Cyber Security MCQs

Practice Cyber Security MCQs covering viruses, malware, phishing, hacking, firewall, antivirus and cybersecurity concepts with answers and explanations.

269 Total
Question #1 Report Error
Which type of malicious software hides inside a seemingly legitimate utility or software application, only to execute its malicious payload once installed by an unsuspecting user?
A. Computer Worm
B. Trojan Horse
C. Ransomware
D. Spyware

Correct Answer: Option B


Explanation:
A Trojan Horse masquerades as safe, benign software to trick users into running it, but contains hidden malicious code designed to compromise system security.

This question belongs to: Computer Cyber Security
Question #2 Report Error
What is the primary operational difference between a standard computer virus and a computer worm?
A. A virus requires a human operator to execute an infected host file to spread, whereas a worm can self-replicate and spread independently across networks.
B. A worm cannot run without administrative OS privileges.
C. A virus targets network protocols, while a worm exclusively targets storage sectors.
D. A virus relies entirely on hardware modulation bugs.

Correct Answer: Option A


Explanation:
Viruses insert themselves into existing host files and require human execution to propagate, while worms exploit system vulnerabilities to self-replicate and travel autonomously across network lines.

This question belongs to: Computer Cyber Security
Question #3 Report Error
Which social engineering attack vector uses spoofed emails, misleading hyperlinks, and look-alike landing pages to trick corporate employees into surrendering their login credentials?
A. SQL Injection
B. Phishing
C. DDoS Attack
D. Man-in-the-Middle

Correct Answer: Option B


Explanation:
Phishing involves masquerading as a trustworthy entity via digital communications to manipulate victims into revealing passwords, financial records, or sensitive personal tokens.

This question belongs to: Computer Cyber Security
Question #4 Report Error
What security mechanism acts as an analytical perimeter boundary, monitoring and filtering incoming and outgoing network traffic based on an organization's pre-established rule policies?
A. Intrusion Detection Honeypot
B. Digital Certificate Registry
C. Firewall
D. Antivirus Scan Engine

Correct Answer: Option C


Explanation:
A firewall filters data packets shifting across network interfaces, blocking or permitting connections according to specific access control security metrics.

This question belongs to: Computer Cyber Security
Question #5 Report Error
An attacker uses specialized software to capture, inspect, and log unencrypted data packets as they travel across a shared public Wi-Fi network. This exploit is classified as a/an:
A. Eavesdropping / Packet Sniffing Attack
B. Brute Force Cryptanalysis
C. Denial of Service Attack
D. Buffer Overflow Exploit

Correct Answer: Option A


Explanation:
Packet sniffing or eavesdropping intercepts raw data frames over network links, allowing threat actors to spy on unencrypted confidential payloads.

This question belongs to: Computer Cyber Security
Question #6 Report Error
Which malicious software type is explicitly engineered to silently monitor user inputs, record keystrokes, and track browsing histories to steal passwords covertly?
A. Keylogger / Spyware
B. Logic Bomb Tracker
C. Ransomware
D. Rootkit Engine

Correct Answer: Option A


Explanation:
Keyloggers are specialized spyware tools that log physical keyboard strokes, capturing sensitive authentication metrics before they are encrypted.

This question belongs to: Computer Cyber Security
Question #7 Report Error
What term refers to a network of compromised, malware-infected computers under the remote command of a singular cybercriminal master node, often used to launch massive DDoS actions?
A. Proxy Node Array
B. Dark Web Matrix
C. Honeynet Grid
D. Botnet

Correct Answer: Option D


Explanation:
A botnet is a collection of hijacked 'zombie' nodes controlled remotely via Command and Control (C2) servers to execute coordinated cyber operations.

This question belongs to: Computer Cyber Security
Question #8 Report Error
What type of hacker explicitly operates inside strict legal guidelines, using their offensive computer expertise to locate system vulnerabilities via authorized penetration testing?
A. Grey Hat Hacker
B. Black Hat Hacker
C. White Hat Hacker / Ethical Hacker
D. Script Kiddie

Correct Answer: Option C


Explanation:
White hat hackers use their technical skills legally and ethically to assess security postures, disclose vulnerabilities responsibly, and fortify enterprise defenses.

This question belongs to: Computer Cyber Security
Question #9 Report Error
Which cyber attack strategy attempts to overload a target network server or application by flooding it with millions of concurrent artificial traffic requests until it crashes or denies access to real users?
A. Phishing Scam
B. SQL Injection Matrix
C. Cross-Site Scripting Loop
D. Distributed Denial of Service (DDoS) Attack

Correct Answer: Option D


Explanation:
DDoS attacks leverage distributed node assets to saturate server bandwidth or processing resources, causing legitimate service outages.

This question belongs to: Computer Cyber Security
Question #10 Report Error
A type of extortion malware that uses advanced cryptography to lock a user’s local operating system or data files, demanding payment via cryptocurrency to restore access, is called:
A. Adware
B. Ransomware
C. Spyware
D. Rootkit

Correct Answer: Option B


Explanation:
Ransomware restricts access to files or computing systems via powerful encryption, conditioning decryption on the verification of a financial ransom transfer.

This question belongs to: Computer Cyber Security