Answer: Brute force attack
Explanation: Brute force attacks attempt to crack passwords by systematically trying every possible combination.

Answer: Man-in-the-middle
Explanation: In a Man-in-the-Middle (MITM) attack, the attacker secretly relays and alters communication between two parties.

Answer: An attack that uses an unpatched software vulnerability
Explanation: A zero-day exploit takes advantage of a vulnerability before the software vendor releases a fix.

Answer: Mandatory Access Control (MAC)
Explanation: MAC restricts access based on security classification levels, making it ideal for government use.

Answer: Block port 22, allow port 80 and 443
Explanation: SSH uses port 22, while web traffic uses ports 80 (HTTP) and 443 (HTTPS).

Answer: Least privilege principle
Explanation: Enforcing least privilege ensures that users only have access necessary for their job, reducing insider threats.

Answer: Private cloud
Explanation: Private clouds allow organizations to retain full control over security while benefiting from cloud computing.

Correct Answer: DNS poisoning
Explanation: DNS poisoning manipulates DNS records to redirect users to fraudulent websites, often used for credential theft.

Correct Answer: Time-based one-time password (TOTP)
Explanation: TOTP generates temporary codes that expire after a short time, adding an extra layer of security.

Correct Answer: Cross-site scripting (XSS)
Explanation: XSS allows attackers to inject scripts into web pages, affecting users who visit the compromised site.

Correct Answer: Ransomware
Explanation: Ransomware encrypts files and demands payment for decryption, often spread through malicious email attachments.

Correct Answer: Password manager
Explanation: A password manager helps users store and manage unique, complex passwords securely.

Correct Answer: Account lockout policy
Explanation: Locking an account after multiple failed attempts prevents brute-force attacks.

Correct Answer: Packet sniffing
Explanation: Packet sniffing captures unencrypted network traffic, revealing sensitive data such as login credentials.

Correct Answer: Redundancy
Explanation: Redundancy ensures data availability by maintaining backups or alternative storage solutions.

Correct Answer: Identify assets
Explanation: A risk assessment begins by identifying critical assets to determine potential threats and vulnerabilities.

Correct Answer: S/MIME
Explanation: S/MIME provides encryption and digital signatures for secure email communication.

Correct Answer: Least privilege
Explanation: The principle of least privilege limits access to only what is required, reducing security risks.

Correct Answer: Application allowlisting
Explanation: Application allowlisting prevents unauthorized programs, including zero-day exploits, from running.

Correct Answer: Rootkit
Explanation: Rootkits allow attackers to maintain persistent access to compromised systems while remaining hidden.

Correct Answer: SIEM
Explanation: Security Information and Event Management (SIEM) systems analyze logs and detect security threats.

Correct Answer: HTTPS
Explanation: HTTPS encrypts web traffic using SSL/TLS, protecting data transmitted between users and servers.

Correct Answer: Social engineering
Explanation: Social engineering tricks users into performing actions that compromise security, such as installing malware.

Correct Answer: Content filtering
Explanation: Content filtering restricts access to specified websites, preventing users from visiting malicious or inappropriate sites.

Correct Answer: High availability cluster
Explanation: High availability clusters ensure continuous service availability by automatically switching to a backup server if the primary server fails.

Correct Answer: Contain the breach
Explanation: The first step in incident response is containment to prevent further damage before investigating and eradicating the threat.

Correct Answer: Multi-factor authentication (MFA)
Explanation: MFA requires two or more authentication factors, such as something the user knows (password) and something they are (biometric fingerprint scan).