched systems. The business owner has accepted the risk of those systems being compromised, but the administrator wants to determine the degree to which those systems can be used to gain access to the company intranet. Which of the following should the administrator perform?

  1. Patch management assessment

  2. Business impact assessment

  3. Penetration test

  4. Vulnerability assessment

Answer: C Explanation:

Penetration testing is the most intrusive type of testing because you are actively trying to circumvent the system’s security controls to gain access to the system. It is also used to determine the degree to which the systems can be used to gain access to the company intranet (the degree of access to local network resources).

Penetration testing (also called pen testing) is the practice of testing a computer system, network or Web application to find vulnerabilities that an attacker could exploit.

Pen tests can be automated with software applications or they can be performed manually. Either way, the process includes gathering information about the target before the test (reconnaissance), identifying possible entry points, attempting to break in (either virtually or for real) and reporting back the findings.

The main objective of penetration testing is to determine security weaknesses. A pen test can also be used to test an organization#39;s security policy compliance, its employees#39;

security awareness and the organization#39;s ability to identify and respond to security incidents.

Penetration tests are sometimes called white hat attacks because in a pen test, the good guys are attempting to break in.

Pen test strategies include: Targeted testing

Targeted testing is performed by the organization#39;s IT team and the penetration testing team working together. It#39;s sometimes referred to as a quot;lights-turned-onquot; approach because everyone can see the test being carried out.

External testing

This type of pen test targets a company#39;s externally visible servers or devices including domain name servers (DNS), e-mail servers, Web servers or firewalls. The objective is to find out if an outside attacker can get in and how far they can get in once they#39;ve gained access.

Internal testing

This test mimics an inside attack behind the firewall by an authorized user with standard access privileges. This kind of test is useful for estimating how much damage a disgruntled employee could cause.

Blind testing

A blind test strategy simulates the actions and procedures of a real attacker by severely limiting the information given to the person or team that#39;s performing the test beforehand. Typically, they may only be given the name of the company. Because this type of test can require a considerable amount of time for reconnaissance, it can be expensive.

Double blind testing

Double blind testing takes the blind test and carries it a step further. In this type of pen test, only one or two people within the organization might be aware a test is being conducted.

Double-blind tests can be useful for testing an organization#39;s security monitoring and incident identification as well as its response procedures.

Question No: 602 – (Topic 3)

A security analyst performs the following activities: monitors security logs, installs

surveillance cameras and analyzes trend reports. Which of the following job responsibilities is the analyst performing? (Select TWO).

  1. Detect security incidents

  2. Reduce attack surface of systems

  3. Implement monitoring controls

  4. Hardening network devices

  5. Prevent unauthorized access

Answer: A,C Explanation:

By monitoring security logs, installing security cameras and analyzing trend reports, the security analyst is implementing monitoring controls.

With the monitoring controls in place, by monitoring the security logs, reviewing the footage from the security cameras and analyzing trend reports, the security analyst is able to detect security incidents.

Question No: 603 – (Topic 3)

Ann, a security analyst, is preparing for an upcoming security audit. To ensure that she identifies unapplied security controls and patches without attacking or compromising the system, Ann would use which of the following?

  1. Vulnerability scanning

  2. SQL injection

  3. Penetration testing

  4. Antivirus update

Answer: A Explanation:

A vulnerability scan is the process of scanning the network and/or I.T. infrastructure for threats and vulnerabilities. The threats and vulnerabilities are then evaluated in a risk assessment and the necessary actions taken to resolve and vulnerabilities. A vulnerability scan scans for known weaknesses such as missing patches or security updates.

A vulnerability scan is the automated process of proactively identifying security vulnerabilities of computing systems in a network in order to determine if and where a system can be exploited and/or threatened. While public servers are important for communication and data transfer over the Internet, they open the door to potential security

breaches by threat agents, such as malicious hackers.

Vulnerability scanning employs software that seeks out security flaws based on a database of known flaws, testing systems for the occurrence of these flaws and generating a report of the findings that an individual or an enterprise can use to tighten the network#39;s security.

Question No: 604 – (Topic 3)

Which of the following malware types is MOST likely to execute its payload after Jane, an employee, has left the company?

  1. Rootkit

  2. Logic bomb

  3. Worm

  4. Botnet

Answer: B Explanation:

This is an example of a logic bomb. The logic bomb is configured to ‘go off’ or when Jane has left the company.

A logic bomb is a piece of code intentionally inserted into a software system that will set off a malicious function when specified conditions are met. For example, a programmer may hide a piece of code that starts deleting files should they ever be terminated from the company.

Software that is inherently malicious, such as viruses and worms, often contain logic bombs that execute a certain payload at a pre-defined time or when some other condition is met. This technique can be used by a virus or worm to gain momentum and spread before being noticed. Some viruses attack their host systems on specific dates, such as Friday the 13th or April Fool#39;s Day. Trojans that activate on certain dates are often called quot;time bombsquot;.

To be considered a logic bomb, the payload should be unwanted and unknown to the user of the software. As an example, trial programs with code that disables certain functionality after a set time are not normally regarded as logic bombs.

Question No: 605 – (Topic 3)

Jane, a security administrator, has observed repeated attempts to break into a server.

Which of the following is designed to stop an intrusion on a specific server?

  1. HIPS

  2. NIDS

  3. HIDS

  4. NIPS

Answer: A Explanation:

This question is asking which of the following is designed to stop an intrusion on a specific server. To stop an intrusion on a specific server, you would use a HIPS (Host Intrusion Prevention System). The difference between a HIPS and other intrusion prevention systems is that a HIPS is a software intrusion prevention systems that is installed on a ‘specific server’.

Intrusion prevention systems (IPS), also known as intrusion detection and prevention systems (IDPS), are network security appliances that monitor network and/or system activities for malicious activity. The main functions of intrusion prevention systems are to identify malicious activity, log information about this activity, attempt to block/stop it, and report it.

A HIPS (Host Intrusion Prevention System) is software installed on a host which monitors the host for suspicious activity by analyzing events occurring within that host with the aim of detecting and preventing intrusion.

Question No: 606 – (Topic 3)

A user commuting to work via public transport received an offensive image on their smart phone from another commuter. Which of the following attacks MOST likely took place?

  1. War chalking

  2. Bluejacking

  3. War driving

  4. Bluesnarfing

Answer: B Explanation:

The question states that the ‘attack’ took place on public transport and was received on a smartphone. Therefore, it is most likely that the image was sent using Bluetooth.

Bluejacking is the sending of unsolicited messages over Bluetooth to Bluetooth-enabled devices such as mobile phones, PDAs or laptop computers, sending a vCard which typically contains a message in the name field (i.e., for bluedating or bluechat) to another Bluetooth-enabled device via the OBEX protocol.

Bluetooth has a very limited range, usually around 10 metres (32.8 ft) on mobile phones, but laptops can reach up to 100 metres (328 ft) with powerful (Class 1) transmitters.

Bluejacking is usually harmless, but because bluejacked people generally don#39;t know what has happened, they may think that their phone is malfunctioning. Usually, a bluejacker will only send a text message, but with modern phones it#39;s possible to send images or sounds as well. Bluejacking has been used in guerrilla marketing campaigns to promote advergames.

Question No: 607 HOTSPOT – (Topic 3)

Select the appropriate attack from each drop down list to label the corresponding illustrated attack

Instructions: Attacks may only be used once, and will disappear from drop down list if selected.

When you have completed the simulation, please select the Done button to submit.

Ensurepass 2018 PDF and VCE

Ensurepass 2018 PDF and VCE

Answer:

Ensurepass 2018 PDF and VCE

Explanation:

Ensurepass 2018 PDF and VCE

Macintosh HD:Users:danielkeller:Desktop:Screen Shot 2015-07-28 at 3.47.42 PM.png

References: http://searchsecurity.techtarget.com/definition/spear-phishing http://www.webopedia.com/TERM/V/vishing.html http://www.webopedia.com/TERM/P/phishing.html

http://www.webopedia.com/TERM/P/pharming.html

Question No: 608 DRAG DROP – (Topic 3)

Ensurepass 2018 PDF and VCE

Determine the types of attacks below by selecting an option from the dropdown list. Determine the types of Attacks from right to specific action.

Answer:

Ensurepass 2018 PDF and VCE

Explanation:

  1. Phishing.

  2. Whaling.

  3. Vishing.

  4. Spim.

  5. Social engineering.

A: Phishing is the act of sending an email to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft.

Phishing email will direct the user to visit a website where they are asked to update personal information, such as a password, credit card, social security, or bank account numbers, that the legitimate organization already has. The website, however, is bogus and set up only to steal the information the user enters on the page.

B: Whaling is a specific kind of malicious hacking within the more general category of phishing, which involves hunting for data that can be used by the hacker. In general, phishing efforts are focused on collecting personal data about users. In whaling, the targets are high-ranking bankers, executives or others in powerful positions or job titles.

Hackers who engage in whaling often describe these efforts as quot;reeling in a big fish,quot; applying a familiar metaphor to the process of scouring technologies for loopholes and opportunities for data theft. Those who are engaged in whaling may, for example, hack into specific networks where these powerful individuals work or store sensitive data. They may also set up keylogging or other malware on a work station associated with one of these

executives. There are many ways that hackers can pursue whaling, leading C-level or top- level executives in business and government to stay vigilant about the possibility of cyber threats.

C: Vishing is the act of using the telephone in an attempt to scam the user into surrendering private information that will be used for identity theft. The scammer usually pretends to be a legitimate business, and fools the victim into thinking he or she will profit.

D: SPIM is a term sometimes used to refer to spam over IM (Instant Messaging). It’s also called just spam, instant spam, or IM marketing. No matter what the name, it consists of unwanted messages transmitted through some form of instant messaging service, which can include Short Message Service (SMS).

E: Social engineering is a non-technical method of intrusion hackers use that relies heavily on human interaction and often involves tricking people into breaking normal security procedures. It is one of the greatest threats that organizations today encounter.

A social engineer runs what used to be called a quot;con game.quot; For example, a person using social engineering to break into a computer network might try to gain the confidence of an authorized user and get them to reveal information that compromises the network#39;s security. Social engineers often rely on the natural helpfulness of people as well as on their weaknesses. They might, for example, call the authorized employee with some kind of urgent problem that requires immediate network access. Appealing to vanity, appealing to authority, appealing to greed, and old-fashioned eavesdropping are other typical social engineering techniques.

References: http://www.webopedia.com/TERM/P/phishing.html http://www.techopedia.com/definition/28643/whaling http://www.webopedia.com/TERM/V/vishing.html

http://searchsecurity.techtarget.com/definition/social-engineering

Question No: 609 – (Topic 3)

Purchasing receives an automated phone call from a bank asking to input and verify credit card information. The phone number displayed on the caller ID matches the bank. Which of the following attack types is this?

  1. Hoax

  2. Phishing

  3. Vishing

  4. Whaling

Answer: C Explanation:

Vishing (voice or VoIP phishing) is an electronic fraud tactic in which individuals are tricked into revealing critical financial or personal information to unauthorized entities. Vishing works like phishing but does not always occur over the Internet and is carried out using voice technology. A vishing attack can be conducted by voice email, VoIP (voice over IP), or landline or cellular telephone.

The potential victim receives a message, often generated by speech synthesis, indicating that suspicious activity has taken place in a credit card account, bank account, mortgage account or other financial service in their name. The victim is told to call a specific telephone number and provide information to quot;verify identityquot; or to quot;ensure that fraud does not occur.quot; If the attack is carried out by telephone, caller ID spoofing can cause the victim#39;s set to indicate a legitimate source, such as a bank or a government agency.

Vishing is difficult for authorities to trace, particularly when conducted using VoIP. Furthermore, like many legitimate customer services, vishing scams are often outsourced to other countries, which may render sovereign law enforcement powerless.

Consumers can protect themselves by suspecting any unsolicited message that suggests they are targets of illegal activity, no matter what the medium or apparent source. Rather than calling a number given in any unsolicited message, a consumer should directly call the institution named, using a number that is known to be valid, to verify all recent activity and to ensure that the account information has not been tampered with.

Question No: 610 – (Topic 3)

During a server audit, a security administrator does not notice abnormal activity. However, a network security analyst notices connections to unauthorized ports from outside the corporate network. Using specialized tools, the network security analyst also notices hidden processes running. Which of the following has MOST likely been installed on the server?

  1. SPIM

  2. Backdoor

  3. Logic bomb

  4. Rootkit

Answer: D Explanation:

A rootkit is a collection of tools (programs) that enable administrator-level access to a computer or computer network. Typically, a cracker installs a rootkit on a computer after first obtaining user-level access, either by exploiting a known vulnerability or cracking a password. Once the rootkit is installed, it allows the attacker to mask intrusion and gain root or privileged access to the computer and, possibly, other machines on the network.

A rootkit may consist of spyware and other programs that: monitor traffic and keystrokes; create a quot;backdoorquot; into the system for the hacker#39;s use; alter log files; attack other machines on the network; and alter existing system tools to escape detection.

The presence of a rootkit on a network was first documented in the early 1990s. At that time, Sun and Linux operating systems were the primary targets for a hacker looking to install a rootkit. Today, rootkits are available for a number of operating systems, including Windows, and are increasingly difficult to detect on any network.

100% Ensurepass Free Download!
–Download Free Demo:JK0-022 Demo PDF
100% Ensurepass Free Guaranteed!
–JK0-022 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

HOT CATEGORY!

Pass CISCO EXAM with EnsurePass
Pass CCNA EXAM with EnsurePass
Pass CCNP EXAM with EnsurePass
Pass Security Exam with EnsurePass
Pass MCSE EXAM with EnsurePass
Pass MSCA EXAM with EnsurePass

HOT EXAM!

Microsoft Dumps VCE PDF
Cisco Dumps VCE PDF
VMware Dumps VCE PDF
CompTIA Dumps VCE PDF

JK0-022 Latest Exam (Apr 2018)
CompTIA JK0-022 PDF CompTIA JK0-022 Practice Test CompTIA JK0-022 Testing software CompTIA JK0-022 VCE Latest CompTIA JK0-022 Dumps Latest CompTIA JK0-022 Real Exam Latest CompTIA JK0-022 Real Test New Updated JK0-022 Actual Tests
0

admin

Post Navigation

Previous Article
Next Article

Latest Microsoft Certifications Exams Dumps

Microsoft Azure Exams Dumps
Azure AI Engineer Associate Exams Dumps
Azure Data Engineer Associate Exams Dumps
Azure Security Engineer Associate Exams Dumps
Microsoft Azure Fundamentals Exams Dumps
MCSA Exams Dumps
MCSD Exams Dumps
MCSE Exams Dumps
MCTS Exams Dumps
MOS Exams Dumps
MTA Exams Dumps

Categories

Tags

CompTIA JK0-018 PDF CompTIA JK0-018 Practice Test CompTIA JK0-018 Testing software CompTIA JK0-018 VCE CompTIA JK0-022 PDF CompTIA JK0-022 Practice Test CompTIA JK0-022 Testing software CompTIA JK0-022 VCE CompTIA JK0-023 PDF CompTIA JK0-023 Practice Test CompTIA JK0-023 Testing software CompTIA JK0-023 VCE CompTIA SY0-401 PDF CompTIA SY0-401 Practice Test CompTIA SY0-401 Testing software CompTIA SY0-401 VCE Latest CompTIA JK0-018 Dumps Latest CompTIA JK0-018 Real Exam Latest CompTIA JK0-018 Real Test Latest CompTIA JK0-022 Dumps Latest CompTIA JK0-022 Real Exam Latest CompTIA JK0-022 Real Test Latest CompTIA JK0-023 Dumps Latest CompTIA JK0-023 Real Exam Latest CompTIA JK0-023 Real Test Latest CompTIA SY0-401 Dumps Latest CompTIA SY0-401 Real Exam Latest CompTIA SY0-401 Real Test Latest Oracle 1z0-053 Dumps Latest Oracle 1z0-053 Real Exam Latest Oracle 1z0-053 Real Test Latest VMware VCP-310 Dumps Latest VMware VCP-310 Real Exam New Updated 1z0-053 Actual Tests New Updated JK0-018 Actual Tests New Updated JK0-022 Actual Tests New Updated JK0-023 Actual Tests New Updated SY0-401 Actual Tests Oracle 1z0-053 PDF Oracle 1z0-053 Practice Test Oracle 1z0-053 Testing software Oracle 1z0-053 VCE VMware VCP-310 PDF VMware VCP-310 Testing software VMware VCP-310 VCE

Top Microsoft Exams

70-345 Dumps
70-410 Dumps
70-411 Dumps
70-412 Dumps
70-461 Dumps
70-462 Dumps
70-480 Dumps
70-483 Dumps
70-486 Dumps
70-487 Dumps
70-537 Dumps
70-703 Dumps
70-740 Dumps
70-741 Dumps
70-742 Dumps
70-743 Dumps
70-744 Dumps
70-762 Dumps
70-764 Dumps
70-767 Dumps
70-778 Dumps
77-725 Dumps
77-727 Dumps
98-365 Dumps
98-367 Dumps
98-381 Dumps
AI-100 Dumps
AZ-103 Dumps
AZ-203 Dumps
AZ-300 Dumps
AZ-301 Dumps
AZ-400 Dumps
AZ-500 Dumps
AZ-900 Dumps
DP-201 Dumps
MB-200 Dumps
MB-210 Dumps
MB-220 Dumps
MB-240 Dumps
MB-300 Dumps
MB-310 Dumps
MB-320 Dumps
MB-330 Dumps
MB-900 Dumps
MB6-894 Dumps
MD-100 Dumps
MD-101 Dumps
MS-100 Dumps
MS-101 Dumps
MS-200 Dumps
MS-201 Dumps
MS-202 Dumps
MS-300 Dumps
MS-302 Dumps
MS-500 Dumps
MS-900 Dumps

Full Microsoft Exams

70-333 Dumps
70-334 Dumps
70-339 Dumps
70-348 Dumps
70-357 Dumps
70-413 Dumps
70-414 Dumps
70-417 Dumps
70-463 Dumps
70-464 Dumps
70-465 Dumps
70-466 Dumps
70-467 Dumps
70-705 Dumps
70-713 Dumps
70-735 Dumps
70-745 Dumps
70-761 Dumps
70-765 Dumps
70-768 Dumps
70-777 Dumps
70-779 Dumps
77-418 Dumps
77-419 Dumps
77-420 Dumps
77-421 Dumps
77-422 Dumps
77-423 Dumps
77-424 Dumps
77-425 Dumps
77-426 Dumps
77-427 Dumps
77-428 Dumps
77-726 Dumps
77-728 Dumps
77-729 Dumps
77-730 Dumps
77-731 Dumps
77-881 Dumps
77-882 Dumps
77-883 Dumps
77-884 Dumps
77-885 Dumps
77-887 Dumps
77-888 Dumps
98-349 Dumps
98-361 Dumps
98-364 Dumps
98-366 Dumps
98-368 Dumps
98-369 Dumps
98-375 Dumps
98-382 Dumps
98-383 Dumps
98-388 Dumps
DP-100 Dumps
DP-200 Dumps
MB-230 Dumps
MB2-706 Dumps
MB2-707 Dumps
MB2-708 Dumps
MB2-710 Dumps
MB2-711 Dumps
MB2-712 Dumps
MB2-713 Dumps
MB2-714 Dumps
MB2-716 Dumps
MB6-897 Dumps
MB6-898 Dumps
MO-100 Dumps
MO-200 Dumps
MO-300 Dumps
MS-301 Dumps

Microsoft Certifications Exams

Microsoft Cisco VMware CompTIA Dumps VCE and PDF
Microsoft Exams Dumps
Microsoft MCITP Exams Practice Questions and Answers

[Free] 2018(Apr) EnsurePass Braindumps CompTIA JK0-022 Dumps with VCE and PDF 331-340
Recommended for you...

[Free] 2018(Apr) EnsurePass Braindumps CompTIA JK0-022 Dumps with VCE and PDF 331-340

by admin
[Free] 2018(Apr) EnsurePass Braindumps CompTIA JK0-022 Dumps with VCE and PDF 161-170
Recommended for you...

[Free] 2018(Apr) EnsurePass Braindumps CompTIA JK0-022 Dumps with VCE and PDF 161-170

by admin
[Free] 2018(Apr) EnsurePass Braindumps CompTIA JK0-022 Dumps with VCE and PDF 131-140
Recommended for you...

[Free] 2018(Apr) EnsurePass Braindumps CompTIA JK0-022 Dumps with VCE and PDF 131-140

by admin

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

© Copyright 2019 Microsoft Azure MCSD MCSE MCSA MCTS Exams Questions Online. All Rights Reserved. The Ultralight | Developed By Rara Theme. Powered by WordPress.