Cyber security Quiz: Test Your Knowledge

Penetration testing is a proactive cybersecurity technique where professionals use the same methods as attackers to evaluate system defenses. By mimicking real-world threats, these ethical hackers discover vulnerabilities such as unpatched software or weak passwords. Organizations use these detailed findings to strengthen their digital infrastructure and prevent actual data breaches. This practice differs from basic automated scans by actively exploiting weaknesses to confirm their impact.

Asymmetric encryption, also known as public-key cryptography, utilizes a pair of mathematically linked keys to secure digital communications. The public key is shared openly to encrypt information, while the private key remains secret for decryption. This method effectively prevents unauthorized access even over insecure networks. Widely used protocols like RSA and Diffie-Hellman rely on this architecture to protect sensitive information during internet transactions.

Salting is a cryptographic process where unique, random data is added to a password before it undergoes hashing. Hashing transforms data into a fixed-length string, while the salt ensures that identical passwords produce different hash values. This renders precomputed rainbow tables ineffective. These tables contain lists of common passwords and their hashes. Salting forces attackers to compute every hash individually.

A keylogger is a type of surveillance technology used to monitor and record each keystroke typed on a specific computer. While often used for malicious purposes like stealing login information or financial details, these tools also serve legitimate roles in IT troubleshooting or parental monitoring. Keyloggers exist as software programs or physical hardware devices plugged into USB ports to intercept electronic signals before they reach the screen.

A firewall functions as a critical security barrier by inspecting data packets that travel across a network. It uses predetermined security rules to determine whether to allow or block specific communications. By separating trusted internal systems from untrusted external sources, like the public internet, it prevents unauthorized access. This technology is foundational for protecting sensitive information and maintaining private network integrity within various digital environments.

A rootkit is a collection of malicious software designed to provide privileged access to a computer while actively concealing its presence. These programs often modify the kernel, the core of the operating system, to hide files, processes, and network connections from security tools. Because they operate at a deep level, rootkits are difficult for standard antivirus software to detect or remove effectively.

Hashing utilizes mathematical algorithms to convert input data into a unique identifier known as a hash value. This process is deterministic, meaning the same input always produces identical results. Because even a minor alteration in the source data generates a significantly different output, hashing serves as a reliable method for detecting tampering and ensuring files remain unchanged during transmission or storage procedures.

Cross-site scripting occurs when a web application includes untrusted data in a page without proper validation or encoding. This vulnerability allows attackers to execute scripts in a victim’s browser, enabling them to steal session cookies or redirect users to malicious sites. Security professionals categorize this flaw into stored, reflected, and document object model types based on how the malicious script reaches the intended target.

Pharming is a sophisticated cyber attack that targets the Domain Name System or local host files to deceive users. Unlike phishing, which relies on deceptive emails, pharming automatically redirects victims to fraudulent sites even when they type the correct web address. This technique allows attackers to steal sensitive data like login credentials by creating convincing replicas of trusted online banking or shopping platforms.

Zero Trust is a cybersecurity paradigm that eliminates the concept of implicit trust within a digital environment. Developed to counter modern threats, this framework assumes that breaches are inevitable and requires continuous authentication for all users and devices. By implementing granular access controls and monitoring, organizations can minimize lateral movement by attackers, ensuring that sensitive data remains protected even if an initial perimeter is breached.

A botnet consists of various internet-connected devices, such as computers or smart appliances, that have been infected with malware. These compromised systems are remotely controlled by a central attacker without the owners noticing. Often referred to as zombies, these machines are frequently used to launch large-scale Distributed Denial of Service attacks that overwhelm websites with traffic and cause major service disruptions.

Social engineering relies on human interaction to compromise security rather than exploiting software vulnerabilities. Common methods include phishing emails or deceptive stories, which exploit cognitive biases like trust or urgency. Attackers often impersonate authority figures or service providers to gain access to corporate networks and private data. Awareness training remains a primary defense against these deceptive tactics used in modern cyberattacks worldwide.

The principle of least privilege is a fundamental security concept that restricts user access to the minimum level required for their specific tasks. By limiting permissions, organizations reduce the risk of accidental errors and unauthorized data breaches. This approach minimizes the potential damage if an account is compromised because the attacker can only access a narrow subset of the entire network or system infrastructure.

Multi-Factor Authentication, often called MFA, strengthens digital security by requiring at least two forms of identification before granting access. This method creates multiple hurdles for potential intruders. It typically combines something the user knows, like a PIN, with something they possess, such as a smartphone. By layering these different verification methods, organizations significantly reduce the risk of successful cyberattacks and unauthorized data breaches.

Named after the ancient Greek myth, a Trojan horse is a malicious program disguised as legitimate software. Unlike viruses, these programs do not self-replicate but instead rely on social engineering to deceive users into execution. Once active, they can steal sensitive data, corrupt files, or establish a hidden backdoor that allows external attackers remote access to the infected computer system without any prior authorization.

A honeypot is a security mechanism that creates a virtual trap to lure attackers. It acts as a decoy system, mimicking a real server or network to distract hackers from legitimate targets. Security experts use these environments to monitor unauthorized activities and gather intelligence on emerging threats. By analyzing how intruders interact with the decoy, organizations can improve their defensive strategies and strengthen overall infrastructure.

In a man-in-the-middle attack, a perpetrator intercepts communication between two parties to steal or alter data. By acting as a hidden relay, the attacker can read messages or insert malicious content without being detected. This method frequently exploits unsecured public networks. Security experts recommend using encryption and digital certificates to defend against these threats. These technologies verify identity and keep private data secure.

A zero-day refers to a vulnerability discovered by hackers before the software creator is aware of its existence. The name indicates that the developer has had zero days to address the issue or distribute a security patch. These exploits are highly valuable because they allow unauthorized access to systems without immediate detection or defense from standard antivirus programs and network security tools.

SQL injection is a common cyber vulnerability where malicious code is submitted via input fields to interfere with backend databases. Attackers use this method to bypass authentication and gain unauthorized access to sensitive information. Organizations typically mitigate this risk by sanitizing user inputs and using prepared statements, which separate executable commands from data to ensure system integrity and security.

A Distributed Denial of Service, or DDoS, attack utilizes multiple compromised computer systems to target a single server with excessive data requests. By saturating the network capacity or hardware resources of the victim, the digital service becomes inaccessible to legitimate visitors. These coordinated networks are often controlled remotely by hackers. Historically, the first major documented incident occurred in 2000, when several prominent websites were temporarily disabled.

Ransomware is a type of malware that restricts access to files through encryption or system locks. Attackers typically demand payment in untraceable cryptocurrencies to provide a decryption key. While the first instance occurred in 1989 via floppy disks, modern attacks have evolved into sophisticated operations targeting critical infrastructure and private corporations. This digital extortion now frequently includes threats to leak sensitive data publicly.