PPSC Auditor (Finance Dept, BS-14) Computer Science Cybersecurity — Set 2

Cybersecurity MCQs set 2 for PPSC Auditor (Finance Dept, BS-14) Computer Science — 20 solved questions.

PPSC Auditor (Finance Dept, BS-14) Computer Science Cybersecurity — Set 2

  1. Question 1

    Q1. Which type of malware encrypts files and demands payment for decryption?

    • A) Spyware
    • B) Adware
    • C) Ransomware
    • D) Trojan Horse

    Answer: Ransomware

    Explanation: Ransomware is malicious software that encrypts a victim's files and demands a ransom payment, typically in cryptocurrency, in exchange for the decryption key.

  2. Question 2

    Q2. Phishing attacks are primarily carried out through which medium?

    • A) Physical theft of hardware
    • B) Exploiting software vulnerabilities
    • C) Fraudulent emails or fake websites to steal credentials
    • D) Jamming wireless signals

    Answer: Fraudulent emails or fake websites to steal credentials

    Explanation: Phishing attacks are predominantly conducted through deceptive emails and counterfeit websites that mimic legitimate organizations to harvest usernames, passwords, and financial data.

  3. Question 3

    Q3. Which type of malware encrypts a victim's files and demands payment for the decryption key?

    • A) Spyware
    • B) Ransomware
    • C) Worm
    • D) Trojan

    Answer: Ransomware

    Explanation: Ransomware encrypts a victim's files and demands payment (usually cryptocurrency) in exchange for the decryption key needed to restore access.

  4. Question 4

    Q4. Which encryption method uses the same key for both encryption and decryption?

    • A) Asymmetric encryption
    • B) Public-key cryptography
    • C) RSA encryption
    • D) Symmetric encryption

    Answer: Symmetric encryption

    Explanation: Symmetric encryption uses a single shared secret key for both encrypting and decrypting data, making it faster but requiring secure key exchange between parties.

  5. Question 5

    Q5. RSA is an example of which type of encryption?

    • A) Symmetric encryption
    • B) Asymmetric encryption
    • C) Hashing algorithm
    • D) Block cipher

    Answer: Asymmetric encryption

    Explanation: RSA uses a mathematically linked public-private key pair - data encrypted with one key can only be decrypted with the other - which is the defining feature of asymmetric encryption.

  6. Question 6

    Q6. AES (Advanced Encryption Standard) is an example of which type of encryption?

    • A) Asymmetric encryption
    • B) Public-key encryption
    • C) Symmetric encryption
    • D) Digital signature

    Answer: Symmetric encryption

    Explanation: AES uses the same secret key for both encryption and decryption, which defines it as a symmetric (or secret-key) encryption algorithm.

  7. Question 7

    Q7. AES is an example of which type of encryption?

    • A) Symmetric encryption
    • B) Asymmetric encryption
    • C) Hashing
    • D) Public-key encryption

    Answer: Symmetric encryption

    Explanation: AES (Advanced Encryption Standard) is symmetric encryption, meaning the same key is used for both encryption and decryption; it is widely used for securing data at rest and in transit.

  8. Question 8

    Q8. What type of malware disguises itself as legitimate software to trick users into installing it?

    • A) Trojan horse
    • B) Worm
    • C) Ransomware
    • D) Adware

    Answer: Trojan horse

    Explanation: A Trojan horse malware disguises itself as legitimate or useful software; once installed, it can open backdoors, steal data, or download additional malware without the user's knowledge.

  9. Question 9

    Q9. RSA is an example of which type of encryption algorithm?

    • A) Symmetric encryption
    • B) Asymmetric encryption
    • C) Hashing algorithm
    • D) Stream cipher

    Answer: Asymmetric encryption

    Explanation: RSA is an asymmetric encryption algorithm that uses a pair of keys - a public key for encryption and a private key for decryption - widely used for secure data transmission and digital signatures.

  10. Question 10

    Q10. What does VPN stand for?

    • A) Virtual Public Network
    • B) Virtual Private Network
    • C) Verified Protocol Node
    • D) Variable Packet Network

    Answer: Virtual Private Network

    Explanation: VPN stands for Virtual Private Network; it creates an encrypted tunnel over the internet, allowing users to securely access private networks and protect their online privacy.

  11. Question 11

    Q11. Which type of malware self-replicates and spreads across networks without user interaction?

    • A) Trojan horse
    • B) Worm
    • C) Virus
    • D) Spyware

    Answer: Worm

    Explanation: A worm is self-replicating malware that spreads automatically across networks without needing to attach to a file or require user interaction, unlike a virus which requires a host file.

  12. Question 12

    Q12. What is phishing?

    • A) A technique to speed up internet connection
    • B) A cyberattack using fake websites or emails to steal credentials
    • C) A method to encrypt data transmissions
    • D) A type of firewall configuration

    Answer: A cyberattack using fake websites or emails to steal credentials

    Explanation: Phishing is a social engineering attack where cybercriminals use fake websites or fraudulent emails impersonating legitimate entities to trick users into revealing passwords, credit card numbers, or other sensitive information.

  13. Question 13

    Q13. A computer virus primarily spreads by:

    • A) Self-replicating across networks without user interaction
    • B) Sending spam emails automatically
    • C) Attaching itself to files and spreading when those files are shared
    • D) Exploiting router vulnerabilities

    Answer: Attaching itself to files and spreading when those files are shared

    Explanation: A virus attaches to legitimate files (executables, documents) and spreads when users share those infected files; unlike worms, viruses require user action to propagate.

  14. Question 14

    Q14. Which cybersecurity attack involves flooding a server with requests to make it unavailable to legitimate users?

    • A) Phishing attack
    • B) Man-in-the-middle attack
    • C) SQL injection
    • D) Denial of Service (DoS) attack

    Answer: Denial of Service (DoS) attack

    Explanation: A DoS (Denial of Service) attack overwhelms a server with excessive requests, exhausting its resources and making it unavailable; a DDoS attack uses multiple systems to amplify this effect.

  15. Question 15

    Q15. In public-key (asymmetric) encryption, which key is used to encrypt data that only the recipient can decrypt?

    • A) The recipient's private key
    • B) A shared secret key
    • C) The sender's private key
    • D) The recipient's public key

    Answer: The recipient's public key

    Explanation: In asymmetric encryption, the sender encrypts data using the recipient's public key; only the recipient's corresponding private key can decrypt it, ensuring only the intended recipient can read the data.

  16. Question 16

    Q16. Which type of malware disguises itself as a legitimate program to trick users into installing it?

    • A) Trojan Horse
    • B) Worm
    • C) Ransomware
    • D) Spyware

    Answer: Trojan Horse

    Explanation: A Trojan Horse is malware that disguises itself as legitimate software to deceive users into installing it, after which it executes malicious actions. Unlike worms, Trojans do not self-replicate.

  17. Question 17

    Q17. What does a firewall primarily do in a network?

    • A) Filters incoming and outgoing traffic based on security rules
    • B) Encrypts all network data end-to-end
    • C) Assigns IP addresses to devices automatically
    • D) Compresses data for faster transmission

    Answer: Filters incoming and outgoing traffic based on security rules

    Explanation: A firewall filters network traffic by examining packets against a defined set of security rules, blocking unauthorized access while allowing legitimate communication. It acts as a barrier between trusted internal networks and untrusted external networks.

  18. Question 18

    Q18. In asymmetric encryption, which key is used to encrypt data that only the recipient can decrypt?

    • A) The recipient's public key
    • B) The sender's private key
    • C) A shared symmetric key
    • D) The recipient's private key

    Answer: The recipient's public key

    Explanation: In asymmetric encryption, data is encrypted using the recipient's public key, and only the recipient's corresponding private key can decrypt it. This ensures confidentiality because the private key is never shared.

  19. Question 19

    Q19. Which type of cyberattack involves tricking users into revealing sensitive information by impersonating a trustworthy entity?

    • A) Ransomware
    • B) Phishing
    • C) Denial of Service
    • D) SQL Injection

    Answer: Phishing

    Explanation: Phishing is a social engineering attack where attackers impersonate legitimate organizations via email, websites, or messages to trick users into revealing passwords, credit card numbers, or other sensitive data. It is one of the most common cybersecurity threats.

  20. Question 20

    Q20. What does VPN stand for in the context of network security?

    • A) Virtual Private Node
    • B) Virtual Private Network
    • C) Verified Protected Network
    • D) Variable Protocol Network

    Answer: Virtual Private Network

    Explanation: VPN stands for Virtual Private Network, a technology that creates an encrypted tunnel over a public network (such as the internet) to securely connect remote users or sites. VPNs protect data confidentiality and mask the user's IP address.