WGU D430 FUNDAMENTALS OF INFORMATION
SECURITY: 2025–2026 LATEST EXAM WITH MOST
TEST QUESTIONS (HARVARD STYLE)
COVERS CORE TOPICS IN WGU D430 INCLUDING CYBERSECURITY PRINCIPLES,
RISK MANAGEMENT, NETWORK SECURITY, THREATS, VULNERABILITIES, AND
INCIDENT RESPONSE. FEATURES THE MOST FREQUENTLY ASKED 2025–2026
EXAM QUESTIONS WITH HARVARD STYLE REFERENCING.
Which cybersecurity term is defined as the potential for an attack on a resource?
A Impact
B Vulnerability
C Risk
D Threat - CORRECT ANSWER-D
Which security type deliberately exposes a system's vulnerabilities or resources to an attacker?
A Intrusion detection
B Firewalls
C Honeypots
D Intrusion prevention - CORRECT ANSWER-C
Which tool can be used to map devices on a network, along with their operating system types and
versions?
A Packet sniffer
B Packet filter
C Port scanner
D Stateful firewall - CORRECT ANSWER-C
Which web attack is a server-side attack?
A Clickjacking
B Cross-site scripting
C SQL injection
,D Cross-site request forgery - CORRECT ANSWER-C
An organization employs a VPN to safeguard its information.
Which security principle is protected by a VPN?
A Data in motion
B Data at rest
C Data in use
D Data in storage - CORRECT ANSWER-A
A malicious hacker was successful in a denial of service (DoS) attack against an institution's mail
server. Fortunately, no data was lost or altered while the server was offline.
Which type of attack is this?
A Modification
B Fabrication
C Interception
D Interruption - CORRECT ANSWER-D
A company has had several successful denial of service (DoS) attacks on its email server.
Which security principle is being attacked?
A Possession
B Integrity
C Confidentiality
D Availability - CORRECT ANSWER-D
A new start-up company has started working on a social networking website. The company has
moved all its source code to a cloud provider and wants to protect this source code from
unauthorized access.
Which cyber defense concept should the start-up company use to maintain the confidentiality of its
source code?
,A Alarm systems
B Account permissions
C Antivirus software
D File encryption - CORRECT ANSWER-D
A company has an annual audit of installed software and data storage systems. During the audit, the
auditor asks how the company's most critical data is used. This determination helps the auditor
ensure that the proper defense mechanisms are in place to protect critical data.
Which component of the CIA triad will be impacted if an attacker cuts network cables?
A Availability
B Confidentiality
C Authenticity
D Integrity - CORRECT ANSWER-A
A bank wants to ensure user interactions with the online banking website are confidential.
Which security solution should be implemented?
A SSH/FTP
B AES
C SSL/TLS
D VPN - CORRECT ANSWER-C
What is an example of symmetric key encryption?
A MD5
B RSA
C AES
D ECC - CORRECT ANSWER-C
, Which asymmetric cryptographic algorithm can provide confidentiality for data in motion?
A AES
B MD5
C RSA
D 3DES - CORRECT ANSWER-C
A company has just completed an audit of disaster protection strategies. The company has decided it
must keep and be able to retrieve backup data for a period of 30 years. The company has
implemented tape backups using 8mm digital audio tapes.
Which factor could impact the company's ability to access information from the backup tapes?
A Tape access speed
B Technical obsolescence
C Reading tape header
D Network speed - CORRECT ANSWER-B
A military installation is evaluating backup solutions for its critical data. This installation operates in a
harsh environment that is subjected to heat, humidity, and magnetic fields.
Which physical media should be selected to ensure the integrity of backups is preserved given these
harsh operating conditions?
A Optical media
B Flash drives
C Tape media
D Hard drives - CORRECT ANSWER-B
A university research group wants to collect data on animals that are native to southern Arizona,
which is a hot, dry region. They plan to camp in tents for the summer at the edge of a national park
and to use optical media to backup photos and research notes.
SECURITY: 2025–2026 LATEST EXAM WITH MOST
TEST QUESTIONS (HARVARD STYLE)
COVERS CORE TOPICS IN WGU D430 INCLUDING CYBERSECURITY PRINCIPLES,
RISK MANAGEMENT, NETWORK SECURITY, THREATS, VULNERABILITIES, AND
INCIDENT RESPONSE. FEATURES THE MOST FREQUENTLY ASKED 2025–2026
EXAM QUESTIONS WITH HARVARD STYLE REFERENCING.
Which cybersecurity term is defined as the potential for an attack on a resource?
A Impact
B Vulnerability
C Risk
D Threat - CORRECT ANSWER-D
Which security type deliberately exposes a system's vulnerabilities or resources to an attacker?
A Intrusion detection
B Firewalls
C Honeypots
D Intrusion prevention - CORRECT ANSWER-C
Which tool can be used to map devices on a network, along with their operating system types and
versions?
A Packet sniffer
B Packet filter
C Port scanner
D Stateful firewall - CORRECT ANSWER-C
Which web attack is a server-side attack?
A Clickjacking
B Cross-site scripting
C SQL injection
,D Cross-site request forgery - CORRECT ANSWER-C
An organization employs a VPN to safeguard its information.
Which security principle is protected by a VPN?
A Data in motion
B Data at rest
C Data in use
D Data in storage - CORRECT ANSWER-A
A malicious hacker was successful in a denial of service (DoS) attack against an institution's mail
server. Fortunately, no data was lost or altered while the server was offline.
Which type of attack is this?
A Modification
B Fabrication
C Interception
D Interruption - CORRECT ANSWER-D
A company has had several successful denial of service (DoS) attacks on its email server.
Which security principle is being attacked?
A Possession
B Integrity
C Confidentiality
D Availability - CORRECT ANSWER-D
A new start-up company has started working on a social networking website. The company has
moved all its source code to a cloud provider and wants to protect this source code from
unauthorized access.
Which cyber defense concept should the start-up company use to maintain the confidentiality of its
source code?
,A Alarm systems
B Account permissions
C Antivirus software
D File encryption - CORRECT ANSWER-D
A company has an annual audit of installed software and data storage systems. During the audit, the
auditor asks how the company's most critical data is used. This determination helps the auditor
ensure that the proper defense mechanisms are in place to protect critical data.
Which component of the CIA triad will be impacted if an attacker cuts network cables?
A Availability
B Confidentiality
C Authenticity
D Integrity - CORRECT ANSWER-A
A bank wants to ensure user interactions with the online banking website are confidential.
Which security solution should be implemented?
A SSH/FTP
B AES
C SSL/TLS
D VPN - CORRECT ANSWER-C
What is an example of symmetric key encryption?
A MD5
B RSA
C AES
D ECC - CORRECT ANSWER-C
, Which asymmetric cryptographic algorithm can provide confidentiality for data in motion?
A AES
B MD5
C RSA
D 3DES - CORRECT ANSWER-C
A company has just completed an audit of disaster protection strategies. The company has decided it
must keep and be able to retrieve backup data for a period of 30 years. The company has
implemented tape backups using 8mm digital audio tapes.
Which factor could impact the company's ability to access information from the backup tapes?
A Tape access speed
B Technical obsolescence
C Reading tape header
D Network speed - CORRECT ANSWER-B
A military installation is evaluating backup solutions for its critical data. This installation operates in a
harsh environment that is subjected to heat, humidity, and magnetic fields.
Which physical media should be selected to ensure the integrity of backups is preserved given these
harsh operating conditions?
A Optical media
B Flash drives
C Tape media
D Hard drives - CORRECT ANSWER-B
A university research group wants to collect data on animals that are native to southern Arizona,
which is a hot, dry region. They plan to camp in tents for the summer at the edge of a national park
and to use optical media to backup photos and research notes.
