Social Engineering
Passwords & Authentication
Malware & Threats
Data Security
Network & System Security
100

This type of attack tricks users into clicking malicious links via email.

What is phishing?

100

This adds a second verification step beyond a password.

What is multi-factor authentication (MFA)?

100

Software designed to harm or exploit systems.

What is malware?

100

Sensitive customer data like SSNs and policy data falls into this category.

What is personally identifiable information (PII)?

100

A device or software that filters network traffic.

What is a firewall?

200

A targeted phishing attack aimed at a specific individual or company.

What is spear phishing?

200

A password attack that tries every possible combination.

What is a brute force attack?

200

Malware that locks files and demands payment.

What is ransomware?

200

Protecting data by converting it into unreadable code.

What is encryption?

200

Software that detects and removes malicious programs.

What is antivirus?

300

Attackers impersonate executives to request urgent wire transfers or sensitive data.

What is business email compromise (BEC)?

300

This type of password is long, complex, and unique—recommended for all systems.

What is a strong password?

300

Malware disguised as legitimate software.

What is a Trojan?

300

A breach exposing policyholder data could lead to this type of insurance claim.

What is a cyber liability claim?

300

A secure connection method for remote workers.

What is a VPN?

400

This social engineering method uses phone calls pretending to be IT support.

What is vishing?

400

Reusing passwords across systems increases risk of this type of attack.

What is credential stuffing?

400

This spreads across networks without user interaction.

What is a worm?

400

Limiting data access based on job role is called this.

What is role-based access control (RBAC)?

400

Simulated cyberattacks used to test defenses.

What is penetration testing?

500

Attackers gather personal info from social media to craft convincing attacks.

What is pretexting?

500

Authentication using something you are, like a fingerprint or face scan.

What is biometric authentication?

500

Malware that secretly records keystrokes.

What is a keylogger?

500

Insurance companies must comply with regulations like this one protecting financial data.

What is GLBA (Gramm-Leach-Bliley Act)?

500

Monitoring systems for suspicious behavior in real time.

What is intrusion detection (IDS)?

M
e
n
u