Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

COMPTIA SECURITY+ – QUESTIONS AND ANSWERS | VERIFIED AND WELL DETAILED ANSWERS PLUS RATIONALES | EXAM PREP | STUDY GUIDE | PRACTICE TEST | CERTIFICATION PREPARATION | LATEST UPDATE | DOWNLOAD INSTANT PDF

Rating
-
Sold
-
Pages
33
Grade
A+
Uploaded on
07-07-2026
Written in
2025/2026

COMPTIA SECURITY+ – QUESTIONS AND ANSWERS | VERIFIED AND WELL DETAILED ANSWERS PLUS RATIONALES | EXAM PREP | STUDY GUIDE | PRACTICE TEST | CERTIFICATION PREPARATION | LATEST UPDATE | DOWNLOAD INSTANT PDF

Institution
COMPTIA SECURITY+ -
Course
COMPTIA SECURITY+ -

Content preview

COMPTIA SECURITY+ – QUESTIONS AND
ANSWERS | VERIFIED AND WELL DETAILED
ANSWERS PLUS RATIONALES | EXAM PREP |
STUDY GUIDE | PRACTICE TEST |
CERTIFICATION PREPARATION | LATEST
UPDATE | DOWNLOAD INSTANT PDF
1. An organization's security team wants to reduce the risk of unauthorized
access by requiring users to provide a password and a fingerprint scan. Which
security principle is being implemented?

A. Least privilege
B. Multifactor authentication (MFA)
C. Network segmentation
D. Single sign-on

MFA requires two or more authentication factors from different categories,
significantly reducing the risk of unauthorized access if one factor is
compromised.



2. A security analyst discovers that attackers are sending fraudulent emails
that appear to come from the company's finance department to trick
employees into revealing login credentials. What type of attack is this?

A. Phishing
B. Brute-force attack
C. Denial-of-service attack
D. Tailgating

Phishing uses deceptive emails or messages to persuade users to reveal sensitive
information or install malicious software.



3. Which security control encrypts data transmitted between a user's web
browser and a secure website?

,A. SSH
B. TLS
C. FTP
D. SNMP

Transport Layer Security (TLS) encrypts communications between clients and
servers, protecting confidentiality and integrity during data transmission.



4. A company wants to ensure employees receive only the minimum
permissions necessary to perform their job responsibilities. Which security
principle should be applied?

A. Defense in depth
B. Separation of duties
C. Least privilege
D. High availability

The principle of least privilege limits user permissions to only what is necessary,
reducing the impact of compromised accounts and accidental misuse.



5. Which type of malware is specifically designed to encrypt files and demand
payment for their release?

A. Worm
B. Trojan
C. Ransomware
D. Spyware

Ransomware encrypts a victim's data and demands payment for the decryption
key, making it one of the most disruptive forms of malware.

6. An organization wants to protect confidential data stored on employee
laptops in case a device is lost or stolen. Which security measure provides the
best protection?

A. Screen timeout
B. Full-disk encryption

,C. Password complexity requirements
D. Antivirus software

Full-disk encryption protects data at rest by making the contents of the drive
unreadable without proper authentication, even if the device is stolen.



7. A security administrator notices repeated failed login attempts against
multiple user accounts from the same external IP address. Which type of
attack is most likely occurring?

A. SQL injection
B. Password spraying
C. Cross-site scripting (XSS)
D. Privilege escalation

Password spraying involves trying a small number of common passwords
against many accounts to avoid account lockout policies.



8. Which security technology inspects incoming and outgoing network traffic
based on predefined security rules and helps block unauthorized connections?

A. Firewall
B. Load balancer
C. Proxy ARP
D. DHCP server

A firewall filters network traffic according to configured policies, helping
prevent unauthorized access while allowing legitimate communications.



9. A company requires employees to use a smart card in addition to a PIN to
access secure facilities. Which authentication factors are being used?

A. Something you know and something you have
B. Something you know and something you are

, C. Something you have and somewhere you are
D. Something you are and something you do

The PIN is "something you know," while the smart card is "something you
have," satisfying two different authentication factors.



10. During a security assessment, an analyst discovers software running on
workstations that is no longer supported by the vendor and no longer receives
security updates. What is the primary security concern?

A. Increased network bandwidth usage
B. Unsupported software may contain unpatched vulnerabilities
C. Reduced hard drive performance
D. Slower DNS resolution

End-of-life software no longer receives security patches, making it a higher risk
for exploitation by attackers.

11. A company experiences a security incident in which an attacker gains
access by exploiting a software vulnerability before a vendor releases a patch.
What type of vulnerability was exploited?

A. Zero-day vulnerability
B. Misconfiguration
C. Insider threat
D. Weak encryption

A zero-day vulnerability is exploited before a fix or patch is available, leaving
systems exposed until mitigation or updates are implemented.



12. Which security concept ensures that information is not altered or
destroyed in an unauthorized manner?

A. Availability
B. Confidentiality
C. Integrity
D. Authentication

Written for

Institution
COMPTIA SECURITY+ -
Course
COMPTIA SECURITY+ -

Document information

Uploaded on
July 7, 2026
Number of pages
33
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

$23.49
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF

Get to know the seller
Seller avatar
CLEVERTUTOR

Get to know the seller

Seller avatar
CLEVERTUTOR Walden University
View profile
Follow You need to be logged in order to follow users or courses
Sold
-
Member since
1 week
Number of followers
0
Documents
175
Last sold
-
Master Exam Revision Pack: Questions Designed for High Scores

Ultimate All-in-One Revision Pack: Complete Study Notes for Exams Success (All Topics Covered) A fully organized and simplified collection of comprehensive study materials designed to help you understand key concepts quickly and prepare effectively for exams across all topics and fields. If you find this document helpful, kindly take a moment to leave a review after purchase. Your feedback is highly appreciated and helps improve future study materials for other learners.

Read more Read less
0.0

0 reviews

5
0
4
0
3
0
2
0
1
0

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions