CompTIA Security+ Threats, Attacks, and Vulnerabilities Quiz 2

Which type of attack manipulates the sender address in emails to appear from a trusted source?

A) Spoofing

B) Phishing

C) DDoS

D) Social Engineering

Correct Answer: Spoofing

Which attack involves intercepting communication between two parties to steal information?

A) Buffer Overflow

B) Cross-Site Scripting

C) Man-in-the-Middle

D) SQL Injection

Correct Answer: Man-in-the-Middle

What is a common method for delivering ransomware to a target system?

A) Social Engineering

B) Email Attachment

C) Direct Access

D) Password Guessing

Correct Answer: Email Attachment

Which of these attacks exploits a vulnerability in a website's input fields to execute malicious code?

A) SQL Injection

B) Malware

C) Social Engineering

D) Buffer Overflow

Correct Answer: SQL Injection

What does a worm do once it infects a device?

A) Spreads to other devices autonomously

B) Disguises itself as legitimate software

C) Encrypts files for ransom

D) Gathers user data quietly

Correct Answer: Spreads to other devices autonomously

Which tool can help detect suspicious network traffic patterns associated with potential attacks?

A) Firewall

B) IDS

C) Router

D) Proxy

Correct Answer: IDS

Which type of malware creates a backdoor on the system for persistent access?

A) Adware

B) Rootkit

C) Worm

D) Spyware

Correct Answer: Rootkit

What is the primary purpose of spyware?

A) To monitor user activity and steal information

B) To spread across networks

C) To encrypt data

D) To block network traffic

Correct Answer: To monitor user activity and steal information

Which attack tricks a user into clicking on a disguised malicious link?

A) Clickjacking

B) SQL Injection

C) Phishing

D) DNS Poisoning

Correct Answer: Clickjacking

Which type of attack involves an attacker creating a fake website to impersonate a legitimate one?

A) Phishing

B) Spear Phishing

C) Typosquatting

D) Pharming

Correct Answer: Pharming

Our CompTIA practice questions are made to look and feel like the real exam, so students can feel ready when test day comes. Each question covers real-life project management ideas, which helps learners understand and remember important topics. By focusing on key points and tricky areas, these questions help students build confidence and know how prepared they are. This way, users aren't just practicing—they're really learning what they need to do well on the exam.

Looking for more? Crucial Exams has hundreds of CompTIA Practice Questions, flashcards and more that are expert vetted and available on web, iOS and Android!

Pass your CompTIA exam with Crucial Exams