🏠 Home
← Back Start Quiz
MCQ Practice

Technological Knowledge MCQs

What is multi-factor authentication (MFA)?

  • A. A single password login
  • B. A combination of two types of credentials
  • C. A long password only
  • D. Password plus CAPTCHA only
Explanation:
MFA uses multiple factors (such as a password and a phone code) to verify identity, increasing security.

What is the purpose of a VPN?

  • A. To improve the Wi-Fi signal
  • B. To securely encrypt and route internet traffic
  • C. To store backup data online
  • D. To speed up downloads
Explanation:
A VPN encrypts internet traffic and routes it through a secure server, protecting privacy.

Which type of malware encrypts a user’s data and demands payment?

  • A. Ransomware
  • B. Spyware
  • C. Adware
  • D. Rootkit
Explanation:
Ransomware locks or encrypts data and demands payment (ransom) for the key.

What does 'least privilege' mean in cybersecurity?

  • A. Admins have all privileges
  • B. Users have only the access necessary for their role
  • C. Everyone has the same privileges
  • D. Turn privileges off at night
Explanation:
Least privilege means giving users only the permissions they need, minimizing potential damage.

Which protocol is used to transfer files over SSH securely?

  • A. FTPS
  • B. HTTPS
  • C. SCP (Secure Copy)
  • D. SMTP
Explanation:
SCP (Secure Copy Protocol) is used to transfer files securely over an SSH connection.

What is a 'zero-day' vulnerability?

  • A. A bug fixed before release
  • B. A known weakness with an immediate patch
  • C. A security flaw unknown to the vendor
  • D. A deprecated protocol
Explanation:
A zero-day is a security hole not known to the software maker, with no available patch yet.

What is a common defense against a DDoS attack?

  • A. Multi-factor authentication
  • B. Rate limiting and filtering
  • C. Switching to HTTP from HTTPS
  • D. Enabling auto-merge
Explanation:
Rate limiting or traffic filtering can help mitigate Distributed Denial of Service attacks.

In network security, what does a DMZ (demilitarized zone) refer to?

  • A. A private office
  • B. An isolated subnet for public-facing servers
  • C. A type of malware
  • D. A strong encryption method
Explanation:
A DMZ is a separate network area that isolates public services (e.g., web servers) from the internal LAN.

Which hashing algorithm is considered insecure due to collision vulnerabilities?

  • A. SHA-256
  • B. MD5
  • C. SHA-3
  • D. Blowfish
Explanation:
MD5 is outdated and vulnerable to collisions; SHA-256 and SHA-3 are more secure.

What is two-factor authentication (2FA)?

  • A. Using the same password twice
  • B. Two random passwords
  • C. Two different methods to verify identity
  • D. Logging in on two devices
Explanation:
2FA requires two different types of credentials (e.g., a password and an OTP code).