CompTIA Security+ Threats, Attacks, and Vulnerabilities Quiz 1

Which type of malware disguises itself as a legitimate program to trick users into executing it?

A) Virus

B) Trojan

C) Worm

D) Ransomware

Correct Answer: Trojan

Which type of attack floods a network with requests to overwhelm and disrupt its services?

A) DDoS

B) Phishing

C) SQL Injection

D) Cross-Site Scripting

Correct Answer: DDoS

What is the primary goal of a phishing attack?

A) To steal user credentials

B) To delete files on a system

C) To install malware on a device

D) To encrypt data

Correct Answer: To steal user credentials

Which term describes a network of compromised computers used to carry out malicious activities?

A) Botnet

B) Malware

C) Rootkit

D) Keylogger

Correct Answer: Botnet

What type of malware encrypts files on a device, demanding payment to decrypt them?

A) Spyware

B) Adware

C) Ransomware

D) Trojan

Correct Answer: Ransomware

Which attack involves injecting malicious SQL code into a database query?

A) XSS

B) SQL Injection

C) Buffer Overflow

D) Malware

Correct Answer: SQL Injection

Which security vulnerability allows an attacker to execute unauthorized code on a system due to improper memory management?

A) Phishing

B) XSS

C) Buffer Overflow

D) Social Engineering

Correct Answer: Buffer Overflow

What is the primary purpose of a denial-of-service (DoS) attack?

A) To gain unauthorized access

B) To disrupt availability

C) To install malware

D) To exfiltrate data

Correct Answer: To disrupt availability

Which of the following best describes spyware?

A) Malware that encrypts files

B) Software that monitors user activity

C) Code that self-replicates

D) A harmful software disguised as a legitimate program

Correct Answer: Software that monitors user activity

Which type of attack involves redirecting a domain's traffic to a fraudulent website?

A) Man-in-the-middle

B) DNS Poisoning

C) Malware

D) Phishing

Correct Answer: DNS Poisoning

Our CompTIA practice questions are made to look and feel like the real exam, so students can feel ready when test day comes. Each question covers real-life project management ideas, which helps learners understand and remember important topics. By focusing on key points and tricky areas, these questions help students build confidence and know how prepared they are. This way, users aren't just practicing—they're really learning what they need to do well on the exam.

Looking for more? Crucial Exams has hundreds of CompTIA Practice Questions, flashcards and more that are expert vetted and available on web, iOS and Android!

Pass your CompTIA exam with Crucial Exams