The Chief Executive Officer (CEO) receives a suspicious voice mail warning of credit card fraud. No one
else received the voice mail. Which of the following BEST describes this attack?

An administrator was asked to review user accounts. Which of the following has the potential to cause
the MOST amount of damage if the account was compromised?

Failure to validate the size of a variable before writing it to memory could result in which of the following
application attacks?

During a disaster recovery planning session, a security administrator has been tasked with determining
which threats and vulnerabilities pose a risk to the organization. Which of the following should the
administrator rate as having the HIGHEST frequency of risk to the organization?

Company XYZ has encountered an increased amount of buffer overflow attacks. The programmer has
been tasked to identify the issue and report any findings. Which of the following is the FIRST step of
action recommended in this scenario?

Which of the following is a penetration testing method?

Which of the following would MOST likely involve GPS?

The system administrator is reviewing the following logs from the company web server:
12:34:56 GET /directory_listing.php?user=admin&pass=admin1
12:34:57 GET /directory_listing.php?user=admin&pass=admin2
12:34:58 GET /directory_listing.php?user=admin&pass=1admin
12:34:59 GET /directory_listing.php?user=admin&pass=2admin
Which of the following is this an example of?

A large multinational corporation with networks in 30 countries wants to establish an understanding of
their overall public-facing network attack surface. Which of the following security techniques would be
BEST suited for this?

Which of the following attacks impact the availability of a system? (Select TWO).