CompTIA CompTIA Certifications 220-1102 Questions & Answers

• Question 611:

  A malicious user was able to export an entire website's user database by entering specific commands into a field on the company's website. Which of the following did the malicious user most likely exploit to extract the data?

  A. Cross-site scripting

  B. SQL injection

  C. Brute-force attack

  D. DDoS attack

  Correct Answer: B

  SQL injection is a type of attack that takes advantage of vulnerabilities in a web application's database query software, allowing an attacker to send malicious SQL commands through the application to the database. These commands can manipulate the database and can lead to unauthorized data access or manipulation. SQL injection: In the scenario described, the malicious user was able to export an entire website's user database by entering specific commands into a field on the company's website, which is a classic example of an SQL injection attack. This type of attack exploits vulnerabilities in the database layer of an application to execute unauthorized SQL commands. Cross-site scripting (A) involves injecting malicious scripts into content from otherwise trusted websites. A brute-force attack (C) is an attempt to gain access to a system by systematically checking all possible keys or passwords until the correct one is found. A DDoS attack

  (D) is an attempt to make a machine or network resource unavailable to its intended users by overwhelming it with a flood of internet traffic.

• Question 612:

  Which of the following is the weakest wireless security protocol?

  A. WEP

  B. WPA2

  C. TKIP

  D. AES

  Correct Answer: A

• Question 613:

  Employees at comptia.org are reporting getting an usual amount of emails from a coworker. A technician discovers the emails were sent from the following address: [email protected]

  Which of the following social engineering attacks is this an example of?

  A. Whaling

  B. Insider threat

  C. Phishing

  D. Vishing

  E. Evil twin

  Correct Answer: C

• Question 614:

  Users report having difficulty using the Windows Hello facial recognition feature. Which of the following is a secondary feature of Windows Hello that can be used to log in?

  A. Personal identification number

  B. Username/password

  C. One-time-use token

  D. Cryptographic device

  Correct Answer: A

  Windows Hello is a biometric-based technology that enables Windows 10 users to authenticate secure access to their devices, apps, online services, and networks with just a look or a touch. If users have difficulty using the facial recognition feature, Windows Hello also supports a Personal Identification Number (PIN) as a secondary feature for logging in. The PIN is tied to the specific device on which it is set up, adding a layer of security even if the PIN is obtained by someone else. Personal identification number: The PIN serves as an alternative to the facial recognition feature, allowing users to quickly and securely access their devices without relying solely on biometric authentication. Username/password (B) is the traditional method of authentication but is not specifically a secondary feature of Windows Hello. One-time-use token (C) and cryptographic device (D) could be part of an MFA setup but are not directly related to Windows Hello's alternate authentication options.

• Question 615:

  A company was recently attacked by ransomware. The IT department has remediated the threat and determined that the attack method used was email. Which of the following is the most effective way to prevent this issue from reoccurring?

  A. Spam filtering

  B. Malware preventionsoftware

  C. End user education

  D. Stateful firewall inspection

  Correct Answer: C

  To prevent ransomware attacks via email, the most effective way is End user education (C). Educating users about the dangers of phishing emails, how to recognize suspicious emails, and the importance of not clicking on unknown links or attachments can significantly reduce the risk of ransomware infections. Awareness and training can empower users to act as the first line of defense against such cyber threats

• Question 616:

  A technician is installing a new copy of Windows on all computers in the enterprise Given the following requirements:

  1.

  The install phase must be scripted to run over the network

  2.

  Each computer requires a new SSD as the system drive,

  3.

  The existing HDD should remain as a backup drive.

  Which of the following command-line tools should the technician use to install the drive and transfer the installation files from the network share? (Select three).

  A. net use

  B. robocopy

  C. winver

  D. diskpart

  E. sfc

  F. retstat

  G. ping

  H. chkdsk

  Correct Answer: ABD

  For scripted network installations requiring new SSDs and keeping HDDs as backup, the necessary tools are: 'net use' to connect to network shares, 'robocopy' to copy files efficiently from the network share to the local drive, and 'diskpart' to manage disk partitions, including initializing and formatting the new SSD. The other options are not relevant to the installation process as described.

• Question 617:

  A technician is following the ticketing system's best practices when handling user support requests. Which of the following should the technician do first when responding to a user support request that contains insufficient information?

  A. Ask the user for clarification.

  B. Keep the user updated on the progress.

  C. Document the root cause.

  D. Follow the system's escalation process.

  Correct Answer: A

  When handling a user support request that contains insufficient information, the first step a technician should take is to Ask the user for clarification (A). This involves gathering more details about the issue to understand the problem better and provide an accurate resolution. Effective communication and asking the right questions are essential for diagnosing and resolving IT issues efficiently.

• Question 618:

  A Windows 10 computer is not installing updates and continues to receive errors even during manual update installations. Which of the following should a technician do to fix the issues? (Select two).

  A. Ensure that the Windows Update Utility is the latest version.

  B. Refresh local WSUS settings on the computer.

  C. Delete the Windows Update cache.

  D. Run the System check to verify system files.

  E. Reimage the operating system while retaining user files.

  F. Reset WMI and re-register system .dlls.

  Correct Answer: BC

  Refreshing local Windows Server Update Services (WSUS) settings and deleting the Windows Update cache are effective steps in resolving issues with Windows 10 not installing updates. These actions help in rectifying any corrupt update files and ensuring that the workstation is properly communicating with the update servers, which can resolve errors during manual and automatic update installations.

• Question 619:

  Users report that they can log in to the web application during business hours, but none of the application's functions are working properly. Company policy does not allow for the server to be rebooted during business hours. Which of the following should a technician do to fix the web application and follow company policy?

  A. Restart services.

  B. Roll back Windows updates.

  C. Perform a Windows repair.

  D. Add RAM to the server.

  Correct Answer: A

• Question 620:

  A user receives an error message on a Windows 10 device when trying to access a mapped drive from a Windows XP machine in the office. Other Windows XP devices in the office can access the drive. Which of the following Control Panel utilities should the user select to enable connectivity to the device?

  A. Devices and Printers

  B. Administrative Tools

  C. Network and Sharing Center

  D. Programs and Features

  Correct Answer: C

  The Network and Sharing Center in the Control Panel is the central place to manage network connections and settings in Windows. When facing issues with accessing a mapped drive, this utility allows users to review and adjust network settings, making it possible to resolve connectivity problems. It provides options to view network status, set up new connections, change adapter settings, and troubleshoot network problems, which can help in enabling connectivity to the mapped drive on the Windows XP machine.