This international organization regulates billions of transactions daily and provides security guidelines to protect personally identifiable information (PII). These security controls provide a baseline and prevent low-level hackers sometimes known as script kiddies from causing a data breach.
Which of the following organizations is being described?

• A.Payment Card Industry (PCI)
• B.Center for Disease Control (CDC)
• C.Institute of Electrical and Electronics Engineers (IEEE)
• D.International Security Industry Organization (ISIO)

Comment: *

Name: *

Email: *

Verification: *

A company's Web development team has become aware of a certain type of security vulnerability in their Web software. To mitigate the possibility of this vulnerability being exploited, the team wants to modify the software requirements to disallow users from entering HTML as input into their Web application.
What kind of Web application vulnerability likely exists in their software?

• A.Web site defacement vulnerability
• B.Cross-site Request Forgery vulnerability
• C.SQL injection vulnerability
• D.Cross-site scripting vulnerability

Comment: *

Name: *

Email: *

Verification: *

A hacker has managed to gain access to a Linux host and stolen the password file from
/etc/passwd. How can he use it?

• A.The password file does not contain the passwords themselves.
• B.The file reveals the passwords to the root user only.
• C.He cannot read it because it is encrypted.
• D.He can open it and read the user ids and corresponding passwords.

Comment: *

Name: *

Email: *

Verification: *

Which method of password cracking takes the most time and effort?

• A.Dictionary attack
• B.Shoulder surfing
• C.Rainbow tables
• D.Brute force

Comment: *

Name: *

Email: *

Verification: *

Which tool would be used to collect wireless packet data?

• A.NetStumbler
• B.Nessus
• C.Netcat
• D.John the Ripper

Comment: *

Name: *

Email: *

Verification: *