Correct Answer: Demilitarized zone (DMZ)
Explanation: A DMZ provides a buffer zone between internal networks and the public internet, hosting external-facing services while protecting internal resources.

Correct Answer: Smishing
Explanation: Smishing is a form of phishing that uses SMS messages to trick users into providing sensitive information.

Correct Answer: Data loss prevention (DLP)
Explanation: DLP prevents unauthorized data transfers and blocks the use of removable media for sensitive files.

Correct Answer: TLS/SSL
Explanation: TLS/SSL encrypts web traffic, securing data transmission between clients and servers.

Correct Answer: SQL injection
Explanation: SQL injection exploits vulnerabilities in a database query to execute unauthorized commands.

Correct Answer: Trojan horse
Explanation: A Trojan horse disguises itself as a legitimate program to deceive users into installing it.

Correct Answer: Password reuse
Explanation: Frequent password changes help prevent credential reuse and reduce the risk of compromised accounts.

Correct Answer: Role-based access control (RBAC)
Explanation: RBAC grants access based on predefined roles within an organization, limiting unnecessary permissions.

Correct Answer: Spyware infection
Explanation: Spyware collects user data and can cause system slowdowns and unwanted browser redirects.

Correct Answer: Business continuity
Explanation: The primary goal of a disaster recovery plan is to ensure business operations continue with minimal disruption.

Correct Answer: Encryption
Explanation: Encrypting data ensures that even if unauthorized access occurs, the data remains unreadable.

Correct Answer: Least privilege
Explanation: The principle of least privilege ensures that users only have the minimum access necessary for their tasks.

Correct Answer: Intrusion detection system (IDS)
Explanation: IDS monitors network traffic for malicious activity and alerts administrators of potential threats.

Correct Answer: Disabling USB ports
Explanation: Disabling USB ports prevents unauthorized devices from being connected, reducing the risk of malware infections.

Explanation: Multi-factor authentication (MFA) requires at least two authentication factors, such as something you know (PIN) and something you are (biometric).

Correct Answer: Phishing
Explanation: Phishing emails trick users into revealing sensitive information through fraudulent messages.

Correct Answer: Implement account lockout policies
Explanation: Account lockout policies prevent repeated login attempts, mitigating brute-force attacks.

Correct Answer: Static code analysis
Explanation: Static code analysis reviews source code for security vulnerabilities before execution.

Correct Answer: ARP poisoning
Explanation: ARP poisoning manipulates the ARP cache, redirecting network traffic to the attacker's device.

Correct Answer: Password history enforcement
Explanation: Enforcing password history prevents users from reusing previous passwords, reducing the risk of credential reuse attacks.