Correct Answer: File integrity monitoring (FIM)
Explanation: FIM detects and logs unauthorized changes to critical system files, helping ensure integrity and accountability.

Correct Answer: VLANs
Explanation: VLANs logically segment networks, reducing unauthorized access and improving security.

Correct Answer: Never trust, always verify
Explanation: Zero-trust security assumes that threats can exist inside and outside the network, requiring strict verification for all access attempts.

Correct Answer: Mobile device management (MDM)
Explanation: MDM enforces security policies on mobile devices, ensuring compliance with corporate security standards.

Correct Answer: Time-based access restrictions
Explanation: Restricting logins to specific hours reduces the risk of unauthorized access outside business hours.

Correct Answer: Network Access Control (NAC)
Explanation: NAC enforces security policies and prevents unauthorized devices from connecting to the network.

Correct Answer: Adware infection
Explanation: Adware generates unwanted advertisements and can slow down system performance.

Correct Answer: Black box testing
Explanation: In black box testing, the tester has no prior knowledge of the system, simulating a real-world attack scenario.

Correct Answer: Data encryption
Explanation: Encrypting sensitive records ensures that even if data is intercepted, it remains unreadable without proper decryption keys.

Correct Answer: Insider threat
Explanation: An insider threat involves employees or individuals with internal access intentionally or unintentionally compromising security.

Correct Answer: WPA3
Explanation: WPA3 is the latest and most secure Wi-Fi encryption protocol, offering better protection against brute-force attacks.

Correct Answer: Phishing
Explanation: Phishing attacks deceive users into clicking malicious links or providing sensitive information.

Correct Answer: MAC address filtering
Explanation: MAC address filtering restricts network access to approved devices by their unique MAC addresses.

Correct Answer: Full-disk encryption
Explanation: Full-disk encryption ensures that data remains protected and unreadable without proper authentication.

Correct Answer: Session hijacking
Explanation: Session hijacking occurs when an attacker takes over a user’s active session, allowing them to act as the legitimate user.

Correct Answer: Application allowlisting
Explanation: Application allowlisting permits only approved software to run, preventing unauthorized installations.

Correct Answer: Vulnerability scanner
Explanation: A vulnerability scanner proactively identifies security weaknesses in systems and networks.

Correct Answer: Whaling
Explanation: Whaling is a targeted phishing attack aimed at high-ranking executives to steal sensitive information or funds.

Correct Answer: Principle of least privilege
Explanation: Users should only have the minimum access necessary for their job functions to reduce security risks.

Correct Answer: Enable a password complexity policy
Explanation: Enforcing password complexity ensures that users create strong passwords with a mix of characters, reducing the risk of brute-force attacks.