Correct Answer: Brute-force attack
Explanation: A brute-force attack involves repeatedly trying different username-password combinations to gain access.

Correct Answer: Code review
Explanation: Code reviews help identify security vulnerabilities in software before it is deployed.

Correct Answer: Network segmentation
Explanation: Network segmentation limits access to different parts of the network, preventing lateral movement by attackers.

Correct Answer: Encrypt the stored data
Explanation: Encrypting stored data ensures that even if attackers gain access to the database, they cannot read the information.

Correct Answer: Password rotation policy
Explanation: Password rotation policies help prevent unauthorized access by ensuring passwords are changed regularly.

Correct Answer: Confidentiality
Explanation: Confidentiality ensures that only authorized users can access sensitive data, often through encryption.

Correct Answer: Change management
Explanation: Change management ensures that all modifications to a system are reviewed, approved, and documented before implementation.

Correct Answer: Perform a brute-force or dictionary attack
Explanation: Attackers use brute-force or dictionary attacks to crack password hashes and gain unauthorized access.

Correct Answer: Rootkit infection
Explanation: Rootkits hide their presence and can consume system resources while performing malicious activities.

Correct Answer: Vulnerability scanner
Explanation: A vulnerability scanner identifies security weaknesses and known exploits in systems.

Correct Answer: Phishing
Explanation: Phishing emails trick users into clicking malicious links and providing sensitive information.

Correct Answer: Multi-factor authentication (MFA)
Explanation: MFA combines different authentication factors, such as smart cards (something you have) and PINs (something you know).

Correct Answer: Man-in-the-middle attack
Explanation: A man-in-the-middle attack intercepts communications between two parties to steal or manipulate data.

Correct Answer: To detect and study cyberattacks
Explanation: A honeypot is a decoy system designed to lure attackers and analyze their behavior.

Correct Answer: Data exfiltration
Explanation: A sudden increase in outbound traffic may indicate an attacker is stealing data from the network.

Correct Answer: Data loss prevention (DLP)
Explanation: DLP prevents unauthorized sharing of sensitive information via email or other means.

Correct Answer: Something you are
Explanation: Biometrics, such as fingerprints or facial recognition, fall under the "something you are" authentication category.

Correct Answer: Evil twin attack
Explanation: An evil twin attack involves setting up a rogue Wi-Fi access point to intercept user traffic.

Correct Answer: Syslog over TLS
Explanation: Syslog over TLS encrypts log data during transmission, ensuring secure remote logging.

Correct Answer: Implement WPA2-Enterprise authentication
Explanation: WPA2-Enterprise requires user authentication via a RADIUS server, preventing unauthorized access.