Cyber Security MCQs

Practice Cyber Security MCQs covering viruses, malware, phishing, hacking, firewall, antivirus and cybersecurity concepts with answers and explanations.

269 Total
Question #1 Report Error
Which type of malicious software hides inside a seemingly legitimate utility or software application, only to execute its malicious payload once installed by an unsuspecting user?
A. Spyware
B. Ransomware
C. Trojan Horse
D. Computer Worm

Correct Answer: Option C


Explanation:
A Trojan Horse masquerades as safe, benign software to trick users into running it, but contains hidden malicious code designed to compromise system security.

This question belongs to: Computer Cyber Security
Question #2 Report Error
What is the primary operational difference between a standard computer virus and a computer worm?
A. A virus relies entirely on hardware modulation bugs.
B. A virus targets network protocols, while a worm exclusively targets storage sectors.
C. A worm cannot run without administrative OS privileges.
D. A virus requires a human operator to execute an infected host file to spread, whereas a worm can self-replicate and spread independently across networks.

Correct Answer: Option D


Explanation:
Viruses insert themselves into existing host files and require human execution to propagate, while worms exploit system vulnerabilities to self-replicate and travel autonomously across network lines.

This question belongs to: Computer Cyber Security
Question #3 Report Error
Which social engineering attack vector uses spoofed emails, misleading hyperlinks, and look-alike landing pages to trick corporate employees into surrendering their login credentials?
A. DDoS Attack
B. SQL Injection
C. Man-in-the-Middle
D. Phishing

Correct Answer: Option D


Explanation:
Phishing involves masquerading as a trustworthy entity via digital communications to manipulate victims into revealing passwords, financial records, or sensitive personal tokens.

This question belongs to: Computer Cyber Security
Question #4 Report Error
What security mechanism acts as an analytical perimeter boundary, monitoring and filtering incoming and outgoing network traffic based on an organization's pre-established rule policies?
A. Antivirus Scan Engine
B. Digital Certificate Registry
C. Intrusion Detection Honeypot
D. Firewall

Correct Answer: Option D


Explanation:
A firewall filters data packets shifting across network interfaces, blocking or permitting connections according to specific access control security metrics.

This question belongs to: Computer Cyber Security
Question #5 Report Error
An attacker uses specialized software to capture, inspect, and log unencrypted data packets as they travel across a shared public Wi-Fi network. This exploit is classified as a/an:
A. Buffer Overflow Exploit
B. Brute Force Cryptanalysis
C. Denial of Service Attack
D. Eavesdropping / Packet Sniffing Attack

Correct Answer: Option D


Explanation:
Packet sniffing or eavesdropping intercepts raw data frames over network links, allowing threat actors to spy on unencrypted confidential payloads.

This question belongs to: Computer Cyber Security
Question #6 Report Error
Which malicious software type is explicitly engineered to silently monitor user inputs, record keystrokes, and track browsing histories to steal passwords covertly?
A. Logic Bomb Tracker
B. Rootkit Engine
C. Keylogger / Spyware
D. Ransomware

Correct Answer: Option C


Explanation:
Keyloggers are specialized spyware tools that log physical keyboard strokes, capturing sensitive authentication metrics before they are encrypted.

This question belongs to: Computer Cyber Security
Question #7 Report Error
What term refers to a network of compromised, malware-infected computers under the remote command of a singular cybercriminal master node, often used to launch massive DDoS actions?
A. Honeynet Grid
B. Proxy Node Array
C. Botnet
D. Dark Web Matrix

Correct Answer: Option C


Explanation:
A botnet is a collection of hijacked 'zombie' nodes controlled remotely via Command and Control (C2) servers to execute coordinated cyber operations.

This question belongs to: Computer Cyber Security
Question #8 Report Error
What type of hacker explicitly operates inside strict legal guidelines, using their offensive computer expertise to locate system vulnerabilities via authorized penetration testing?
A. Grey Hat Hacker
B. Black Hat Hacker
C. White Hat Hacker / Ethical Hacker
D. Script Kiddie

Correct Answer: Option C


Explanation:
White hat hackers use their technical skills legally and ethically to assess security postures, disclose vulnerabilities responsibly, and fortify enterprise defenses.

This question belongs to: Computer Cyber Security
Question #9 Report Error
Which cyber attack strategy attempts to overload a target network server or application by flooding it with millions of concurrent artificial traffic requests until it crashes or denies access to real users?
A. SQL Injection Matrix
B. Phishing Scam
C. Distributed Denial of Service (DDoS) Attack
D. Cross-Site Scripting Loop

Correct Answer: Option C


Explanation:
DDoS attacks leverage distributed node assets to saturate server bandwidth or processing resources, causing legitimate service outages.

This question belongs to: Computer Cyber Security
Question #10 Report Error
A type of extortion malware that uses advanced cryptography to lock a user’s local operating system or data files, demanding payment via cryptocurrency to restore access, is called:
A. Adware
B. Rootkit
C. Spyware
D. Ransomware

Correct Answer: Option D


Explanation:
Ransomware restricts access to files or computing systems via powerful encryption, conditioning decryption on the verification of a financial ransom transfer.

This question belongs to: Computer Cyber Security