Security Awareness Quiz

1. What should you do when you inadvertently open a link in a suspicious email and your computer starts behaving strangely?

Nothing, because the firewall is there to block it

Update and run the anti-virus software

Contact the IT department or IT security team

Keep note of how the computer is performing

When you inadvertently open a link in a suspicious email and your computer starts behaving strangely, the best course of action is to contact the IT department or IT security team. They are the experts who can assess the situation, identify and mitigate any potential threats, and guide you on the necessary steps to protect your computer and data. Ignoring the issue or relying solely on the firewall is not recommended as it may not be sufficient to address the potential malware or security breach. Updating and running the anti-virus software is also a good practice, but contacting the IT department should be the priority.

Explanation

When you inadvertently open a link in a suspicious email and your computer starts behaving strangely, the best course of action is to contact the IT department or IT security team. They are the experts who can assess the situation, identify and mitigate any potential threats, and guide you on the necessary steps to protect your computer and data. Ignoring the issue or relying solely on the firewall is not recommended as it may not be sufficient to address the potential malware or security breach. Updating and running the anti-virus software is also a good practice, but contacting the IT department should be the priority.

2. Which statement best describes the modern-day hacker?

Bored teenagers who are anti social and lonely.

Tech savvy people in it for the competition

Bots under the control of highly organized criminal syndicates or gangs.

All of the above

The modern-day hacker can be described as all of the above. This means that they can be bored teenagers who are anti-social and lonely, tech-savvy individuals who are driven by competition, or bots controlled by highly organized criminal syndicates or gangs. The statement implies that hackers come from various backgrounds and motivations, encompassing both individuals and organized groups involved in hacking activities.

Explanation

The modern-day hacker can be described as all of the above. This means that they can be bored teenagers who are anti-social and lonely, tech-savvy individuals who are driven by competition, or bots controlled by highly organized criminal syndicates or gangs. The statement implies that hackers come from various backgrounds and motivations, encompassing both individuals and organized groups involved in hacking activities.

3. After security has been contacted about a security threat that you have challenged, your next step is to _________ the incident.

Remember

Forget

Record

Secure

After security has been contacted about a security threat that you have challenged, your next step is to record the incident. This is important for documentation purposes and to ensure that all relevant information about the incident is accurately recorded. Recording the incident allows for a thorough investigation to take place and helps in identifying patterns or trends in security threats. It also serves as a reference for future incidents and can be used as evidence if necessary.

Explanation

After security has been contacted about a security threat that you have challenged, your next step is to record the incident. This is important for documentation purposes and to ensure that all relevant information about the incident is accurately recorded. Recording the incident allows for a thorough investigation to take place and helps in identifying patterns or trends in security threats. It also serves as a reference for future incidents and can be used as evidence if necessary.

4. The first step in Security Awareness is being able to ________ a security threat.

Avoid

Challenge

Record

Recognize

The first step in Security Awareness is being able to recognize a security threat. This means being able to identify potential risks or dangers to the security of a system or network. By recognizing these threats, individuals can take appropriate actions to mitigate or prevent them, such as implementing security measures or reporting suspicious activities. Being able to recognize security threats is crucial in maintaining the safety and integrity of sensitive information and systems.

Explanation

The first step in Security Awareness is being able to recognize a security threat. This means being able to identify potential risks or dangers to the security of a system or network. By recognizing these threats, individuals can take appropriate actions to mitigate or prevent them, such as implementing security measures or reporting suspicious activities. Being able to recognize security threats is crucial in maintaining the safety and integrity of sensitive information and systems.

5. Which targets do modern-day hackers choose?

Banks and financial institutions

Anybody can be the potential victim of a hacker

Companies with a lot of proprietary info

Companies with confidential information of customers

Modern-day hackers can target anyone as potential victims. This is because hacking techniques have become more advanced and widespread, allowing hackers to exploit vulnerabilities in various systems and devices. Whether it is individuals, small businesses, large corporations, or even government organizations, anyone can fall victim to a hacker's attack. Therefore, it is crucial for everyone to be vigilant and take necessary precautions to protect their personal and sensitive information from being compromised.

Explanation

Modern-day hackers can target anyone as potential victims. This is because hacking techniques have become more advanced and widespread, allowing hackers to exploit vulnerabilities in various systems and devices. Whether it is individuals, small businesses, large corporations, or even government organizations, anyone can fall victim to a hacker's attack. Therefore, it is crucial for everyone to be vigilant and take necessary precautions to protect their personal and sensitive information from being compromised.

6. We use RCCR to help stop security threats. What is the meaning of RCCR?

Respond, Correct, Contact, Record

Recognize, Correct, Contact, Review

Respond, Challenge, Correct, Record

Recognize, Challenge, Contact, Record

RCCR stands for Recognize, Challenge, Contact, Record. This acronym represents a process used to help stop security threats. The first step is to recognize the threat or potential threat. Then, the next step is to challenge the threat by verifying its legitimacy or taking appropriate action. After that, the individual or organization should contact the necessary authorities or personnel to address the threat. Finally, it is important to record all relevant information about the threat for future reference and analysis.

Explanation

RCCR stands for Recognize, Challenge, Contact, Record. This acronym represents a process used to help stop security threats. The first step is to recognize the threat or potential threat. Then, the next step is to challenge the threat by verifying its legitimacy or taking appropriate action. After that, the individual or organization should contact the necessary authorities or personnel to address the threat. Finally, it is important to record all relevant information about the threat for future reference and analysis.

7. To be in possesion of this anywhere on company property is considered a security threat.

External hard drive

Cell phone

Thumb drive

Classified documents

Having a cell phone on company property is considered a security threat because it can potentially be used to capture sensitive information, take unauthorized photos or videos, or even be used as a communication device to leak classified information. Cell phones have the ability to connect to the internet and external networks, making them vulnerable to hacking or malware attacks that could compromise the company's security systems. Therefore, to ensure the protection of classified information and maintain a secure environment, possession of cell phones on company property is not allowed.

Explanation

Having a cell phone on company property is considered a security threat because it can potentially be used to capture sensitive information, take unauthorized photos or videos, or even be used as a communication device to leak classified information. Cell phones have the ability to connect to the internet and external networks, making them vulnerable to hacking or malware attacks that could compromise the company's security systems. Therefore, to ensure the protection of classified information and maintain a secure environment, possession of cell phones on company property is not allowed.

8. Anyone seen inside, entering, or leaving a secret area must be wearing a company badge with a ________ on the right.

Green bar

Red bar

Check

Logo

In order to ensure security and restrict access to a secret area, anyone seen inside, entering, or leaving must be wearing a company badge with a green bar on the right. This green bar serves as a visual identifier and indicates that the person is authorized to be in the secret area.

Explanation

In order to ensure security and restrict access to a secret area, anyone seen inside, entering, or leaving must be wearing a company badge with a green bar on the right. This green bar serves as a visual identifier and indicates that the person is authorized to be in the secret area.

9. If someone is recognized as taking part in an activity that is a security threat, your first step should be to ______ that person.

Report

Challenge

Avoid

Follow

When someone is recognized as taking part in an activity that is a security threat, the first step should be to challenge that person. This means questioning their intentions, asking for identification or verification, and seeking clarification about their involvement in the suspicious activity. By challenging the person, it allows for further investigation and ensures the safety and security of the environment.

Explanation

When someone is recognized as taking part in an activity that is a security threat, the first step should be to challenge that person. This means questioning their intentions, asking for identification or verification, and seeking clarification about their involvement in the suspicious activity. By challenging the person, it allows for further investigation and ensures the safety and security of the environment.

10. This is when a thumb drive is considered a security threat.

Inside of a secure area.

When it is being used on a government computer.

When it is on company property.

When it is being used on any computer.

When a thumb drive is being used on a government computer, it is considered a security threat. This is because government computers often have sensitive and classified information stored on them. The use of a thumb drive on a government computer increases the risk of data breaches, unauthorized access, and the introduction of malware or viruses. To protect the security and integrity of government systems and data, the use of external storage devices like thumb drives is restricted and considered a potential threat.

Explanation

When a thumb drive is being used on a government computer, it is considered a security threat. This is because government computers often have sensitive and classified information stored on them. The use of a thumb drive on a government computer increases the risk of data breaches, unauthorized access, and the introduction of malware or viruses. To protect the security and integrity of government systems and data, the use of external storage devices like thumb drives is restricted and considered a potential threat.